This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/cf736d-3b8b-40f5-97cc-4b9529b48cea/1/BMvBIwftHVjOq-ECziUj7FT9eNs.roa File: BMvBIwftHVjOq-ECziUj7FT9eNs.roa (raw, json) Hash identifier: VyJ9dmhC8T/OTxMz+hnV4q4zH9/xxLGMFMd7o25VL7A= Subject key identifier: 04:CB:C1:23:07:ED:1D:58:CE:AB:E1:02:CE:25:23:EC:54:FD:78:DB Certificate issuer: /CN=d1ed664f4af2f8e119b87a268c5d4303fbb36116 Certificate serial: 019B783487E8647E68DC13BC1AD09EB5640E Authority key identifier: D1:ED:66:4F:4A:F2:F8:E1:19:B8:7A:26:8C:5D:43:03:FB:B3:61:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0e1mT0ry-OEZuHomjF1DA_uzYRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/cf736d-3b8b-40f5-97cc-4b9529b48cea/1/BMvBIwftHVjOq-ECziUj7FT9eNs.roa Signing time: Thu 01 Jan 2026 06:17:47 +0000 ROA not before: Thu 01 Jan 2026 06:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214986 IP address blocks: 193.36.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/cf736d-3b8b-40f5-97cc-4b9529b48cea/1/0e1mT0ry-OEZuHomjF1DA_uzYRY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/cf736d-3b8b-40f5-97cc-4b9529b48cea/1/0e1mT0ry-OEZuHomjF1DA_uzYRY.mft rsync://rpki.ripe.net/repository/DEFAULT/0e1mT0ry-OEZuHomjF1DA_uzYRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 21:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:87:e8:64:7e:68:dc:13:bc:1a:d0:9e:b5:64:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1ed664f4af2f8e119b87a268c5d4303fbb36116 Validity Not Before: Jan 1 06:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04cbc12307ed1d58ceabe102ce2523ec54fd78db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:59:80:00:2c:b9:8d:f6:b1:66:3c:33:65:4e: bd:f4:ee:6c:9d:8e:4d:7e:c3:3a:91:f3:b8:de:25: bd:4f:82:e7:66:40:ec:39:b5:6c:da:ab:51:26:b3: 86:c6:67:3c:e0:01:b9:45:98:64:c2:76:4a:57:3e: 79:16:34:c6:d3:48:86:7e:a7:36:fe:2e:ad:dc:a9: 44:16:97:97:5b:6f:1f:af:fb:3f:1a:62:d9:fd:a8: cd:14:97:bd:4b:54:60:92:b0:5f:a7:49:8f:5b:79: fe:3a:43:f5:da:e9:39:c0:48:8b:bf:f5:48:f6:c7: c3:6f:b0:74:8e:c6:91:c3:71:bc:ab:ab:78:0b:2c: e0:2e:cb:a5:2e:f3:a0:87:59:11:4e:5c:dd:0c:97: 8a:ef:90:30:d4:d8:ef:bb:15:d8:7d:30:52:80:8a: dd:03:16:4f:19:4c:1c:10:40:f4:7c:5a:2d:75:6b: 6e:0f:53:e9:62:45:08:02:ab:3d:85:9c:8d:09:05: 8e:69:67:e3:bb:45:ff:5b:02:91:0f:b5:b4:00:cd: 8b:48:a7:95:03:00:11:f8:13:7f:c5:ee:50:4b:a5: ff:22:ef:00:f8:61:6a:db:c7:44:32:0a:16:47:29: 55:2e:57:2c:24:2d:94:19:53:60:e7:f4:61:78:2a: 32:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:CB:C1:23:07:ED:1D:58:CE:AB:E1:02:CE:25:23:EC:54:FD:78:DB X509v3 Authority Key Identifier: keyid:D1:ED:66:4F:4A:F2:F8:E1:19:B8:7A:26:8C:5D:43:03:FB:B3:61:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e1mT0ry-OEZuHomjF1DA_uzYRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cf736d-3b8b-40f5-97cc-4b9529b48cea/1/BMvBIwftHVjOq-ECziUj7FT9eNs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cf736d-3b8b-40f5-97cc-4b9529b48cea/1/0e1mT0ry-OEZuHomjF1DA_uzYRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.36.226.0/24 Signature Algorithm: sha256WithRSAEncryption 89:85:19:4c:62:e1:10:ac:e8:13:60:9f:c6:f1:b5:5b:f7:82: a3:a8:83:94:d6:05:49:47:01:96:9c:17:d0:55:7e:a8:7e:e4: 23:52:c4:da:37:d1:53:a7:d8:1f:6b:6d:ad:08:a4:4c:d0:f2: 6f:ab:ba:4f:74:67:79:ac:61:55:38:6d:f2:63:da:5e:fd:8d: 19:99:fa:c3:1c:69:36:be:0b:15:25:ac:c6:9b:0f:93:71:1c: 12:aa:ff:18:d8:a6:56:38:b0:4f:d0:4e:1f:16:28:3e:c1:13: a3:dd:25:65:9a:5e:41:6a:f8:35:85:ec:03:33:ff:c4:38:ac: 5b:28:bd:d2:49:35:3f:41:7e:7c:a7:b9:b4:b2:83:c4:27:91: e4:b3:a5:5e:c5:b5:87:03:63:39:2b:7d:b0:d3:28:46:f9:16: 7b:4c:c8:af:a8:13:1e:73:7f:43:df:89:29:82:ab:ca:7c:94: 8c:d2:99:44:6f:e9:00:e8:88:ae:00:cb:60:5a:93:20:ae:23: 74:ae:56:9f:ed:3f:37:42:44:db:d6:ee:d6:3b:50:1d:86:57: 36:4b:b2:4a:f1:70:68:76:3d:f9:28:1d:0b:7d:ed:36:f9:6b: ff:18:01:15:74:a4:8c:82:dc:ce:45:4e:62:a0:cc:2b:c6:7b: 11:b3:04:93 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NIfoZH5o3BO8GtCetWQOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZWQ2NjRmNGFmMmY4ZTExOWI4N2EyNjhjNWQ0MzAzZmJi MzYxMTYwHhcNMjYwMTAxMDYxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGNiYzEyMzA3ZWQxZDU4Y2VhYmUxMDJjZTI1MjNlYzU0ZmQ3OGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFmAACy5jfaxZjwzZU699O5snY5N fsM6kfO43iW9T4LnZkDsObVs2qtRJrOGxmc84AG5RZhkwnZKVz55FjTG00iGfqc2 /i6t3KlEFpeXW28fr/s/GmLZ/ajNFJe9S1RgkrBfp0mPW3n+OkP12uk5wEiLv/VI 9sfDb7B0jsaRw3G8q6t4CyzgLsulLvOgh1kRTlzdDJeK75Aw1NjvuxXYfTBSgIrd AxZPGUwcEED0fFotdWtuD1PpYkUIAqs9hZyNCQWOaWfju0X/WwKRD7W0AM2LSKeV AwAR+BN/xe5QS6X/Iu8A+GFq28dEMgoWRylVLlcsJC2UGVNg5/RheCoyrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFATLwSMH7R1YzqvhAs4lI+xU/XjbMB8GA1UdIwQY MBaAFNHtZk9K8vjhGbh6JoxdQwP7s2EWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGUxbVQwcnktT0VadUhvbWpGMURBX3V6WVJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9jZjczNmQtM2I4Yi00MGY1LTk3Y2Mt NGI5NTI5YjQ4Y2VhLzEvQk12Qkl3ZnRIVmpPcS1FQ3ppVWo3RlQ5ZU5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9jZjczNmQtM2I4Yi00MGY1LTk3Y2MtNGI5NTI5YjQ4Y2Vh LzEvMGUxbVQwcnktT0VadUhvbWpGMURBX3V6WVJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSTiMA0G CSqGSIb3DQEBCwUAA4IBAQCJhRlMYuEQrOgTYJ/G8bVb94KjqIOU1gVJRwGWnBfQ VX6ofuQjUsTaN9FTp9gfa22tCKRM0PJvq7pPdGd5rGFVOG3yY9pe/Y0ZmfrDHGk2 vgsVJazGmw+TcRwSqv8Y2KZWOLBP0E4fFig+wROj3SVlml5Bavg1hewDM//EOKxb KL3SSTU/QX58p7m0soPEJ5Hks6VexbWHA2M5K32w0yhG+RZ7TMivqBMec39D34kp gqvKfJSM0plEb+kA6IiuAMtgWpMgriN0rlaf7T83QkTb1u7WO1Adhlc2S7JK8XBo dj35KB0Lfe02+Wv/GAEVdKSMgtzORU5ioMwrxnsRswST -----END CERTIFICATE-----Generated at Sat Jan 31 04:33:01 2026 by rpki-client