This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/BdmHHNcFy19iW1TzdExYw52MDDc.roa File: BdmHHNcFy19iW1TzdExYw52MDDc.roa (raw, json) Hash identifier: xDCdnrZEUBBXzMuEuxxpWBUT8lhzCoBbei5OHQatls4= Subject key identifier: 05:D9:87:1C:D7:05:CB:5F:62:5B:54:F3:74:4C:58:C3:9D:8C:0C:37 Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f Certificate serial: 019B7D7FF9DF2AFB0EA19F099E52015FD608 Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/BdmHHNcFy19iW1TzdExYw52MDDc.roa Signing time: Fri 02 Jan 2026 06:58:17 +0000 ROA not before: Fri 02 Jan 2026 06:58:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48660 IP address blocks: 213.238.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.mft rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:7f:f9:df:2a:fb:0e:a1:9f:09:9e:52:01:5f:d6:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f Validity Not Before: Jan 2 06:58:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05d9871cd705cb5f625b54f3744c58c39d8c0c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:04:ab:78:c5:a8:86:17:e9:0b:91:a7:da:7c: cc:18:2d:ff:c8:75:46:ac:1b:ae:88:8f:2c:8e:4f: 5d:b3:62:7d:ad:aa:1d:5c:d7:a0:cc:d0:07:b6:c8: 0f:65:38:8c:15:06:3b:9b:ec:0a:9c:72:b2:29:2d: 4b:fb:62:91:55:cb:fc:e9:f3:95:b7:50:ef:5d:e7: 76:5d:68:4d:7c:66:fb:af:ef:dc:fc:fe:b6:71:1c: a5:bf:47:8a:09:61:b9:9e:98:ce:59:91:6b:1f:66: ae:98:d0:89:44:f8:f1:61:27:da:53:77:60:77:8e: c3:3e:93:d4:b2:ac:b2:15:e3:58:51:b9:a9:e1:9a: 99:00:1a:4a:92:ab:05:c3:cc:41:63:31:18:86:a3: 83:fc:37:0a:fb:90:44:78:33:60:82:84:a8:f8:f6: 01:dd:76:a7:41:ae:7f:2b:d5:67:b5:71:da:4b:58: d7:14:f4:07:a5:82:ce:2d:f6:b6:8a:b0:bc:56:6e: 71:16:f6:f8:0e:38:ae:87:0f:47:8a:00:ef:05:a9: 77:1c:7d:d4:c6:aa:5b:37:cd:3d:d9:f2:aa:29:ea: 5e:62:69:d2:4f:7d:a0:f9:7c:03:d8:80:15:9a:67: c7:4b:be:ff:4b:c7:6c:24:f2:68:fa:4f:07:21:99: 46:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D9:87:1C:D7:05:CB:5F:62:5B:54:F3:74:4C:58:C3:9D:8C:0C:37 X509v3 Authority Key Identifier: keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/BdmHHNcFy19iW1TzdExYw52MDDc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.238.190.0/24 Signature Algorithm: sha256WithRSAEncryption 53:0e:b1:86:56:c8:9f:f7:ed:f9:6b:0a:f3:71:8b:03:0f:da: 68:41:ac:52:ac:49:ed:dd:e7:ef:8f:d6:59:4a:59:a9:89:bd: ba:6d:e7:15:43:e4:82:f7:d4:c4:26:d7:ec:e6:bd:66:ec:b1: ec:24:1b:0f:4d:25:87:6d:71:c1:74:d6:83:9e:25:a7:b4:1f: cc:42:d9:95:ec:aa:0b:54:50:f4:03:76:cd:05:fd:65:81:ce: 1b:17:48:bf:2c:54:93:c3:45:57:3b:a0:85:b8:f2:ba:84:0b: 95:73:48:d1:14:a9:ae:51:10:6e:02:7b:18:ad:33:34:85:80: fa:58:32:ae:eb:aa:8e:a1:6c:46:9f:22:05:30:8d:9c:c7:97: d3:04:37:85:f7:ff:a5:82:cf:e6:57:e7:3e:64:45:a6:70:2d: 83:1f:4b:ad:de:b9:3b:5a:35:20:63:61:4a:fa:c4:22:40:86: 06:41:eb:0e:1a:0b:9c:86:45:c7:33:24:fd:e4:3c:51:ca:53: 1c:d1:b1:a6:a4:8e:10:53:28:7a:a3:7e:99:a2:4e:a7:47:f9: 8a:6d:92:4b:73:e3:14:b9:88:16:b5:fa:95:32:b2:16:6b:c4: ce:2d:38:ab:5c:cf:f9:87:59:e2:6a:6a:1d:18:61:88:b5:9f: 6a:07:98:6b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9f/nfKvsOoZ8JnlIBX9YIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0Y2JkYTc4YjFkMWI2MTNkZjU2NWZmOTk3MDBiNmFlZTk0 MGRlM2YwHhcNMjYwMTAyMDY1ODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWQ5ODcxY2Q3MDVjYjVmNjI1YjU0ZjM3NDRjNThjMzlkOGMwYzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQSreMWohhfpC5Gn2nzMGC3/yHVG rBuuiI8sjk9ds2J9raodXNegzNAHtsgPZTiMFQY7m+wKnHKyKS1L+2KRVcv86fOV t1DvXed2XWhNfGb7r+/c/P62cRylv0eKCWG5npjOWZFrH2aumNCJRPjxYSfaU3dg d47DPpPUsqyyFeNYUbmp4ZqZABpKkqsFw8xBYzEYhqOD/DcK+5BEeDNggoSo+PYB 3XanQa5/K9VntXHaS1jXFPQHpYLOLfa2irC8Vm5xFvb4Djiuhw9HigDvBal3HH3U xqpbN8092fKqKepeYmnST32g+XwD2IAVmmfHS77/S8dsJPJo+k8HIZlGuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAXZhxzXBctfYltU83RMWMOdjAw3MB8GA1UdIwQY MBaAFFTL2nix0bYT31Zf+ZcAtq7pQN4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYt Y2QzMTYxNWQwMWE5LzEvQmRtSEhOY0Z5MTlpVzFUemRFeFl3NTJNRERjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYtY2QzMTYxNWQwMWE5 LzEvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1e6+MA0G CSqGSIb3DQEBCwUAA4IBAQBTDrGGVsif9+35awrzcYsDD9poQaxSrEnt3efvj9ZZ Slmpib26becVQ+SC99TEJtfs5r1m7LHsJBsPTSWHbXHBdNaDniWntB/MQtmV7KoL VFD0A3bNBf1lgc4bF0i/LFSTw0VXO6CFuPK6hAuVc0jRFKmuURBuAnsYrTM0hYD6 WDKu66qOoWxGnyIFMI2cx5fTBDeF9/+lgs/mV+c+ZEWmcC2DH0ut3rk7WjUgY2FK +sQiQIYGQesOGguchkXHMyT95DxRylMc0bGmpI4QUyh6o36Zok6nR/mKbZJLc+MU uYgWtfqVMrIWa8TOLTirXM/5h1niamodGGGItZ9qB5hr -----END CERTIFICATE-----Generated at Wed Jan 21 15:54:27 2026 by rpki-client