This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/bsYgzcPZezJ2gYbc8PKOspEFG4c.roa File: bsYgzcPZezJ2gYbc8PKOspEFG4c.roa (raw, json) Hash identifier: MpgIeeEXTiyIocenUfFnFL+sMDiBogWiOdN5+ESRb/E= Subject key identifier: 6E:C6:20:CD:C3:D9:7B:32:76:81:86:DC:F0:F2:8E:B2:91:05:1B:87 Certificate issuer: /CN=d9efe9d36f5f88fdf04742c4140c7532090ab770 Certificate serial: 019B7F858E16B988DDF3F46C1890A7C7E590 Authority key identifier: D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/bsYgzcPZezJ2gYbc8PKOspEFG4c.roa Signing time: Fri 02 Jan 2026 16:23:37 +0000 ROA not before: Fri 02 Jan 2026 16:23:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49157 IP address blocks: 83.136.237.0/24 maxlen: 24 103.95.119.0/24 maxlen: 24 185.131.176.0/24 maxlen: 24 185.131.177.0/24 maxlen: 24 185.131.178.0/24 maxlen: 24 185.131.179.0/24 maxlen: 24 185.151.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.mft rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:8e:16:b9:88:dd:f3:f4:6c:18:90:a7:c7:e5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9efe9d36f5f88fdf04742c4140c7532090ab770 Validity Not Before: Jan 2 16:23:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ec620cdc3d97b32768186dcf0f28eb291051b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:21:b8:c7:8c:0f:6f:cc:dc:d4:86:49:a4:d1: 0d:41:e6:04:95:d6:61:a4:06:f0:11:19:d1:e4:66: 9d:08:81:37:d5:2b:49:f0:3d:94:94:f4:7f:fe:ca: 2e:f4:86:3e:30:5a:09:0d:cb:89:5a:6d:07:b3:7e: f3:f2:77:c1:61:29:7c:4b:ca:fc:76:d7:b2:d9:09: 66:ed:f5:fb:9c:93:3c:13:0c:f5:e1:d8:ed:97:f1: 38:5c:dd:c3:e7:1f:30:2e:e3:ab:70:b0:1d:f2:76: 72:26:e9:be:db:74:8c:a7:db:51:0f:63:90:a3:d7: 82:76:d0:39:86:41:8e:fb:05:31:25:4b:96:aa:ff: b1:18:ba:5c:79:7b:06:d6:cc:0f:5b:fc:5c:0f:f9: b9:0a:be:89:44:f4:6a:e7:0e:f9:ed:80:39:14:f3: 47:f4:3c:e5:ea:b3:36:ce:1f:20:16:18:55:d7:34: 83:59:ec:b1:97:18:b6:29:c5:63:52:15:5e:9b:6c: a6:9d:a3:87:bd:9d:02:f4:d2:25:c4:a5:0a:a5:bc: 01:3c:16:e1:84:ad:08:38:ec:a3:98:1d:45:80:69: e5:f6:e4:4d:b3:2a:95:09:0a:b6:11:6a:62:ac:8b: 67:d2:01:b6:60:50:7d:bf:db:3c:f2:b6:f5:7b:33: 26:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C6:20:CD:C3:D9:7B:32:76:81:86:DC:F0:F2:8E:B2:91:05:1B:87 X509v3 Authority Key Identifier: keyid:D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/bsYgzcPZezJ2gYbc8PKOspEFG4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.237.0/24 103.95.119.0/24 185.131.176.0/22 185.151.199.0/24 Signature Algorithm: sha256WithRSAEncryption 85:2f:8b:53:2a:69:8b:2e:dc:82:43:ab:e2:bf:32:50:98:68: 12:d7:d3:78:22:e2:5d:67:60:38:f0:a3:3c:99:80:2c:6f:64: a8:8b:cb:6c:ce:90:1f:0d:8d:d0:3e:5f:5b:a4:2e:0d:b7:d7: 25:21:85:4c:1f:ce:07:3d:6b:ed:99:5b:c6:ba:13:19:8a:3e: 72:11:ea:f7:c4:1f:83:db:dd:11:14:f9:fc:c6:db:88:c5:22: 00:fa:96:2c:97:43:33:fc:3a:90:ca:d4:39:5e:bf:a8:da:f8: 05:cc:3e:e1:68:16:ec:25:f6:b4:c9:97:60:bd:c5:05:89:ae: 69:a9:5a:a7:41:fe:73:95:e3:d7:00:8a:71:9b:7a:40:48:9a: 4d:73:58:98:09:89:fc:ec:7e:a5:fb:c0:f3:25:ae:ad:bf:a9: 32:e2:6a:c8:f4:d6:0a:62:c3:de:a2:3e:4a:d0:13:87:97:5e: e0:0e:39:f2:52:20:37:f3:3f:b1:18:d5:40:29:08:93:e0:44: a5:74:7f:69:2a:d6:09:9c:f6:a1:d1:d7:80:cb:6a:ee:65:d7: 62:bb:41:1b:99:0f:6e:54:8d:f9:31:40:f0:2a:78:92:94:30: a6:f1:8e:ac:ca:d9:0c:6a:dc:dd:37:a6:77:6b:60:48:27:45: f3:67:57:57 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt/hY4WuYjd8/RsGJCnx+WQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZWZlOWQzNmY1Zjg4ZmRmMDQ3NDJjNDE0MGM3NTMyMDkw YWI3NzAwHhcNMjYwMTAyMTYyMzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWM2MjBjZGMzZDk3YjMyNzY4MTg2ZGNmMGYyOGViMjkxMDUxYjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3SG4x4wPb8zc1IZJpNENQeYEldZh pAbwERnR5GadCIE31StJ8D2UlPR//sou9IY+MFoJDcuJWm0Hs37z8nfBYSl8S8r8 dtey2Qlm7fX7nJM8Ewz14djtl/E4XN3D5x8wLuOrcLAd8nZyJum+23SMp9tRD2OQ o9eCdtA5hkGO+wUxJUuWqv+xGLpceXsG1swPW/xcD/m5Cr6JRPRq5w757YA5FPNH 9Dzl6rM2zh8gFhhV1zSDWeyxlxi2KcVjUhVem2ymnaOHvZ0C9NIlxKUKpbwBPBbh hK0IOOyjmB1FgGnl9uRNsyqVCQq2EWpirItn0gG2YFB9v9s88rb1ezMmYwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFG7GIM3D2XsydoGG3PDyjrKRBRuHMB8GA1UdIwQY MBaAFNnv6dNvX4j98EdCxBQMdTIJCrdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmVfcDAyOWZpUDN3UjBMRUZBeDFNZ2tLdDNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC81NWRiMzQtZmM3OS00MDA0LTk1Yzkt MzlmNmQ2NDI1MzM4LzEvYnNZZ3pjUFplekoyZ1liYzhQS09zcEVGRzRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC81NWRiMzQtZmM3OS00MDA0LTk1YzktMzlmNmQ2NDI1MzM4 LzEvMmVfcDAyOWZpUDN3UjBMRUZBeDFNZ2tLdDNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAU4jtAwQA Z193AwQCuYOwAwQAuZfHMA0GCSqGSIb3DQEBCwUAA4IBAQCFL4tTKmmLLtyCQ6vi vzJQmGgS19N4IuJdZ2A48KM8mYAsb2Soi8tszpAfDY3QPl9bpC4Nt9clIYVMH84H PWvtmVvGuhMZij5yEer3xB+D290RFPn8xtuIxSIA+pYsl0Mz/DqQytQ5Xr+o2vgF zD7haBbsJfa0yZdgvcUFia5pqVqnQf5zlePXAIpxm3pASJpNc1iYCYn87H6l+8Dz Ja6tv6ky4mrI9NYKYsPeoj5K0BOHl17gDjnyUiA38z+xGNVAKQiT4ESldH9pKtYJ nPah0deAy2ruZddiu0EbmQ9uVI35MUDwKniSlDCm8Y6sytkMatzdN6Z3a2BIJ0Xz Z1dX -----END CERTIFICATE-----Generated at Mon Jan 26 00:15:04 2026 by rpki-client