This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/B34oPqlHImuH-HLoSxcYGHAVzXE.roa File: B34oPqlHImuH-HLoSxcYGHAVzXE.roa (raw, json) Hash identifier: plTjEu9raIH59d+0TjlxC3YT2Qr6OxqXsZp3Znz5WRQ= Subject key identifier: 07:7E:28:3E:A9:47:22:6B:87:F8:72:E8:4B:17:18:18:70:15:CD:71 Certificate issuer: /CN=bc2613e0f26d3907f096340be050c201d358d6d5 Certificate serial: 019C04D3B97CCBF32C3EDCBC52259C7E3BEF Authority key identifier: BC:26:13:E0:F2:6D:39:07:F0:96:34:0B:E0:50:C2:01:D3:58:D6:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vCYT4PJtOQfwljQL4FDCAdNY1tU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/B34oPqlHImuH-HLoSxcYGHAVzXE.roa Signing time: Wed 28 Jan 2026 13:38:30 +0000 ROA not before: Wed 28 Jan 2026 13:38:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213904 IP address blocks: 193.200.114.0/24 maxlen: 24 2a0b:bb00::/29 maxlen: 32 2a0b:bb00::/32 maxlen: 32 2a0b:bb01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/vCYT4PJtOQfwljQL4FDCAdNY1tU.crl rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/vCYT4PJtOQfwljQL4FDCAdNY1tU.mft rsync://rpki.ripe.net/repository/DEFAULT/vCYT4PJtOQfwljQL4FDCAdNY1tU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:04:d3:b9:7c:cb:f3:2c:3e:dc:bc:52:25:9c:7e:3b:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc2613e0f26d3907f096340be050c201d358d6d5 Validity Not Before: Jan 28 13:38:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=077e283ea947226b87f872e84b1718187015cd71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0f:4d:d5:c5:8e:6d:93:f1:58:ad:12:41:53: 92:4b:f1:97:0f:6b:aa:4e:0b:80:99:d2:87:ac:70: 4e:cf:b4:db:1c:33:87:2f:7c:a4:46:92:aa:db:cf: d6:94:1e:9a:9f:30:65:4a:96:07:1b:94:1a:8c:4a: 56:77:c5:14:a8:09:fc:b9:e3:b2:ee:44:f5:16:b7: 4b:c4:7f:4f:96:1c:af:da:67:ee:d9:c3:3e:c1:e4: f4:e8:cd:5a:8a:c0:1e:f1:29:76:8a:26:55:15:0e: fd:ef:3d:00:4c:81:b2:8f:18:6f:cf:06:2a:50:1b: f8:e7:b9:13:95:ce:95:38:b9:e4:66:04:3f:9f:54: 88:16:7d:a9:cd:ec:d4:ff:22:32:9f:36:1d:2d:24: 8c:cd:ed:84:5a:48:30:d0:e7:cd:97:f4:e0:f4:8d: fb:e2:11:b7:11:72:ea:3b:22:1f:88:8a:f7:ea:c8: 2a:1d:cd:86:e8:ba:a2:fa:e8:1b:4c:72:11:ae:25: 37:5c:f0:e8:65:30:20:f0:98:38:e0:bd:e8:16:0c: 97:2a:76:24:35:eb:e0:ef:47:73:b5:a0:d5:c7:ba: 72:af:57:62:bd:f8:53:a6:e2:79:df:7c:ca:3f:23: c2:4e:b3:f2:c5:ae:e0:93:64:eb:d2:13:75:7c:0f: 5b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7E:28:3E:A9:47:22:6B:87:F8:72:E8:4B:17:18:18:70:15:CD:71 X509v3 Authority Key Identifier: keyid:BC:26:13:E0:F2:6D:39:07:F0:96:34:0B:E0:50:C2:01:D3:58:D6:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vCYT4PJtOQfwljQL4FDCAdNY1tU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/B34oPqlHImuH-HLoSxcYGHAVzXE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/vCYT4PJtOQfwljQL4FDCAdNY1tU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.200.114.0/24 IPv6: 2a0b:bb00::/29 Signature Algorithm: sha256WithRSAEncryption 27:51:3d:30:c7:df:f3:71:7e:09:b5:fe:f0:f5:3a:0d:e1:ac: 22:c3:d0:1a:dd:76:39:5e:8a:a2:db:2e:ca:17:bd:f3:8c:67: 13:4f:3e:45:2c:a2:d9:7e:5f:f2:77:b0:bd:f6:c6:8b:4f:7c: 3f:ea:19:54:1e:09:0a:c5:23:4a:c5:c1:91:4a:5d:d0:76:d7: 8d:54:51:32:7a:3e:2d:77:cc:47:51:91:9e:61:9f:ed:db:d0: be:33:e5:ac:fb:5e:e4:9f:14:ec:96:04:ea:c8:c5:63:fc:15: 03:52:54:c3:02:c3:0b:8c:b9:c7:01:f4:7f:62:26:85:e1:e1: 40:23:67:2d:b3:f2:7a:d7:34:e3:95:50:3d:87:28:37:d8:58: 37:11:26:6e:8b:99:d5:49:b9:c8:1d:ac:49:32:7d:dc:6d:9e: b1:62:0a:60:87:2f:73:8d:db:13:e8:43:b4:c7:b1:89:e9:b2: 4f:9b:79:50:6c:69:46:1f:75:1f:a8:a3:da:86:cd:cb:5a:f0: 3f:44:22:49:09:bc:2e:76:98:e4:40:60:bd:ae:d8:6e:ba:46: b9:be:f8:7b:07:0d:67:08:ee:8d:ad:99:c4:71:30:aa:2a:cc: 69:4f:bc:9d:c4:d0:f2:4c:70:97:dd:40:95:bb:9b:9e:a8:ff: ca:af:28:23 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZwE07l8y/MsPty8UiWcfjvvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjMjYxM2UwZjI2ZDM5MDdmMDk2MzQwYmUwNTBjMjAxZDM1 OGQ2ZDUwHhcNMjYwMTI4MTMzODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNzdlMjgzZWE5NDcyMjZiODdmODcyZTg0YjE3MTgxODcwMTVjZDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuw9N1cWObZPxWK0SQVOSS/GXD2uq TguAmdKHrHBOz7TbHDOHL3ykRpKq28/WlB6anzBlSpYHG5QajEpWd8UUqAn8ueOy 7kT1FrdLxH9Plhyv2mfu2cM+weT06M1aisAe8Sl2iiZVFQ797z0ATIGyjxhvzwYq UBv457kTlc6VOLnkZgQ/n1SIFn2pzezU/yIynzYdLSSMze2EWkgw0OfNl/Tg9I37 4hG3EXLqOyIfiIr36sgqHc2G6Lqi+ugbTHIRriU3XPDoZTAg8Jg44L3oFgyXKnYk Nevg70dztaDVx7pyr1divfhTpuJ533zKPyPCTrPyxa7gk2Tr0hN1fA9bGQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAd+KD6pRyJrh/hy6EsXGBhwFc1xMB8GA1UdIwQY MBaAFLwmE+DybTkH8JY0C+BQwgHTWNbVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkNZVDRQSnRPUWZ3bGpRTDRGRENBZE5ZMXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zNmNkNDAtOTA4MS00MGU2LTk3Yzct MTYyMGNmZGM3MTE3LzEvQjM0b1BxbEhJbXVILUhMb1N4Y1lHSEFWelhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zNmNkNDAtOTA4MS00MGU2LTk3YzctMTYyMGNmZGM3MTE3 LzEvdkNZVDRQSnRPUWZ3bGpRTDRGRENBZE5ZMXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwchyMA0E AgACMAcDBQMqC7sAMA0GCSqGSIb3DQEBCwUAA4IBAQAnUT0wx9/zcX4Jtf7w9ToN 4awiw9Aa3XY5Xoqi2y7KF73zjGcTTz5FLKLZfl/yd7C99saLT3w/6hlUHgkKxSNK xcGRSl3QdteNVFEyej4td8xHUZGeYZ/t29C+M+Ws+17knxTslgTqyMVj/BUDUlTD AsMLjLnHAfR/YiaF4eFAI2cts/J61zTjlVA9hyg32Fg3ESZui5nVSbnIHaxJMn3c bZ6xYgpghy9zjdsT6EO0x7GJ6bJPm3lQbGlGH3UfqKPahs3LWvA/RCJJCbwudpjk QGC9rthuuka5vvh7Bw1nCO6NrZnEcTCqKsxpT7ydxNDyTHCX3UCVu5ueqP/Krygj -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:35 2026 by rpki-client