This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/bcPolIEIQmBOwsSsQhPcl2urep4.roa File: bcPolIEIQmBOwsSsQhPcl2urep4.roa (raw, json) Hash identifier: MW3lTAmg3R1O20JWHVvnb19Tj80ttGkLzmaKTgqpccs= Subject key identifier: 6D:C3:E8:94:81:08:42:60:4E:C2:C4:AC:42:13:DC:97:6B:AB:7A:9E Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83B8A67A1214D1C4D6D6F4119227CB Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/bcPolIEIQmBOwsSsQhPcl2urep4.roa Signing time: Fri 02 Jan 2026 16:21:37 +0000 ROA not before: Fri 02 Jan 2026 16:21:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208295 IP address blocks: 188.72.99.0/24 maxlen: 24 188.72.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:b8:a6:7a:12:14:d1:c4:d6:d6:f4:11:92:27:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6dc3e894810842604ec2c4ac4213dc976bab7a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d0:86:c4:00:d6:65:6d:9d:f3:5d:06:15:41: 1a:52:3e:ce:bd:f7:e2:ce:d2:2f:39:18:fb:76:a1: 68:16:18:92:79:77:8b:5b:b2:70:03:99:97:50:bf: e9:35:cb:fc:97:be:28:b2:94:29:c6:eb:91:0d:4c: e5:72:e0:db:20:50:9a:b1:c8:fc:5a:7f:dd:70:7d: b0:e7:64:29:7d:ed:7a:4e:18:99:32:90:95:89:af: 0b:00:14:8a:54:ab:a9:5c:1d:49:82:67:9c:4a:95: 76:8d:b7:4c:84:99:a8:23:fb:cc:62:74:b0:1b:b6: fb:57:5e:ef:3c:2e:ba:fa:fb:4f:c9:5b:75:e0:fb: 2e:61:d2:a8:dc:f5:a5:69:1c:0a:14:ed:8b:bc:1f: 6f:02:59:cb:48:68:0b:98:db:df:c3:27:25:3d:84: 63:8b:ac:6b:02:6b:27:33:ac:f7:58:31:ab:70:49: ae:df:45:0d:75:7f:f2:97:79:80:c0:95:97:0b:95: 92:b2:7c:64:63:a2:0d:88:83:b5:0d:ea:0f:b7:b2: 51:8e:b7:be:c8:91:cb:2b:59:c0:a0:ba:75:c0:eb: 6f:09:a7:46:50:7d:03:db:3c:4e:a7:05:b5:9c:91: 65:44:4d:f0:df:a1:43:46:69:6b:dc:52:55:b4:c4: 97:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C3:E8:94:81:08:42:60:4E:C2:C4:AC:42:13:DC:97:6B:AB:7A:9E X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/bcPolIEIQmBOwsSsQhPcl2urep4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.72.99.0-188.72.100.255 Signature Algorithm: sha256WithRSAEncryption 4c:82:f7:f2:ac:c3:6e:05:db:57:24:29:b6:de:00:ec:72:41: c9:81:c0:1c:15:c7:3a:fc:25:14:e8:3c:78:90:53:47:db:87: a5:59:46:d5:c7:cb:e3:6c:1f:a9:0f:51:1e:07:42:0b:a4:92: 87:76:8d:53:dd:64:74:db:7e:6d:0e:84:14:0d:19:e7:bd:d4: d9:a1:24:5e:9a:f5:0d:e9:18:f5:0b:ad:10:20:a5:01:5f:4a: db:1a:87:d8:b7:8b:b9:df:1a:b3:8f:16:27:f1:ff:6a:12:f7: 2e:89:cd:05:d0:70:84:ca:83:32:97:6d:41:ef:2c:2f:64:e1: 84:da:6e:55:22:9a:28:af:fe:85:8a:51:88:94:56:67:5c:8f: b3:5f:8a:4a:c0:65:30:d3:69:06:b5:5b:01:87:f2:22:3c:70: 38:d6:a1:5c:76:a6:f8:0b:df:4a:7d:69:ce:4e:c9:fd:25:15: 94:cb:98:2a:26:8a:33:8b:9c:97:0d:84:a7:95:bd:46:49:03: 52:3f:89:87:e9:f5:6c:26:b3:e8:c7:58:c9:2e:81:51:b1:d0: f6:64:31:9c:df:42:ac:2e:42:1d:8a:32:9a:e2:29:d1:66:cf: 1b:eb:24:5f:ee:62:cd:a8:8c:ed:62:11:89:45:83:ba:c0:65: 6c:04:93:ef -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt/g7imehIU0cTW1vQRkifLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGMzZTg5NDgxMDg0MjYwNGVjMmM0YWM0MjEzZGM5NzZiYWI3YTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtCGxADWZW2d810GFUEaUj7Ovffi ztIvORj7dqFoFhiSeXeLW7JwA5mXUL/pNcv8l74ospQpxuuRDUzlcuDbIFCascj8 Wn/dcH2w52Qpfe16ThiZMpCVia8LABSKVKupXB1JgmecSpV2jbdMhJmoI/vMYnSw G7b7V17vPC66+vtPyVt14PsuYdKo3PWlaRwKFO2LvB9vAlnLSGgLmNvfwyclPYRj i6xrAmsnM6z3WDGrcEmu30UNdX/yl3mAwJWXC5WSsnxkY6INiIO1DeoPt7JRjre+ yJHLK1nAoLp1wOtvCadGUH0D2zxOpwW1nJFlRE3w36FDRmlr3FJVtMSXJQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFG3D6JSBCEJgTsLErEIT3Jdrq3qeMB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvYmNQb2xJRUlRbUJPd3NTc1FoUGNsMnVyZXA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC8SGMD BAC8SGQwDQYJKoZIhvcNAQELBQADggEBAEyC9/Ksw24F21ckKbbeAOxyQcmBwBwV xzr8JRToPHiQU0fbh6VZRtXHy+NsH6kPUR4HQgukkod2jVPdZHTbfm0OhBQNGee9 1NmhJF6a9Q3pGPULrRAgpQFfStsah9i3i7nfGrOPFifx/2oS9y6JzQXQcITKgzKX bUHvLC9k4YTablUimiiv/oWKUYiUVmdcj7NfikrAZTDTaQa1WwGH8iI8cDjWoVx2 pvgL30p9ac5Oyf0lFZTLmComijOLnJcNhKeVvUZJA1I/iYfp9Wwms+jHWMkugVGx 0PZkMZzfQqwuQh2KMpriKdFmzxvrJF/uYs2ojO1iEYlFg7rAZWwEk+8= -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:20 2026 by rpki-client