This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/ck5nzW7UcSxKWzHP2H-a3ylVN5E.roa File: ck5nzW7UcSxKWzHP2H-a3ylVN5E.roa (raw, json) Hash identifier: OEda1WOM4ctfo76KkiHy1LOUWsgAZX7lWi/0FxF3rRA= Subject key identifier: 72:4E:67:CD:6E:D4:71:2C:4A:5B:31:CF:D8:7F:9A:DF:29:55:37:91 Certificate issuer: /CN=bfb493457b2f02e69b85f718dcc16a9a9ef0fcd1 Certificate serial: 019B76EB35731FEC3F8A919F8E38431C861E Authority key identifier: BF:B4:93:45:7B:2F:02:E6:9B:85:F7:18:DC:C1:6A:9A:9E:F0:FC:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7STRXsvAuabhfcY3MFqmp7w_NE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/ck5nzW7UcSxKWzHP2H-a3ylVN5E.roa Signing time: Thu 01 Jan 2026 00:18:04 +0000 ROA not before: Thu 01 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9145 IP address blocks: 80.69.112.0/20 maxlen: 20 2a03:1e01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/v7STRXsvAuabhfcY3MFqmp7w_NE.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/v7STRXsvAuabhfcY3MFqmp7w_NE.mft rsync://rpki.ripe.net/repository/DEFAULT/v7STRXsvAuabhfcY3MFqmp7w_NE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:35:73:1f:ec:3f:8a:91:9f:8e:38:43:1c:86:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfb493457b2f02e69b85f718dcc16a9a9ef0fcd1 Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=724e67cd6ed4712c4a5b31cfd87f9adf29553791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7f:d0:52:ec:c8:8f:23:4a:55:b2:33:c2:c3: 44:20:0f:b3:f6:fd:25:d9:92:45:cf:19:c2:9c:72: 2f:91:76:b5:0f:ae:1b:3c:93:05:03:25:e1:63:64: fa:33:3f:7a:48:c9:dd:ea:e2:1c:45:e8:bc:4f:87: 3f:d1:0d:58:4e:26:40:5e:01:18:e1:17:e4:d2:f4: ad:f3:38:e1:35:99:5b:c6:a2:54:b8:b8:f9:5e:2e: 5b:80:a5:4f:ac:13:4c:9f:f4:63:37:40:62:ab:22: 5f:8e:6e:da:95:f5:14:c3:54:3d:3c:c0:a2:c4:2f: b9:9f:14:86:9e:a3:79:1e:f2:b3:7a:4b:be:81:ff: 9b:b9:0e:3b:53:71:6e:5c:4e:dd:f1:52:7e:ec:fb: b2:9a:f9:54:a5:c8:75:cb:24:24:b0:ff:45:af:34: 41:78:84:45:6d:4b:d2:3c:75:ff:24:69:a0:db:90: 5b:7a:3a:df:d9:4a:dd:66:4e:de:f3:69:b4:06:53: a0:65:02:26:52:b4:6b:dd:94:e3:88:cb:c8:47:5f: 87:4d:07:1f:28:e6:12:85:01:d4:1d:66:05:3e:1b: 27:29:1d:62:c5:75:ac:62:ce:3d:4d:31:7d:19:f9: 2d:10:4e:2c:42:93:4b:a5:18:3d:6d:75:f1:4b:60: 90:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4E:67:CD:6E:D4:71:2C:4A:5B:31:CF:D8:7F:9A:DF:29:55:37:91 X509v3 Authority Key Identifier: keyid:BF:B4:93:45:7B:2F:02:E6:9B:85:F7:18:DC:C1:6A:9A:9E:F0:FC:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7STRXsvAuabhfcY3MFqmp7w_NE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/ck5nzW7UcSxKWzHP2H-a3ylVN5E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/v7STRXsvAuabhfcY3MFqmp7w_NE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.69.112.0/20 IPv6: 2a03:1e01::/32 Signature Algorithm: sha256WithRSAEncryption 7b:e0:9f:3c:1c:8e:6c:3c:06:ec:b0:7b:d5:b3:aa:fa:aa:70: 8d:39:df:49:da:57:91:51:e3:6e:18:bb:13:28:df:0c:8d:a9: ba:89:ac:00:18:ed:58:4a:8c:ec:36:fd:a6:d4:e5:1b:18:64: 2c:4e:b5:a1:8a:41:63:88:c7:10:07:68:15:ff:88:1f:54:9c: df:32:98:cc:1f:d2:16:9d:08:14:7c:87:e5:cb:5d:99:4f:31: 53:83:2a:6e:79:44:c2:8e:21:47:48:db:a6:a4:ed:41:17:a8: 11:e0:b2:f4:ff:c9:b3:a9:bb:6f:11:12:fd:9a:61:ee:85:d2: ce:32:aa:f8:43:2f:6e:86:74:65:f4:52:e4:fa:19:9c:11:c7: 11:b0:ff:69:1f:4b:01:96:45:8a:03:4f:8c:da:a4:3d:4b:54: 33:88:3b:82:24:14:9f:5b:ca:58:76:42:c4:ea:5f:d4:3e:40: 25:98:17:53:45:8a:87:45:91:5a:94:b8:d9:92:8d:b8:1e:12: 3c:7d:d5:d3:ed:5b:ad:af:4d:8b:ae:63:6c:2b:a9:3e:bc:42: bf:92:d9:cc:06:01:1d:0c:95:5f:85:01:45:b9:6d:eb:65:50: 49:4b:e1:7f:41:48:e4:a7:f1:ff:91:60:d4:90:c1:39:88:ae: 9e:2f:b3:c7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26zVzH+w/ipGfjjhDHIYeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYjQ5MzQ1N2IyZjAyZTY5Yjg1ZjcxOGRjYzE2YTlhOWVm MGZjZDEwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjRlNjdjZDZlZDQ3MTJjNGE1YjMxY2ZkODdmOWFkZjI5NTUzNzkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwn/QUuzIjyNKVbIzwsNEIA+z9v0l 2ZJFzxnCnHIvkXa1D64bPJMFAyXhY2T6Mz96SMnd6uIcRei8T4c/0Q1YTiZAXgEY 4Rfk0vSt8zjhNZlbxqJUuLj5Xi5bgKVPrBNMn/RjN0BiqyJfjm7alfUUw1Q9PMCi xC+5nxSGnqN5HvKzeku+gf+buQ47U3FuXE7d8VJ+7PuymvlUpch1yyQksP9FrzRB eIRFbUvSPHX/JGmg25Bbejrf2UrdZk7e82m0BlOgZQImUrRr3ZTjiMvIR1+HTQcf KOYShQHUHWYFPhsnKR1ixXWsYs49TTF9GfktEE4sQpNLpRg9bXXxS2CQDQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHJOZ81u1HEsSlsxz9h/mt8pVTeRMB8GA1UdIwQY MBaAFL+0k0V7LwLmm4X3GNzBapqe8PzRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjdTVFJYc3ZBdWFiaGZjWTNNRnFtcDd3X05FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9hNDE0MWQtODQ5OC00MmY0LWIyZjMt MWY2NDA5ODQ4MTUwLzEvY2s1bnpXN1VjU3hLV3pIUDJILWEzeWxWTjVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9hNDE0MWQtODQ5OC00MmY0LWIyZjMtMWY2NDA5ODQ4MTUw LzEvdjdTVFJYc3ZBdWFiaGZjWTNNRnFtcDd3X05FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEUEVwMA0E AgACMAcDBQAqAx4BMA0GCSqGSIb3DQEBCwUAA4IBAQB74J88HI5sPAbssHvVs6r6 qnCNOd9J2leRUeNuGLsTKN8Mjam6iawAGO1YSozsNv2m1OUbGGQsTrWhikFjiMcQ B2gV/4gfVJzfMpjMH9IWnQgUfIfly12ZTzFTgypueUTCjiFHSNumpO1BF6gR4LL0 /8mzqbtvERL9mmHuhdLOMqr4Qy9uhnRl9FLk+hmcEccRsP9pH0sBlkWKA0+M2qQ9 S1QziDuCJBSfW8pYdkLE6l/UPkAlmBdTRYqHRZFalLjZko24HhI8fdXT7Vutr02L rmNsK6k+vEK/ktnMBgEdDJVfhQFFuW3rZVBJS+F/QUjkp/H/kWDUkME5iK6eL7PH -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:36 2026 by rpki-client