This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/5be8f7-1ad0-44bf-8b3e-791c5a85390d/1/b_1Qwkm_dwtq6WHZLgklv_RTWY8.roa File: b_1Qwkm_dwtq6WHZLgklv_RTWY8.roa (raw, json) Hash identifier: +hT3xYsa619lAWaMx5WmCqSJiQ9WY/MqRSeQbajC3rQ= Subject key identifier: 6F:FD:50:C2:49:BF:77:0B:6A:E9:61:D9:2E:09:25:BF:F4:53:59:8F Certificate issuer: /CN=a2ed0ba8b46ef251e5a058a64a21b307d3650ddc Certificate serial: 019B7BA3A420F01EA1846525580CD08D2896 Authority key identifier: A2:ED:0B:A8:B4:6E:F2:51:E5:A0:58:A6:4A:21:B3:07:D3:65:0D:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ou0LqLRu8lHloFimSiGzB9NlDdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/5be8f7-1ad0-44bf-8b3e-791c5a85390d/1/b_1Qwkm_dwtq6WHZLgklv_RTWY8.roa Signing time: Thu 01 Jan 2026 22:18:00 +0000 ROA not before: Thu 01 Jan 2026 22:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15751 IP address blocks: 109.125.0.0/18 maxlen: 18 185.51.72.0/23 maxlen: 23 212.129.64.0/24 maxlen: 24 212.129.66.0/23 maxlen: 23 212.129.68.0/22 maxlen: 22 212.129.72.0/21 maxlen: 21 212.129.80.0/20 maxlen: 20 2a01:b340::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/5be8f7-1ad0-44bf-8b3e-791c5a85390d/1/ou0LqLRu8lHloFimSiGzB9NlDdw.crl rsync://rpki.ripe.net/repository/DEFAULT/90/5be8f7-1ad0-44bf-8b3e-791c5a85390d/1/ou0LqLRu8lHloFimSiGzB9NlDdw.mft rsync://rpki.ripe.net/repository/DEFAULT/ou0LqLRu8lHloFimSiGzB9NlDdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:a4:20:f0:1e:a1:84:65:25:58:0c:d0:8d:28:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2ed0ba8b46ef251e5a058a64a21b307d3650ddc Validity Not Before: Jan 1 22:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ffd50c249bf770b6ae961d92e0925bff453598f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f9:f6:45:b4:85:66:0d:55:8b:06:fc:a6:95: 61:ee:c8:5a:3d:1c:40:18:e3:76:b8:f6:d1:2b:ed: f5:f7:5f:79:05:b5:b2:ee:57:61:f2:27:29:5e:81: 82:fd:90:dd:59:a0:07:fe:00:61:97:72:01:e4:5f: 13:55:99:dd:f8:aa:59:98:5d:7c:37:c9:9b:83:f3: 4d:67:79:35:31:83:ed:0e:e1:11:cf:49:52:86:f9: b9:bf:5f:af:da:bc:11:91:20:5b:70:fe:7e:f5:d1: 4a:f4:58:29:99:e6:b4:54:67:72:f8:77:6d:eb:4c: 09:4a:88:e3:dd:c8:13:22:11:7b:bb:ef:14:51:ef: 87:71:31:44:cf:bd:24:24:07:a0:88:0a:87:cf:bb: 35:1a:08:54:53:16:ed:cc:61:9f:22:20:6a:9b:bf: f1:55:5d:f3:58:21:85:12:98:9f:18:94:bb:d8:fa: 04:6d:12:4c:05:af:6a:e3:04:e2:72:8a:de:6c:32: 48:53:f6:db:4d:2f:32:61:f7:c0:51:5b:a9:fe:54: 25:88:2b:f6:d5:e4:92:c9:81:43:72:26:5a:0c:0d: ea:83:4f:43:2a:b5:2d:8d:b2:54:ad:d9:7c:60:51: 08:11:90:67:c2:59:16:e7:a5:4f:88:43:9a:5c:72: ba:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:FD:50:C2:49:BF:77:0B:6A:E9:61:D9:2E:09:25:BF:F4:53:59:8F X509v3 Authority Key Identifier: keyid:A2:ED:0B:A8:B4:6E:F2:51:E5:A0:58:A6:4A:21:B3:07:D3:65:0D:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ou0LqLRu8lHloFimSiGzB9NlDdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5be8f7-1ad0-44bf-8b3e-791c5a85390d/1/b_1Qwkm_dwtq6WHZLgklv_RTWY8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5be8f7-1ad0-44bf-8b3e-791c5a85390d/1/ou0LqLRu8lHloFimSiGzB9NlDdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.125.0.0/18 185.51.72.0/23 212.129.64.0/24 212.129.66.0-212.129.95.255 IPv6: 2a01:b340::/29 Signature Algorithm: sha256WithRSAEncryption 57:df:8a:9f:04:b1:a3:6e:32:d8:bd:dc:6a:75:cc:3d:e6:a2: 6d:cc:45:3d:8a:68:64:3e:33:32:f1:53:82:c9:75:c2:90:65: 1b:d7:5f:95:2c:82:8e:58:b0:54:45:fb:5d:8a:98:6b:2a:95: d9:2b:84:0e:aa:4a:23:23:b6:70:b0:75:af:35:d5:90:42:5d: 0b:1f:f0:14:b5:07:71:39:27:8b:94:e3:d1:79:ef:9d:3e:c8: 37:b3:fd:14:22:9d:58:97:42:c1:96:8d:bd:df:b6:30:5a:bd: cc:54:c2:a4:43:2b:20:7b:0f:bb:b8:a1:6f:81:b7:00:62:9a: ff:c7:50:dd:43:7e:43:a0:2a:5d:ed:17:60:67:9a:57:aa:5f: e9:61:fb:cc:ad:f7:bf:c4:e7:e9:3a:87:c5:98:c4:15:9b:30: 62:a1:b9:fe:47:f7:88:40:16:a3:bc:1f:10:02:ac:65:a6:c4: 31:20:88:5a:5b:f1:98:54:14:78:ea:a2:e7:48:75:94:da:bd: cb:b0:39:03:74:90:1a:06:f3:80:7a:d9:eb:74:88:41:9a:99: 61:43:88:98:f7:9e:12:4f:50:97:e6:de:00:82:2e:de:40:34: 8a:c9:b3:5f:74:3f:a7:82:3b:a7:44:e4:75:d9:a6:15:36:92: c6:2c:22:57 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt7o6Qg8B6hhGUlWAzQjSiWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyZWQwYmE4YjQ2ZWYyNTFlNWEwNThhNjRhMjFiMzA3ZDM2 NTBkZGMwHhcNMjYwMTAxMjIxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZmZkNTBjMjQ5YmY3NzBiNmFlOTYxZDkyZTA5MjViZmY0NTM1OThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPn2RbSFZg1Viwb8ppVh7shaPRxA GON2uPbRK+319195BbWy7ldh8icpXoGC/ZDdWaAH/gBhl3IB5F8TVZnd+KpZmF18 N8mbg/NNZ3k1MYPtDuERz0lShvm5v1+v2rwRkSBbcP5+9dFK9Fgpmea0VGdy+Hdt 60wJSojj3cgTIhF7u+8UUe+HcTFEz70kJAegiAqHz7s1GghUUxbtzGGfIiBqm7/x VV3zWCGFEpifGJS72PoEbRJMBa9q4wTicorebDJIU/bbTS8yYffAUVup/lQliCv2 1eSSyYFDciZaDA3qg09DKrUtjbJUrdl8YFEIEZBnwlkW56VPiEOaXHK6dwIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFG/9UMJJv3cLaulh2S4JJb/0U1mPMB8GA1UdIwQY MBaAFKLtC6i0bvJR5aBYpkohswfTZQ3cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3UwTHFMUnU4bEhsb0ZpbVNpR3pCOU5sRGR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC81YmU4ZjctMWFkMC00NGJmLThiM2Ut NzkxYzVhODUzOTBkLzEvYl8xUXdrbV9kd3RxNldIWkxna2x2X1JUV1k4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC81YmU4ZjctMWFkMC00NGJmLThiM2UtNzkxYzVhODUzOTBk LzEvb3UwTHFMUnU4bEhsb0ZpbVNpR3pCOU5sRGR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAmBAIAATAgAwQGbX0AAwQB uTNIAwQA1IFAMAwDBAHUgUIDBAXUgUAwDQQCAAIwBwMFAyoBs0AwDQYJKoZIhvcN AQELBQADggEBAFffip8EsaNuMti93Gp1zD3mom3MRT2KaGQ+MzLxU4LJdcKQZRvX X5Usgo5YsFRF+12KmGsqldkrhA6qSiMjtnCwda811ZBCXQsf8BS1B3E5J4uU49F5 750+yDez/RQinViXQsGWjb3ftjBavcxUwqRDKyB7D7u4oW+BtwBimv/HUN1DfkOg Kl3tF2BnmleqX+lh+8yt97/E5+k6h8WYxBWbMGKhuf5H94hAFqO8HxACrGWmxDEg iFpb8ZhUFHjqoudIdZTavcuwOQN0kBoG84B62et0iEGamWFDiJj3nhJPUJfm3gCC Lt5ANIrJs190P6eCO6dE5HXZphU2ksYsIlc= -----END CERTIFICATE-----Generated at Mon Jan 26 05:31:39 2026 by rpki-client