This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/KB8F56npxsv2SiBMv4PjE2Sfeg0.roa File: KB8F56npxsv2SiBMv4PjE2Sfeg0.roa (raw, json) Hash identifier: i1MaNL7YKj5RBSF1ihDVOZicIUuCwbZMxtDhOGtPRCY= Subject key identifier: 28:1F:05:E7:A9:E9:C6:CB:F6:4A:20:4C:BF:83:E3:13:64:9F:7A:0D Certificate issuer: /CN=4516e53b32caa761906f0fcdea275b720e1742c8 Certificate serial: 019B7758864600089A65B319B8CA8FC5FE6D Authority key identifier: 45:16:E5:3B:32:CA:A7:61:90:6F:0F:CD:EA:27:5B:72:0E:17:42:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRblOzLKp2GQbw_N6idbcg4XQsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/KB8F56npxsv2SiBMv4PjE2Sfeg0.roa Signing time: Thu 01 Jan 2026 02:17:28 +0000 ROA not before: Thu 01 Jan 2026 02:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1103 IP address blocks: 193.177.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/RRblOzLKp2GQbw_N6idbcg4XQsg.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/RRblOzLKp2GQbw_N6idbcg4XQsg.mft rsync://rpki.ripe.net/repository/DEFAULT/RRblOzLKp2GQbw_N6idbcg4XQsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:86:46:00:08:9a:65:b3:19:b8:ca:8f:c5:fe:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4516e53b32caa761906f0fcdea275b720e1742c8 Validity Not Before: Jan 1 02:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=281f05e7a9e9c6cbf64a204cbf83e313649f7a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:77:a5:b7:69:8c:9c:10:0b:cc:64:0b:39:89: 15:35:50:27:f4:e3:f4:50:51:ba:0a:51:6b:ff:f9: 55:fb:22:fb:6b:cf:e3:94:65:ee:35:5d:e9:3a:7f: bf:69:76:da:f7:47:30:e9:e7:a4:bc:07:ad:15:d7: ce:57:89:d3:df:e4:02:e8:49:c2:0d:74:24:c1:e9: 37:03:f1:4d:3c:4d:18:23:0c:f9:8d:91:ac:f4:c6: 5c:ef:6a:46:98:f8:2c:55:86:f1:17:5a:b5:e0:84: 74:9b:19:16:fc:6c:fc:ab:ff:51:55:fa:02:05:22: ec:d1:cf:c1:fa:e5:0d:07:6a:58:ff:23:ad:36:8e: c8:ef:59:13:28:d5:16:50:73:c1:03:18:b8:28:76: 65:94:da:94:6b:ef:93:31:e1:2c:ae:39:a9:7b:80: 20:7d:05:dc:fd:b9:ca:b8:2b:4e:15:ca:08:1c:59: 18:ae:fc:58:84:d5:b3:19:dd:3a:de:fa:87:7f:e0: b4:10:ff:94:9a:23:29:d1:2b:6b:03:d3:fb:30:1e: 21:51:c1:63:da:12:bb:30:45:e5:f3:ee:70:c1:6e: 82:39:79:94:69:e4:45:9c:55:62:e5:d7:33:cf:df: ef:b4:92:56:ac:e3:59:82:cc:f7:e4:8d:7b:b6:49: 2d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1F:05:E7:A9:E9:C6:CB:F6:4A:20:4C:BF:83:E3:13:64:9F:7A:0D X509v3 Authority Key Identifier: keyid:45:16:E5:3B:32:CA:A7:61:90:6F:0F:CD:EA:27:5B:72:0E:17:42:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRblOzLKp2GQbw_N6idbcg4XQsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/KB8F56npxsv2SiBMv4PjE2Sfeg0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/RRblOzLKp2GQbw_N6idbcg4XQsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.177.176.0/22 Signature Algorithm: sha256WithRSAEncryption 19:c1:8d:31:49:70:cb:36:8d:70:b1:db:36:3e:98:f1:ba:ec: af:7a:0e:c2:d9:67:c1:6d:20:0d:d6:c7:78:ad:c4:9c:11:5d: 10:91:13:70:92:1f:5a:57:fc:be:8f:58:46:4f:8b:a9:92:fd: 5e:f3:73:41:5e:f6:88:28:ef:59:3c:c1:0f:46:cd:6a:c8:95: 85:8b:2b:86:52:7f:74:27:a2:4b:be:68:02:e2:10:82:9b:b6: cb:f8:03:b0:bd:ba:77:25:a7:70:d4:c7:80:0b:e7:50:81:28: 3c:2c:2a:17:e3:6d:0b:22:81:fc:3a:1a:8a:ed:b3:af:58:0f: 36:0b:58:11:e8:7d:76:f3:41:99:0b:1c:17:c5:e1:ce:21:35: 69:11:46:50:69:a9:bd:db:44:fb:8d:5c:3b:f6:8d:de:f3:c0: fd:17:e4:61:ca:5b:f8:e7:8c:67:55:04:ba:65:89:2f:49:4a: 8c:5d:1d:f6:43:d2:80:bc:eb:80:0e:29:a0:ea:18:c0:8e:19: 7f:05:52:c1:61:70:f1:f1:22:16:c0:ea:d7:01:86:eb:53:36: a6:ac:c8:b8:05:61:44:2c:fd:38:ae:f2:99:f1:54:c0:25:39: c2:08:df:c4:53:6d:a0:20:c3:a9:68:82:9d:13:54:a0:ea:bf: ff:f7:ca:6e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WIZGAAiaZbMZuMqPxf5tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1MTZlNTNiMzJjYWE3NjE5MDZmMGZjZGVhMjc1YjcyMGUx NzQyYzgwHhcNMjYwMTAxMDIxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODFmMDVlN2E5ZTljNmNiZjY0YTIwNGNiZjgzZTMxMzY0OWY3YTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHelt2mMnBALzGQLOYkVNVAn9OP0 UFG6ClFr//lV+yL7a8/jlGXuNV3pOn+/aXba90cw6eekvAetFdfOV4nT3+QC6EnC DXQkwek3A/FNPE0YIwz5jZGs9MZc72pGmPgsVYbxF1q14IR0mxkW/Gz8q/9RVfoC BSLs0c/B+uUNB2pY/yOtNo7I71kTKNUWUHPBAxi4KHZllNqUa++TMeEsrjmpe4Ag fQXc/bnKuCtOFcoIHFkYrvxYhNWzGd063vqHf+C0EP+UmiMp0StrA9P7MB4hUcFj 2hK7MEXl8+5wwW6COXmUaeRFnFVi5dczz9/vtJJWrONZgsz35I17tkktrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCgfBeep6cbL9kogTL+D4xNkn3oNMB8GA1UdIwQY MBaAFEUW5TsyyqdhkG8PzeonW3IOF0LIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlJibE96TEtwMkdRYndfTjZpZGJjZzRYUXNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9iZjQyNmEtM2E4Zi00MjUyLWExN2Yt YmEwMmM5NjBiOGY0LzEvS0I4RjU2bnB4c3YyU2lCTXY0UGpFMlNmZWcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy9iZjQyNmEtM2E4Zi00MjUyLWExN2YtYmEwMmM5NjBiOGY0 LzEvUlJibE96TEtwMkdRYndfTjZpZGJjZzRYUXNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwbGwMA0G CSqGSIb3DQEBCwUAA4IBAQAZwY0xSXDLNo1wsds2Ppjxuuyveg7C2WfBbSAN1sd4 rcScEV0QkRNwkh9aV/y+j1hGT4upkv1e83NBXvaIKO9ZPMEPRs1qyJWFiyuGUn90 J6JLvmgC4hCCm7bL+AOwvbp3Jadw1MeAC+dQgSg8LCoX420LIoH8OhqK7bOvWA82 C1gR6H1280GZCxwXxeHOITVpEUZQaam920T7jVw79o3e88D9F+Rhylv454xnVQS6 ZYkvSUqMXR32Q9KAvOuADimg6hjAjhl/BVLBYXDx8SIWwOrXAYbrUzamrMi4BWFE LP04rvKZ8VTAJTnCCN/EU22gIMOpaIKdE1Sg6r//98pu -----END CERTIFICATE-----Generated at Sun Jan 25 19:35:33 2026 by rpki-client