This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/b-ePuu9SrmhEXBMPt86xMQ-pphc.roa File: b-ePuu9SrmhEXBMPt86xMQ-pphc.roa (raw, json) Hash identifier: ypt0as7xpwN512+ygzUQi3tGsik5JKD0RnuDrs7wXq4= Subject key identifier: 6F:E7:8F:BA:EF:52:AE:68:44:5C:13:0F:B7:CE:B1:31:0F:A9:A6:17 Certificate issuer: /CN=d16bdf54381f63074adf9a1bd9777877a720046c Certificate serial: 019B797EF9187E3053F35C6B1450255CAC56 Authority key identifier: D1:6B:DF:54:38:1F:63:07:4A:DF:9A:1B:D9:77:78:77:A7:20:04:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0WvfVDgfYwdK35ob2Xd4d6cgBGw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/b-ePuu9SrmhEXBMPt86xMQ-pphc.roa Signing time: Thu 01 Jan 2026 12:18:43 +0000 ROA not before: Thu 01 Jan 2026 12:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213854 IP address blocks: 212.104.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/0WvfVDgfYwdK35ob2Xd4d6cgBGw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/0WvfVDgfYwdK35ob2Xd4d6cgBGw.mft rsync://rpki.ripe.net/repository/DEFAULT/0WvfVDgfYwdK35ob2Xd4d6cgBGw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:f9:18:7e:30:53:f3:5c:6b:14:50:25:5c:ac:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d16bdf54381f63074adf9a1bd9777877a720046c Validity Not Before: Jan 1 12:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6fe78fbaef52ae68445c130fb7ceb1310fa9a617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:98:f2:ea:97:7f:9a:cd:48:5c:a0:5e:92:5c: 70:e1:0e:04:d3:f9:16:1d:e7:c5:29:c8:a9:da:76: 84:b0:43:57:21:f2:7a:16:6e:6a:89:91:de:17:2d: ed:eb:cb:3f:e1:8b:52:e4:55:b9:81:6c:87:2c:dd: a2:ba:63:cd:fc:12:f2:f6:84:46:4d:89:e5:08:7f: 30:c9:e7:ab:9a:4e:66:5c:50:6a:f4:da:e7:41:af: 15:9f:e0:62:f6:5b:90:6d:2d:7e:0b:58:6d:96:e0: c1:73:26:b4:0b:6e:f1:8d:fb:e1:2a:85:3e:71:ba: 99:c0:eb:2b:f3:38:4e:d4:fe:5a:bd:df:67:34:d6: 36:b7:93:6f:6b:a5:7c:05:04:bf:59:4b:4e:bb:2e: 53:e9:a7:c0:29:15:10:62:7b:b2:38:ac:9e:1b:1a: 0e:6f:4c:3e:ec:72:74:da:39:ba:4a:df:fa:cc:28: 3d:ea:f0:ca:c2:4b:09:d4:bc:47:51:51:cc:a4:87: fd:51:d9:95:ae:2d:c1:e1:7d:28:40:86:37:f6:c2: 23:e5:7f:20:03:25:c5:2d:dc:52:09:6f:f7:73:b1: 30:c1:b8:db:c4:36:ce:b5:b3:f6:b9:ca:7e:03:af: 8b:09:5d:be:c0:80:aa:2e:9c:b5:b8:2e:70:ce:dc: 09:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E7:8F:BA:EF:52:AE:68:44:5C:13:0F:B7:CE:B1:31:0F:A9:A6:17 X509v3 Authority Key Identifier: keyid:D1:6B:DF:54:38:1F:63:07:4A:DF:9A:1B:D9:77:78:77:A7:20:04:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WvfVDgfYwdK35ob2Xd4d6cgBGw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/b-ePuu9SrmhEXBMPt86xMQ-pphc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/0WvfVDgfYwdK35ob2Xd4d6cgBGw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.104.137.0/24 Signature Algorithm: sha256WithRSAEncryption a1:af:04:f8:e2:60:20:d8:6a:b6:d4:aa:fe:59:b7:17:f3:cb: 30:96:02:1e:a7:a4:22:9e:3d:e4:5c:c6:45:44:29:10:14:15: cd:cc:d4:f1:a9:48:2f:80:a0:fe:d3:42:ea:24:39:44:9e:87: b8:37:5c:57:38:3e:1f:14:c0:59:b4:7c:93:11:8c:c4:a8:63: 78:be:7a:4d:55:31:96:28:e6:89:21:2c:e1:fb:ee:27:bc:c8: e8:44:5f:45:0e:01:eb:1a:0a:b7:b4:ca:54:e8:67:4e:31:14: dc:ec:91:cf:1c:c4:e6:d8:12:a9:c1:7a:0e:dd:ba:6a:31:ca: 5e:2b:1a:19:e8:b8:53:fb:c0:95:2b:14:f9:22:9e:b1:c9:49: 34:0a:b8:8d:2d:11:45:58:88:ab:a6:aa:00:46:64:79:ff:3b: c0:19:bc:ca:a4:65:29:8f:e7:48:a3:ee:19:a6:1b:8c:52:8a: f7:43:e4:c9:f9:8f:45:0d:50:83:5f:6a:f5:37:ba:db:49:55: 43:ec:dd:0e:f2:fb:a1:6c:b3:71:66:55:00:7c:a9:17:a7:b6: 23:ae:b6:36:fb:20:13:07:6a:8d:0f:7e:1e:01:ed:9f:30:96: cc:88:98:7f:ac:8e:a5:cd:6e:72:5c:71:f7:6f:ad:b6:61:d0: bf:13:3a:ed -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fvkYfjBT81xrFFAlXKxWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxNmJkZjU0MzgxZjYzMDc0YWRmOWExYmQ5Nzc3ODc3YTcy MDA0NmMwHhcNMjYwMTAxMTIxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZmU3OGZiYWVmNTJhZTY4NDQ1YzEzMGZiN2NlYjEzMTBmYTlhNjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZjy6pd/ms1IXKBeklxw4Q4E0/kW HefFKcip2naEsENXIfJ6Fm5qiZHeFy3t68s/4YtS5FW5gWyHLN2iumPN/BLy9oRG TYnlCH8wyeermk5mXFBq9NrnQa8Vn+Bi9luQbS1+C1htluDBcya0C27xjfvhKoU+ cbqZwOsr8zhO1P5avd9nNNY2t5Nva6V8BQS/WUtOuy5T6afAKRUQYnuyOKyeGxoO b0w+7HJ02jm6St/6zCg96vDKwksJ1LxHUVHMpIf9UdmVri3B4X0oQIY39sIj5X8g AyXFLdxSCW/3c7EwwbjbxDbOtbP2ucp+A6+LCV2+wICqLpy1uC5wztwJ1wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG/nj7rvUq5oRFwTD7fOsTEPqaYXMB8GA1UdIwQY MBaAFNFr31Q4H2MHSt+aG9l3eHenIARsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFd2ZlZEZ2ZZd2RLMzVvYjJYZDRkNmNnQkd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8wZmU4ZWYtNTkxMS00NGM0LWFmYTMt NzlkZmQxNGMzOTYwLzEvYi1lUHV1OVNybWhFWEJNUHQ4NnhNUS1wcGhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8wZmU4ZWYtNTkxMS00NGM0LWFmYTMtNzlkZmQxNGMzOTYw LzEvMFd2ZlZEZ2ZZd2RLMzVvYjJYZDRkNmNnQkd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GiJMA0G CSqGSIb3DQEBCwUAA4IBAQChrwT44mAg2Gq21Kr+WbcX88swlgIep6Qinj3kXMZF RCkQFBXNzNTxqUgvgKD+00LqJDlEnoe4N1xXOD4fFMBZtHyTEYzEqGN4vnpNVTGW KOaJISzh++4nvMjoRF9FDgHrGgq3tMpU6GdOMRTc7JHPHMTm2BKpwXoO3bpqMcpe KxoZ6LhT+8CVKxT5Ip6xyUk0CriNLRFFWIirpqoARmR5/zvAGbzKpGUpj+dIo+4Z phuMUor3Q+TJ+Y9FDVCDX2r1N7rbSVVD7N0O8vuhbLNxZlUAfKkXp7YjrrY2+yAT B2qND34eAe2fMJbMiJh/rI6lzW5yXHH3b622YdC/Ezrt -----END CERTIFICATE-----Generated at Mon Jan 26 06:18:02 2026 by rpki-client