This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/BctVhDDL4seHCNtZ3GoxBnwQUts.roa File: BctVhDDL4seHCNtZ3GoxBnwQUts.roa (raw, json) Hash identifier: xNF0n/azGwe9OxbM/WxqVoZDol9btFmo4ttiI4ECT5w= Subject key identifier: 05:CB:55:84:30:CB:E2:C7:87:08:DB:59:DC:6A:31:06:7C:10:52:DB Certificate issuer: /CN=8a01ab6cd44a7a3ea4002c106a96c427b52c81d5 Certificate serial: 019B77C66DAACDDAEAB68DBE4274268E2895 Authority key identifier: 8A:01:AB:6C:D4:4A:7A:3E:A4:00:2C:10:6A:96:C4:27:B5:2C:81:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/BctVhDDL4seHCNtZ3GoxBnwQUts.roa Signing time: Thu 01 Jan 2026 04:17:31 +0000 ROA not before: Thu 01 Jan 2026 04:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59432 IP address blocks: 141.98.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.mft rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:6d:aa:cd:da:ea:b6:8d:be:42:74:26:8e:28:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a01ab6cd44a7a3ea4002c106a96c427b52c81d5 Validity Not Before: Jan 1 04:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05cb558430cbe2c78708db59dc6a31067c1052db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c6:8b:64:a4:22:33:d4:52:03:68:b7:ce:83: fa:4b:7e:75:a9:f0:d5:c3:e4:2d:50:89:c7:98:1b: 39:c1:fc:66:a0:59:03:42:eb:9b:a5:4e:1d:4f:45: 18:71:9c:b7:60:08:7c:87:0c:ea:b5:c1:ef:38:c6: 6b:be:2f:88:e9:de:4e:9f:1c:24:47:17:ed:02:1a: 8a:ea:f4:5d:76:63:f8:9c:e4:2d:a8:57:57:2c:dd: 46:83:30:d4:99:ed:87:61:a7:10:37:81:16:2e:56: 9f:00:29:f7:ed:2a:59:7f:fa:83:6b:96:2e:94:ca: b3:4b:4d:dd:9a:78:8b:a3:51:1f:01:26:93:2d:90: 5d:b8:74:e2:22:6d:5d:3f:19:d4:71:4a:e4:19:a5: 57:19:7d:ca:a9:94:10:66:bb:97:94:a0:81:04:19: 0e:ad:a2:92:52:7e:31:e9:17:c4:7e:bf:95:46:3e: c0:c3:f1:09:3b:90:7d:26:0e:15:92:9a:5f:35:c1: fe:1c:7d:ad:da:0d:58:ea:60:f4:9e:b9:5b:31:d7: 48:ce:df:d7:36:ee:c4:9f:9b:a5:c1:dd:52:20:d5: 5d:a5:d9:47:ad:24:4f:84:81:01:de:e5:60:35:cf: 30:50:0b:7d:60:bc:c4:71:da:18:f5:fa:0f:0a:b4: e7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CB:55:84:30:CB:E2:C7:87:08:DB:59:DC:6A:31:06:7C:10:52:DB X509v3 Authority Key Identifier: keyid:8A:01:AB:6C:D4:4A:7A:3E:A4:00:2C:10:6A:96:C4:27:B5:2C:81:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/BctVhDDL4seHCNtZ3GoxBnwQUts.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.98.149.0/24 Signature Algorithm: sha256WithRSAEncryption ec:e7:98:ff:a4:d6:d6:4b:c4:d2:70:cc:4b:ab:6b:ce:19:82: ba:5e:19:7e:02:01:17:e3:c5:0c:90:9e:b4:94:90:c5:6a:14: d0:a1:81:46:a9:82:11:7e:34:f0:4b:3c:f6:03:ac:0a:9a:8e: 7a:cd:18:ef:27:61:18:76:47:65:64:23:76:99:83:18:63:96: cf:f9:d0:05:84:b3:a7:0f:54:36:9b:61:4d:b5:fa:ea:ef:3e: 9e:5c:1a:3d:27:91:23:98:62:cf:27:6a:50:d3:ba:50:00:c1: ef:b4:43:4b:29:06:3f:15:b8:e6:10:ae:55:b7:78:00:4e:0d: f8:47:bb:01:5d:71:f5:c1:65:d7:9b:d0:7a:9d:e4:f9:12:3a: 2b:eb:9c:c8:01:36:50:55:95:42:64:5d:72:ba:b7:5c:b0:41: 4a:f3:33:b5:66:b2:3e:74:80:f7:6c:8a:28:57:40:97:f3:38: b3:b8:c0:9a:84:6d:ba:66:88:0a:53:52:4a:b8:15:d8:cc:ac: 98:bc:40:1e:ee:8c:0c:cf:60:10:2f:dd:b1:34:0b:49:17:54: ce:d9:fb:49:a4:7d:e1:80:d0:cc:5a:5c:4c:f9:72:29:f0:46: 71:fe:72:0c:5d:f4:a5:da:af:72:38:ca:53:30:9b:c8:6e:5e: 25:b0:f4:95 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xm2qzdrqto2+QnQmjiiVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMDFhYjZjZDQ0YTdhM2VhNDAwMmMxMDZhOTZjNDI3YjUy YzgxZDUwHhcNMjYwMTAxMDQxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWNiNTU4NDMwY2JlMmM3ODcwOGRiNTlkYzZhMzEwNjdjMTA1MmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMaLZKQiM9RSA2i3zoP6S351qfDV w+QtUInHmBs5wfxmoFkDQuubpU4dT0UYcZy3YAh8hwzqtcHvOMZrvi+I6d5Onxwk RxftAhqK6vRddmP4nOQtqFdXLN1GgzDUme2HYacQN4EWLlafACn37SpZf/qDa5Yu lMqzS03dmniLo1EfASaTLZBduHTiIm1dPxnUcUrkGaVXGX3KqZQQZruXlKCBBBkO raKSUn4x6RfEfr+VRj7Aw/EJO5B9Jg4VkppfNcH+HH2t2g1Y6mD0nrlbMddIzt/X Nu7En5ulwd1SINVdpdlHrSRPhIEB3uVgNc8wUAt9YLzEcdoY9foPCrTn2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAXLVYQwy+LHhwjbWdxqMQZ8EFLbMB8GA1UdIwQY MBaAFIoBq2zUSno+pAAsEGqWxCe1LIHVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWdHcmJOUktlajZrQUN3UWFwYkVKN1VzZ2RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi81ODMyZjQtZTRlMi00OThiLWEwNmEt OWZlYmY4YzNlMzNmLzEvQmN0VmhEREw0c2VIQ050WjNHb3hCbndRVXRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi81ODMyZjQtZTRlMi00OThiLWEwNmEtOWZlYmY4YzNlMzNm LzEvaWdHcmJOUktlajZrQUN3UWFwYkVKN1VzZ2RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjWKVMA0G CSqGSIb3DQEBCwUAA4IBAQDs55j/pNbWS8TScMxLq2vOGYK6Xhl+AgEX48UMkJ60 lJDFahTQoYFGqYIRfjTwSzz2A6wKmo56zRjvJ2EYdkdlZCN2mYMYY5bP+dAFhLOn D1Q2m2FNtfrq7z6eXBo9J5EjmGLPJ2pQ07pQAMHvtENLKQY/FbjmEK5Vt3gATg34 R7sBXXH1wWXXm9B6neT5Ejor65zIATZQVZVCZF1yurdcsEFK8zO1ZrI+dID3bIoo V0CX8zizuMCahG26ZogKU1JKuBXYzKyYvEAe7owMz2AQL92xNAtJF1TO2ftJpH3h gNDMWlxM+XIp8EZx/nIMXfSl2q9yOMpTMJvIbl4lsPSV -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:24 2026 by rpki-client