This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Bpd-NALdMh5DSjsHs6SyXCKT__U.roa File: Bpd-NALdMh5DSjsHs6SyXCKT__U.roa (raw, json) Hash identifier: CP6GECNstsyN8OC8/dFBfsxTa8ZXS+CoiZ988ni2MJA= Subject key identifier: 06:97:7E:34:02:DD:32:1E:43:4A:3B:07:B3:A4:B2:5C:22:93:FF:F5 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A308F1E232BB1F1564A7CEEA7E3EF1 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Bpd-NALdMh5DSjsHs6SyXCKT__U.roa Signing time: Thu 01 Jan 2026 08:18:29 +0000 ROA not before: Thu 01 Jan 2026 08:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 53356 IP address blocks: 45.128.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:08:f1:e2:32:bb:1f:15:64:a7:ce:ea:7e:3e:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06977e3402dd321e434a3b07b3a4b25c2293fff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:51:49:0c:77:d0:ac:68:72:ae:31:31:cd:ec: 89:02:05:d8:31:fa:30:f9:43:2e:3a:7e:47:54:72: 7e:6d:9c:9b:93:3f:d6:d5:d1:81:c9:1f:90:5f:56: ab:4f:fc:34:ba:45:fa:39:43:3f:06:ae:9c:0a:4b: d7:7e:e7:99:8b:a4:c3:39:4c:4a:bb:5d:f4:9c:b6: 4a:5e:60:dc:9a:2c:c6:d8:51:47:2d:79:70:f9:ed: 53:da:0b:6e:f7:e3:a7:da:f9:af:72:5f:72:36:30: a6:98:58:ad:19:ee:b1:b9:d8:4a:8b:f9:36:14:56: d9:06:62:73:56:76:ab:3f:08:9c:56:d4:f0:fe:5e: 89:07:62:21:7e:64:28:0c:ea:3f:6f:be:42:be:6c: 0b:18:95:7f:a3:b8:69:c9:c0:f9:7b:8d:11:91:40: 73:96:88:f4:57:ff:89:0b:d6:a1:ad:e4:14:ea:35: 76:17:91:fc:73:76:5e:7f:7a:91:46:cd:3c:48:97: 27:9c:bc:6c:53:ff:d6:7d:96:3a:74:f4:be:6e:44: a0:9b:25:2c:23:f2:45:d1:f5:ea:cc:d2:60:6b:0e: d7:8f:65:bc:eb:f1:d8:88:6e:b3:66:36:40:2b:40: 1e:d8:32:b8:97:65:94:30:5a:45:fe:da:22:7d:f2: c9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:97:7E:34:02:DD:32:1E:43:4A:3B:07:B3:A4:B2:5C:22:93:FF:F5 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Bpd-NALdMh5DSjsHs6SyXCKT__U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.128.232.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:50:28:08:8f:6e:d8:ed:62:b4:00:a0:ec:7f:fe:97:bf:cd: eb:c8:3b:bf:39:e0:89:6f:53:fc:8f:0b:5a:48:2f:0c:06:17: 9b:a8:df:a6:e0:08:de:45:df:bd:8a:d2:cc:c3:96:ff:66:b4: d4:6c:fe:c2:5f:be:e6:69:42:29:9f:06:e4:bd:37:f7:32:d5: f2:28:d2:30:32:98:01:49:eb:83:4a:37:98:81:d0:e7:e5:9e: 1d:5d:64:8c:6c:64:a5:4f:1f:55:fd:ff:fc:78:2c:96:0f:9d: 99:87:16:9e:70:02:7a:89:3e:04:09:52:b7:9c:b0:28:8d:aa: f4:f6:c8:fa:cd:03:92:4d:58:29:70:85:c7:68:77:63:73:0f: a7:ac:57:10:00:fc:9f:b2:a2:04:0e:a1:7e:aa:03:2e:43:97: a9:c6:69:b4:13:84:a0:c5:90:5f:d1:0c:50:a1:97:16:52:22: 08:a8:be:56:01:d0:3d:4b:13:68:04:f7:ea:69:fc:8c:2c:43: 7b:2e:59:69:72:80:81:8b:33:d0:a9:74:ef:f9:98:1e:fa:62: 1c:78:99:d7:12:6e:67:df:2d:4b:00:1a:c1:8b:5d:4b:83:8e: 3b:a7:2b:b4:60:da:ab:cc:74:27:ed:5a:a3:e0:a0:19:48:ec: ec:bb:0e:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4owjx4jK7HxVkp87qfj7xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjk3N2UzNDAyZGQzMjFlNDM0YTNiMDdiM2E0YjI1YzIyOTNmZmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFFJDHfQrGhyrjExzeyJAgXYMfow +UMuOn5HVHJ+bZybkz/W1dGByR+QX1arT/w0ukX6OUM/Bq6cCkvXfueZi6TDOUxK u130nLZKXmDcmizG2FFHLXlw+e1T2gtu9+On2vmvcl9yNjCmmFitGe6xudhKi/k2 FFbZBmJzVnarPwicVtTw/l6JB2IhfmQoDOo/b75CvmwLGJV/o7hpycD5e40RkUBz loj0V/+JC9ahreQU6jV2F5H8c3Zef3qRRs08SJcnnLxsU//WfZY6dPS+bkSgmyUs I/JF0fXqzNJgaw7Xj2W86/HYiG6zZjZAK0Ae2DK4l2WUMFpF/toiffLJmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAaXfjQC3TIeQ0o7B7Okslwik//1MB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvQnBkLU5BTGRNaDVEU2pzSHM2U3lYQ0tUX19VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYDoMA0G CSqGSIb3DQEBCwUAA4IBAQAtUCgIj27Y7WK0AKDsf/6Xv83ryDu/OeCJb1P8jwta SC8MBhebqN+m4AjeRd+9itLMw5b/ZrTUbP7CX77maUIpnwbkvTf3MtXyKNIwMpgB SeuDSjeYgdDn5Z4dXWSMbGSlTx9V/f/8eCyWD52ZhxaecAJ6iT4ECVK3nLAojar0 9sj6zQOSTVgpcIXHaHdjcw+nrFcQAPyfsqIEDqF+qgMuQ5epxmm0E4SgxZBf0QxQ oZcWUiIIqL5WAdA9SxNoBPfqafyMLEN7LllpcoCBizPQqXTv+Zge+mIceJnXEm5n 3y1LABrBi11Lg447pyu0YNqrzHQn7Vqj4KAZSOzsuw7H -----END CERTIFICATE-----Generated at Fri Jan 2 12:03:07 2026 by rpki-client