This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/bMBeJP4kSoTWFEKBQ7ire7C9GmM.roa File: bMBeJP4kSoTWFEKBQ7ire7C9GmM.roa (raw, json) Hash identifier: DgOfwTafwxtmSdbTDyercNseVLl1yi6nAKrwiwQ4Ggo= Subject key identifier: 6C:C0:5E:24:FE:24:4A:84:D6:14:42:81:43:B8:AB:7B:B0:BD:1A:63 Certificate issuer: /CN=d283616f1362c25d82ec2a70c4b9750565b1197f Certificate serial: 019B79EBC7CE8B492C9CF075E8D4FDA739B9 Authority key identifier: D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/bMBeJP4kSoTWFEKBQ7ire7C9GmM.roa Signing time: Thu 01 Jan 2026 14:17:33 +0000 ROA not before: Thu 01 Jan 2026 14:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24931 IP address blocks: 185.54.72.0/22 maxlen: 22 2a01:ba20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.crl rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.mft rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:c7:ce:8b:49:2c:9c:f0:75:e8:d4:fd:a7:39:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d283616f1362c25d82ec2a70c4b9750565b1197f Validity Not Before: Jan 1 14:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6cc05e24fe244a84d614428143b8ab7bb0bd1a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e2:b5:3c:30:12:08:cc:62:e0:d8:33:62:68: e5:e7:ef:1a:5f:b5:b8:25:db:a6:c7:a6:a2:59:48: 6a:75:b9:80:98:32:53:6e:9c:ff:65:e3:f2:ca:95: f2:1e:1c:03:f6:a6:7d:a0:b4:39:08:8c:71:8f:40: 7f:e6:6e:d9:64:ca:16:fd:a0:2b:da:cf:26:e5:dc: 65:5c:7a:21:79:79:87:e5:55:65:d5:c3:9e:05:91: 86:c3:0b:3b:fb:16:f2:ee:5e:dc:67:89:1e:3a:e5: c3:a7:7b:93:d1:38:5f:d1:7b:ba:f9:cb:e1:be:1c: a1:49:6c:09:66:b5:fe:ed:a2:2c:6a:c1:41:f5:75: 56:71:f9:d0:15:0f:33:9d:b6:f6:36:96:68:17:d2: 65:1c:ab:19:9e:3d:50:fb:1f:d4:02:76:34:17:52: 97:59:df:c3:02:76:da:d3:75:ed:68:70:d7:fa:a2: 9a:d9:77:93:b4:48:ed:ad:db:0a:e9:07:49:0d:b5: 47:53:07:07:32:99:e7:1c:eb:7f:29:fc:c7:7e:d0: 09:ac:d6:29:4f:d4:19:66:03:95:e2:07:29:e5:4b: 8f:76:1a:5a:f4:48:87:c3:e6:05:44:5d:16:13:67: 9d:fb:b5:2a:22:34:0b:8d:db:71:7c:8d:1c:02:0b: 7f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C0:5E:24:FE:24:4A:84:D6:14:42:81:43:B8:AB:7B:B0:BD:1A:63 X509v3 Authority Key Identifier: keyid:D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/bMBeJP4kSoTWFEKBQ7ire7C9GmM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.54.72.0/22 IPv6: 2a01:ba20::/32 Signature Algorithm: sha256WithRSAEncryption 10:70:d4:13:99:6a:c9:26:e4:ec:6b:54:b6:3b:20:45:ef:6b: 33:ee:14:ac:f3:15:a8:2f:92:6a:0a:a8:3f:45:f0:0b:d2:d4: 98:7b:61:08:c3:38:01:4a:64:bb:9d:6d:6b:8e:21:23:c8:ac: 38:f1:a6:83:81:2b:e0:31:a8:5e:61:3d:47:b8:8a:74:e5:4d: ae:59:13:6b:66:5b:99:ef:fb:47:c7:da:0a:3b:17:08:6c:8d: 6d:55:e8:bd:1d:aa:8a:0a:b0:b9:46:c0:b4:56:f2:18:6c:c1: aa:c7:33:11:e3:02:a4:12:95:9e:cc:9c:f6:a9:51:07:18:c3: 4e:bc:16:cd:3f:68:c9:63:a3:ea:a8:4d:97:30:68:56:f8:26: 5c:f4:cc:29:e1:d5:4d:c8:f9:5b:cd:f1:c6:60:7c:70:50:b0: 7b:c7:e4:49:e2:19:a1:a7:d9:1d:e6:55:59:bc:58:b9:de:c1: a7:33:4c:ba:bc:06:25:4a:ae:c6:cd:2d:28:96:ad:24:d4:1b: 7f:90:da:f9:a2:f0:0b:b7:13:f2:9e:eb:31:c0:ec:9d:0a:2b: a9:b2:e2:a7:69:39:16:96:78:4d:9c:ba:2d:67:2d:e6:e9:31: a5:7f:ed:d2:a5:bb:a3:c4:0e:03:16:33:7d:ad:a6:14:89:18: a6:41:38:53 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt568fOi0ksnPB16NT9pzm5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyODM2MTZmMTM2MmMyNWQ4MmVjMmE3MGM0Yjk3NTA1NjVi MTE5N2YwHhcNMjYwMTAxMTQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Y2MwNWUyNGZlMjQ0YTg0ZDYxNDQyODE0M2I4YWI3YmIwYmQxYTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeK1PDASCMxi4NgzYmjl5+8aX7W4 Jdumx6aiWUhqdbmAmDJTbpz/ZePyypXyHhwD9qZ9oLQ5CIxxj0B/5m7ZZMoW/aAr 2s8m5dxlXHoheXmH5VVl1cOeBZGGwws7+xby7l7cZ4keOuXDp3uT0Thf0Xu6+cvh vhyhSWwJZrX+7aIsasFB9XVWcfnQFQ8znbb2NpZoF9JlHKsZnj1Q+x/UAnY0F1KX Wd/DAnba03XtaHDX+qKa2XeTtEjtrdsK6QdJDbVHUwcHMpnnHOt/KfzHftAJrNYp T9QZZgOV4gcp5UuPdhpa9EiHw+YFRF0WE2ed+7UqIjQLjdtxfI0cAgt/WQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGzAXiT+JEqE1hRCgUO4q3uwvRpjMB8GA1UdIwQY MBaAFNKDYW8TYsJdguwqcMS5dQVlsRl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG9OaGJ4Tml3bDJDN0Nwd3hMbDFCV1d4R1g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8yZmJjY2MtNjRiNi00ZjY2LTg5Njkt YTZkMjdjNDMxODE4LzEvYk1CZUpQNGtTb1RXRkVLQlE3aXJlN0M5R21NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8yZmJjY2MtNjRiNi00ZjY2LTg5NjktYTZkMjdjNDMxODE4 LzEvMG9OaGJ4Tml3bDJDN0Nwd3hMbDFCV1d4R1g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTZIMA0E AgACMAcDBQAqAbogMA0GCSqGSIb3DQEBCwUAA4IBAQAQcNQTmWrJJuTsa1S2OyBF 72sz7hSs8xWoL5JqCqg/RfAL0tSYe2EIwzgBSmS7nW1rjiEjyKw48aaDgSvgMahe YT1HuIp05U2uWRNrZluZ7/tHx9oKOxcIbI1tVei9HaqKCrC5RsC0VvIYbMGqxzMR 4wKkEpWezJz2qVEHGMNOvBbNP2jJY6PqqE2XMGhW+CZc9Mwp4dVNyPlbzfHGYHxw ULB7x+RJ4hmhp9kd5lVZvFi53sGnM0y6vAYlSq7GzS0olq0k1Bt/kNr5ovALtxPy nusxwOydCiupsuKnaTkWlnhNnLotZy3m6TGlf+3SpbujxA4DFjN9raYUiRimQThT -----END CERTIFICATE-----Generated at Sat Jan 10 22:34:38 2026 by rpki-client