This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/BkKBEoBuPl12ptQekVldu_PtnTA.roa File: BkKBEoBuPl12ptQekVldu_PtnTA.roa (raw, json) Hash identifier: DoBPvLm1XOv7qBE48sBP+sgHTxMy7m9SUCSPAi7sn8c= Subject key identifier: 06:42:81:12:80:6E:3E:5D:76:A6:D4:1E:91:59:5D:BB:F3:ED:9D:30 Certificate issuer: /CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Certificate serial: 019B78A22FD52B30A724B743DE353B76724B Authority key identifier: 29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/BkKBEoBuPl12ptQekVldu_PtnTA.roa Signing time: Thu 01 Jan 2026 08:17:33 +0000 ROA not before: Thu 01 Jan 2026 08:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205220 IP address blocks: 5.10.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.mft rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:2f:d5:2b:30:a7:24:b7:43:de:35:3b:76:72:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Validity Not Before: Jan 1 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06428112806e3e5d76a6d41e91595dbbf3ed9d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:64:e2:e5:ff:d8:ea:09:54:4e:44:53:ae:1c: 0f:a6:a3:99:56:ee:cf:58:f5:fd:14:ee:08:26:6e: ea:9a:b5:32:99:99:1c:f8:1a:71:97:8c:cb:ae:62: 73:28:2a:03:9c:dd:19:bf:48:74:0b:e4:7f:95:6b: 9e:d7:7e:86:a8:6d:7a:5c:64:f3:b0:4f:fb:ed:1d: 4c:a1:93:51:a8:96:8c:3e:f2:1b:4e:44:b6:1c:46: c5:bf:4a:a4:2f:57:ad:47:70:97:33:f1:b1:5f:b8: 96:ae:23:2c:07:14:af:7e:67:05:9d:47:d8:1c:44: bb:89:2c:9a:60:9e:cb:51:bb:8b:3e:5c:15:21:8b: 82:74:ea:fa:d0:2d:98:b5:0c:63:2a:40:fb:ca:28: f0:1f:6b:7b:68:d9:69:eb:81:70:c6:e4:e8:e6:cd: 45:3a:67:a2:d5:cc:2f:2f:2f:26:7f:77:81:b4:33: 9f:a4:8c:8f:c2:ca:5e:20:06:28:7e:f6:e4:e0:1f: b8:a0:29:a5:e1:ff:6e:28:ac:75:db:38:3c:bb:c9: 57:c5:d8:86:f8:04:3c:d8:d4:76:16:a4:43:a1:61: 2a:d5:19:6a:89:d9:61:bf:44:39:a9:8d:e2:ad:6b: 06:7a:9f:7f:53:7f:02:9f:c3:b9:b9:d6:83:fc:fa: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:42:81:12:80:6E:3E:5D:76:A6:D4:1E:91:59:5D:BB:F3:ED:9D:30 X509v3 Authority Key Identifier: keyid:29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/BkKBEoBuPl12ptQekVldu_PtnTA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.10.219.0/24 Signature Algorithm: sha256WithRSAEncryption ab:68:99:99:da:37:c6:c8:e9:18:3a:51:56:e5:62:26:e8:95: 28:06:fd:58:99:6d:77:94:00:f1:f1:90:fd:05:fd:82:76:cb: 26:d0:96:4a:52:93:9e:5e:0c:42:aa:0a:c2:e1:01:1b:20:2e: ba:e4:9f:53:e1:7d:3d:f0:68:60:65:a9:cd:d2:1b:96:29:e4: 41:4a:58:11:15:58:f8:98:5e:db:2f:5b:c7:35:6f:c9:4f:67: 60:18:59:5e:a9:4f:b7:bf:a8:80:31:60:cc:c0:1b:37:5b:fc: a2:e8:c4:e6:a5:e9:2b:a9:4c:03:e4:d2:19:9b:ad:d0:61:ac: c7:a7:dd:a1:2e:ef:94:5c:3d:bd:6a:c0:a4:12:10:54:dd:15: 97:c1:32:a6:46:bc:5a:d3:47:7b:8b:44:05:0f:6f:49:90:05: 3b:b5:8e:c2:74:6e:0a:50:f1:63:94:55:52:45:e6:27:69:98: fb:a5:34:e1:d8:f6:d3:91:61:db:73:f8:e5:eb:63:f5:e2:a0: 17:bc:b5:be:79:bc:30:78:fa:fd:0e:9c:6e:a3:e3:64:aa:c5: 26:d2:1b:53:92:f0:55:b5:a8:80:1c:f3:c0:88:48:88:7a:b6: be:70:d2:cb:be:e5:f0:66:c6:76:07:23:be:da:db:49:18:32: 74:8f:28:c2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oi/VKzCnJLdD3jU7dnJLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2VmOWJlZmQxYTdlMjRjMGNjOTcyOTk4N2ZjMDY1ZDZi NzEzMmYwHhcNMjYwMTAxMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjQyODExMjgwNmUzZTVkNzZhNmQ0MWU5MTU5NWRiYmYzZWQ5ZDMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomTi5f/Y6glUTkRTrhwPpqOZVu7P WPX9FO4IJm7qmrUymZkc+Bpxl4zLrmJzKCoDnN0Zv0h0C+R/lWue136GqG16XGTz sE/77R1MoZNRqJaMPvIbTkS2HEbFv0qkL1etR3CXM/GxX7iWriMsBxSvfmcFnUfY HES7iSyaYJ7LUbuLPlwVIYuCdOr60C2YtQxjKkD7yijwH2t7aNlp64FwxuTo5s1F Omei1cwvLy8mf3eBtDOfpIyPwspeIAYofvbk4B+4oCml4f9uKKx12zg8u8lXxdiG +AQ82NR2FqRDoWEq1Rlqidlhv0Q5qY3irWsGep9/U38Cn8O5udaD/PrVgQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAZCgRKAbj5ddqbUHpFZXbvz7Z0wMB8GA1UdIwQY MBaAFCl++b79Gn4kwMyXKZh/wGXWtxMvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWIt ZGVlNzY4NjAwMTNkLzEvQmtLQkVvQnVQbDEycHRRZWtWbGR1X1B0blRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWItZGVlNzY4NjAwMTNk LzEvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABQrbMA0G CSqGSIb3DQEBCwUAA4IBAQCraJmZ2jfGyOkYOlFW5WIm6JUoBv1YmW13lADx8ZD9 Bf2Cdssm0JZKUpOeXgxCqgrC4QEbIC665J9T4X098GhgZanN0huWKeRBSlgRFVj4 mF7bL1vHNW/JT2dgGFleqU+3v6iAMWDMwBs3W/yi6MTmpekrqUwD5NIZm63QYazH p92hLu+UXD29asCkEhBU3RWXwTKmRrxa00d7i0QFD29JkAU7tY7CdG4KUPFjlFVS ReYnaZj7pTTh2PbTkWHbc/jl62P14qAXvLW+ebwwePr9Dpxuo+NkqsUm0htTkvBV taiAHPPAiEiIera+cNLLvuXwZsZ2ByO+2ttJGDJ0jyjC -----END CERTIFICATE-----Generated at Wed Jan 21 01:08:57 2026 by rpki-client