This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/BvmjN1Ei-RdZ5XU4wyESLuA_jUA.roa File: BvmjN1Ei-RdZ5XU4wyESLuA_jUA.roa (raw, json) Hash identifier: ELi50YRUe877yWFfXU+gVz/inLW8fniMz5ZEj37kHhM= Subject key identifier: 06:F9:A3:37:51:22:F9:17:59:E5:75:38:C3:21:12:2E:E0:3F:8D:40 Certificate issuer: /CN=a8305c6e58294ad0ed5162fa8429da5165653930 Certificate serial: 019B77591F766319EF51F005D25F45750762 Authority key identifier: A8:30:5C:6E:58:29:4A:D0:ED:51:62:FA:84:29:DA:51:65:65:39:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/BvmjN1Ei-RdZ5XU4wyESLuA_jUA.roa Signing time: Thu 01 Jan 2026 02:18:08 +0000 ROA not before: Thu 01 Jan 2026 02:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57118 IP address blocks: 91.199.218.0/24 maxlen: 24 2001:67c:2d70::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/qDBcblgpStDtUWL6hCnaUWVlOTA.crl rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/qDBcblgpStDtUWL6hCnaUWVlOTA.mft rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 08:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:1f:76:63:19:ef:51:f0:05:d2:5f:45:75:07:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8305c6e58294ad0ed5162fa8429da5165653930 Validity Not Before: Jan 1 02:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06f9a3375122f91759e57538c321122ee03f8d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f8:40:88:0c:da:e5:2f:9e:4c:ff:03:2e:56: 00:21:8b:3d:d1:6f:55:17:dd:d2:db:63:2f:cc:3e: 2f:00:b5:4c:fa:6c:c6:da:3a:1f:fa:5f:66:6a:8c: 8e:88:8c:c5:f4:09:89:20:fd:41:77:2b:b3:be:3a: b3:60:fd:89:b4:6e:b2:59:d5:57:66:0a:5a:87:0a: ed:6c:90:cd:d1:1a:e3:7e:3a:ad:60:25:d4:31:5c: a0:22:bf:c2:6a:53:46:92:be:34:ef:7f:90:63:87: 50:ab:e5:e6:09:5a:07:ad:ed:35:b4:1d:5e:95:0b: b4:c8:87:85:3c:d9:80:8f:51:ca:f5:a6:2a:6c:7d: 59:6d:c7:5d:54:3b:f7:36:47:de:54:83:a0:ba:f7: e0:c1:cf:19:59:67:75:2e:c0:c1:22:f1:01:d4:79: f6:6d:40:8c:77:e3:a2:42:6f:a1:fe:cc:2d:b9:be: 2f:30:ca:78:98:6e:5f:a5:76:8a:76:f9:93:71:f1: 9b:85:6f:cd:8e:7c:d8:d0:37:15:62:bf:0c:06:28: b1:05:55:16:9f:b7:28:14:17:a0:1f:52:98:91:9f: 16:c4:1f:8e:c7:79:87:6f:0a:d7:de:3b:08:de:5f: 28:34:8d:77:55:e6:b1:fc:21:6b:c1:de:fe:e4:32: b3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F9:A3:37:51:22:F9:17:59:E5:75:38:C3:21:12:2E:E0:3F:8D:40 X509v3 Authority Key Identifier: keyid:A8:30:5C:6E:58:29:4A:D0:ED:51:62:FA:84:29:DA:51:65:65:39:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/BvmjN1Ei-RdZ5XU4wyESLuA_jUA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/qDBcblgpStDtUWL6hCnaUWVlOTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.218.0/24 IPv6: 2001:67c:2d70::/48 Signature Algorithm: sha256WithRSAEncryption 5c:d7:af:f5:1e:0a:ac:28:11:6c:2b:6d:1e:43:a8:a1:b1:92: d8:75:f7:dd:ce:5f:1a:46:57:2d:3f:e9:96:fc:5d:44:ea:9d: 50:55:eb:d8:b5:74:58:fb:94:fd:ce:af:32:db:9f:85:1b:7e: 5d:51:70:da:17:c0:e5:48:61:9d:d8:e6:ea:c7:d1:10:86:ff: a6:d0:57:07:bb:be:a5:98:f0:57:8e:8b:2b:58:8a:0e:48:1e: 60:b5:96:c2:e9:36:f1:9a:b5:67:d3:7c:aa:65:58:b5:01:ea: f7:f2:cc:2d:6f:94:e4:88:cc:6b:36:4f:84:cb:be:dd:4d:e5: 65:12:fc:a8:7e:97:04:3f:c9:22:e3:6b:13:71:90:ae:2b:be: 57:a7:8d:74:93:2b:59:1d:e9:b7:87:36:57:e4:58:df:32:5b: 4a:05:c2:45:e3:3f:42:0a:94:24:35:84:d9:f8:cd:f2:dd:64: 06:98:08:7e:e0:d0:3a:91:cd:b3:27:3c:db:ec:69:f5:14:bd: 67:64:fe:51:c9:43:39:7c:bd:a2:07:1e:26:59:0c:70:69:ca: b4:d4:d7:d1:26:f9:3b:58:d4:64:b1:ca:84:aa:7e:74:70:9e: 47:c0:a4:32:f2:68:dc:0a:a5:a6:81:84:f4:fe:f6:2a:fc:bd: 2c:e4:47:b4 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3WR92YxnvUfAF0l9FdQdiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MzA1YzZlNTgyOTRhZDBlZDUxNjJmYTg0MjlkYTUxNjU2 NTM5MzAwHhcNMjYwMTAxMDIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNmY5YTMzNzUxMjJmOTE3NTllNTc1MzhjMzIxMTIyZWUwM2Y4ZDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vhAiAza5S+eTP8DLlYAIYs90W9V F93S22MvzD4vALVM+mzG2jof+l9maoyOiIzF9AmJIP1BdyuzvjqzYP2JtG6yWdVX ZgpahwrtbJDN0RrjfjqtYCXUMVygIr/CalNGkr4073+QY4dQq+XmCVoHre01tB1e lQu0yIeFPNmAj1HK9aYqbH1ZbcddVDv3NkfeVIOguvfgwc8ZWWd1LsDBIvEB1Hn2 bUCMd+OiQm+h/swtub4vMMp4mG5fpXaKdvmTcfGbhW/NjnzY0DcVYr8MBiixBVUW n7coFBegH1KYkZ8WxB+Ox3mHbwrX3jsI3l8oNI13Veax/CFrwd7+5DKzJwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFAb5ozdRIvkXWeV1OMMhEi7gP41AMB8GA1UdIwQY MBaAFKgwXG5YKUrQ7VFi+oQp2lFlZTkwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcURCY2JsZ3BTdER0VVdMNmhDbmFVV1ZsT1RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS80YzE1ZDktNzllNi00NTJmLWFhMzIt MDJkYjhiNzdkMDg3LzEvQnZtak4xRWktUmRaNVhVNHd5RVNMdUFfalVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS80YzE1ZDktNzllNi00NTJmLWFhMzItMDJkYjhiNzdkMDg3 LzEvcURCY2JsZ3BTdER0VVdMNmhDbmFVV1ZsT1RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW8faMA8E AgACMAkDBwAgAQZ8LXAwDQYJKoZIhvcNAQELBQADggEBAFzXr/UeCqwoEWwrbR5D qKGxkth1993OXxpGVy0/6Zb8XUTqnVBV69i1dFj7lP3OrzLbn4Ubfl1RcNoXwOVI YZ3Y5urH0RCG/6bQVwe7vqWY8FeOiytYig5IHmC1lsLpNvGatWfTfKplWLUB6vfy zC1vlOSIzGs2T4TLvt1N5WUS/Kh+lwQ/ySLjaxNxkK4rvlenjXSTK1kd6beHNlfk WN8yW0oFwkXjP0IKlCQ1hNn4zfLdZAaYCH7g0DqRzbMnPNvsafUUvWdk/lHJQzl8 vaIHHiZZDHBpyrTU19Em+TtY1GSxyoSqfnRwnkfApDLyaNwKpaaBhPT+9ir8vSzk R7Q= -----END CERTIFICATE-----Generated at Tue Jan 27 16:47:57 2026 by rpki-client