This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/bXq5SBFXa74fH9hWZJ4SPjJEUDY.roa File: bXq5SBFXa74fH9hWZJ4SPjJEUDY.roa (raw, json) Hash identifier: wECDbeffP8fSkj2EE1uRvP/uOND4sX/q6tlGIHgdMtk= Subject key identifier: 6D:7A:B9:48:11:57:6B:BE:1F:1F:D8:56:64:9E:12:3E:32:44:50:36 Certificate issuer: /CN=6e94cdea9365612adf7611144668254b388fa612 Certificate serial: 019B7A5AA5211580D26A76A32981486539B2 Authority key identifier: 6E:94:CD:EA:93:65:61:2A:DF:76:11:14:46:68:25:4B:38:8F:A6:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bpTN6pNlYSrfdhEURmglSziPphI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/bXq5SBFXa74fH9hWZJ4SPjJEUDY.roa Signing time: Thu 01 Jan 2026 16:18:39 +0000 ROA not before: Thu 01 Jan 2026 16:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29075 IP address blocks: 91.217.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/bpTN6pNlYSrfdhEURmglSziPphI.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/bpTN6pNlYSrfdhEURmglSziPphI.mft rsync://rpki.ripe.net/repository/DEFAULT/bpTN6pNlYSrfdhEURmglSziPphI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:a5:21:15:80:d2:6a:76:a3:29:81:48:65:39:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e94cdea9365612adf7611144668254b388fa612 Validity Not Before: Jan 1 16:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d7ab94811576bbe1f1fd856649e123e32445036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:06:e8:23:c6:1a:4c:17:36:ca:3d:a5:39:91: c1:80:0f:24:df:c8:e6:45:61:0b:4d:8a:a3:28:6b: 86:0b:e6:9b:01:1b:36:94:de:20:9c:0f:ee:e5:5a: 66:0d:1a:ba:79:0e:f6:46:17:27:03:2d:8e:2a:4e: ba:55:8c:ea:e6:9a:0a:f3:da:aa:73:02:f1:77:a2: 97:0c:b2:47:e9:58:1c:fd:9c:44:73:64:d4:33:9b: f6:c0:61:2a:4c:c9:33:d9:a3:0c:7a:61:b9:5a:3f: 76:14:25:8c:64:8e:57:77:a1:98:eb:97:c8:bc:99: db:80:d2:11:62:49:14:f1:b5:04:86:a8:8a:05:bf: 7d:11:23:84:1f:a9:52:ec:cc:cf:b4:27:b5:6f:f1: d1:70:80:b7:07:8f:7c:ae:cf:89:b8:9e:f1:09:03: 1a:07:8c:80:ff:d2:b5:5a:9f:e5:f5:a4:69:b0:6c: 79:21:64:e3:a2:59:ae:29:9d:c4:00:f9:97:34:3f: 9b:59:84:20:b4:9d:99:67:ae:91:13:f6:93:f3:23: a4:55:75:b4:06:06:44:5e:d8:ac:60:87:bc:30:35: 0d:db:6e:5d:ab:dc:02:f5:7a:79:1a:01:43:40:2a: 9f:5f:15:ab:38:de:a5:e4:56:01:c8:16:d6:d3:6a: 74:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:7A:B9:48:11:57:6B:BE:1F:1F:D8:56:64:9E:12:3E:32:44:50:36 X509v3 Authority Key Identifier: keyid:6E:94:CD:EA:93:65:61:2A:DF:76:11:14:46:68:25:4B:38:8F:A6:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bpTN6pNlYSrfdhEURmglSziPphI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/bXq5SBFXa74fH9hWZJ4SPjJEUDY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/bpTN6pNlYSrfdhEURmglSziPphI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.217.234.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:7d:37:56:fa:ae:76:17:2d:24:f0:4a:04:28:fc:47:2f:12: af:88:da:79:7f:27:c5:4c:8b:42:65:65:97:d9:95:bf:e2:4c: e0:42:fb:a5:7e:79:32:71:5d:81:ad:9b:de:28:71:d8:20:37: 64:3e:1c:29:63:4b:97:d1:3e:41:a8:d0:b2:58:6f:33:88:ae: b9:c3:1b:2b:4a:6d:4d:2c:f3:57:eb:21:2d:5d:04:f0:04:78: 73:da:d7:2b:72:76:34:c4:6e:67:a1:d2:db:0d:24:6e:06:59: 3e:76:04:72:5c:77:5c:0d:74:42:8e:96:81:b3:41:3e:59:ce: 46:f3:7d:5b:63:8c:c4:a0:ae:3b:10:f2:e9:66:83:c6:1c:ed: cd:3b:8f:94:20:a7:56:5d:3a:42:22:b9:2d:58:62:6e:00:63: 9f:24:1a:ce:36:49:fd:6c:6b:a6:0e:15:a3:cc:d7:3f:84:d0: 59:4a:05:70:99:7a:42:28:45:e3:44:13:29:53:d2:8c:fd:23: 5e:17:7f:0f:51:1e:03:8f:7a:1a:b2:b0:1e:ac:26:22:c6:bf: fa:19:30:82:3f:4a:ae:22:de:ad:5c:6e:bd:5a:07:05:a4:cd: 95:f9:40:49:ae:07:c8:a3:0b:ac:21:f8:6b:2d:37:2a:c8:70: b8:bb:19:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WqUhFYDSanajKYFIZTmyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlOTRjZGVhOTM2NTYxMmFkZjc2MTExNDQ2NjgyNTRiMzg4 ZmE2MTIwHhcNMjYwMTAxMTYxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDdhYjk0ODExNTc2YmJlMWYxZmQ4NTY2NDllMTIzZTMyNDQ1MDM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAboI8YaTBc2yj2lOZHBgA8k38jm RWELTYqjKGuGC+abARs2lN4gnA/u5VpmDRq6eQ72RhcnAy2OKk66VYzq5poK89qq cwLxd6KXDLJH6Vgc/ZxEc2TUM5v2wGEqTMkz2aMMemG5Wj92FCWMZI5Xd6GY65fI vJnbgNIRYkkU8bUEhqiKBb99ESOEH6lS7MzPtCe1b/HRcIC3B498rs+JuJ7xCQMa B4yA/9K1Wp/l9aRpsGx5IWTjolmuKZ3EAPmXND+bWYQgtJ2ZZ66RE/aT8yOkVXW0 BgZEXtisYIe8MDUN225dq9wC9Xp5GgFDQCqfXxWrON6l5FYByBbW02p0MwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG16uUgRV2u+Hx/YVmSeEj4yRFA2MB8GA1UdIwQY MBaAFG6UzeqTZWEq33YRFEZoJUs4j6YSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnBUTjZwTmxZU3JmZGhFVVJtZ2xTemlQcGhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8zMzZkZGQtMzgzMy00YmIwLTg2Njgt OWFmN2QyYjU5YTRjLzEvYlhxNVNCRlhhNzRmSDloV1pKNFNQakpFVURZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8zMzZkZGQtMzgzMy00YmIwLTg2NjgtOWFmN2QyYjU5YTRj LzEvYnBUTjZwTmxZU3JmZGhFVVJtZ2xTemlQcGhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9nqMA0G CSqGSIb3DQEBCwUAA4IBAQA8fTdW+q52Fy0k8EoEKPxHLxKviNp5fyfFTItCZWWX 2ZW/4kzgQvulfnkycV2BrZveKHHYIDdkPhwpY0uX0T5BqNCyWG8ziK65wxsrSm1N LPNX6yEtXQTwBHhz2tcrcnY0xG5nodLbDSRuBlk+dgRyXHdcDXRCjpaBs0E+Wc5G 831bY4zEoK47EPLpZoPGHO3NO4+UIKdWXTpCIrktWGJuAGOfJBrONkn9bGumDhWj zNc/hNBZSgVwmXpCKEXjRBMpU9KM/SNeF38PUR4Dj3oasrAerCYixr/6GTCCP0qu It6tXG69WgcFpM2V+UBJrgfIowusIfhrLTcqyHC4uxk/ -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:20 2026 by rpki-client