This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/BK_YNC-4CZnLpU2MN5D2SU1_Nww.roa File: BK_YNC-4CZnLpU2MN5D2SU1_Nww.roa (raw, json) Hash identifier: 4wgC/AlBtg0IhhyUhxOmG6AUSQksH1PWPid2yPZTqaY= Subject key identifier: 04:AF:D8:34:2F:B8:09:99:CB:A5:4D:8C:37:90:F6:49:4D:7F:37:0C Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c Certificate serial: 019B7B36644142CE60D8AFE22E9EF279CB3F Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/BK_YNC-4CZnLpU2MN5D2SU1_Nww.roa Signing time: Thu 01 Jan 2026 20:18:40 +0000 ROA not before: Thu 01 Jan 2026 20:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401783 IP address blocks: 144.56.89.0/24 maxlen: 24 144.56.111.0/24 maxlen: 24 144.56.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.mft rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:64:41:42:ce:60:d8:af:e2:2e:9e:f2:79:cb:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16055801b775e774306321455fd463fbd9273c4c Validity Not Before: Jan 1 20:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04afd8342fb80999cba54d8c3790f6494d7f370c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ce:71:36:63:65:f6:3c:ff:6b:d9:63:87:5f: 9e:64:44:b5:f0:80:2f:f6:a8:d6:92:ce:6d:fb:cf: 84:be:36:fa:94:c0:75:90:5f:9b:72:f8:1e:9f:d5: 42:ad:7a:ac:04:34:a9:fd:be:bd:17:2e:e6:c9:0d: e1:b0:0f:8d:59:0d:80:57:65:e8:7f:bb:95:d1:38: e9:ad:b6:15:3d:8c:23:6e:7a:9b:a2:e7:05:ca:0c: f9:73:b0:40:72:7e:b7:90:f9:60:c3:a0:37:62:3b: d7:1f:cb:9d:e4:eb:ee:37:95:25:7b:3e:92:60:6b: 19:83:10:aa:68:3d:2f:31:18:1d:fb:b8:5d:7a:20: 50:d6:04:07:21:c1:32:02:43:bc:d4:9a:49:c9:53: 3b:99:20:94:91:1f:5c:36:78:19:06:e0:d8:01:82: 52:25:c3:52:d6:34:da:8b:7b:e4:68:55:e2:e9:39: 1c:02:a5:6f:b9:25:3a:8c:58:81:65:58:86:9c:e0: 18:f7:9f:d9:2a:25:bf:02:b8:7c:9b:70:14:18:b5: 4e:b3:7e:dc:ec:aa:36:ac:fb:94:2c:76:da:f2:67: db:ec:08:72:c9:c6:04:10:70:14:8a:e2:84:47:5d: ae:08:ad:c3:b1:cc:fc:14:cb:ff:a5:a5:8c:df:66: 41:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AF:D8:34:2F:B8:09:99:CB:A5:4D:8C:37:90:F6:49:4D:7F:37:0C X509v3 Authority Key Identifier: keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/BK_YNC-4CZnLpU2MN5D2SU1_Nww.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.56.89.0/24 144.56.111.0/24 144.56.113.0/24 Signature Algorithm: sha256WithRSAEncryption 42:9d:97:59:6a:88:98:2f:45:75:31:00:9b:30:ee:64:57:bc: 81:2e:d8:d1:60:de:69:df:4b:75:c2:35:32:9a:3b:7f:56:4b: 19:b2:d5:5a:ea:e2:6d:e7:b1:bc:6b:0e:d6:ff:a6:e3:68:f8: 69:82:35:ac:e2:8e:a1:e6:f4:c5:e0:80:90:9a:03:93:05:7c: 0d:9d:87:5c:80:3a:7f:3c:a4:bb:37:b7:ef:bf:af:84:20:d2: 39:63:f6:45:27:24:01:d3:99:14:46:74:cd:d5:66:94:84:f4: b5:51:8c:7a:7e:ac:9b:f7:1d:c1:83:1d:95:a3:31:f3:1d:dd: 25:54:f5:eb:54:1f:0d:df:f7:f7:5e:2d:b2:5c:33:49:0e:8c: 7d:c2:da:73:eb:63:6e:4a:0e:9a:e1:e7:2f:d3:c0:59:b6:e3: 9e:7e:ca:4c:e9:31:1b:74:5c:a8:74:d8:a8:60:8e:91:7f:b2: 49:68:a8:9a:d3:9b:59:f2:07:39:5c:d6:03:0c:a5:c5:d1:ed: 15:e8:02:d9:90:ce:5e:18:4e:ac:df:ce:ac:6b:f3:c1:86:6e: be:23:f9:f8:93:5f:e8:dc:2e:9a:73:51:bc:8c:6c:16:dc:cd: 59:c7:8a:99:d2:e6:de:ff:ca:91:4a:2f:e9:d6:41:c1:9f:4b: c1:3a:1b:ee -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt7NmRBQs5g2K/iLp7yecs/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MDU1ODAxYjc3NWU3NzQzMDYzMjE0NTVmZDQ2M2ZiZDky NzNjNGMwHhcNMjYwMTAxMjAxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGFmZDgzNDJmYjgwOTk5Y2JhNTRkOGMzNzkwZjY0OTRkN2YzNzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAts5xNmNl9jz/a9ljh1+eZES18IAv 9qjWks5t+8+Evjb6lMB1kF+bcvgen9VCrXqsBDSp/b69Fy7myQ3hsA+NWQ2AV2Xo f7uV0TjprbYVPYwjbnqboucFygz5c7BAcn63kPlgw6A3YjvXH8ud5OvuN5Ulez6S YGsZgxCqaD0vMRgd+7hdeiBQ1gQHIcEyAkO81JpJyVM7mSCUkR9cNngZBuDYAYJS JcNS1jTai3vkaFXi6TkcAqVvuSU6jFiBZViGnOAY95/ZKiW/Arh8m3AUGLVOs37c 7Ko2rPuULHba8mfb7AhyycYEEHAUiuKER12uCK3Dscz8FMv/paWM32ZBywIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFASv2DQvuAmZy6VNjDeQ9klNfzcMMB8GA1UdIwQY MBaAFBYFWAG3ded0MGMhRV/UY/vZJzxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgt MTM1NzE3ZWYzODhhLzEvQktfWU5DLTRDWm5McFUyTU41RDJTVTFfTnd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgtMTM1NzE3ZWYzODhh LzEvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAkDhZAwQA kDhvAwQAkDhxMA0GCSqGSIb3DQEBCwUAA4IBAQBCnZdZaoiYL0V1MQCbMO5kV7yB LtjRYN5p30t1wjUymjt/VksZstVa6uJt57G8aw7W/6bjaPhpgjWs4o6h5vTF4ICQ mgOTBXwNnYdcgDp/PKS7N7fvv6+EINI5Y/ZFJyQB05kURnTN1WaUhPS1UYx6fqyb 9x3Bgx2VozHzHd0lVPXrVB8N3/f3Xi2yXDNJDox9wtpz62NuSg6a4ecv08BZtuOe fspM6TEbdFyodNioYI6Rf7JJaKia05tZ8gc5XNYDDKXF0e0V6ALZkM5eGE6s386s a/PBhm6+I/n4k1/o3C6ac1G8jGwW3M1Zx4qZ0ube/8qRSi/p1kHBn0vBOhvu -----END CERTIFICATE-----Generated at Mon Jan 19 11:26:18 2026 by rpki-client