This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Bb9QyEQzV03EaTR7wLylrCdBBvA.roa File: Bb9QyEQzV03EaTR7wLylrCdBBvA.roa (raw, json) Hash identifier: ajzUK2Os2Vg3pTgwsENMtTaJGe2FDCIo+i+dlQF9074= Subject key identifier: 05:BF:50:C8:44:33:57:4D:C4:69:34:7B:C0:BC:A5:AC:27:41:06:F0 Certificate issuer: /CN=2eeec5231d212b310579d78fc41479ca6ec2aa07 Certificate serial: 019B7A5AB4FE26C93CAC3974ED7871D35C8F Authority key identifier: 2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Bb9QyEQzV03EaTR7wLylrCdBBvA.roa Signing time: Thu 01 Jan 2026 16:18:43 +0000 ROA not before: Thu 01 Jan 2026 16:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58002 IP address blocks: 37.208.64.0/20 maxlen: 20 77.247.232.0/21 maxlen: 21 92.241.0.0/19 maxlen: 24 92.241.0.0/21 maxlen: 21 92.241.8.0/22 maxlen: 22 92.241.12.0/23 maxlen: 23 92.241.14.0/24 maxlen: 24 2a00:c9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.mft rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:b4:fe:26:c9:3c:ac:39:74:ed:78:71:d3:5c:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2eeec5231d212b310579d78fc41479ca6ec2aa07 Validity Not Before: Jan 1 16:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05bf50c84433574dc469347bc0bca5ac274106f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:cf:02:0b:fb:5b:cd:98:8d:2e:b0:c6:f0:f9: 26:bd:56:c9:b7:67:79:39:c9:c6:96:8c:19:38:64: a1:6d:54:47:10:4a:74:ce:42:e1:ee:ba:b0:bf:14: 4d:5a:ed:e2:bf:7b:16:b4:c8:c1:57:f2:27:e3:1a: 74:ac:76:c5:bb:8b:44:98:59:46:31:7e:fc:a5:1a: a5:5f:23:8f:cd:e8:38:2d:6d:d8:28:af:16:65:f5: 9f:c1:df:c6:e5:9f:ba:ce:95:8f:36:c3:52:da:fa: fa:43:ef:c4:e6:c3:dc:f7:c5:bd:fa:0c:f2:99:da: 77:16:ec:c2:44:a7:6f:dd:4c:9c:a4:ba:89:ee:e7: 64:0e:33:0c:77:4c:b2:8d:e2:21:a9:29:f9:56:24: 6a:38:97:30:07:19:43:78:12:c3:dd:2e:3d:c0:1d: 56:8a:cb:ce:aa:a7:92:f2:04:f6:0a:54:42:27:6f: fc:f6:81:75:56:70:cb:d9:2f:92:4b:70:d6:c8:46: 51:9e:f4:64:08:e3:7c:01:b3:e1:17:8e:1a:54:bf: 1d:e4:19:f4:20:0c:5b:37:16:ed:54:ed:a0:b0:9f: 6e:d0:58:19:4f:ea:51:be:ec:d4:11:7b:96:49:e7: 4b:56:c4:02:1f:3d:22:99:88:50:cc:b8:1a:3c:e5: b1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BF:50:C8:44:33:57:4D:C4:69:34:7B:C0:BC:A5:AC:27:41:06:F0 X509v3 Authority Key Identifier: keyid:2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Bb9QyEQzV03EaTR7wLylrCdBBvA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.208.64.0/20 77.247.232.0/21 92.241.0.0/19 IPv6: 2a00:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 94:4b:33:8e:0e:92:7b:20:7b:ee:03:3c:de:44:e2:d4:4f:ae: 13:93:2a:61:74:18:94:aa:aa:a2:b6:7d:08:5c:8e:74:b4:53: f3:48:e4:94:06:e3:48:8b:a5:ca:ff:a1:9e:44:58:14:61:ab: b5:32:ca:83:54:95:98:02:84:ca:18:b5:39:fe:69:21:c2:8f: 80:1c:a6:e0:2e:e6:bf:1f:8a:4c:6b:a6:5a:2f:7e:73:72:76: d6:20:73:59:b2:f6:77:1e:db:7b:5b:b4:e6:c8:04:dc:05:e2: 8a:3d:cf:d7:dd:c1:86:ec:d6:ea:9a:5d:86:ce:dd:dd:9b:11: d8:41:ed:49:64:a0:42:b7:46:fa:14:fa:d7:0b:3b:2d:0e:a0: b6:06:1d:67:b2:aa:9c:9b:3d:19:e7:16:a8:14:21:85:c1:56: 76:09:60:35:a6:7c:9b:5d:76:c6:a2:65:44:7d:bf:71:95:22: e8:38:4b:06:e2:e8:10:9b:b0:5d:5c:32:79:23:d8:1b:ab:39: 14:a8:c9:a3:9c:a1:6d:a9:91:8d:78:03:3a:80:77:de:d6:ed: 78:e9:7c:32:1c:78:0c:f1:a4:28:9d:31:d9:1b:dc:47:71:90: e8:f3:22:00:80:c8:4e:71:df:c7:cc:63:28:05:21:5a:b8:b6: 11:1b:58:25 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt6WrT+Jsk8rDl07Xhx01yPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlZWVjNTIzMWQyMTJiMzEwNTc5ZDc4ZmM0MTQ3OWNhNmVj MmFhMDcwHhcNMjYwMTAxMTYxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWJmNTBjODQ0MzM1NzRkYzQ2OTM0N2JjMGJjYTVhYzI3NDEwNmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjs8CC/tbzZiNLrDG8PkmvVbJt2d5 OcnGlowZOGShbVRHEEp0zkLh7rqwvxRNWu3iv3sWtMjBV/In4xp0rHbFu4tEmFlG MX78pRqlXyOPzeg4LW3YKK8WZfWfwd/G5Z+6zpWPNsNS2vr6Q+/E5sPc98W9+gzy mdp3FuzCRKdv3UycpLqJ7udkDjMMd0yyjeIhqSn5ViRqOJcwBxlDeBLD3S49wB1W isvOqqeS8gT2ClRCJ2/89oF1VnDL2S+SS3DWyEZRnvRkCON8AbPhF44aVL8d5Bn0 IAxbNxbtVO2gsJ9u0FgZT+pRvuzUEXuWSedLVsQCHz0imYhQzLgaPOWxoQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFAW/UMhEM1dNxGk0e8C8pawnQQbwMB8GA1UdIwQY MBaAFC7uxSMdISsxBXnXj8QUecpuwqoHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHU3Rkl4MGhLekVGZWRlUHhCUjV5bTdDcWdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84Yjg1NmEtMzhhZS00Y2ZiLTgxZDIt MjcxYTk1NzZlYWU3LzEvQmI5UXlFUXpWMDNFYVRSN3dMeWxyQ2RCQnZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi84Yjg1NmEtMzhhZS00Y2ZiLTgxZDItMjcxYTk1NzZlYWU3 LzEvTHU3Rkl4MGhLekVGZWRlUHhCUjV5bTdDcWdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQEJdBAAwQD TffoAwQFXPEAMA0EAgACMAcDBQAqAMnAMA0GCSqGSIb3DQEBCwUAA4IBAQCUSzOO DpJ7IHvuAzzeROLUT64TkyphdBiUqqqitn0IXI50tFPzSOSUBuNIi6XK/6GeRFgU Yau1MsqDVJWYAoTKGLU5/mkhwo+AHKbgLua/H4pMa6ZaL35zcnbWIHNZsvZ3Htt7 W7TmyATcBeKKPc/X3cGG7Nbqml2Gzt3dmxHYQe1JZKBCt0b6FPrXCzstDqC2Bh1n sqqcmz0Z5xaoFCGFwVZ2CWA1pnybXXbGomVEfb9xlSLoOEsG4ugQm7BdXDJ5I9gb qzkUqMmjnKFtqZGNeAM6gHfe1u146XwyHHgM8aQonTHZG9xHcZDo8yIAgMhOcd/H zGMoBSFauLYRG1gl -----END CERTIFICATE-----Generated at Sun Jan 25 20:00:23 2026 by rpki-client