This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/8c9aa8-c10a-4e2d-9b64-227302d59572/1/z_uY0nt7eJVyCANwyDj8BAg2RVg.roa File: z_uY0nt7eJVyCANwyDj8BAg2RVg.roa (raw, json) Hash identifier: 1bTh66Er+RN00waAHAn1g3FpOreT0tO5hfBMyC9roWY= Subject key identifier: CF:FB:98:D2:7B:7B:78:95:72:08:03:70:C8:38:FC:04:08:36:45:58 Certificate issuer: /CN=0462e00564a9340ff4739d3951216c46a8efc64f Certificate serial: 019B7C125D0097A6A593C7EDBEE6FABDEEB5 Authority key identifier: 04:62:E0:05:64:A9:34:0F:F4:73:9D:39:51:21:6C:46:A8:EF:C6:4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGLgBWSpNA_0c505USFsRqjvxk8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/8c9aa8-c10a-4e2d-9b64-227302d59572/1/z_uY0nt7eJVyCANwyDj8BAg2RVg.roa Signing time: Fri 02 Jan 2026 00:18:56 +0000 ROA not before: Fri 02 Jan 2026 00:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60398 IP address blocks: 217.150.86.0/24 maxlen: 24 217.150.87.0/24 maxlen: 24 2a02:65c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/8c9aa8-c10a-4e2d-9b64-227302d59572/1/BGLgBWSpNA_0c505USFsRqjvxk8.crl rsync://rpki.ripe.net/repository/DEFAULT/78/8c9aa8-c10a-4e2d-9b64-227302d59572/1/BGLgBWSpNA_0c505USFsRqjvxk8.mft rsync://rpki.ripe.net/repository/DEFAULT/BGLgBWSpNA_0c505USFsRqjvxk8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:5d:00:97:a6:a5:93:c7:ed:be:e6:fa:bd:ee:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0462e00564a9340ff4739d3951216c46a8efc64f Validity Not Before: Jan 2 00:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cffb98d27b7b789572080370c838fc0408364558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e4:f7:f9:43:01:32:3d:92:a3:52:83:82:4b: d6:4a:7a:c4:b8:29:3a:cd:0f:f4:ec:5c:d3:3d:bd: 1a:3e:f5:dc:2b:f0:32:d7:e7:17:23:d4:e4:32:34: c9:a9:3f:35:8d:3a:56:89:53:01:2d:a2:11:3a:01: 9d:8e:a5:07:d5:7b:ed:f7:22:e4:98:24:c3:58:1b: 40:49:3c:a2:cb:d1:56:3f:e8:7f:f6:3c:51:a6:b5: 6e:91:7f:2a:2e:ae:76:b7:e2:3c:51:c8:03:72:cf: 33:40:16:a7:d6:10:fb:c4:bd:66:6d:81:e3:33:47: aa:c8:f1:f3:35:71:8f:ac:49:7b:bb:af:2c:9c:ff: 0f:10:75:61:6a:9e:1e:f9:93:50:86:a4:87:2e:40: 12:8c:7d:83:31:0c:2d:a4:4a:1c:be:4f:ed:2d:31: 4c:41:b7:41:ec:a7:03:53:05:fd:ce:06:f2:c7:db: d3:c9:08:6f:49:62:29:3b:0a:35:61:0b:0b:3d:14: f1:4d:ad:d0:12:5d:08:1e:57:db:f8:05:e5:6f:2b: b0:cb:63:2a:7b:c3:66:8e:98:f9:ea:bb:df:6a:25: 40:d0:49:84:3b:fc:5c:71:de:d9:fb:ba:ba:e9:4e: 31:07:c5:08:4b:14:17:9d:24:96:39:95:4f:2d:07: f0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FB:98:D2:7B:7B:78:95:72:08:03:70:C8:38:FC:04:08:36:45:58 X509v3 Authority Key Identifier: keyid:04:62:E0:05:64:A9:34:0F:F4:73:9D:39:51:21:6C:46:A8:EF:C6:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGLgBWSpNA_0c505USFsRqjvxk8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/8c9aa8-c10a-4e2d-9b64-227302d59572/1/z_uY0nt7eJVyCANwyDj8BAg2RVg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/8c9aa8-c10a-4e2d-9b64-227302d59572/1/BGLgBWSpNA_0c505USFsRqjvxk8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.150.86.0/23 IPv6: 2a02:65c0::/32 Signature Algorithm: sha256WithRSAEncryption 6f:e4:4b:78:7d:b2:2f:d6:d6:2e:ae:b4:a0:d8:24:2b:be:5d: 27:1c:3f:be:91:a4:bf:4d:25:a4:de:99:aa:63:c5:2c:e5:29: c3:a3:ba:95:56:4c:be:58:f1:68:24:6b:31:ac:93:47:ae:28: a6:5e:9a:87:3e:9e:00:7f:08:fb:f4:dd:e7:62:9b:3d:d5:b0: 68:c6:3d:b0:9e:92:91:dd:ca:30:f0:aa:fa:d4:a6:63:bc:6f: a1:4b:e1:6c:2b:6e:1b:17:b1:1d:d6:4c:fa:0d:c1:54:ee:dd: f5:7f:6b:90:e4:62:56:ff:c9:6b:51:9e:db:f6:8f:2d:51:7b: b7:5a:17:3c:48:5b:41:6d:07:38:ea:cf:a4:29:e9:ca:ec:b0: 48:b8:56:a8:2e:70:df:d3:d6:10:aa:69:fa:0c:75:8f:1a:68: b7:28:8c:dd:73:84:6f:cb:b8:64:6a:3e:0d:56:f2:2a:b7:dc: 69:54:bf:ab:9c:32:b9:31:c1:e6:e7:8d:11:9e:63:15:35:df: 8d:83:1b:14:8a:b2:10:23:9f:1b:1f:b9:c8:6b:c3:3e:09:7d: 12:5a:46:ad:a9:30:e7:2d:5f:fc:a6:32:da:c7:1b:04:6b:3d: dc:0d:24:db:fe:53:82:6e:00:60:f5:e6:34:ae:82:62:49:b3: e3:8d:a0:31 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8El0Al6alk8ftvub6ve61MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NjJlMDA1NjRhOTM0MGZmNDczOWQzOTUxMjE2YzQ2YThl ZmM2NGYwHhcNMjYwMTAyMDAxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZmZiOThkMjdiN2I3ODk1NzIwODAzNzBjODM4ZmMwNDA4MzY0NTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uT3+UMBMj2So1KDgkvWSnrEuCk6 zQ/07FzTPb0aPvXcK/Ay1+cXI9TkMjTJqT81jTpWiVMBLaIROgGdjqUH1Xvt9yLk mCTDWBtASTyiy9FWP+h/9jxRprVukX8qLq52t+I8UcgDcs8zQBan1hD7xL1mbYHj M0eqyPHzNXGPrEl7u68snP8PEHVhap4e+ZNQhqSHLkASjH2DMQwtpEocvk/tLTFM QbdB7KcDUwX9zgbyx9vTyQhvSWIpOwo1YQsLPRTxTa3QEl0IHlfb+AXlbyuwy2Mq e8Nmjpj56rvfaiVA0EmEO/xccd7Z+7q66U4xB8UISxQXnSSWOZVPLQfw9wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFM/7mNJ7e3iVcggDcMg4/AQINkVYMB8GA1UdIwQY MBaAFARi4AVkqTQP9HOdOVEhbEao78ZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkdMZ0JXU3BOQV8wYzUwNVVTRnNScWp2eGs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC84YzlhYTgtYzEwYS00ZTJkLTliNjQt MjI3MzAyZDU5NTcyLzEvel91WTBudDdlSlZ5Q0FOd3lEajhCQWcyUlZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC84YzlhYTgtYzEwYS00ZTJkLTliNjQtMjI3MzAyZDU5NTcy LzEvQkdMZ0JXU3BOQV8wYzUwNVVTRnNScWp2eGs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQB2ZZWMA0E AgACMAcDBQAqAmXAMA0GCSqGSIb3DQEBCwUAA4IBAQBv5Et4fbIv1tYurrSg2CQr vl0nHD++kaS/TSWk3pmqY8Us5SnDo7qVVky+WPFoJGsxrJNHriimXpqHPp4Afwj7 9N3nYps91bBoxj2wnpKR3cow8Kr61KZjvG+hS+FsK24bF7Ed1kz6DcFU7t31f2uQ 5GJW/8lrUZ7b9o8tUXu3Whc8SFtBbQc46s+kKenK7LBIuFaoLnDf09YQqmn6DHWP Gmi3KIzdc4Rvy7hkaj4NVvIqt9xpVL+rnDK5McHm540RnmMVNd+NgxsUirIQI58b H7nIa8M+CX0SWkatqTDnLV/8pjLaxxsEaz3cDSTb/lOCbgBg9eY0roJiSbPjjaAx -----END CERTIFICATE-----Generated at Mon Jan 26 11:06:06 2026 by rpki-client