This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/bNXclAMIg3T6s2Uoz_EnoMHtGpo.roa File: bNXclAMIg3T6s2Uoz_EnoMHtGpo.roa (raw, json) Hash identifier: ZMo0HqpRxUY5NsvyrYlzQ++ahmncMXJuDazn/I+//9I= Subject key identifier: 6C:D5:DC:94:03:08:83:74:FA:B3:65:28:CF:F1:27:A0:C1:ED:1A:9A Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca Certificate serial: 019B783548BE8BDFB750587DB0BB724ABE94 Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/bNXclAMIg3T6s2Uoz_EnoMHtGpo.roa Signing time: Thu 01 Jan 2026 06:18:36 +0000 ROA not before: Thu 01 Jan 2026 06:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210745 IP address blocks: 188.93.114.0/24 maxlen: 24 2a11:10c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:48:be:8b:df:b7:50:58:7d:b0:bb:72:4a:be:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca Validity Not Before: Jan 1 06:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6cd5dc9403088374fab36528cff127a0c1ed1a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a0:97:64:f1:c8:b3:3e:66:f4:69:66:65:3f: c8:85:2c:19:d9:8b:51:e4:25:c1:99:24:3b:d2:a1: 45:2b:78:e5:6d:6d:69:09:1d:7d:1c:4a:8e:19:22: 52:53:a3:29:cb:1b:88:63:9d:d5:2d:da:e8:01:46: 0b:16:66:60:9b:24:e9:86:0d:04:fd:78:80:92:85: 20:e5:b4:2b:3f:56:2c:89:fa:b4:1e:57:ab:43:8f: 0f:98:24:b1:42:05:3a:79:e2:d1:0c:5e:a3:5e:de: e4:80:45:33:95:f2:29:d3:c9:d7:22:eb:d8:c5:64: 64:dc:08:e5:cf:b7:22:87:7a:2b:6d:05:ac:ea:50: e2:3e:ce:7f:93:bc:1c:bd:6e:76:aa:0b:30:6e:19: 98:c4:56:28:d1:df:96:97:d9:dc:c5:ad:cd:ab:47: ae:9f:1a:10:e8:cf:46:89:a1:5c:56:1a:fe:8e:f2: 24:30:e9:82:4e:a7:15:80:7b:b9:61:b7:64:b6:40: c4:c5:3d:d0:1f:9f:73:45:26:b8:63:3d:36:0f:ed: df:f7:55:a2:c0:06:7e:7a:2f:d2:3c:e2:33:b9:45: cc:38:cf:92:f9:b6:93:ce:39:d6:89:25:94:c8:92: 2c:30:99:98:e0:90:09:65:e9:77:39:cb:1f:80:4c: 5c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D5:DC:94:03:08:83:74:FA:B3:65:28:CF:F1:27:A0:C1:ED:1A:9A X509v3 Authority Key Identifier: keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/bNXclAMIg3T6s2Uoz_EnoMHtGpo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.93.114.0/24 IPv6: 2a11:10c0::/29 Signature Algorithm: sha256WithRSAEncryption 33:14:46:56:37:da:6f:6c:bf:b4:fa:b2:ed:64:0a:a4:92:e5: 19:2e:b5:83:b0:e9:f2:7d:f5:86:af:a0:be:6c:85:18:b4:67: 3b:c0:ec:f8:27:0d:60:2c:2d:62:5a:85:b1:c6:5d:25:b0:28: 91:c7:7f:57:88:9a:18:e7:aa:e6:d4:b8:e7:b4:f9:9f:6b:03: 0d:ce:f2:4a:9f:23:45:4e:73:8d:ea:e9:63:00:a6:23:db:0b: 98:35:57:b0:ff:ef:a2:58:52:65:0b:3e:0a:da:8e:bf:fa:b6: 44:f6:76:09:7e:27:01:f7:f9:b0:bf:83:be:43:e6:9a:16:c3: f5:b5:54:64:b4:31:02:bf:aa:1c:8a:e3:7c:6d:c0:64:b6:3d: f8:d6:0c:8c:6a:45:7c:df:18:bf:8e:54:35:6d:e6:42:d1:5b: 3d:07:c3:a8:a9:4c:eb:8a:de:06:80:f4:bb:ee:53:91:5c:44: 1e:69:f5:1e:10:b1:d0:b1:ee:c7:d7:58:5e:27:f0:9d:df:d5: df:a1:dc:13:5e:d2:7f:c0:63:73:bc:95:5a:17:f9:fb:80:89: d1:25:aa:6d:ae:d1:ec:75:53:3e:9d:da:d7:40:75:d6:e3:b0: df:98:23:3f:c7:0b:1c:8c:1a:8f:78:ea:f0:cc:46:83:0c:a6: a6:47:d2:d8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NUi+i9+3UFh9sLtySr6UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MzhlODU2YjIyNzJkZjE3NGJhNWE0MGE4ZmM3ZDVkMzAz MWNhY2EwHhcNMjYwMTAxMDYxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Y2Q1ZGM5NDAzMDg4Mzc0ZmFiMzY1MjhjZmYxMjdhMGMxZWQxYTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKCXZPHIsz5m9GlmZT/IhSwZ2YtR 5CXBmSQ70qFFK3jlbW1pCR19HEqOGSJSU6MpyxuIY53VLdroAUYLFmZgmyTphg0E /XiAkoUg5bQrP1Ysifq0HlerQ48PmCSxQgU6eeLRDF6jXt7kgEUzlfIp08nXIuvY xWRk3Ajlz7cih3orbQWs6lDiPs5/k7wcvW52qgswbhmYxFYo0d+Wl9ncxa3Nq0eu nxoQ6M9GiaFcVhr+jvIkMOmCTqcVgHu5YbdktkDExT3QH59zRSa4Yz02D+3f91Wi wAZ+ei/SPOIzuUXMOM+S+baTzjnWiSWUyJIsMJmY4JAJZel3OcsfgExcoQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGzV3JQDCIN0+rNlKM/xJ6DB7RqaMB8GA1UdIwQY MBaAFIg46FayJy3xdLpaQKj8fV0wMcrKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83ZGEzYTktMzRkZi00OGY4LThhMWIt MDc5ZTExMWVkYmY5LzEvYk5YY2xBTUlnM1Q2czJVb3pfRW5vTUh0R3BvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC83ZGEzYTktMzRkZi00OGY4LThhMWItMDc5ZTExMWVkYmY5 LzEvaURqb1ZySW5MZkYwdWxwQXFQeDlYVEF4eXNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAvF1yMA0E AgACMAcDBQMqERDAMA0GCSqGSIb3DQEBCwUAA4IBAQAzFEZWN9pvbL+0+rLtZAqk kuUZLrWDsOnyffWGr6C+bIUYtGc7wOz4Jw1gLC1iWoWxxl0lsCiRx39XiJoY56rm 1LjntPmfawMNzvJKnyNFTnON6uljAKYj2wuYNVew/++iWFJlCz4K2o6/+rZE9nYJ ficB9/mwv4O+Q+aaFsP1tVRktDECv6ociuN8bcBktj341gyMakV83xi/jlQ1beZC 0Vs9B8OoqUzrit4GgPS77lORXEQeafUeELHQse7H11heJ/Cd39XfodwTXtJ/wGNz vJVaF/n7gInRJaptrtHsdVM+ndrXQHXW47DfmCM/xwscjBqPeOrwzEaDDKamR9LY -----END CERTIFICATE-----Generated at Tue Feb 10 02:29:49 2026 by rpki-client