This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/48898b-f9b4-45b4-993f-e8a1dc8e3ffc/1/BvmBDu9gUylydSFpdWFHr27-_DY.roa File: BvmBDu9gUylydSFpdWFHr27-_DY.roa (raw, json) Hash identifier: d2SU0ny5FTlBkZIC6ubpt8gy5sJqNewyGcnF2XElBAw= Subject key identifier: 06:F9:81:0E:EF:60:53:29:72:75:21:69:75:61:47:AF:6E:FE:FC:36 Certificate issuer: /CN=597582bc3f0badb661a69fb9a483b37ec905827e Certificate serial: 019B7C12E9FDFD89E62F4FBB653E2F63FF93 Authority key identifier: 59:75:82:BC:3F:0B:AD:B6:61:A6:9F:B9:A4:83:B3:7E:C9:05:82:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXWCvD8LrbZhpp-5pIOzfskFgn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/48898b-f9b4-45b4-993f-e8a1dc8e3ffc/1/BvmBDu9gUylydSFpdWFHr27-_DY.roa Signing time: Fri 02 Jan 2026 00:19:32 +0000 ROA not before: Fri 02 Jan 2026 00:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62244 IP address blocks: 185.43.96.0/22 maxlen: 22 2a01:65e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/48898b-f9b4-45b4-993f-e8a1dc8e3ffc/1/WXWCvD8LrbZhpp-5pIOzfskFgn4.crl rsync://rpki.ripe.net/repository/DEFAULT/10/48898b-f9b4-45b4-993f-e8a1dc8e3ffc/1/WXWCvD8LrbZhpp-5pIOzfskFgn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WXWCvD8LrbZhpp-5pIOzfskFgn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:e9:fd:fd:89:e6:2f:4f:bb:65:3e:2f:63:ff:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=597582bc3f0badb661a69fb9a483b37ec905827e Validity Not Before: Jan 2 00:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06f9810eef60532972752169756147af6efefc36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ff:62:a5:5a:36:e3:40:96:e5:db:5b:7b:4e: 16:3e:24:d4:31:c9:e7:12:51:18:0f:7f:c8:aa:c0: b8:f4:c0:dd:05:34:20:9f:cd:57:fc:cf:c4:67:19: 79:cc:9a:c3:9c:74:3a:fe:28:0c:59:43:b4:73:7b: 9d:11:d8:7c:64:ce:ff:6f:c3:77:cd:58:2b:1b:34: a2:ff:99:99:b5:b2:da:0b:72:44:c1:6a:8b:ba:6d: 6e:91:87:de:fc:d5:70:eb:c3:a0:58:de:4f:c4:66: 91:32:c9:1c:66:b6:07:83:8e:38:99:91:6a:7e:2d: 00:7a:24:17:12:68:7c:ba:66:22:be:0a:68:b9:a0: 7a:b7:c6:d3:eb:fe:c0:2d:60:f1:ed:44:2c:24:75: ad:62:6a:9b:00:d1:c3:7a:52:56:07:05:a9:75:c2: 85:d0:7b:27:11:3d:35:83:2d:bf:16:1e:b4:a2:f2: 91:f7:48:3a:5b:99:56:c4:97:38:9e:43:91:d4:53: 38:e4:ab:e4:c2:62:4e:70:4a:17:5c:a7:7c:86:d2: 74:3c:18:a2:b0:c3:4e:9e:a2:da:99:2e:e6:99:94: b3:6c:2b:7d:eb:2b:ac:0f:dc:90:91:0b:28:ad:f1: 2b:a1:98:6b:4c:c4:1f:5d:db:21:69:9c:ba:ba:6a: 92:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F9:81:0E:EF:60:53:29:72:75:21:69:75:61:47:AF:6E:FE:FC:36 X509v3 Authority Key Identifier: keyid:59:75:82:BC:3F:0B:AD:B6:61:A6:9F:B9:A4:83:B3:7E:C9:05:82:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXWCvD8LrbZhpp-5pIOzfskFgn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/48898b-f9b4-45b4-993f-e8a1dc8e3ffc/1/BvmBDu9gUylydSFpdWFHr27-_DY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/48898b-f9b4-45b4-993f-e8a1dc8e3ffc/1/WXWCvD8LrbZhpp-5pIOzfskFgn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.43.96.0/22 IPv6: 2a01:65e0::/32 Signature Algorithm: sha256WithRSAEncryption 45:4d:4b:a8:d8:6c:e2:d2:82:0d:ac:52:12:77:ba:93:b7:f9: 82:b6:23:4f:83:2f:91:0b:79:e3:e6:68:8f:70:e8:f8:f1:97: a8:20:02:7b:3a:71:15:72:e0:59:41:87:4e:15:a0:50:d9:6e: 90:f0:be:01:14:04:97:1b:35:1a:c3:03:de:2b:3f:88:00:ad: ec:e9:3f:b6:c0:21:70:71:d0:e9:a5:70:f5:41:f2:4d:d5:bb: 64:e4:05:83:3c:e8:af:3e:1a:b9:62:b0:b5:69:65:9f:1d:ba: ae:02:74:db:8a:bd:6b:63:83:da:ec:21:8d:5c:a5:a8:95:78: 1e:c5:89:33:f7:a7:f2:e6:26:1d:02:80:41:d9:5e:61:3d:02: fd:cb:98:f5:4e:80:b8:fc:23:ea:52:2c:21:fb:65:47:90:5e: 4f:30:3d:83:14:9b:e1:ae:a8:a2:e7:52:98:81:a5:4d:64:36: 42:14:14:92:73:04:a2:e5:90:6e:47:d0:a5:97:08:63:17:92: 71:1d:48:76:61:7f:1f:eb:7d:0c:59:d6:d2:df:9a:6b:58:e0: 3b:e0:3e:dc:70:b6:8a:73:62:95:3e:02:16:b5:df:99:64:c8: bc:15:7c:70:5f:f3:a3:ec:ce:8e:cc:03:84:1d:a3:0d:d7:a4: 57:c5:72:b0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8Eun9/YnmL0+7ZT4vY/+TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5NzU4MmJjM2YwYmFkYjY2MWE2OWZiOWE0ODNiMzdlYzkw NTgyN2UwHhcNMjYwMTAyMDAxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNmY5ODEwZWVmNjA1MzI5NzI3NTIxNjk3NTYxNDdhZjZlZmVmYzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/9ipVo240CW5dtbe04WPiTUMcnn ElEYD3/IqsC49MDdBTQgn81X/M/EZxl5zJrDnHQ6/igMWUO0c3udEdh8ZM7/b8N3 zVgrGzSi/5mZtbLaC3JEwWqLum1ukYfe/NVw68OgWN5PxGaRMskcZrYHg444mZFq fi0AeiQXEmh8umYivgpouaB6t8bT6/7ALWDx7UQsJHWtYmqbANHDelJWBwWpdcKF 0HsnET01gy2/Fh60ovKR90g6W5lWxJc4nkOR1FM45KvkwmJOcEoXXKd8htJ0PBii sMNOnqLamS7mmZSzbCt96yusD9yQkQsorfEroZhrTMQfXdshaZy6umqSxwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAb5gQ7vYFMpcnUhaXVhR69u/vw2MB8GA1UdIwQY MBaAFFl1grw/C622YaafuaSDs37JBYJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1hXQ3ZEOExyYlpocHAtNXBJT3pmc2tGZ240LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC80ODg5OGItZjliNC00NWI0LTk5M2Yt ZThhMWRjOGUzZmZjLzEvQnZtQkR1OWdVeWx5ZFNGcGRXRkhyMjctX0RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC80ODg5OGItZjliNC00NWI0LTk5M2YtZThhMWRjOGUzZmZj LzEvV1hXQ3ZEOExyYlpocHAtNXBJT3pmc2tGZ240LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuStgMA0E AgACMAcDBQAqAWXgMA0GCSqGSIb3DQEBCwUAA4IBAQBFTUuo2Gzi0oINrFISd7qT t/mCtiNPgy+RC3nj5miPcOj48ZeoIAJ7OnEVcuBZQYdOFaBQ2W6Q8L4BFASXGzUa wwPeKz+IAK3s6T+2wCFwcdDppXD1QfJN1btk5AWDPOivPhq5YrC1aWWfHbquAnTb ir1rY4Pa7CGNXKWolXgexYkz96fy5iYdAoBB2V5hPQL9y5j1ToC4/CPqUiwh+2VH kF5PMD2DFJvhrqii51KYgaVNZDZCFBSScwSi5ZBuR9CllwhjF5JxHUh2YX8f630M WdbS35prWOA74D7ccLaKc2KVPgIWtd+ZZMi8FXxwX/Oj7M6OzAOEHaMN16RXxXKw -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:03 2026 by rpki-client