This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/BLTLVOtXSHYCVOoxyeo_0IvC-JY.roa File: BLTLVOtXSHYCVOoxyeo_0IvC-JY.roa (raw, json) Hash identifier: NYaQAuEgTk5rfLHUlgc+7BWUhoUqRHnvCyLgXnpHIrs= Subject key identifier: 04:B4:CB:54:EB:57:48:76:02:54:EA:31:C9:EA:3F:D0:8B:C2:F8:96 Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda Certificate serial: 019B7C806EBD952652BBD4B43779686AA96E Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/BLTLVOtXSHYCVOoxyeo_0IvC-JY.roa Signing time: Fri 02 Jan 2026 02:19:10 +0000 ROA not before: Fri 02 Jan 2026 02:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16276 IP address blocks: 77.74.230.0/24 maxlen: 24 109.105.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.mft rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:6e:bd:95:26:52:bb:d4:b4:37:79:68:6a:a9:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda Validity Not Before: Jan 2 02:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04b4cb54eb5748760254ea31c9ea3fd08bc2f896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3e:5f:6b:8c:cf:90:a6:89:e8:cb:31:17:b1: 01:87:c9:2b:fe:b1:89:19:17:d7:b2:48:7e:c9:68: f7:a0:82:78:99:0a:13:d7:fb:12:e4:02:b9:93:b5: bd:11:ff:93:f6:c4:06:91:58:e3:e1:69:ec:1d:46: 31:fa:5e:10:23:9a:b7:45:23:9d:a9:bd:bc:19:e4: cd:68:0d:33:74:59:91:bf:e6:96:86:09:db:dc:79: 9b:7b:d7:71:10:6e:69:37:7d:69:f9:99:34:dc:89: fd:61:7c:ac:97:d4:a5:7e:be:ee:fc:49:df:ff:9a: 8c:d7:b0:c6:79:dc:7d:73:09:e5:dc:b1:83:5a:94: 84:58:68:7d:f8:31:d1:da:2c:67:a9:cd:46:aa:7b: 39:fc:44:cf:e7:39:c8:0d:7d:6e:fd:66:19:78:91: ee:e4:0e:a2:7c:9e:03:c5:ec:c7:e8:4e:b7:99:89: 43:6c:11:52:ea:b5:06:0b:99:be:b0:fd:ef:5f:bf: 15:a0:7c:83:42:47:17:de:91:77:62:9f:4a:f4:63: ec:db:a8:2e:4f:98:55:ff:b1:88:36:1c:f8:88:3c: 1b:aa:49:57:b7:9d:58:2e:a2:37:7d:bc:3d:3a:70: 79:79:7f:a1:3e:22:58:ce:d5:d0:dd:d8:a7:74:0b: 91:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B4:CB:54:EB:57:48:76:02:54:EA:31:C9:EA:3F:D0:8B:C2:F8:96 X509v3 Authority Key Identifier: keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/BLTLVOtXSHYCVOoxyeo_0IvC-JY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.74.230.0/24 109.105.195.0/24 Signature Algorithm: sha256WithRSAEncryption 25:b5:0e:d5:f7:9d:99:61:e7:64:c7:de:4b:3d:04:1e:ff:9d: c8:e3:23:6a:c9:a1:ee:d1:3a:20:80:06:94:be:09:c5:9c:32: 2f:cb:23:cc:b4:e8:ba:c4:8d:a4:cf:90:48:de:b1:fa:45:25: 89:06:02:d9:48:d6:f6:72:41:fa:5b:94:fa:2c:0a:d1:85:7f: 2a:b4:d7:b1:7c:a1:68:ba:1a:b3:d1:bf:2a:06:3b:62:02:7a: 7b:01:84:39:7a:4c:8a:f0:5f:0a:cf:2a:fb:13:90:b6:ac:9c: a8:81:f0:e9:2a:64:20:f1:fe:0f:e0:9a:47:25:aa:d1:ac:c1: 0a:ca:83:f3:34:3d:09:21:09:1b:93:6d:7e:5d:45:c9:9d:0b: a1:db:2e:fc:a6:a8:ba:a4:e0:f8:3b:5a:24:9e:45:87:69:1a: 93:11:8b:4f:c1:31:81:87:29:d5:3c:07:2d:cd:06:74:a0:91: 51:34:1a:21:29:aa:89:88:04:13:c9:4a:23:4f:20:54:fc:c8: 74:05:77:f4:20:2f:3a:81:d8:1b:a4:4a:8a:ee:d9:b7:78:05: e7:5a:8b:c5:87:a7:38:e0:c9:b6:cd:6b:8f:dc:6e:39:db:b0: d2:78:c1:41:80:81:5c:2d:51:72:0f:ec:58:bb:51:be:b9:0a: d8:98:e7:c3 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gG69lSZSu9S0N3loaqluMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm NjljZGEwHhcNMjYwMTAyMDIxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGI0Y2I1NGViNTc0ODc2MDI1NGVhMzFjOWVhM2ZkMDhiYzJmODk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvj5fa4zPkKaJ6MsxF7EBh8kr/rGJ GRfXskh+yWj3oIJ4mQoT1/sS5AK5k7W9Ef+T9sQGkVjj4WnsHUYx+l4QI5q3RSOd qb28GeTNaA0zdFmRv+aWhgnb3Hmbe9dxEG5pN31p+Zk03In9YXysl9Slfr7u/Enf /5qM17DGedx9cwnl3LGDWpSEWGh9+DHR2ixnqc1Gqns5/ETP5znIDX1u/WYZeJHu 5A6ifJ4DxezH6E63mYlDbBFS6rUGC5m+sP3vX78VoHyDQkcX3pF3Yp9K9GPs26gu T5hV/7GINhz4iDwbqklXt51YLqI3fbw9OnB5eX+hPiJYztXQ3dindAuR8QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAS0y1TrV0h2AlTqMcnqP9CLwviWMB8GA1UdIwQY MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt ZGQyOTRjMzc4ZjZjLzEvQkxUTFZPdFhTSFlDVk9veHllb18wSXZDLUpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATUrmAwQA bWnDMA0GCSqGSIb3DQEBCwUAA4IBAQAltQ7V952ZYedkx95LPQQe/53I4yNqyaHu 0ToggAaUvgnFnDIvyyPMtOi6xI2kz5BI3rH6RSWJBgLZSNb2ckH6W5T6LArRhX8q tNexfKFouhqz0b8qBjtiAnp7AYQ5ekyK8F8Kzyr7E5C2rJyogfDpKmQg8f4P4JpH JarRrMEKyoPzND0JIQkbk21+XUXJnQuh2y78pqi6pOD4O1oknkWHaRqTEYtPwTGB hynVPActzQZ0oJFRNBohKaqJiAQTyUojTyBU/Mh0BXf0IC86gdgbpEqK7tm3eAXn WovFh6c44Mm2zWuP3G4527DSeMFBgIFcLVFyD+xYu1G+uQrYmOfD -----END CERTIFICATE-----Generated at Wed Jan 21 19:02:17 2026 by rpki-client