This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/044402-c4d4-4259-93e2-7fbf5ee290ac/1/8bRTFqqfGJUx5yKlpNBGGLyfeAk.roa File: 8bRTFqqfGJUx5yKlpNBGGLyfeAk.roa (raw, json) Hash identifier: kImY5tJNZeZT0ukreVQs42nY/D7z0/+YDr07Sp3JI24= Subject key identifier: F1:B4:53:16:AA:9F:18:95:31:E7:22:A5:A4:D0:46:18:BC:9F:78:09 Certificate issuer: /CN=b5b0a86659ec314f13a04e3a03dbdb1244a0e0a9 Certificate serial: 019B7DCACBCDFD0BFBDABA44D16F44822E3B Authority key identifier: B5:B0:A8:66:59:EC:31:4F:13:A0:4E:3A:03:DB:DB:12:44:A0:E0:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tbCoZlnsMU8ToE46A9vbEkSg4Kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/044402-c4d4-4259-93e2-7fbf5ee290ac/1/8bRTFqqfGJUx5yKlpNBGGLyfeAk.roa Signing time: Fri 02 Jan 2026 08:20:01 +0000 ROA not before: Fri 02 Jan 2026 08:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47856 IP address blocks: 91.206.144.0/23 maxlen: 24 193.28.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/044402-c4d4-4259-93e2-7fbf5ee290ac/1/tbCoZlnsMU8ToE46A9vbEkSg4Kk.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/044402-c4d4-4259-93e2-7fbf5ee290ac/1/tbCoZlnsMU8ToE46A9vbEkSg4Kk.mft rsync://rpki.ripe.net/repository/DEFAULT/tbCoZlnsMU8ToE46A9vbEkSg4Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:cb:cd:fd:0b:fb:da:ba:44:d1:6f:44:82:2e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5b0a86659ec314f13a04e3a03dbdb1244a0e0a9 Validity Not Before: Jan 2 08:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f1b45316aa9f189531e722a5a4d04618bc9f7809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:db:6a:83:43:2b:6d:62:37:b7:2f:d1:bd:b0: e0:f3:83:f7:47:19:d7:51:10:0c:ef:fd:c0:7f:88: 9e:bd:44:5b:7f:9b:7b:b1:e6:cf:df:41:87:d4:d2: 37:73:dd:97:86:48:c1:5e:b3:ac:db:34:f6:ce:9c: 7d:32:75:e0:f9:52:cf:c0:cd:04:d0:47:80:c6:0c: a0:ee:a7:5e:3f:f7:7e:9c:90:83:16:96:ea:6e:fd: ae:1b:6f:0f:ec:a5:08:97:e7:28:d9:c4:fa:80:d4: 2c:4d:fa:41:31:c3:8b:d7:f9:16:e3:4a:f5:5f:2c: 73:13:2f:46:e3:58:82:e4:a8:db:b7:fd:08:e8:62: db:5f:9a:c5:4b:ce:1f:6b:b8:f5:86:5f:d9:21:ea: 13:76:45:92:c7:35:81:2b:5f:b1:00:fb:71:eb:ed: e5:65:36:9e:6b:c8:3f:3f:b7:52:01:16:4a:52:19: 5f:60:c4:a2:73:40:1b:e7:28:9b:a3:88:48:45:84: 48:03:71:c2:ec:34:13:b9:b4:c4:68:59:91:69:d5: fe:9b:8d:11:6d:af:b4:4f:6c:a1:2b:c9:94:77:3c: 9e:bc:fa:b8:6b:27:0f:e8:ee:4b:a3:a3:5d:4b:68: 88:51:32:cc:1c:d0:23:ac:fc:88:44:3b:10:83:ed: 5f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B4:53:16:AA:9F:18:95:31:E7:22:A5:A4:D0:46:18:BC:9F:78:09 X509v3 Authority Key Identifier: keyid:B5:B0:A8:66:59:EC:31:4F:13:A0:4E:3A:03:DB:DB:12:44:A0:E0:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tbCoZlnsMU8ToE46A9vbEkSg4Kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/044402-c4d4-4259-93e2-7fbf5ee290ac/1/8bRTFqqfGJUx5yKlpNBGGLyfeAk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/044402-c4d4-4259-93e2-7fbf5ee290ac/1/tbCoZlnsMU8ToE46A9vbEkSg4Kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.206.144.0/23 193.28.159.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:eb:65:1b:c8:a2:e6:58:e5:01:d5:2f:6d:06:4e:6e:15:ff: 55:27:f4:0f:1d:83:6c:82:c4:49:34:2f:6b:19:d6:5a:fc:62: 1e:9b:a5:58:49:47:2c:73:6a:b6:2d:50:1e:5d:69:1a:90:25: 21:d5:f2:26:66:7a:d8:74:64:37:c3:dd:66:24:76:6e:fa:97: f7:8e:99:e5:a8:3f:3c:28:90:f8:99:0f:1e:12:40:79:33:ab: 1b:28:d5:3b:b6:4d:f4:3b:84:9c:4a:a2:4d:57:62:e6:74:f4: fd:a3:3b:d1:f6:84:bb:62:18:9a:da:24:66:bd:3b:74:a3:ce: 0a:d8:99:16:24:5f:b3:93:11:02:87:74:42:84:28:4b:63:11: eb:4d:2a:a5:4d:2d:04:33:03:41:d4:eb:00:c9:06:2a:1d:9d: 74:f6:50:cc:69:b7:70:c4:7b:f5:60:77:0f:82:54:45:98:71: c2:62:d1:2a:04:f6:06:3b:ea:eb:a5:7d:ff:bf:f4:87:f6:24: 62:89:40:85:e0:80:38:4d:e2:e0:9d:c2:0a:68:66:9c:8e:60: f8:73:8e:be:f2:3f:ee:7b:2e:27:d3:60:6c:f5:e5:ec:7c:22: 91:3f:e2:22:d5:01:1a:93:c9:01:dc:03:ea:c2:e7:59:75:30: 5b:e0:42:c4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9ysvN/Qv72rpE0W9Egi47MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1YjBhODY2NTllYzMxNGYxM2EwNGUzYTAzZGJkYjEyNDRh MGUwYTkwHhcNMjYwMTAyMDgyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMWI0NTMxNmFhOWYxODk1MzFlNzIyYTVhNGQwNDYxOGJjOWY3ODA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApttqg0MrbWI3ty/RvbDg84P3RxnX URAM7/3Af4ievURbf5t7sebP30GH1NI3c92XhkjBXrOs2zT2zpx9MnXg+VLPwM0E 0EeAxgyg7qdeP/d+nJCDFpbqbv2uG28P7KUIl+co2cT6gNQsTfpBMcOL1/kW40r1 XyxzEy9G41iC5Kjbt/0I6GLbX5rFS84fa7j1hl/ZIeoTdkWSxzWBK1+xAPtx6+3l ZTaea8g/P7dSARZKUhlfYMSic0Ab5yibo4hIRYRIA3HC7DQTubTEaFmRadX+m40R ba+0T2yhK8mUdzyevPq4aycP6O5Lo6NdS2iIUTLMHNAjrPyIRDsQg+1fvQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFPG0UxaqnxiVMecipaTQRhi8n3gJMB8GA1UdIwQY MBaAFLWwqGZZ7DFPE6BOOgPb2xJEoOCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGJDb1psbnNNVThUb0U0NkE5dmJFa1NnNEtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8wNDQ0MDItYzRkNC00MjU5LTkzZTIt N2ZiZjVlZTI5MGFjLzEvOGJSVEZxcWZHSlV4NXlLbHBOQkdHTHlmZUFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8wNDQ0MDItYzRkNC00MjU5LTkzZTItN2ZiZjVlZTI5MGFj LzEvdGJDb1psbnNNVThUb0U0NkE5dmJFa1NnNEtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW86QAwQA wRyfMA0GCSqGSIb3DQEBCwUAA4IBAQCP62UbyKLmWOUB1S9tBk5uFf9VJ/QPHYNs gsRJNC9rGdZa/GIem6VYSUcsc2q2LVAeXWkakCUh1fImZnrYdGQ3w91mJHZu+pf3 jpnlqD88KJD4mQ8eEkB5M6sbKNU7tk30O4ScSqJNV2LmdPT9ozvR9oS7Yhia2iRm vTt0o84K2JkWJF+zkxECh3RChChLYxHrTSqlTS0EMwNB1OsAyQYqHZ109lDMabdw xHv1YHcPglRFmHHCYtEqBPYGO+rrpX3/v/SH9iRiiUCF4IA4TeLgncIKaGacjmD4 c46+8j/uey4n02Bs9eXsfCKRP+Ii1QEak8kB3APqwudZdTBb4ELE -----END CERTIFICATE-----Generated at Sun Jan 25 14:57:57 2026 by rpki-client