This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa File: bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa (raw, json) Hash identifier: +XM1cLvQITLL+hcYwm0/qg57RFddihfSN5qfe1ousHo= Subject key identifier: 6F:14:73:B9:0E:DB:01:21:9E:FA:CF:AC:74:3D:7E:F8:2C:FC:3F:83 Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc Certificate serial: 019B77C7118B881E868C8D92E6FBAD611078 Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa Signing time: Thu 01 Jan 2026 04:18:13 +0000 ROA not before: Thu 01 Jan 2026 04:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57644 IP address blocks: 194.50.95.0/24 maxlen: 24 2a13:57c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:11:8b:88:1e:86:8c:8d:92:e6:fb:ad:61:10:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc Validity Not Before: Jan 1 04:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f1473b90edb01219efacfac743d7ef82cfc3f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2e:4f:66:ed:14:3b:45:3f:27:40:08:5c:b9: e7:65:95:4f:3c:97:62:0f:e8:e7:44:4f:ae:77:f9: da:b5:25:3c:da:f9:3f:e5:74:2b:b6:45:1b:4e:4c: ea:d7:ef:cd:4a:37:68:1f:87:0e:d9:4f:84:11:c5: bf:83:30:d7:02:82:44:45:1b:15:25:b8:44:d6:69: e1:83:c4:28:0d:d1:f5:8a:ad:38:9c:11:52:b1:e1: f2:f6:b1:a3:7a:56:2f:51:cd:cd:06:41:f9:06:24: 7c:8e:0e:52:a1:38:5e:6f:75:5c:2b:e8:f4:41:16: a0:22:cc:83:f1:6e:a8:39:97:d5:ee:27:c6:9e:01: 18:48:99:18:c2:e1:31:ec:31:9a:66:81:ac:55:d1: 44:71:06:e3:93:fc:8a:bd:0c:f1:60:65:67:ce:83: bb:4e:1b:b4:c2:0c:25:cd:b4:2d:49:60:79:da:ff: 60:f3:4a:b2:28:98:b2:99:5c:79:ee:ab:08:9c:18: 03:c7:f5:5d:1b:c4:44:c9:bd:91:87:0f:08:54:31: a2:cf:4d:3e:23:fc:bd:14:f4:6c:45:19:7c:86:b8: 4b:2d:cb:a2:75:e4:0b:f7:17:41:81:9a:94:44:ee: 4c:3b:08:a3:03:9d:3a:f6:88:fd:2d:4a:c5:60:05: bc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:14:73:B9:0E:DB:01:21:9E:FA:CF:AC:74:3D:7E:F8:2C:FC:3F:83 X509v3 Authority Key Identifier: keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.95.0/24 IPv6: 2a13:57c0::/29 Signature Algorithm: sha256WithRSAEncryption ae:fb:55:39:58:af:63:a1:0e:ad:18:58:34:70:df:09:91:d6: 7f:49:f7:ef:60:3c:9a:27:c7:5f:73:a7:bd:a2:65:8e:f4:c7: 78:3c:8f:bd:d2:85:e2:7b:89:f9:8a:d4:c5:10:da:b5:a5:2d: 16:13:9c:4d:43:da:cd:40:64:37:fb:ef:aa:03:44:70:6b:c8: a3:8a:d5:ee:8e:28:81:ff:8c:29:31:73:fb:75:75:f1:d2:e1: 8f:d7:ee:9e:62:e1:1d:9b:5e:4b:e0:65:62:90:99:d3:ed:2d: fd:3c:13:5e:a7:11:5c:ef:e7:90:2c:8a:5e:95:08:0a:e8:03: f5:d3:82:f8:50:65:77:38:3c:9c:af:8f:b4:f7:94:ab:2b:d9: 40:ee:90:3e:b7:67:b2:af:18:85:41:1a:19:b3:f8:dc:24:86: 80:ac:04:93:d9:fb:5b:d0:9c:84:c6:c8:fc:cf:f7:be:24:d9: 98:08:b2:d8:ca:44:5c:9e:12:ae:c3:c8:30:41:b0:fb:35:52: d9:cb:90:ca:ff:73:15:a4:8e:ae:fd:8d:3f:de:4a:23:36:cc: 7b:09:40:0f:43:0e:83:5d:39:10:c0:dc:f0:3e:8e:2c:6c:cb: a4:bf:03:6b:e1:c7:80:8a:52:5c:db:05:02:02:c3:b5:88:51: 4f:ff:75:d2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3xxGLiB6GjI2S5vutYRB4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzM2IzMmUwNWQwYTg1ZGJkNDQ1MGYzN2E3M2U3ZmExZjYx MDBhZmMwHhcNMjYwMTAxMDQxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjE0NzNiOTBlZGIwMTIxOWVmYWNmYWM3NDNkN2VmODJjZmMzZjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2C5PZu0UO0U/J0AIXLnnZZVPPJdi D+jnRE+ud/natSU82vk/5XQrtkUbTkzq1+/NSjdoH4cO2U+EEcW/gzDXAoJERRsV JbhE1mnhg8QoDdH1iq04nBFSseHy9rGjelYvUc3NBkH5BiR8jg5SoTheb3VcK+j0 QRagIsyD8W6oOZfV7ifGngEYSJkYwuEx7DGaZoGsVdFEcQbjk/yKvQzxYGVnzoO7 Thu0wgwlzbQtSWB52v9g80qyKJiymVx57qsInBgDx/VdG8REyb2Rhw8IVDGiz00+ I/y9FPRsRRl8hrhLLcuideQL9xdBgZqURO5MOwijA5069oj9LUrFYAW8LwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFG8Uc7kO2wEhnvrPrHQ9fvgs/D+DMB8GA1UdIwQY MBaAFNM7MuBdCoXb1EUPN6c+f6H2EAr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgt MGUxNmJhZWY3MTEzLzEvYnhSenVRN2JBU0dlLXMtc2REMS0tQ3o4UDRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgtMGUxNmJhZWY3MTEz LzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwjJfMA0E AgACMAcDBQMqE1fAMA0GCSqGSIb3DQEBCwUAA4IBAQCu+1U5WK9joQ6tGFg0cN8J kdZ/SffvYDyaJ8dfc6e9omWO9Md4PI+90oXie4n5itTFENq1pS0WE5xNQ9rNQGQ3 +++qA0Rwa8ijitXujiiB/4wpMXP7dXXx0uGP1+6eYuEdm15L4GVikJnT7S39PBNe pxFc7+eQLIpelQgK6AP104L4UGV3ODycr4+095SrK9lA7pA+t2eyrxiFQRoZs/jc JIaArAST2ftb0JyExsj8z/e+JNmYCLLYykRcnhKuw8gwQbD7NVLZy5DK/3MVpI6u /Y0/3kojNsx7CUAPQw6DXTkQwNzwPo4sbMukvwNr4ceAilJc2wUCAsO1iFFP/3XS -----END CERTIFICATE-----Generated at Sun Jan 11 18:13:08 2026 by rpki-client