This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/Bm7KXTZG-GzrmHMle85VbaK0lEc.roa File: Bm7KXTZG-GzrmHMle85VbaK0lEc.roa (raw, json) Hash identifier: eP4Z4Xyrl9duYpmeFr1kOXcCCxjk6AkZ57/buELWekE= Subject key identifier: 06:6E:CA:5D:36:46:F8:6C:EB:98:73:25:7B:CE:55:6D:A2:B4:94:47 Certificate issuer: /CN=ba6d46b76bfd6d42bbd575e2f26fce136b9b6a6d Certificate serial: 019B7AC79F0B0BAFE6D5DC49155DC5026C10 Authority key identifier: BA:6D:46:B7:6B:FD:6D:42:BB:D5:75:E2:F2:6F:CE:13:6B:9B:6A:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um1Gt2v9bUK71XXi8m_OE2ubam0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/Bm7KXTZG-GzrmHMle85VbaK0lEc.roa Signing time: Thu 01 Jan 2026 18:17:41 +0000 ROA not before: Thu 01 Jan 2026 18:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47393 IP address blocks: 195.43.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/um1Gt2v9bUK71XXi8m_OE2ubam0.crl rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/um1Gt2v9bUK71XXi8m_OE2ubam0.mft rsync://rpki.ripe.net/repository/DEFAULT/um1Gt2v9bUK71XXi8m_OE2ubam0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:9f:0b:0b:af:e6:d5:dc:49:15:5d:c5:02:6c:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6d46b76bfd6d42bbd575e2f26fce136b9b6a6d Validity Not Before: Jan 1 18:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=066eca5d3646f86ceb9873257bce556da2b49447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:84:4b:2f:ff:e7:c8:b7:99:b8:4f:a3:70:71: f9:0a:54:df:ca:e1:73:6e:36:3c:41:76:bc:55:09: 59:4b:1d:a0:96:5c:21:00:de:73:16:62:91:f3:00: 59:64:15:34:cb:a1:b4:55:e5:5b:22:67:b4:3b:f8: f9:4f:8a:0f:da:ea:c4:24:44:c6:41:23:fc:05:7f: 28:24:09:a2:d3:f3:46:6e:84:ef:ac:63:bd:97:ed: 8b:50:3a:8d:d4:11:3e:90:c9:5f:c9:e1:4a:aa:49: b7:e4:b0:0c:17:51:a4:e5:18:fd:6a:28:00:91:b5: 63:03:d0:6b:df:27:74:de:b0:b8:9a:83:99:d3:be: a8:ef:c7:69:0d:b8:b3:04:ca:67:b2:c5:0d:91:91: bb:ab:1e:cf:13:4c:ae:45:ce:e9:2e:3b:16:46:2b: d8:47:9c:c6:e8:d0:b3:d5:f0:64:94:8a:a9:b6:22: a4:2a:a6:e6:50:9c:f8:06:53:ee:03:93:e0:11:d3: 04:6b:a3:50:b3:f8:bd:db:1d:6c:e4:66:90:17:ef: 8a:e8:a3:46:da:83:12:bb:69:3a:a7:8a:42:c2:4a: 34:34:9d:f6:ea:bb:b2:c3:4e:fb:dd:ff:41:93:14: 55:60:7e:c9:ed:81:bf:ad:17:5c:4a:f5:d8:b1:1a: ee:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6E:CA:5D:36:46:F8:6C:EB:98:73:25:7B:CE:55:6D:A2:B4:94:47 X509v3 Authority Key Identifier: keyid:BA:6D:46:B7:6B:FD:6D:42:BB:D5:75:E2:F2:6F:CE:13:6B:9B:6A:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um1Gt2v9bUK71XXi8m_OE2ubam0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/Bm7KXTZG-GzrmHMle85VbaK0lEc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/um1Gt2v9bUK71XXi8m_OE2ubam0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.43.130.0/24 Signature Algorithm: sha256WithRSAEncryption 02:81:ed:51:ef:0b:2c:c3:cb:cf:f7:6c:fb:af:d3:fd:40:31: 24:6c:c0:6d:15:d1:ba:70:a5:b7:82:c9:6f:d4:ae:6f:d2:8a: fc:74:c7:84:45:d5:e1:70:31:af:b5:ee:6d:88:64:1c:74:9e: 9c:33:c1:f8:da:b3:c9:fa:c5:e5:31:72:40:5e:02:93:21:49: 8d:70:54:46:4c:fc:5f:ad:8a:b5:73:f3:ca:dc:bd:4a:04:3b: 70:b3:96:47:75:73:eb:3a:8b:73:d0:59:05:c4:ee:62:f7:94: 00:5e:7a:89:9a:2a:34:94:b5:5d:8e:8d:ca:5f:72:86:65:b2: 3e:1f:97:d1:d8:b4:97:d6:c8:24:c0:5e:4b:57:2d:fe:96:6f: 8e:c2:0c:a5:8a:62:dd:b7:db:f9:48:7b:bf:88:36:49:d4:b7: 46:aa:57:ec:3e:35:de:27:3c:5e:0f:9b:a2:68:89:1e:92:db: 11:97:8f:c3:07:ed:31:a0:65:cf:28:d1:2d:65:de:66:c7:65: 98:78:ab:a2:19:b4:f2:fb:fb:4c:99:97:b2:6b:1b:f3:f8:a2: 5d:96:cc:ed:0c:4a:35:59:47:32:fa:a7:52:de:d5:b9:41:d5: 8e:4e:8c:bc:3b:08:aa:a6:ba:b6:c5:30:fa:4a:8d:66:17:d9: 1f:c8:33:7b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x58LC6/m1dxJFV3FAmwQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmQ0NmI3NmJmZDZkNDJiYmQ1NzVlMmYyNmZjZTEzNmI5 YjZhNmQwHhcNMjYwMTAxMTgxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjZlY2E1ZDM2NDZmODZjZWI5ODczMjU3YmNlNTU2ZGEyYjQ5NDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmoRLL//nyLeZuE+jcHH5ClTfyuFz bjY8QXa8VQlZSx2gllwhAN5zFmKR8wBZZBU0y6G0VeVbIme0O/j5T4oP2urEJETG QSP8BX8oJAmi0/NGboTvrGO9l+2LUDqN1BE+kMlfyeFKqkm35LAMF1Gk5Rj9aigA kbVjA9Br3yd03rC4moOZ076o78dpDbizBMpnssUNkZG7qx7PE0yuRc7pLjsWRivY R5zG6NCz1fBklIqptiKkKqbmUJz4BlPuA5PgEdMEa6NQs/i92x1s5GaQF++K6KNG 2oMSu2k6p4pCwko0NJ326ruyw0773f9BkxRVYH7J7YG/rRdcSvXYsRrujQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAZuyl02Rvhs65hzJXvOVW2itJRHMB8GA1UdIwQY MBaAFLptRrdr/W1Cu9V14vJvzhNrm2ptMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW0xR3QydjliVUs3MVhYaThtX09FMnViYW0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9lOGJlMGUtYTgwZC00YTRmLWI1MmYt ZGZmMWNmZmI3YjE4LzEvQm03S1hUWkctR3pybUhNbGU4NVZiYUswbEVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9lOGJlMGUtYTgwZC00YTRmLWI1MmYtZGZmMWNmZmI3YjE4 LzEvdW0xR3QydjliVUs3MVhYaThtX09FMnViYW0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwyuCMA0G CSqGSIb3DQEBCwUAA4IBAQACge1R7wssw8vP92z7r9P9QDEkbMBtFdG6cKW3gslv 1K5v0or8dMeERdXhcDGvte5tiGQcdJ6cM8H42rPJ+sXlMXJAXgKTIUmNcFRGTPxf rYq1c/PK3L1KBDtws5ZHdXPrOotz0FkFxO5i95QAXnqJmio0lLVdjo3KX3KGZbI+ H5fR2LSX1sgkwF5LVy3+lm+OwgylimLdt9v5SHu/iDZJ1LdGqlfsPjXeJzxeD5ui aIkektsRl4/DB+0xoGXPKNEtZd5mx2WYeKuiGbTy+/tMmZeyaxvz+KJdlsztDEo1 WUcy+qdS3tW5QdWOToy8Owiqprq2xTD6So1mF9kfyDN7 -----END CERTIFICATE-----Generated at Wed Jan 21 14:40:58 2026 by rpki-client