This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/BHf8SWUieWyp8CsFi-LkKjkwID0.roa File: BHf8SWUieWyp8CsFi-LkKjkwID0.roa (raw, json) Hash identifier: r6mZHm7Sd1CEnMX4mNcO0XlOAIiIxrl1PQK5EqAyZj4= Subject key identifier: 04:77:FC:49:65:22:79:6C:A9:F0:2B:05:8B:E2:E4:2A:39:30:20:3D Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02 Certificate serial: 019B78A3335B172E492A51D2FB6A4722F59D Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/BHf8SWUieWyp8CsFi-LkKjkwID0.roa Signing time: Thu 01 Jan 2026 08:18:40 +0000 ROA not before: Thu 01 Jan 2026 08:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213338 IP address blocks: 185.167.183.0/24 maxlen: 24 2a0b:9c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:33:5b:17:2e:49:2a:51:d2:fb:6a:47:22:f5:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02 Validity Not Before: Jan 1 08:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0477fc496522796ca9f02b058be2e42a3930203d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:f7:e9:57:87:46:5f:34:50:71:bc:f9:ea: ec:6b:a6:5f:2f:09:48:f8:6a:b8:d5:5d:ab:3f:f5: dc:90:a4:b6:ad:23:51:cd:15:94:7b:20:c6:cb:2f: 4f:55:27:2e:27:e1:a0:4a:b7:58:66:11:b4:70:46: b6:c7:85:8c:47:85:c7:e3:48:a7:a3:72:dd:29:1d: ca:bf:5a:c2:94:43:e3:cf:fe:85:22:5d:9e:14:27: f1:cd:b9:36:99:ee:dc:27:fd:1d:f9:9e:7d:82:d6: fa:97:e2:04:0a:5b:9f:4f:83:94:0a:29:62:86:58: f4:c4:69:5c:dc:ba:48:82:e0:c2:7b:8d:4b:32:ff: 85:34:00:05:b3:a9:2a:4e:7a:39:ca:5e:0d:a7:96: 61:b3:24:28:91:3f:d6:44:4a:27:05:94:d4:76:c9: 89:ff:a9:b4:47:02:1c:25:41:63:37:8c:74:1a:74: 05:fb:aa:10:43:de:ae:87:d2:27:92:36:54:e2:16: 93:dc:20:80:f8:20:d2:26:a4:85:d0:55:c7:70:2a: ad:75:56:cb:16:4f:15:58:c2:a3:fa:73:31:18:f4: ed:72:39:dc:30:e0:53:7b:5c:77:0d:c2:71:a6:78: 26:4d:fa:c5:22:75:35:f8:c2:f3:e8:64:a5:03:31: 47:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:77:FC:49:65:22:79:6C:A9:F0:2B:05:8B:E2:E4:2A:39:30:20:3D X509v3 Authority Key Identifier: keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/BHf8SWUieWyp8CsFi-LkKjkwID0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.167.183.0/24 IPv6: 2a0b:9c0::/29 Signature Algorithm: sha256WithRSAEncryption 11:b2:b5:f2:0e:bf:d7:f4:e6:48:56:d3:ac:b2:d4:da:37:35: 99:f0:b4:dc:19:ed:f7:0f:c3:b3:bd:e9:3f:d5:f0:ea:1d:d7: b7:4c:b2:e2:29:ea:63:ee:01:ba:d3:1d:04:b1:f9:61:c4:33: ed:4d:22:ae:98:fd:12:61:67:8f:23:55:d3:50:e0:90:39:0d: ec:19:cc:b7:9e:fb:d3:61:e6:aa:da:e0:02:2c:e5:8e:ab:dc: 0f:c8:32:7b:94:b8:f7:11:80:51:a7:fc:15:7b:a6:af:65:f6: 6d:aa:54:f0:2d:ff:e4:e0:c2:d1:8b:0c:33:45:4e:ac:ac:b6: 86:ab:74:d2:e8:24:34:5c:eb:ec:78:86:b6:4b:60:9a:b8:96: 69:34:d1:3a:a7:cc:6b:4a:a4:56:db:bd:7d:2d:f8:f7:76:88: a0:26:dd:d3:52:0e:2c:ac:97:e9:b8:3d:f3:1f:8e:7e:04:4d: 45:94:a7:1f:bf:50:d2:bc:be:f0:07:6a:b4:51:5c:3b:6b:e1: e7:1e:07:de:e5:42:4f:97:15:bc:33:38:51:d0:4b:e4:7b:65: 48:18:c3:94:c5:18:31:28:48:33:e1:51:7c:e2:e7:3c:52:4c: 6d:52:76:da:0d:b2:56:f9:cd:28:b8:6a:6b:ae:d4:5f:f5:c7: 51:52:93:6d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4ozNbFy5JKlHS+2pHIvWdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2MDAwZWJlZWQyNDJiOTU2NGFkYzk1NDg1MzIzYjk2YmQ2 ZjVjMDIwHhcNMjYwMTAxMDgxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDc3ZmM0OTY1MjI3OTZjYTlmMDJiMDU4YmUyZTQyYTM5MzAyMDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8n36VeHRl80UHG8+ersa6ZfLwlI +Gq41V2rP/XckKS2rSNRzRWUeyDGyy9PVScuJ+GgSrdYZhG0cEa2x4WMR4XH40in o3LdKR3Kv1rClEPjz/6FIl2eFCfxzbk2me7cJ/0d+Z59gtb6l+IEClufT4OUCili hlj0xGlc3LpIguDCe41LMv+FNAAFs6kqTno5yl4Np5ZhsyQokT/WREonBZTUdsmJ /6m0RwIcJUFjN4x0GnQF+6oQQ96uh9InkjZU4haT3CCA+CDSJqSF0FXHcCqtdVbL Fk8VWMKj+nMxGPTtcjncMOBTe1x3DcJxpngmTfrFInU1+MLz6GSlAzFHRwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAR3/EllInlsqfArBYvi5Co5MCA9MB8GA1UdIwQY MBaAFDYADr7tJCuVZK3JVIUyO5a9b1wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmdBT3Z1MGtLNVZrcmNsVWhUSTdscjF2WEFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iNzdlMWEtNjYzYS00NDViLThlNjEt MzcwMTUwYjY2OWU0LzEvQkhmOFNXVWllV3lwOENzRmktTGtLamt3SUQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iNzdlMWEtNjYzYS00NDViLThlNjEtMzcwMTUwYjY2OWU0 LzEvTmdBT3Z1MGtLNVZrcmNsVWhUSTdscjF2WEFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuae3MA0E AgACMAcDBQMqCwnAMA0GCSqGSIb3DQEBCwUAA4IBAQARsrXyDr/X9OZIVtOsstTa NzWZ8LTcGe33D8Ozvek/1fDqHde3TLLiKepj7gG60x0EsflhxDPtTSKumP0SYWeP I1XTUOCQOQ3sGcy3nvvTYeaq2uACLOWOq9wPyDJ7lLj3EYBRp/wVe6avZfZtqlTw Lf/k4MLRiwwzRU6srLaGq3TS6CQ0XOvseIa2S2CauJZpNNE6p8xrSqRW2719Lfj3 doigJt3TUg4srJfpuD3zH45+BE1FlKcfv1DSvL7wB2q0UVw7a+HnHgfe5UJPlxW8 MzhR0Evke2VIGMOUxRgxKEgz4VF84uc8UkxtUnbaDbJW+c0ouGprrtRf9cdRUpNt -----END CERTIFICATE-----Generated at Sun Jan 25 11:41:58 2026 by rpki-client