This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/Besyfcp0ocXXZR4bgBvGDpNq_18.roa File: Besyfcp0ocXXZR4bgBvGDpNq_18.roa (raw, json) Hash identifier: urkG1FiIsn6s09W2B2I+KU16rioSe6pO4WMymlPytjA= Subject key identifier: 05:EB:32:7D:CA:74:A1:C5:D7:65:1E:1B:80:1B:C6:0E:93:6A:FF:5F Certificate issuer: /CN=8ab5b9a9368797a86baebc81f623b3f4e786f51a Certificate serial: 019B7A5B9BCB9BA8CE4DB9770B195BBB2711 Authority key identifier: 8A:B5:B9:A9:36:87:97:A8:6B:AE:BC:81:F6:23:B3:F4:E7:86:F5:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/irW5qTaHl6hrrryB9iOz9OeG9Ro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/Besyfcp0ocXXZR4bgBvGDpNq_18.roa Signing time: Thu 01 Jan 2026 16:19:42 +0000 ROA not before: Thu 01 Jan 2026 16:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9150 IP address blocks: 185.65.124.0/24 maxlen: 24 2a04:f840::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/irW5qTaHl6hrrryB9iOz9OeG9Ro.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/irW5qTaHl6hrrryB9iOz9OeG9Ro.mft rsync://rpki.ripe.net/repository/DEFAULT/irW5qTaHl6hrrryB9iOz9OeG9Ro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:9b:cb:9b:a8:ce:4d:b9:77:0b:19:5b:bb:27:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ab5b9a9368797a86baebc81f623b3f4e786f51a Validity Not Before: Jan 1 16:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05eb327dca74a1c5d7651e1b801bc60e936aff5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5d:f2:24:d2:5a:63:4d:8e:5e:5f:34:bd:ae: 13:84:e8:cf:78:c4:6e:c5:d7:b8:ac:7b:7b:2c:23: 0a:1d:53:7a:ba:ff:e4:6f:af:03:06:83:71:f3:bb: db:26:91:cd:b3:2e:4c:f3:56:4c:ba:10:a5:e0:00: e8:e3:09:b3:cc:0b:24:01:d2:ad:54:5c:40:b0:b7: aa:92:a8:12:ee:18:1d:56:76:53:2c:64:f4:28:60: d0:49:91:4c:2f:0c:50:4d:c2:08:82:cb:f4:14:c5: b7:e3:7b:35:aa:66:b9:a8:f5:25:ce:b8:24:d8:0a: 36:7c:a8:d6:d3:25:4a:f1:68:b8:37:61:1c:c7:81: e6:7e:ea:49:16:d4:7a:8f:ed:3e:02:97:39:9c:64: 56:5d:69:0a:9b:7e:3f:0e:1e:bd:d4:a4:9d:1c:0a: 2b:79:4a:07:2e:2f:f1:55:e1:1c:5b:9d:b9:4b:e6: df:75:02:4c:69:f5:33:1f:57:10:a9:fb:52:12:b6: e4:a2:45:2e:2b:56:3c:7b:5b:ad:53:09:e9:4a:5c: 7e:0e:37:b7:fb:37:ab:71:71:ce:85:24:43:ac:59: e9:35:61:14:de:2b:d5:c0:00:02:c4:0e:24:61:d7: c7:60:bd:99:38:f9:78:3a:63:ca:21:9c:38:4a:6f: 33:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:EB:32:7D:CA:74:A1:C5:D7:65:1E:1B:80:1B:C6:0E:93:6A:FF:5F X509v3 Authority Key Identifier: keyid:8A:B5:B9:A9:36:87:97:A8:6B:AE:BC:81:F6:23:B3:F4:E7:86:F5:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/irW5qTaHl6hrrryB9iOz9OeG9Ro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/Besyfcp0ocXXZR4bgBvGDpNq_18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/irW5qTaHl6hrrryB9iOz9OeG9Ro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.65.124.0/24 IPv6: 2a04:f840::/40 Signature Algorithm: sha256WithRSAEncryption 9d:dd:02:1b:e7:c4:db:a0:d2:77:ef:04:26:00:e4:b1:35:bc: 0e:4f:38:98:95:21:2f:ad:8f:f4:93:86:13:12:9a:89:98:e8: b4:6c:cf:cf:59:be:ed:db:77:1d:67:76:b4:b0:a9:3f:9d:df: 10:84:dc:93:e7:df:7f:d4:ac:38:b2:e8:0b:f5:a9:8f:9d:53: 95:50:65:fb:f2:48:c6:79:e7:49:c4:ab:9d:df:ca:2f:64:d6: 69:26:f5:97:96:9d:b0:88:f7:60:b2:cc:f3:ab:8a:b5:59:5f: e5:ea:78:f1:08:03:a0:01:89:d6:13:d0:90:c7:38:e3:c1:0d: 29:a6:cd:dc:fa:e6:1c:89:d0:f2:87:81:a7:91:d7:96:6e:c9: 80:bf:87:41:be:db:c1:eb:cb:74:e1:f6:cd:1a:53:96:b0:7f: bc:3c:b9:54:15:34:b9:7f:8e:cc:69:17:34:ef:cb:c9:a7:c4: 05:9c:11:11:4c:13:8b:92:8a:bf:e8:e8:fe:41:80:13:27:c0: 55:f8:c5:89:19:be:b6:34:5e:11:53:cd:7e:d6:ba:79:5c:e6: 45:1e:a4:bb:e0:1c:14:00:60:54:b7:6d:73:df:bf:b4:06:5c: f9:c5:de:34:00:bd:b9:2d:f5:13:8e:11:e4:7c:52:64:ed:8d: fa:52:46:ec -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt6W5vLm6jOTbl3CxlbuycRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYjViOWE5MzY4Nzk3YTg2YmFlYmM4MWY2MjNiM2Y0ZTc4 NmY1MWEwHhcNMjYwMTAxMTYxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWViMzI3ZGNhNzRhMWM1ZDc2NTFlMWI4MDFiYzYwZTkzNmFmZjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv13yJNJaY02OXl80va4ThOjPeMRu xde4rHt7LCMKHVN6uv/kb68DBoNx87vbJpHNsy5M81ZMuhCl4ADo4wmzzAskAdKt VFxAsLeqkqgS7hgdVnZTLGT0KGDQSZFMLwxQTcIIgsv0FMW343s1qma5qPUlzrgk 2Ao2fKjW0yVK8Wi4N2Ecx4HmfupJFtR6j+0+Apc5nGRWXWkKm34/Dh691KSdHAor eUoHLi/xVeEcW525S+bfdQJMafUzH1cQqftSErbkokUuK1Y8e1utUwnpSlx+Dje3 +zercXHOhSRDrFnpNWEU3ivVwAACxA4kYdfHYL2ZOPl4OmPKIZw4Sm8zOwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFAXrMn3KdKHF12UeG4Abxg6Tav9fMB8GA1UdIwQY MBaAFIq1uak2h5eoa668gfYjs/TnhvUaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXJXNXFUYUhsNmhycnJ5QjlpT3o5T2VHOVJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy82NGM0MzEtNTMzMC00MzdiLWIyMDct MjhmZWNjNjMzOThjLzEvQmVzeWZjcDBvY1hYWlI0YmdCdkdEcE5xXzE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy82NGM0MzEtNTMzMC00MzdiLWIyMDctMjhmZWNjNjMzOThj LzEvaXJXNXFUYUhsNmhycnJ5QjlpT3o5T2VHOVJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAuUF8MA4E AgACMAgDBgAqBPhAADANBgkqhkiG9w0BAQsFAAOCAQEAnd0CG+fE26DSd+8EJgDk sTW8Dk84mJUhL62P9JOGExKaiZjotGzPz1m+7dt3HWd2tLCpP53fEITck+fff9Ss OLLoC/Wpj51TlVBl+/JIxnnnScSrnd/KL2TWaSb1l5adsIj3YLLM86uKtVlf5ep4 8QgDoAGJ1hPQkMc448ENKabN3PrmHInQ8oeBp5HXlm7JgL+HQb7bwevLdOH2zRpT lrB/vDy5VBU0uX+OzGkXNO/LyafEBZwREUwTi5KKv+jo/kGAEyfAVfjFiRm+tjRe EVPNfta6eVzmRR6ku+AcFABgVLdtc9+/tAZc+cXeNAC9uS31E44R5HxSZO2N+lJG 7A== -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:21 2026 by rpki-client