This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/z6bCwLojIPVuxbTXw72sR-aZPSQ.roa File: z6bCwLojIPVuxbTXw72sR-aZPSQ.roa (raw, json) Hash identifier: jarPN7oKXyiEaRbhLltezQTSG2nKsHFs4sdkmV5yFgk= Subject key identifier: CF:A6:C2:C0:BA:23:20:F5:6E:C5:B4:D7:C3:BD:AC:47:E6:99:3D:24 Certificate issuer: /CN=bc56db796def0dbdb4c78f2445abecc1570a6fd9 Certificate serial: 019B7F8228AF7310E79D76A260AD95CA82CF Authority key identifier: BC:56:DB:79:6D:EF:0D:BD:B4:C7:8F:24:45:AB:EC:C1:57:0A:6F:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFbbeW3vDb20x48kRavswVcKb9k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/z6bCwLojIPVuxbTXw72sR-aZPSQ.roa Signing time: Fri 02 Jan 2026 16:19:55 +0000 ROA not before: Fri 02 Jan 2026 16:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9002 IP address blocks: 91.199.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/vFbbeW3vDb20x48kRavswVcKb9k.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/vFbbeW3vDb20x48kRavswVcKb9k.mft rsync://rpki.ripe.net/repository/DEFAULT/vFbbeW3vDb20x48kRavswVcKb9k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:28:af:73:10:e7:9d:76:a2:60:ad:95:ca:82:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc56db796def0dbdb4c78f2445abecc1570a6fd9 Validity Not Before: Jan 2 16:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cfa6c2c0ba2320f56ec5b4d7c3bdac47e6993d24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:28:6e:cc:d9:01:34:77:96:ea:b5:6a:f6:2d: 40:f4:db:7d:56:8e:53:b1:0a:ac:d7:ae:c6:04:47: 97:f1:66:4c:74:a3:31:86:23:b2:85:ca:00:63:76: a4:33:8b:7b:ae:56:6b:db:de:01:fa:08:7e:b9:83: 43:cd:1a:01:db:21:1c:c6:20:a4:1d:6a:56:a3:5d: 1d:d8:27:80:b0:81:01:79:bb:aa:ce:1c:c3:0b:51: 98:b7:e0:35:28:ca:f5:46:65:77:2b:d2:27:7b:9d: fe:13:c3:be:a2:e0:d7:64:45:c5:92:a2:7f:eb:c1: 8a:09:6c:fc:a3:87:d4:75:82:1b:0c:a7:7a:5f:3c: 4c:f3:3a:48:ee:3d:43:8e:e6:a2:b2:80:12:d8:f3: 20:14:4d:3a:61:32:47:88:e6:3f:77:5e:40:51:9d: 5f:6e:54:38:22:cc:e2:90:d2:73:01:ea:a4:f4:66: 77:11:1e:2b:ae:27:03:95:b0:9e:bd:c4:8e:d1:a4: 2c:3b:e9:b2:9d:ae:bb:7f:dd:c8:2c:fa:74:b9:db: 81:2e:7e:ee:c4:95:60:bb:bb:ce:be:dc:5f:28:31: fc:c0:e2:da:68:7c:2e:a1:b6:a8:d4:a8:7b:b9:e4: 2e:4b:de:ba:24:b3:04:ae:ef:40:9b:8e:fc:4b:ab: e4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:A6:C2:C0:BA:23:20:F5:6E:C5:B4:D7:C3:BD:AC:47:E6:99:3D:24 X509v3 Authority Key Identifier: keyid:BC:56:DB:79:6D:EF:0D:BD:B4:C7:8F:24:45:AB:EC:C1:57:0A:6F:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFbbeW3vDb20x48kRavswVcKb9k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/z6bCwLojIPVuxbTXw72sR-aZPSQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/vFbbeW3vDb20x48kRavswVcKb9k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.16.0/24 Signature Algorithm: sha256WithRSAEncryption 26:40:aa:1d:a0:f1:0a:30:c9:90:5b:90:22:56:f3:05:f4:1d: 0f:70:73:e6:68:58:6a:4c:90:ab:d1:aa:c7:96:a4:26:89:f4: 98:82:fc:98:76:3a:64:75:98:b6:e2:83:27:e6:82:5d:4e:5c: 6d:cb:9a:81:21:0c:9a:f6:a6:4a:66:12:f1:3d:27:b7:25:5e: 45:4b:78:2c:d5:2f:5f:24:d6:16:1c:3b:0a:8b:44:50:91:31: 4b:80:a4:9c:da:4b:c5:ac:c8:73:b7:20:31:fd:1b:92:8a:ff: 9e:dd:d0:0b:43:20:98:a1:2f:e6:e8:db:ed:b8:24:ef:f8:fc: f6:2b:90:fd:c2:8e:25:21:1c:7c:c2:d1:b0:5c:c4:fa:a4:28: ad:ec:b5:1f:f8:7e:c6:ab:16:4e:45:5a:3d:7d:62:48:2d:55: 5f:3e:1e:55:90:d0:5c:77:b4:07:62:ca:1f:f9:85:9d:ce:15: 4c:37:92:be:c8:fc:e8:5d:11:68:6c:e2:05:99:00:75:2d:da: cd:5e:df:db:66:fc:1d:2f:88:a4:8a:1f:0e:ed:04:66:7a:cd: 77:e7:10:c1:92:27:b3:19:ed:72:f9:a2:07:ce:8e:36:bd:53: c7:49:f8:41:87:a2:8c:56:42:7c:d0:4c:a2:43:35:5d:f7:5d: 3e:9e:d5:e6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/giivcxDnnXaiYK2VyoLPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjNTZkYjc5NmRlZjBkYmRiNGM3OGYyNDQ1YWJlY2MxNTcw YTZmZDkwHhcNMjYwMTAyMTYxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZmE2YzJjMGJhMjMyMGY1NmVjNWI0ZDdjM2JkYWM0N2U2OTkzZDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1yhuzNkBNHeW6rVq9i1A9Nt9Vo5T sQqs167GBEeX8WZMdKMxhiOyhcoAY3akM4t7rlZr294B+gh+uYNDzRoB2yEcxiCk HWpWo10d2CeAsIEBebuqzhzDC1GYt+A1KMr1RmV3K9Ine53+E8O+ouDXZEXFkqJ/ 68GKCWz8o4fUdYIbDKd6XzxM8zpI7j1DjuaisoAS2PMgFE06YTJHiOY/d15AUZ1f blQ4IszikNJzAeqk9GZ3ER4rricDlbCevcSO0aQsO+myna67f93ILPp0uduBLn7u xJVgu7vOvtxfKDH8wOLaaHwuobao1Kh7ueQuS966JLMEru9Am478S6vkiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM+mwsC6IyD1bsW018O9rEfmmT0kMB8GA1UdIwQY MBaAFLxW23lt7w29tMePJEWr7MFXCm/ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkZiYmVXM3ZEYjIweDQ4a1JhdnN3VmNLYjlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC84YjliZDktM2Y2Mi00ZTMwLTgwODUt MWVjNzIxZmEyYTMwLzEvejZiQ3dMb2pJUFZ1eGJUWHc3MnNSLWFaUFNRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC84YjliZDktM2Y2Mi00ZTMwLTgwODUtMWVjNzIxZmEyYTMw LzEvdkZiYmVXM3ZEYjIweDQ4a1JhdnN3VmNLYjlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8cQMA0G CSqGSIb3DQEBCwUAA4IBAQAmQKodoPEKMMmQW5AiVvMF9B0PcHPmaFhqTJCr0arH lqQmifSYgvyYdjpkdZi24oMn5oJdTlxty5qBIQya9qZKZhLxPSe3JV5FS3gs1S9f JNYWHDsKi0RQkTFLgKSc2kvFrMhztyAx/RuSiv+e3dALQyCYoS/m6NvtuCTv+Pz2 K5D9wo4lIRx8wtGwXMT6pCit7LUf+H7GqxZORVo9fWJILVVfPh5VkNBcd7QHYsof +YWdzhVMN5K+yPzoXRFobOIFmQB1LdrNXt/bZvwdL4ikih8O7QRmes135xDBkiez Ge1y+aIHzo42vVPHSfhBh6KMVkJ80EyiQzVd910+ntXm -----END CERTIFICATE-----Generated at Sun Jan 25 17:20:08 2026 by rpki-client