This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bdKZpVOmNYqTXtppbIVY0BPdoNM.roa File: bdKZpVOmNYqTXtppbIVY0BPdoNM.roa (raw, json) Hash identifier: JuRCjdP7cYjQTE8jRiuJ1QOMlo1RqHFZunbG4mhe7nE= Subject key identifier: 6D:D2:99:A5:53:A6:35:8A:93:5E:DA:69:6C:85:58:D0:13:DD:A0:D3 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019C236B2657A96F6BB19214932457A70029 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bdKZpVOmNYqTXtppbIVY0BPdoNM.roa Signing time: Tue 03 Feb 2026 12:12:30 +0000 ROA not before: Tue 03 Feb 2026 12:12:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 147.90.216.0/22 maxlen: 24 147.90.224.0/20 maxlen: 20 147.90.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Feb 2026 10:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:23:6b:26:57:a9:6f:6b:b1:92:14:93:24:57:a7:00:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Feb 3 12:12:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6dd299a553a6358a935eda696c8558d013dda0d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fb:a3:51:b9:f6:b1:d1:20:80:58:21:df:96: 1f:97:33:e6:d7:63:6d:b1:92:00:7b:c2:c5:67:04: 55:6c:dc:45:c3:73:49:ca:61:14:ac:bf:24:d5:17: 3e:d2:bf:2f:76:f9:8a:3e:7a:95:1b:8d:2f:26:ad: 83:26:7c:3b:57:98:3e:ed:a1:0e:5b:37:46:a1:6d: 0b:10:86:2c:79:96:dc:36:e2:1d:26:55:e5:ab:0b: 05:cd:56:85:9b:59:85:67:b2:3a:66:f5:fd:1c:26: 28:b8:e6:6c:0c:d6:79:9a:de:0d:97:87:2f:4e:f0: a2:c0:26:71:c9:f9:3a:49:17:91:41:ab:7a:b7:3c: 06:fd:1b:33:e6:aa:a3:6c:d5:56:89:b3:74:1e:1b: 90:7a:d6:29:93:55:c7:5c:4d:8e:4f:ee:54:d9:a5: a3:16:59:a8:45:2d:3e:67:e6:7e:cc:e9:84:5d:03: 53:9d:99:76:1c:16:39:ea:f9:fd:05:e3:21:9f:47: f7:04:af:99:bf:c4:7f:90:e1:67:9a:ea:2c:7a:aa: fe:d0:2d:65:e6:60:13:bd:f6:76:b5:54:90:18:20: 74:2f:a3:9d:b9:c9:db:4f:67:2c:4a:ec:31:01:d0: 83:dd:c3:d6:50:ed:d7:62:ab:e2:6a:45:a4:9e:9b: d7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D2:99:A5:53:A6:35:8A:93:5E:DA:69:6C:85:58:D0:13:DD:A0:D3 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bdKZpVOmNYqTXtppbIVY0BPdoNM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.90.216.0/22 147.90.224.0/19 Signature Algorithm: sha256WithRSAEncryption bb:6f:0f:4d:4a:b1:d4:c6:03:b0:c2:f4:51:1e:fd:83:ef:ae: 8d:98:34:d9:3c:30:d5:5a:45:e1:a5:df:82:12:bd:3a:6e:d6: 1d:66:95:2b:ca:37:c1:92:da:3a:8a:1a:ec:63:94:a1:8f:2f: 96:48:b8:07:f8:d6:7e:98:f5:9c:2b:8e:8e:5d:56:90:2f:3d: 90:2e:b7:d5:e5:b3:e1:84:91:f8:8f:93:d9:5e:9c:66:d3:ec: f0:b4:97:60:0f:65:f7:2e:97:78:5d:36:36:18:16:ce:8b:e1: 6e:55:07:e4:ae:09:2c:e7:f5:8d:bd:93:08:22:15:3e:19:6a: e2:9f:e6:25:13:f5:e8:9d:45:dd:11:93:57:b5:8c:29:59:60: 7e:2a:39:c7:9f:e9:aa:cf:f9:3d:51:f3:c4:05:31:f9:b2:9a: 40:4a:29:6c:e6:f8:60:d9:26:74:a2:42:5c:0f:a4:06:fa:7b: c6:81:e2:fa:fb:54:f3:49:ad:f7:0d:de:10:7c:8a:24:eb:1b: fd:01:a3:3c:81:9d:92:d1:52:07:80:1e:29:f5:af:25:42:fe: 16:58:16:bd:59:47:ef:9d:75:f1:d6:84:70:39:3e:09:aa:fd: 04:27:46:ab:a5:31:ed:81:2f:09:dc:cf:a4:cf:bc:30:67:f1: 2a:eb:1a:6b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZwjayZXqW9rsZIUkyRXpwApMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMjAzMTIxMjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGQyOTlhNTUzYTYzNThhOTM1ZWRhNjk2Yzg1NThkMDEzZGRhMGQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/ujUbn2sdEggFgh35YflzPm12Nt sZIAe8LFZwRVbNxFw3NJymEUrL8k1Rc+0r8vdvmKPnqVG40vJq2DJnw7V5g+7aEO WzdGoW0LEIYseZbcNuIdJlXlqwsFzVaFm1mFZ7I6ZvX9HCYouOZsDNZ5mt4Nl4cv TvCiwCZxyfk6SReRQat6tzwG/Rsz5qqjbNVWibN0HhuQetYpk1XHXE2OT+5U2aWj FlmoRS0+Z+Z+zOmEXQNTnZl2HBY56vn9BeMhn0f3BK+Zv8R/kOFnmuoseqr+0C1l 5mATvfZ2tVSQGCB0L6OducnbT2csSuwxAdCD3cPWUO3XYqviakWknpvX2wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFG3SmaVTpjWKk17aaWyFWNAT3aDTMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvYmRLWnBWT21OWXFUWHRwcGJJVlkwQlBkb05NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCk1rYAwQF k1rgMA0GCSqGSIb3DQEBCwUAA4IBAQC7bw9NSrHUxgOwwvRRHv2D766NmDTZPDDV WkXhpd+CEr06btYdZpUryjfBkto6ihrsY5Shjy+WSLgH+NZ+mPWcK46OXVaQLz2Q LrfV5bPhhJH4j5PZXpxm0+zwtJdgD2X3Lpd4XTY2GBbOi+FuVQfkrgks5/WNvZMI IhU+GWrin+YlE/XonUXdEZNXtYwpWWB+KjnHn+mqz/k9UfPEBTH5sppASils5vhg 2SZ0okJcD6QG+nvGgeL6+1TzSa33Dd4QfIok6xv9AaM8gZ2S0VIHgB4p9a8lQv4W WBa9WUfvnXXx1oRwOT4Jqv0EJ0arpTHtgS8J3M+kz7wwZ/Eq6xpr -----END CERTIFICATE-----Generated at Sat Feb 14 17:24:34 2026 by rpki-client