This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/BKpTCMfaKLw7yMMu4I6xltN6R7Y.roa File: BKpTCMfaKLw7yMMu4I6xltN6R7Y.roa (raw, json) Hash identifier: GRV0cRwAqNgjNvn/FF2Y105789sE37bG6GFfvU+/74s= Subject key identifier: 04:AA:53:08:C7:DA:28:BC:3B:C8:C3:2E:E0:8E:B1:96:D3:7A:47:B6 Certificate issuer: /CN=6a95a4cf6f0f0c32cd3dfe988762260bfcdba67e Certificate serial: 019B77C6A159508A3C94700104C3FC959D3B Authority key identifier: 6A:95:A4:CF:6F:0F:0C:32:CD:3D:FE:98:87:62:26:0B:FC:DB:A6:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/apWkz28PDDLNPf6Yh2ImC_zbpn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/BKpTCMfaKLw7yMMu4I6xltN6R7Y.roa Signing time: Thu 01 Jan 2026 04:17:44 +0000 ROA not before: Thu 01 Jan 2026 04:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214230 IP address blocks: 147.234.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/apWkz28PDDLNPf6Yh2ImC_zbpn4.crl rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/apWkz28PDDLNPf6Yh2ImC_zbpn4.mft rsync://rpki.ripe.net/repository/DEFAULT/apWkz28PDDLNPf6Yh2ImC_zbpn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a1:59:50:8a:3c:94:70:01:04:c3:fc:95:9d:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a95a4cf6f0f0c32cd3dfe988762260bfcdba67e Validity Not Before: Jan 1 04:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04aa5308c7da28bc3bc8c32ee08eb196d37a47b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9e:4f:54:ea:0a:b2:c3:c0:e4:0b:cf:07:f0: c0:cc:e5:4b:b3:6d:aa:6c:6d:ff:fe:77:59:6d:ff: e9:a7:7c:11:71:4c:ad:da:ae:42:cd:75:92:65:97: ca:45:fa:a1:60:74:20:72:08:00:5c:e5:33:8a:f8: 66:69:94:bb:b1:41:c2:83:4f:27:ea:e9:8e:9a:40: e6:06:6c:aa:06:1e:d3:15:2e:13:b3:17:95:fc:7a: a7:24:3d:77:a3:35:d9:42:97:59:1c:0a:40:fc:cf: 1f:89:90:ac:b4:19:fe:5a:0d:2a:68:74:84:87:f6: ea:d4:78:0d:93:a3:33:14:55:bd:d9:9f:6c:a9:62: c2:72:32:e4:c7:ba:ff:bd:1c:8f:0d:d8:b4:03:84: d0:70:dc:b3:ec:ea:a6:31:08:55:7c:42:0c:d2:c5: db:ca:10:61:80:62:ac:24:4f:5b:43:ce:da:3c:83: de:a8:b0:db:e9:ff:4d:9c:e1:61:fd:bb:d2:44:5b: 49:34:8f:10:5b:80:54:30:ea:1b:0c:5f:8c:8b:e8: 1f:8c:f1:cf:ea:c6:3a:7e:e7:4f:26:62:06:b5:c1: b2:97:d3:eb:e1:7d:5c:af:80:dc:e5:55:43:11:3e: df:fd:ed:ee:0d:bf:58:19:d0:52:d3:00:d3:ed:db: 28:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AA:53:08:C7:DA:28:BC:3B:C8:C3:2E:E0:8E:B1:96:D3:7A:47:B6 X509v3 Authority Key Identifier: keyid:6A:95:A4:CF:6F:0F:0C:32:CD:3D:FE:98:87:62:26:0B:FC:DB:A6:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apWkz28PDDLNPf6Yh2ImC_zbpn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/BKpTCMfaKLw7yMMu4I6xltN6R7Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/apWkz28PDDLNPf6Yh2ImC_zbpn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.234.26.0/24 Signature Algorithm: sha256WithRSAEncryption 38:97:65:24:76:c4:7b:80:2e:dc:23:6a:64:83:6e:9c:fd:d0: 07:0b:4a:06:b5:af:fb:e0:bb:7b:98:35:55:44:d1:24:d3:3f: 25:c2:7f:65:e3:4f:ee:ee:da:a1:41:5f:c6:ea:14:99:5a:49: 0f:82:95:e4:f2:b1:77:71:2d:67:3c:36:6f:e1:f8:65:0d:f5: a7:5b:6c:3b:09:d5:ff:52:79:c8:5e:29:f3:00:3b:e1:f1:3b: 1d:06:e6:f1:26:64:a0:c1:fd:92:db:e8:29:05:a1:b9:c0:e9: 7c:53:c9:f8:ae:d2:7a:ea:e2:19:d9:8b:2d:e0:ee:1b:e4:51: 93:31:b0:0a:59:ce:98:c8:48:2b:74:fe:c9:42:3b:45:87:e2: 8c:50:4a:78:a5:a8:12:af:7d:f0:34:0e:3d:0a:8a:32:d2:bc: 00:62:47:c1:f1:4f:70:19:36:b2:30:d0:07:80:c2:85:45:30: f3:33:06:26:71:14:ec:11:87:30:9a:ce:3b:d2:8f:ea:ea:9c: d1:da:ed:fe:a9:2a:f0:22:81:3f:75:6b:80:bd:51:96:c5:97: c8:b0:32:82:d5:0a:6a:4c:b7:fc:3f:d2:6b:8a:6b:f5:c9:83: 66:ca:ad:89:59:c1:c1:4e:c5:95:f4:dd:46:8c:61:a7:ba:11: 95:44:6c:c5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xqFZUIo8lHABBMP8lZ07MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhOTVhNGNmNmYwZjBjMzJjZDNkZmU5ODg3NjIyNjBiZmNk YmE2N2UwHhcNMjYwMTAxMDQxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGFhNTMwOGM3ZGEyOGJjM2JjOGMzMmVlMDhlYjE5NmQzN2E0N2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAop5PVOoKssPA5AvPB/DAzOVLs22q bG3//ndZbf/pp3wRcUyt2q5CzXWSZZfKRfqhYHQgcggAXOUzivhmaZS7sUHCg08n 6umOmkDmBmyqBh7TFS4TsxeV/HqnJD13ozXZQpdZHApA/M8fiZCstBn+Wg0qaHSE h/bq1HgNk6MzFFW92Z9sqWLCcjLkx7r/vRyPDdi0A4TQcNyz7OqmMQhVfEIM0sXb yhBhgGKsJE9bQ87aPIPeqLDb6f9NnOFh/bvSRFtJNI8QW4BUMOobDF+Mi+gfjPHP 6sY6fudPJmIGtcGyl9Pr4X1cr4Dc5VVDET7f/e3uDb9YGdBS0wDT7dsobwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFASqUwjH2ii8O8jDLuCOsZbTeke2MB8GA1UdIwQY MBaAFGqVpM9vDwwyzT3+mIdiJgv826Z+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXBXa3oyOFBERExOUGY2WWgySW1DX3picG40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hMGFhZDktMzg2Ny00NDlhLTkyNDMt OWFiMjRlN2QyOGZlLzEvQktwVENNZmFLTHc3eU1NdTRJNnhsdE42UjdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hMGFhZDktMzg2Ny00NDlhLTkyNDMtOWFiMjRlN2QyOGZl LzEvYXBXa3oyOFBERExOUGY2WWgySW1DX3picG40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+oaMA0G CSqGSIb3DQEBCwUAA4IBAQA4l2UkdsR7gC7cI2pkg26c/dAHC0oGta/74Lt7mDVV RNEk0z8lwn9l40/u7tqhQV/G6hSZWkkPgpXk8rF3cS1nPDZv4fhlDfWnW2w7CdX/ UnnIXinzADvh8TsdBubxJmSgwf2S2+gpBaG5wOl8U8n4rtJ66uIZ2Yst4O4b5FGT MbAKWc6YyEgrdP7JQjtFh+KMUEp4pagSr33wNA49Cooy0rwAYkfB8U9wGTayMNAH gMKFRTDzMwYmcRTsEYcwms470o/q6pzR2u3+qSrwIoE/dWuAvVGWxZfIsDKC1Qpq TLf8P9Jrimv1yYNmyq2JWcHBTsWV9N1GjGGnuhGVRGzF -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:20 2026 by rpki-client