This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/BtJ-wtaE3NZ6-0XbD2DkhXY1rQU.roa File: BtJ-wtaE3NZ6-0XbD2DkhXY1rQU.roa (raw, json) Hash identifier: 4ZFj/A3eE47Xk8okR+DUm5yvPcyLJX/IWCuVfkjRerE= Subject key identifier: 06:D2:7E:C2:D6:84:DC:D6:7A:FB:45:DB:0F:60:E4:85:76:35:AD:05 Certificate issuer: /CN=992c6e09c192c5580a4a1d294150d6237ab8925d Certificate serial: 019B7BA3CA3B4734919A111FBE1DA94F0FA8 Authority key identifier: 99:2C:6E:09:C1:92:C5:58:0A:4A:1D:29:41:50:D6:23:7A:B8:92:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSxuCcGSxVgKSh0pQVDWI3q4kl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/BtJ-wtaE3NZ6-0XbD2DkhXY1rQU.roa Signing time: Thu 01 Jan 2026 22:18:10 +0000 ROA not before: Thu 01 Jan 2026 22:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39062 IP address blocks: 195.66.158.0/23 maxlen: 23 195.66.158.0/24 maxlen: 24 195.66.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/mSxuCcGSxVgKSh0pQVDWI3q4kl0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/mSxuCcGSxVgKSh0pQVDWI3q4kl0.mft rsync://rpki.ripe.net/repository/DEFAULT/mSxuCcGSxVgKSh0pQVDWI3q4kl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 23:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:ca:3b:47:34:91:9a:11:1f:be:1d:a9:4f:0f:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=992c6e09c192c5580a4a1d294150d6237ab8925d Validity Not Before: Jan 1 22:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06d27ec2d684dcd67afb45db0f60e4857635ad05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8b:59:d9:fa:81:ab:91:e6:77:64:42:5a:ed: 67:cd:27:02:9b:1e:e2:dc:f8:b1:b6:cd:cd:e3:b2: 7b:0c:71:e2:ab:c1:a7:ef:ac:ed:08:a4:24:cf:68: cb:a7:34:5f:7b:ac:b9:9c:f0:90:bf:58:1a:3c:41: 8f:ed:5a:3d:2c:bc:be:85:f4:79:48:70:93:21:54: 20:78:a2:a3:07:a3:f3:2d:96:bb:9c:af:95:62:19: 7c:b0:e5:f8:84:f1:99:c7:a6:74:0a:b8:fa:a1:7b: 2c:ed:18:02:12:3e:6b:12:a5:0d:6e:a2:2d:fc:3f: e0:85:8f:44:c8:cd:7f:ad:3b:ad:c6:d7:90:96:20: a2:4e:76:47:a3:86:dd:3c:5f:fb:25:6f:da:35:8b: 5f:c7:78:d1:ba:fa:ef:c4:ce:9f:d1:c3:5b:e9:ff: f2:8d:8f:98:bc:91:aa:1e:d1:6e:ae:cd:1c:2b:6d: e7:a2:50:54:0c:92:0d:de:7e:f9:44:8a:4d:65:89: d7:97:09:79:a0:b0:56:43:c8:86:f7:24:71:f8:1a: 0f:35:3f:45:e6:88:64:50:e5:0b:18:b4:05:67:34: 5c:fb:c4:bf:24:3d:95:a4:37:6a:c8:83:13:3c:ff: 3c:f6:bd:3e:c2:60:19:0a:5c:92:30:d2:8e:e5:d0: 92:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D2:7E:C2:D6:84:DC:D6:7A:FB:45:DB:0F:60:E4:85:76:35:AD:05 X509v3 Authority Key Identifier: keyid:99:2C:6E:09:C1:92:C5:58:0A:4A:1D:29:41:50:D6:23:7A:B8:92:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSxuCcGSxVgKSh0pQVDWI3q4kl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/BtJ-wtaE3NZ6-0XbD2DkhXY1rQU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/mSxuCcGSxVgKSh0pQVDWI3q4kl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.66.158.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:92:46:c0:90:1b:67:e8:74:68:d4:65:4a:61:e7:6d:7c:66: 2b:64:46:fe:9d:f0:0f:b7:a1:74:48:06:25:b7:59:56:24:4c: 6d:91:0f:be:7f:f9:39:c1:c8:79:fa:32:1d:fb:bf:e2:77:bb: a4:f1:d5:f6:45:b5:3c:df:92:40:f7:bc:1e:4b:17:15:3e:b5: 9a:87:64:e7:9f:6f:18:ca:b8:98:78:40:cc:08:06:a8:be:7f: 60:7c:71:0d:77:40:6c:66:e7:6c:83:27:a0:51:31:53:3c:9f: 4f:31:88:4a:02:72:f3:d0:7b:0e:c8:d0:f8:8d:1d:8b:e3:a8: 3c:a3:d8:53:3c:a5:ef:1b:25:e2:d7:68:6b:7f:4d:2d:cf:5d: 8b:e3:c9:dc:28:70:96:e2:08:84:0c:77:c2:e3:3e:a9:f8:23: 32:f9:78:09:ad:83:05:b2:17:24:c9:85:2d:b1:79:ba:42:95: cb:1c:3d:35:77:79:fb:32:57:e7:90:5a:31:e9:30:6c:96:1c: bb:9a:b4:0a:87:9d:03:eb:24:cd:6b:ca:13:a4:a6:19:6c:69: cb:e6:3e:58:7e:a7:42:4b:38:ca:23:0e:a9:55:b3:46:7b:70: da:5e:35:5b:56:4d:89:40:c4:a1:0b:db:48:1b:c2:d1:d7:0d: 75:b5:43:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o8o7RzSRmhEfvh2pTw+oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MmM2ZTA5YzE5MmM1NTgwYTRhMWQyOTQxNTBkNjIzN2Fi ODkyNWQwHhcNMjYwMTAxMjIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNmQyN2VjMmQ2ODRkY2Q2N2FmYjQ1ZGIwZjYwZTQ4NTc2MzVhZDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4tZ2fqBq5Hmd2RCWu1nzScCmx7i 3Pixts3N47J7DHHiq8Gn76ztCKQkz2jLpzRfe6y5nPCQv1gaPEGP7Vo9LLy+hfR5 SHCTIVQgeKKjB6PzLZa7nK+VYhl8sOX4hPGZx6Z0Crj6oXss7RgCEj5rEqUNbqIt /D/ghY9EyM1/rTutxteQliCiTnZHo4bdPF/7JW/aNYtfx3jRuvrvxM6f0cNb6f/y jY+YvJGqHtFurs0cK23nolBUDJIN3n75RIpNZYnXlwl5oLBWQ8iG9yRx+BoPNT9F 5ohkUOULGLQFZzRc+8S/JD2VpDdqyIMTPP889r0+wmAZClySMNKO5dCS6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAbSfsLWhNzWevtF2w9g5IV2Na0FMB8GA1UdIwQY MBaAFJksbgnBksVYCkodKUFQ1iN6uJJdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVN4dUNjR1N4VmdLU2gwcFFWRFdJM3E0a2wwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC85M2RkNDMtOTkzMy00MmNhLWFmYzIt MmMxODkxY2FjYWM3LzEvQnRKLXd0YUUzTlo2LTBYYkQyRGtoWFkxclFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC85M2RkNDMtOTkzMy00MmNhLWFmYzItMmMxODkxY2FjYWM3 LzEvbVN4dUNjR1N4VmdLU2gwcFFWRFdJM3E0a2wwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw0KeMA0G CSqGSIb3DQEBCwUAA4IBAQCPkkbAkBtn6HRo1GVKYedtfGYrZEb+nfAPt6F0SAYl t1lWJExtkQ++f/k5wch5+jId+7/id7uk8dX2RbU835JA97weSxcVPrWah2Tnn28Y yriYeEDMCAaovn9gfHENd0BsZudsgyegUTFTPJ9PMYhKAnLz0HsOyND4jR2L46g8 o9hTPKXvGyXi12hrf00tz12L48ncKHCW4giEDHfC4z6p+CMy+XgJrYMFshckyYUt sXm6QpXLHD01d3n7MlfnkFox6TBslhy7mrQKh50D6yTNa8oTpKYZbGnL5j5YfqdC SzjKIw6pVbNGe3DaXjVbVk2JQMShC9tIG8LR1w11tUPO -----END CERTIFICATE-----Generated at Wed Jan 7 06:55:50 2026 by rpki-client