This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/bqf5qipql10pKq2IW1cVBIAiNT0.roa File: bqf5qipql10pKq2IW1cVBIAiNT0.roa (raw, json) Hash identifier: +2BT4dwhMNJVzlVWSCe67UeT7mC6TzS9Mo4QbFrZxHw= Subject key identifier: 6E:A7:F9:AA:2A:6A:97:5D:29:2A:AD:88:5B:57:15:04:80:22:35:3D Certificate issuer: /CN=e4202a3fc1a8e85c9dfd2d65d319a80dd1fb917d Certificate serial: 019B7CEE43070186326408F288A0138FF779 Authority key identifier: E4:20:2A:3F:C1:A8:E8:5C:9D:FD:2D:65:D3:19:A8:0D:D1:FB:91:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/bqf5qipql10pKq2IW1cVBIAiNT0.roa Signing time: Fri 02 Jan 2026 04:19:08 +0000 ROA not before: Fri 02 Jan 2026 04:19:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208348 IP address blocks: 36.255.240.0/23 maxlen: 23 45.142.160.0/22 maxlen: 22 103.30.226.0/23 maxlen: 23 103.244.146.0/23 maxlen: 23 170.117.202.0/23 maxlen: 23 193.3.241.0/24 maxlen: 24 2a0e:f240::/29 maxlen: 29 2a0e:f240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.crl rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.mft rsync://rpki.ripe.net/repository/DEFAULT/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:43:07:01:86:32:64:08:f2:88:a0:13:8f:f7:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4202a3fc1a8e85c9dfd2d65d319a80dd1fb917d Validity Not Before: Jan 2 04:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ea7f9aa2a6a975d292aad885b5715048022353d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:63:08:67:07:6b:85:60:90:94:70:2c:cd:f8: 5a:88:d8:c2:ec:6b:d5:e8:17:03:97:a5:7d:aa:5f: 57:1d:02:3f:5c:1e:00:29:3c:39:f8:8d:7d:3e:d9: 23:33:46:ec:f6:4b:00:af:52:f8:8c:72:e9:10:03: 8a:5f:44:80:a7:65:95:3d:af:c4:51:df:ea:0f:22: 3c:5c:9b:87:30:e4:5e:4c:9d:98:15:c1:2f:3c:75: 8c:07:44:81:2d:63:7f:f6:0b:60:99:de:97:f3:23: af:2b:34:cf:7b:55:f3:5a:fd:63:b4:e8:36:30:0a: 30:3c:77:8b:12:7b:c6:40:f1:57:12:61:a7:25:08: 05:ef:1c:95:29:a7:bb:dd:32:18:9f:2e:59:5a:33: fb:22:cf:a8:1b:87:ae:6e:cf:ff:bd:64:a5:18:67: 79:93:36:5e:a8:f6:dc:83:1d:3c:df:df:25:ff:54: e6:5b:7e:0f:40:cb:13:27:6a:34:59:46:96:67:1e: ca:68:94:bb:80:7c:61:c2:1c:27:aa:08:37:1a:85: 91:f4:e3:c1:1b:6b:c3:bd:99:a2:0b:53:fd:b3:9e: e1:f0:92:ba:7e:42:eb:96:90:f4:4d:cb:f6:73:e7: 56:2b:2f:f3:6d:0a:fc:0b:ed:cf:5b:ef:ea:18:91: 52:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A7:F9:AA:2A:6A:97:5D:29:2A:AD:88:5B:57:15:04:80:22:35:3D X509v3 Authority Key Identifier: keyid:E4:20:2A:3F:C1:A8:E8:5C:9D:FD:2D:65:D3:19:A8:0D:D1:FB:91:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/bqf5qipql10pKq2IW1cVBIAiNT0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.255.240.0/23 45.142.160.0/22 103.30.226.0/23 103.244.146.0/23 170.117.202.0/23 193.3.241.0/24 IPv6: 2a0e:f240::/29 Signature Algorithm: sha256WithRSAEncryption 52:7e:da:0f:8a:de:e8:d8:04:9b:db:94:ce:f9:53:94:8b:e8: 0a:f1:2d:ca:5d:70:c7:b0:40:f1:97:63:9b:0e:2e:03:ea:73: 11:21:56:55:4a:06:88:37:49:b3:6f:86:26:92:6f:9e:ad:0a: bc:1d:79:0a:45:2e:a9:30:a8:2d:3b:8e:66:41:fa:2d:44:50: 37:43:11:4d:b3:b7:29:1b:f6:99:1e:24:33:ff:44:fd:33:de: df:83:e0:44:80:6d:3f:71:e5:7d:51:ed:e4:d0:d6:7b:be:88: ac:b9:ae:f5:69:2b:57:ca:5f:ba:48:94:8e:be:bc:75:f1:2f: 62:c2:e3:71:c2:be:ec:6f:fc:4a:52:02:dd:8a:1c:2f:a6:05: 4b:f8:33:6a:12:b0:24:35:bf:88:b5:ed:e6:1a:b1:b9:af:0e: d7:5b:06:3b:27:9e:1b:ef:69:fc:bd:1d:aa:8c:14:de:a9:98: 03:0b:93:99:5c:5b:2a:55:b2:9e:a9:27:65:8c:44:e9:99:2c: d1:8e:da:36:b3:64:ee:fe:f6:56:6a:27:9b:ed:04:61:b6:9f: 8f:d2:7f:9f:c7:1b:c3:78:30:98:46:66:fd:39:99:e7:7e:e4: 2a:1e:3b:3f:e8:96:17:56:c2:03:5e:11:01:32:e5:38:e2:fc: 13:31:38:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt87kMHAYYyZAjyiKATj/d5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0MjAyYTNmYzFhOGU4NWM5ZGZkMmQ2NWQzMTlhODBkZDFm YjkxN2QwHhcNMjYwMTAyMDQxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWE3ZjlhYTJhNmE5NzVkMjkyYWFkODg1YjU3MTUwNDgwMjIzNTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGMIZwdrhWCQlHAszfhaiNjC7GvV 6BcDl6V9ql9XHQI/XB4AKTw5+I19PtkjM0bs9ksAr1L4jHLpEAOKX0SAp2WVPa/E Ud/qDyI8XJuHMOReTJ2YFcEvPHWMB0SBLWN/9gtgmd6X8yOvKzTPe1XzWv1jtOg2 MAowPHeLEnvGQPFXEmGnJQgF7xyVKae73TIYny5ZWjP7Is+oG4eubs//vWSlGGd5 kzZeqPbcgx08398l/1TmW34PQMsTJ2o0WUaWZx7KaJS7gHxhwhwnqgg3GoWR9OPB G2vDvZmiC1P9s57h8JK6fkLrlpD0Tcv2c+dWKy/zbQr8C+3PW+/qGJFSUwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFG6n+aoqapddKSqtiFtXFQSAIjU9MB8GA1UdIwQY MBaAFOQgKj/BqOhcnf0tZdMZqA3R+5F9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUNBcVA4R282RnlkX1MxbDB4bW9EZEg3a1gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8wY2Y3YjktOTM4Zi00YzE3LThlYzct ZDE4ZDFlYTU2OGY1LzEvYnFmNXFpcHFsMTBwS3EySVcxY1ZCSUFpTlQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC8wY2Y3YjktOTM4Zi00YzE3LThlYzctZDE4ZDFlYTU2OGY1 LzEvNUNBcVA4R282RnlkX1MxbDB4bW9EZEg3a1gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQBJP/wAwQC LY6gAwQBZx7iAwQBZ/SSAwQBqnXKAwQAwQPxMA0EAgACMAcDBQMqDvJAMA0GCSqG SIb3DQEBCwUAA4IBAQBSftoPit7o2ASb25TO+VOUi+gK8S3KXXDHsEDxl2ObDi4D 6nMRIVZVSgaIN0mzb4Ymkm+erQq8HXkKRS6pMKgtO45mQfotRFA3QxFNs7cpG/aZ HiQz/0T9M97fg+BEgG0/ceV9Ue3k0NZ7voisua71aStXyl+6SJSOvrx18S9iwuNx wr7sb/xKUgLdihwvpgVL+DNqErAkNb+Ite3mGrG5rw7XWwY7J54b72n8vR2qjBTe qZgDC5OZXFsqVbKeqSdljETpmSzRjto2s2Tu/vZWaieb7QRhtp+P0n+fxxvDeDCY Rmb9OZnnfuQqHjs/6JYXVsIDXhEBMuU44vwTMTjv -----END CERTIFICATE-----Generated at Tue Feb 10 07:32:10 2026 by rpki-client