This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/bR0NHkHbblmEtwb2_nY_6Q1NAmE.roa File: bR0NHkHbblmEtwb2_nY_6Q1NAmE.roa (raw, json) Hash identifier: KrJc5AmVNKuLrZUthurXLuq1KgVncKQfKVwT8ndsj4c= Subject key identifier: 6D:1D:0D:1E:41:DB:6E:59:84:B7:06:F6:FE:76:3F:E9:0D:4D:02:61 Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Certificate serial: 019B797E2DC5582749D7A1E8C5A998AD21B3 Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/bR0NHkHbblmEtwb2_nY_6Q1NAmE.roa Signing time: Thu 01 Jan 2026 12:17:50 +0000 ROA not before: Thu 01 Jan 2026 12:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133210 IP address blocks: 194.15.115.0/24 maxlen: 24 2a0d:5140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 23:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:2d:c5:58:27:49:d7:a1:e8:c5:a9:98:ad:21:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Validity Not Before: Jan 1 12:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d1d0d1e41db6e5984b706f6fe763fe90d4d0261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:07:fc:bc:4d:88:ac:93:2a:43:86:a9:55:c4: e7:08:b1:f5:a6:f4:2c:15:c7:85:b7:6a:17:cf:af: e8:72:56:d2:50:57:95:b7:77:31:71:18:14:a1:10: 97:47:96:02:4e:91:be:5d:e2:d6:a8:d4:99:c5:23: ae:0e:e7:02:f9:aa:81:7a:51:1d:df:21:cc:2e:01: be:10:59:c0:8c:71:a2:14:f8:c6:37:b3:af:57:0f: 4f:7f:90:34:75:ee:81:08:14:f4:e0:55:ab:2f:8a: 1d:f4:76:2b:a0:64:85:2c:15:f5:90:31:25:24:91: c2:05:cd:90:28:0f:4c:73:c0:a4:e7:ea:63:d4:d2: c2:0a:0e:b5:77:35:2f:09:62:a0:84:2f:a1:fa:96: 35:55:9b:bf:4d:ad:44:b7:88:3c:c7:43:df:80:73: 46:cc:57:0c:3e:79:09:9e:f7:17:0f:78:6c:ba:c2: d4:0d:fa:48:b6:8a:0f:78:95:57:4e:a2:7c:a6:75: 97:18:d6:3c:a1:17:98:4e:b3:bb:6a:7e:74:01:7b: e5:67:ff:ba:05:9d:ee:df:a9:c9:3c:33:6b:d3:f5: 2e:6c:ea:7e:bf:a0:96:aa:ba:0e:f4:44:50:f5:ce: 8d:b2:11:04:dd:7b:42:e0:1a:a1:30:07:12:fe:9f: f8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1D:0D:1E:41:DB:6E:59:84:B7:06:F6:FE:76:3F:E9:0D:4D:02:61 X509v3 Authority Key Identifier: keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/bR0NHkHbblmEtwb2_nY_6Q1NAmE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.15.115.0/24 IPv6: 2a0d:5140::/32 Signature Algorithm: sha256WithRSAEncryption d8:74:f7:9f:e7:a5:6a:7a:96:0c:c7:12:36:b5:f6:aa:07:2a: ec:06:7a:c5:27:f8:4d:12:f8:a4:83:06:f3:ce:ab:e9:29:66: 7c:3d:15:00:b7:ed:5e:b4:b1:23:9e:76:d3:62:d2:21:c8:65: 60:df:84:6c:fb:8f:da:91:7f:0e:56:43:51:18:50:eb:31:09: 4a:5f:92:34:70:94:99:2e:7e:35:89:68:a9:ce:90:f9:f6:32: d9:6d:48:3c:c5:e7:06:36:35:21:f6:ef:92:8c:f6:74:4c:df: 98:fb:6b:85:0d:f8:04:bb:da:54:23:92:32:9b:f0:f4:06:4b: 4e:15:af:d0:93:90:8f:87:b7:ee:73:99:19:4e:4b:c4:be:24: b9:9d:bf:a2:ed:a8:c3:bc:8d:45:32:17:1e:c3:40:6a:02:b5: 21:87:92:92:7a:92:30:a3:72:ed:40:03:c1:2b:2b:5b:6f:72: a4:47:01:97:d2:e6:87:a3:c5:2e:d7:f7:00:ed:e5:52:06:18: 93:f8:8d:c4:0a:c2:2e:73:2c:b3:1c:e1:6c:6c:cd:e9:fa:63: c6:b4:74:6d:d1:93:38:a8:d7:97:1d:19:08:a0:77:de:aa:7c: d8:48:e3:c0:51:01:b7:c4:62:91:77:1a:6e:9b:3e:22:91:f1: 27:ba:d5:5e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fi3FWCdJ16HoxamYrSGzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZGM5YzU1ZTE1OTdlODg1NjRkYWY1NjdlNWE0NjY1OTc4 YzdiODUwHhcNMjYwMTAxMTIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDFkMGQxZTQxZGI2ZTU5ODRiNzA2ZjZmZTc2M2ZlOTBkNGQwMjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAf8vE2IrJMqQ4apVcTnCLH1pvQs FceFt2oXz6/oclbSUFeVt3cxcRgUoRCXR5YCTpG+XeLWqNSZxSOuDucC+aqBelEd 3yHMLgG+EFnAjHGiFPjGN7OvVw9Pf5A0de6BCBT04FWrL4od9HYroGSFLBX1kDEl JJHCBc2QKA9Mc8Ck5+pj1NLCCg61dzUvCWKghC+h+pY1VZu/Ta1Et4g8x0PfgHNG zFcMPnkJnvcXD3hsusLUDfpItooPeJVXTqJ8pnWXGNY8oReYTrO7an50AXvlZ/+6 BZ3u36nJPDNr0/UubOp+v6CWqroO9ERQ9c6NshEE3XtC4BqhMAcS/p/4uwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFG0dDR5B225ZhLcG9v52P+kNTQJhMB8GA1UdIwQY MBaAFIXcnFXhWX6IVk2vVn5aRmWXjHuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0Mjkt ODZlYTE5ZDI5MTYzLzEvYlIwTkhrSGJibG1FdHdiMl9uWV82UTFOQW1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0MjktODZlYTE5ZDI5MTYz LzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwg9zMA0E AgACMAcDBQAqDVFAMA0GCSqGSIb3DQEBCwUAA4IBAQDYdPef56VqepYMxxI2tfaq ByrsBnrFJ/hNEvikgwbzzqvpKWZ8PRUAt+1etLEjnnbTYtIhyGVg34Rs+4/akX8O VkNRGFDrMQlKX5I0cJSZLn41iWipzpD59jLZbUg8xecGNjUh9u+SjPZ0TN+Y+2uF DfgEu9pUI5Iym/D0BktOFa/Qk5CPh7fuc5kZTkvEviS5nb+i7ajDvI1FMhcew0Bq ArUhh5KSepIwo3LtQAPBKytbb3KkRwGX0uaHo8Uu1/cA7eVSBhiT+I3ECsIucyyz HOFsbM3p+mPGtHRt0ZM4qNeXHRkIoHfeqnzYSOPAUQG3xGKRdxpumz4ikfEnutVe -----END CERTIFICATE-----Generated at Sat Jan 10 08:43:43 2026 by rpki-client