This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/bBRHEbBLhbg9wCsS_iJI_qQCtmU.roa File: bBRHEbBLhbg9wCsS_iJI_qQCtmU.roa (raw, json) Hash identifier: OVMMAYB5tWUbOWSKmmoDK0ZdfXUXKleZ2dlScSPtSDQ= Subject key identifier: 6C:14:47:11:B0:4B:85:B8:3D:C0:2B:12:FE:22:48:FE:A4:02:B6:65 Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725 Certificate serial: 019B7B366BA84C9E00B222B5EFC433DCE1F3 Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/bBRHEbBLhbg9wCsS_iJI_qQCtmU.roa Signing time: Thu 01 Jan 2026 20:18:42 +0000 ROA not before: Thu 01 Jan 2026 20:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57292 IP address blocks: 31.184.130.0/23 maxlen: 24 31.184.130.0/24 maxlen: 24 31.184.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.mft rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:6b:a8:4c:9e:00:b2:22:b5:ef:c4:33:dc:e1:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725 Validity Not Before: Jan 1 20:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c144711b04b85b83dc02b12fe2248fea402b665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:a1:4d:8f:03:25:29:22:13:0f:5e:62:61:ba: 5b:45:4b:94:d2:44:99:0b:d6:01:6f:20:5d:6c:e6: 7b:fe:e0:89:f7:25:a2:c9:c8:f0:eb:8e:74:55:9e: ec:d2:b0:c3:c8:cd:e8:2e:08:33:6b:04:47:a6:83: 4d:b2:86:22:cf:f1:9c:f7:51:65:32:f9:95:5a:93: ce:b6:73:8b:af:f5:52:3a:af:06:54:4e:5b:d9:9a: 87:50:b1:f4:26:52:f9:9a:fa:69:16:09:99:64:81: 47:e2:24:eb:82:2a:1d:2d:48:1b:75:9f:68:2f:58: ad:80:ed:ed:38:18:1e:6a:b8:08:0b:c5:5c:56:b7: b6:c3:73:d0:0c:38:97:ba:4b:f0:7e:72:c2:54:f2: ec:a1:f6:02:6c:9c:2b:6b:1c:a0:65:42:4b:0b:1a: b2:5f:f0:49:56:db:fe:ed:94:64:cf:fa:f1:3c:b2: a8:2c:e6:98:6b:c8:df:83:ec:fa:ad:34:3b:9f:fa: 89:ec:c5:76:a9:98:86:89:ea:cf:2a:80:f8:4d:3c: 98:71:ea:c5:1b:c2:ea:f6:a6:39:db:11:d3:f9:1f: 59:f3:df:ae:64:81:bd:b9:48:73:de:ad:5d:48:c0: 23:a2:ec:a8:71:50:b4:4e:15:17:bd:06:7c:a8:2d: ce:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:14:47:11:B0:4B:85:B8:3D:C0:2B:12:FE:22:48:FE:A4:02:B6:65 X509v3 Authority Key Identifier: keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/bBRHEbBLhbg9wCsS_iJI_qQCtmU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.184.130.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:bb:48:3b:8c:60:25:e3:a5:28:8d:e8:a9:e1:83:ec:0c:80: e0:2f:bd:62:21:97:cc:c4:cc:79:96:0a:e5:e8:20:a9:e4:ba: 49:c4:37:56:28:3f:9a:d9:d1:33:22:69:16:56:87:0a:65:f4: 22:df:1c:ef:a4:7e:05:47:73:7b:68:5f:50:09:1c:d7:2d:c9: 4c:e7:96:88:2e:45:9e:31:c6:51:e4:31:45:a6:1c:91:69:d8: ec:17:f4:cb:5d:0a:72:cb:43:f0:0c:59:6c:b4:64:3d:f1:ff: f8:4a:f6:b2:33:3a:45:18:e1:e5:8c:bb:90:0f:74:e0:a3:62: 58:b6:7d:fd:56:a4:95:f8:6f:c5:e4:89:dc:98:78:e3:e5:f8: 38:9f:95:b7:4e:01:c6:02:57:9c:ea:65:1c:da:3a:0b:cf:44: ff:78:ef:83:94:dd:39:fe:8c:a0:e0:0e:71:bc:c6:b9:cf:21: 21:5d:fc:79:57:71:27:0c:44:19:3b:78:65:30:06:70:18:4d: 7d:77:a9:d4:72:db:e1:fc:12:72:70:67:0d:fa:a2:e6:63:08: a3:4f:35:34:a8:40:8b:7a:98:82:f1:b5:f0:72:b4:be:bc:91: 98:e3:fd:b4:2e:b1:e7:6c:8f:5d:be:53:64:29:df:4c:65:61: c1:ad:ed:6a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NmuoTJ4AsiK178Qz3OHzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhZmI2NDVmMTM0ZjRmZGFkYTQ1ZTcwYmNmY2Q5M2I4OTdk YmQ3MjUwHhcNMjYwMTAxMjAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzE0NDcxMWIwNGI4NWI4M2RjMDJiMTJmZTIyNDhmZWE0MDJiNjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA96FNjwMlKSITD15iYbpbRUuU0kSZ C9YBbyBdbOZ7/uCJ9yWiycjw6450VZ7s0rDDyM3oLggzawRHpoNNsoYiz/Gc91Fl MvmVWpPOtnOLr/VSOq8GVE5b2ZqHULH0JlL5mvppFgmZZIFH4iTrgiodLUgbdZ9o L1itgO3tOBgeargIC8VcVre2w3PQDDiXukvwfnLCVPLsofYCbJwraxygZUJLCxqy X/BJVtv+7ZRkz/rxPLKoLOaYa8jfg+z6rTQ7n/qJ7MV2qZiGierPKoD4TTyYcerF G8Lq9qY52xHT+R9Z89+uZIG9uUhz3q1dSMAjouyocVC0ThUXvQZ8qC3OxQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGwURxGwS4W4PcArEv4iSP6kArZlMB8GA1UdIwQY MBaAFNr7ZF8TT0/a2kXnC8/Nk7iX29clMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnZ0a1h4TlBUOXJhUmVjTHo4MlR1SmZiMXlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi83YTQ4ZjUtYmQyNC00ZGM0LThjY2Et NmJhMGEwY2UwMWVkLzEvYkJSSEViQkxoYmc5d0NzU19pSklfcVFDdG1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi83YTQ4ZjUtYmQyNC00ZGM0LThjY2EtNmJhMGEwY2UwMWVk LzEvMnZ0a1h4TlBUOXJhUmVjTHo4MlR1SmZiMXlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBH7iCMA0G CSqGSIb3DQEBCwUAA4IBAQAbu0g7jGAl46Uojeip4YPsDIDgL71iIZfMxMx5lgrl 6CCp5LpJxDdWKD+a2dEzImkWVocKZfQi3xzvpH4FR3N7aF9QCRzXLclM55aILkWe McZR5DFFphyRadjsF/TLXQpyy0PwDFlstGQ98f/4SvayMzpFGOHljLuQD3Tgo2JY tn39VqSV+G/F5IncmHjj5fg4n5W3TgHGAlec6mUc2joLz0T/eO+DlN05/oyg4A5x vMa5zyEhXfx5V3EnDEQZO3hlMAZwGE19d6nUctvh/BJycGcN+qLmYwijTzU0qECL epiC8bXwcrS+vJGY4/20LrHnbI9dvlNkKd9MZWHBre1q -----END CERTIFICATE-----Generated at Mon Jan 26 07:51:39 2026 by rpki-client