This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/bCD_tq_1R_WkwnNptbSONR7egi0.roa File: bCD_tq_1R_WkwnNptbSONR7egi0.roa (raw, json) Hash identifier: kbtkGeS9624Gz1BHggPnBisTuD3laygElyKlMRfT7I8= Subject key identifier: 6C:20:FF:B6:AF:F5:47:F5:A4:C2:73:69:B5:B4:8E:35:1E:DE:82:2D Certificate issuer: /CN=d0b849b9bc9042a1557331937e4ad71518af61cf Certificate serial: 019B7AC8AFAB7933A2439548EF24A1274971 Authority key identifier: D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/bCD_tq_1R_WkwnNptbSONR7egi0.roa Signing time: Thu 01 Jan 2026 18:18:51 +0000 ROA not before: Thu 01 Jan 2026 18:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8708 IP address blocks: 185.234.131.0/24 maxlen: 24 194.36.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.mft rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:af:ab:79:33:a2:43:95:48:ef:24:a1:27:49:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0b849b9bc9042a1557331937e4ad71518af61cf Validity Not Before: Jan 1 18:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c20ffb6aff547f5a4c27369b5b48e351ede822d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:3d:bc:89:89:1c:71:da:e9:0e:9f:cd:68: 08:fd:80:b3:94:33:de:b1:4b:f1:3c:4b:1f:47:c3: 4d:2d:09:15:42:e2:43:a1:24:fb:e6:92:de:61:82: 08:b1:42:08:13:fe:4a:45:17:e7:9d:e6:7f:f0:db: bd:49:b8:85:b0:85:16:a8:7a:e9:c4:4d:bb:59:50: 7f:31:e0:b9:ea:ae:69:37:fa:1a:49:ef:03:2f:6d: ea:bd:6f:7b:cc:8f:ed:d5:cf:d2:fe:b5:7e:f6:52: b2:29:78:76:6c:8a:6d:81:04:96:29:a1:ae:e2:10: c2:ee:93:88:3b:1a:0a:01:18:c4:f8:e9:36:93:4f: a0:41:96:be:d2:e8:b4:89:34:11:25:4c:98:01:d0: bf:4c:a7:c6:35:f4:82:fc:47:49:2e:ee:e2:dd:72: 8e:f9:b7:4d:ac:54:84:70:9d:79:83:30:56:1c:78: ea:d8:96:bf:36:3b:da:84:82:67:58:bb:61:e4:74: cb:4b:b3:44:a8:4a:13:56:f0:fa:67:1d:16:41:bc: f3:3c:aa:7d:26:5b:77:a0:b5:a3:2e:d3:77:ea:e0: 4f:74:f6:11:a2:53:c6:c8:72:1d:73:58:60:97:ff: c1:06:1a:5b:73:c0:46:57:2e:1b:30:4d:c5:09:78: 04:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:20:FF:B6:AF:F5:47:F5:A4:C2:73:69:B5:B4:8E:35:1E:DE:82:2D X509v3 Authority Key Identifier: keyid:D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/bCD_tq_1R_WkwnNptbSONR7egi0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.234.131.0/24 194.36.142.0/24 Signature Algorithm: sha256WithRSAEncryption 57:e6:4b:4b:97:56:0a:8c:b7:92:29:88:90:66:93:9d:31:7c: d8:c0:d9:de:ae:00:cb:af:07:bd:13:7a:60:b3:a2:14:79:cf: 48:a3:dd:d6:f1:ab:39:c4:80:39:a4:50:21:34:f7:b2:36:35: bb:e3:e4:b8:61:3c:e8:c9:7e:ce:79:59:4b:13:e5:d3:fe:11: ff:be:60:af:22:30:d8:2c:28:a0:62:21:54:04:7b:9d:78:d0: ef:19:25:60:d6:d6:37:47:6e:5e:57:c7:05:f6:54:18:1d:04: 9a:37:27:1c:ec:b8:68:75:92:e8:e1:66:e7:85:75:75:f8:e7: 29:ed:b7:ad:0b:ed:42:e0:df:d3:e2:d3:09:2d:3d:ab:39:db: b7:e8:a9:03:6f:90:45:fb:90:3b:c6:4e:6e:7c:f1:df:43:6f: ef:2d:8c:e4:7f:cb:3f:39:ba:27:88:4e:6e:d8:8b:9e:d8:61: fe:06:46:42:33:6e:f8:99:d9:bc:d8:ce:7a:e5:f2:44:56:be: 10:fc:16:45:a9:00:96:cc:5b:f6:49:cb:9a:86:e7:e0:64:49: 1f:fb:43:97:a5:fc:48:47:6a:3c:a2:9d:0f:41:30:ea:69:9f: 96:58:7b:53:e5:f7:54:54:71:12:0d:6f:8a:6f:af:53:4c:88: f3:39:e5:b7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yK+reTOiQ5VI7yShJ0lxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYjg0OWI5YmM5MDQyYTE1NTczMzE5MzdlNGFkNzE1MThh ZjYxY2YwHhcNMjYwMTAxMTgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzIwZmZiNmFmZjU0N2Y1YTRjMjczNjliNWI0OGUzNTFlZGU4MjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs609vImJHHHa6Q6fzWgI/YCzlDPe sUvxPEsfR8NNLQkVQuJDoST75pLeYYIIsUIIE/5KRRfnneZ/8Nu9SbiFsIUWqHrp xE27WVB/MeC56q5pN/oaSe8DL23qvW97zI/t1c/S/rV+9lKyKXh2bIptgQSWKaGu 4hDC7pOIOxoKARjE+Ok2k0+gQZa+0ui0iTQRJUyYAdC/TKfGNfSC/EdJLu7i3XKO +bdNrFSEcJ15gzBWHHjq2Ja/NjvahIJnWLth5HTLS7NEqEoTVvD6Zx0WQbzzPKp9 Jlt3oLWjLtN36uBPdPYRolPGyHIdc1hgl//BBhpbc8BGVy4bME3FCXgENwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGwg/7av9Uf1pMJzabW0jjUe3oItMB8GA1UdIwQY MBaAFNC4Sbm8kEKhVXMxk35K1xUYr2HPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMExoSnVieVFRcUZWY3pHVGZrclhGUml2WWM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9hM2ZiNjctZDUxNC00YWVlLWFkYjkt NzJiYWQ5ZDczYzgwLzEvYkNEX3RxXzFSX1drd25OcHRiU09OUjdlZ2kwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9hM2ZiNjctZDUxNC00YWVlLWFkYjktNzJiYWQ5ZDczYzgw LzEvMExoSnVieVFRcUZWY3pHVGZrclhGUml2WWM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAueqDAwQA wiSOMA0GCSqGSIb3DQEBCwUAA4IBAQBX5ktLl1YKjLeSKYiQZpOdMXzYwNnergDL rwe9E3pgs6IUec9Io93W8as5xIA5pFAhNPeyNjW74+S4YTzoyX7OeVlLE+XT/hH/ vmCvIjDYLCigYiFUBHudeNDvGSVg1tY3R25eV8cF9lQYHQSaNycc7LhodZLo4Wbn hXV1+Ocp7betC+1C4N/T4tMJLT2rOdu36KkDb5BF+5A7xk5ufPHfQ2/vLYzkf8s/ OboniE5u2Iue2GH+BkZCM274mdm82M565fJEVr4Q/BZFqQCWzFv2ScuahufgZEkf +0OXpfxIR2o8op0PQTDqaZ+WWHtT5fdUVHESDW+Kb69TTIjzOeW3 -----END CERTIFICATE-----Generated at Mon Jan 26 14:13:00 2026 by rpki-client