This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/brDP8rCtmy1_6zegBiE3p8TvEes.roa File: brDP8rCtmy1_6zegBiE3p8TvEes.roa (raw, json) Hash identifier: Z9tvowz9KVQdbieVlExnm4rsZGGsOyESicqYmRLZjd8= Subject key identifier: 6E:B0:CF:F2:B0:AD:9B:2D:7F:EB:37:A0:06:21:37:A7:C4:EF:11:EB Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea Certificate serial: 019B7F8198FE025A00EA78CEFC16CB298D6A Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/brDP8rCtmy1_6zegBiE3p8TvEes.roa Signing time: Fri 02 Jan 2026 16:19:18 +0000 ROA not before: Fri 02 Jan 2026 16:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8648 IP address blocks: 194.34.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:98:fe:02:5a:00:ea:78:ce:fc:16:cb:29:8d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea Validity Not Before: Jan 2 16:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6eb0cff2b0ad9b2d7feb37a0062137a7c4ef11eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5f:17:ca:d5:ed:10:02:7b:82:ff:30:04:c6: c0:8a:97:ab:70:dc:6a:b9:84:fd:35:90:84:f4:80: 1d:05:3c:96:d8:6b:3c:d3:d7:65:db:68:e8:f1:f9: 40:1a:aa:1d:be:c3:e5:03:33:ee:54:c8:33:2e:03: 35:a1:e3:3e:1b:bf:b1:46:a4:9a:cd:55:c1:b1:a6: df:70:1c:4f:1d:b0:20:17:6c:92:d0:e7:48:19:43: 00:76:1a:2c:ef:1c:cc:12:f1:95:d8:66:b3:4a:7a: dd:c9:97:90:54:98:6a:e2:b8:f8:ea:a1:43:4b:15: 2d:1d:9d:76:30:b4:3a:af:37:4e:2a:5c:c8:86:66: 83:2c:a9:85:3f:2f:0e:06:e6:46:72:9a:0e:4f:ce: 77:82:be:eb:4f:2d:86:26:8f:c8:2e:62:4f:53:f2: e7:a7:ba:a3:7e:7f:ae:1a:2f:ed:ca:bc:b5:8e:9b: 61:0f:85:16:7f:e9:cd:87:9d:b9:e2:14:d5:8f:e3: 51:42:10:95:dc:14:03:ff:f9:75:55:32:8b:3c:84: 33:aa:c6:95:17:c4:e1:c0:1b:71:68:bb:64:6e:94: c2:57:14:21:1f:6e:cb:76:97:70:e6:e1:3e:f2:f6: 67:fc:7d:8a:d3:04:06:ba:44:48:3b:94:a2:63:f8: f9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B0:CF:F2:B0:AD:9B:2D:7F:EB:37:A0:06:21:37:A7:C4:EF:11:EB X509v3 Authority Key Identifier: keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/brDP8rCtmy1_6zegBiE3p8TvEes.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.34.225.0/24 Signature Algorithm: sha256WithRSAEncryption aa:6f:f8:5b:35:65:fd:74:4c:0b:6f:33:af:c0:e3:b1:3a:a0: 03:c7:50:13:d7:67:b3:69:0d:bb:f5:05:e5:12:a7:40:5a:b1: fa:48:b3:66:f8:91:ec:76:d0:12:08:16:32:eb:ae:78:70:0f: f8:95:03:25:6c:22:6e:11:fc:e6:73:63:4f:6c:65:82:ed:28: 0f:6e:cf:a9:0a:29:3e:48:9e:ed:82:bb:0d:07:16:0a:4b:df: 2c:fd:a6:a0:9c:ce:ce:40:63:96:34:1e:cc:0d:0d:83:84:c3: 31:67:df:0c:88:34:d7:f5:88:c5:bd:a4:43:4c:cc:4b:a2:11: bd:15:a3:d8:8c:59:3a:f6:8c:4f:85:89:4d:7f:b8:cf:0b:57: 52:c2:24:f5:f7:7f:92:85:04:3f:eb:1e:0d:71:8a:f4:08:ba: 1f:35:10:f1:c4:c4:01:7d:05:8b:a9:fc:79:2d:91:90:2a:65: 4b:c7:5f:a6:dd:8a:46:b5:c7:56:dd:e0:77:2e:eb:d5:14:f7: 93:da:23:25:63:d3:f1:b3:98:4e:71:f3:b3:4c:f3:8a:8d:54: 97:05:3c:cd:8c:0c:26:84:d1:11:eb:4c:e8:4d:bb:1d:6e:5c: e8:31:5e:97:3c:ff:f0:de:a3:d8:8a:e7:38:e9:39:13:f1:22: 5b:02:ef:a8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gZj+AloA6njO/BbLKY1qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0M2UxYmE5MWM1NjlhOGIyMWE2ZDJkNjdmNWRiYmQ2YzA0 ZTQzZWEwHhcNMjYwMTAyMTYxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWIwY2ZmMmIwYWQ5YjJkN2ZlYjM3YTAwNjIxMzdhN2M0ZWYxMWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7F8XytXtEAJ7gv8wBMbAipercNxq uYT9NZCE9IAdBTyW2Gs809dl22jo8flAGqodvsPlAzPuVMgzLgM1oeM+G7+xRqSa zVXBsabfcBxPHbAgF2yS0OdIGUMAdhos7xzMEvGV2GazSnrdyZeQVJhq4rj46qFD SxUtHZ12MLQ6rzdOKlzIhmaDLKmFPy8OBuZGcpoOT853gr7rTy2GJo/ILmJPU/Ln p7qjfn+uGi/tyry1jpthD4UWf+nNh5254hTVj+NRQhCV3BQD//l1VTKLPIQzqsaV F8ThwBtxaLtkbpTCVxQhH27Ldpdw5uE+8vZn/H2K0wQGukRIO5SiY/j59wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG6wz/KwrZstf+s3oAYhN6fE7xHrMB8GA1UdIwQY MBaAFGQ+G6kcVpqLIabS1n9du9bATkPqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkQ0YnFSeFdtb3NocHRMV2YxMjcxc0JPUS1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9hY2E5MTItOWU4ZC00NzQ5LTk1ZTAt ZmVhMGFmZjM1OWY1LzEvYnJEUDhyQ3RteTFfNnplZ0JpRTNwOFR2RWVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9hY2E5MTItOWU4ZC00NzQ5LTk1ZTAtZmVhMGFmZjM1OWY1 LzEvWkQ0YnFSeFdtb3NocHRMV2YxMjcxc0JPUS1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiLhMA0G CSqGSIb3DQEBCwUAA4IBAQCqb/hbNWX9dEwLbzOvwOOxOqADx1AT12ezaQ279QXl EqdAWrH6SLNm+JHsdtASCBYy6654cA/4lQMlbCJuEfzmc2NPbGWC7SgPbs+pCik+ SJ7tgrsNBxYKS98s/aagnM7OQGOWNB7MDQ2DhMMxZ98MiDTX9YjFvaRDTMxLohG9 FaPYjFk69oxPhYlNf7jPC1dSwiT193+ShQQ/6x4NcYr0CLofNRDxxMQBfQWLqfx5 LZGQKmVLx1+m3YpGtcdW3eB3LuvVFPeT2iMlY9Pxs5hOcfOzTPOKjVSXBTzNjAwm hNER60zoTbsdblzoMV6XPP/w3qPYiuc46TkT8SJbAu+o -----END CERTIFICATE-----Generated at Sun Jan 25 23:49:37 2026 by rpki-client