This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa File: BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa (raw, json) Hash identifier: XfIOGzU1Xr7xtlffkFSqkAOYlDdi/uy4BUfSJ4jYq/U= Subject key identifier: 06:7A:57:78:6E:20:F1:81:27:03:BA:8C:34:EC:B3:AE:49:9B:C5:EE Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420 Certificate serial: 019B78A215D1344F43A48261A048B91109A2 Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa Signing time: Thu 01 Jan 2026 08:17:26 +0000 ROA not before: Thu 01 Jan 2026 08:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51348 IP address blocks: 195.226.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:15:d1:34:4f:43:a4:82:61:a0:48:b9:11:09:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420 Validity Not Before: Jan 1 08:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=067a57786e20f1812703ba8c34ecb3ae499bc5ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7b:6a:d8:57:ff:0e:e3:1f:94:cb:57:73:bb: 74:a8:b8:ad:5a:46:6d:0f:63:7b:92:36:2d:c6:b4: 8f:32:6f:00:3a:89:f7:af:d1:53:aa:b8:e5:4c:86: d0:2e:35:b4:53:49:79:6a:ae:f1:35:0e:3d:11:0e: 92:69:a7:49:67:19:26:08:94:60:90:5a:81:fe:d4: e0:70:ed:4c:cd:52:96:03:1b:36:d0:48:6b:8f:45: e9:94:5f:22:4c:fb:12:b4:83:4a:01:57:ae:ee:bc: e0:a1:f5:e2:8e:26:40:c0:c0:b8:6a:79:8b:8c:81: 31:85:f9:30:30:f9:c1:6e:a2:38:50:2d:b8:c7:66: 14:13:ca:17:d0:ba:74:b8:c5:e4:83:1e:5a:7c:d7: 56:b8:d1:c7:47:bc:87:5b:92:bd:1f:8c:e3:28:90: 78:bc:0d:84:fc:d6:68:40:10:d3:31:75:29:7f:7e: f9:25:da:d4:8a:63:48:7f:49:b5:15:c8:94:d6:c8: 98:ad:cc:2a:57:1d:1e:17:f4:38:5f:23:e1:b2:12: e7:81:97:93:9a:4f:2f:86:6f:70:f2:00:b7:1c:1b: 26:ac:83:ba:bd:70:5a:50:f7:bf:d8:1a:52:c1:65: 8e:6a:02:71:75:41:7b:59:5c:7e:84:91:e9:45:b8: d2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7A:57:78:6E:20:F1:81:27:03:BA:8C:34:EC:B3:AE:49:9B:C5:EE X509v3 Authority Key Identifier: keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.226.209.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:04:fd:3f:fc:6d:e9:b4:a0:d9:07:48:58:89:17:c5:1c:9a: 56:2f:5f:d0:47:fc:35:69:6f:3d:6c:74:70:47:86:d8:70:f7: 2e:23:d5:48:0b:c1:ec:a1:ab:d6:7b:bb:24:d5:13:54:25:21: 03:5c:61:f6:0f:05:78:23:4c:28:ef:f8:e3:b0:90:73:e4:ed: 27:47:42:9e:61:cc:7c:49:8f:53:2c:15:f6:c1:cf:5e:c5:38: 9b:e3:3b:1b:3c:e1:08:6d:91:6b:32:79:39:c5:3b:99:f9:c9: f9:7c:f2:90:46:05:fe:96:5c:06:dc:25:4a:25:6d:a8:13:44: 02:e4:65:dd:68:ac:40:57:63:fb:78:cd:3e:9e:67:30:63:23: e5:5d:74:ef:19:27:00:08:92:aa:16:88:70:75:34:ce:f4:33: 97:6a:7d:fe:cb:55:ca:6c:41:94:f9:a0:04:05:6b:ae:bb:59: dd:4f:ef:b1:24:d7:03:b0:66:66:2b:eb:21:52:77:9a:6f:e1: 2e:6a:40:ad:8a:66:e9:a1:41:64:08:8f:23:77:13:bb:92:72: 92:cb:74:97:8c:6d:17:83:e2:e1:81:0b:d9:02:03:10:d7:20: c8:5b:22:80:10:53:67:01:c3:e6:76:66:4f:f6:18:13:e8:50: 88:ae:01:07 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ohXRNE9DpIJhoEi5EQmiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwY2NkOTEzYTk5YmFmZDg5M2UwN2JhOTY4YTY3NDM0ZTNk ZjU0MjAwHhcNMjYwMTAxMDgxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjdhNTc3ODZlMjBmMTgxMjcwM2JhOGMzNGVjYjNhZTQ5OWJjNWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArntq2Ff/DuMflMtXc7t0qLitWkZt D2N7kjYtxrSPMm8AOon3r9FTqrjlTIbQLjW0U0l5aq7xNQ49EQ6SaadJZxkmCJRg kFqB/tTgcO1MzVKWAxs20Ehrj0XplF8iTPsStINKAVeu7rzgofXijiZAwMC4anmL jIExhfkwMPnBbqI4UC24x2YUE8oX0Lp0uMXkgx5afNdWuNHHR7yHW5K9H4zjKJB4 vA2E/NZoQBDTMXUpf375JdrUimNIf0m1FciU1siYrcwqVx0eF/Q4XyPhshLngZeT mk8vhm9w8gC3HBsmrIO6vXBaUPe/2BpSwWWOagJxdUF7WVx+hJHpRbjSpwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAZ6V3huIPGBJwO6jDTss65Jm8XuMB8GA1UdIwQY MBaAFJDM2ROpm6/Yk+B7qWimdDTj31QgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWIt ZjZhNTEzZGUyZmVhLzEvQm5wWGVHNGc4WUVuQTdxTU5PeXpya21ieGU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWItZjZhNTEzZGUyZmVh LzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+LRMA0G CSqGSIb3DQEBCwUAA4IBAQALBP0//G3ptKDZB0hYiRfFHJpWL1/QR/w1aW89bHRw R4bYcPcuI9VIC8HsoavWe7sk1RNUJSEDXGH2DwV4I0wo7/jjsJBz5O0nR0KeYcx8 SY9TLBX2wc9exTib4zsbPOEIbZFrMnk5xTuZ+cn5fPKQRgX+llwG3CVKJW2oE0QC 5GXdaKxAV2P7eM0+nmcwYyPlXXTvGScACJKqFohwdTTO9DOXan3+y1XKbEGU+aAE BWuuu1ndT++xJNcDsGZmK+shUneab+EuakCtimbpoUFkCI8jdxO7knKSy3SXjG0X g+LhgQvZAgMQ1yDIWyKAEFNnAcPmdmZP9hgT6FCIrgEH -----END CERTIFICATE-----Generated at Tue Feb 10 00:10:06 2026 by rpki-client