This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/BmDJr6NVvMRZJfVxWJAT8OCM7fY.roa File: BmDJr6NVvMRZJfVxWJAT8OCM7fY.roa (raw, json) Hash identifier: 5dcydJfHt2J/Yp4bz6hC2PeHwVc0JR/YkXEsIrJj0IQ= Subject key identifier: 06:60:C9:AF:A3:55:BC:C4:59:25:F5:71:58:90:13:F0:E0:8C:ED:F6 Certificate issuer: /CN=d45bab208653d4261ebf202f6036334119846055 Certificate serial: 019B7E3730829AC7E67C5647516D7D6F6F12 Authority key identifier: D4:5B:AB:20:86:53:D4:26:1E:BF:20:2F:60:36:33:41:19:84:60:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FurIIZT1CYevyAvYDYzQRmEYFU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/BmDJr6NVvMRZJfVxWJAT8OCM7fY.roa Signing time: Fri 02 Jan 2026 10:18:24 +0000 ROA not before: Fri 02 Jan 2026 10:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41735 IP address blocks: 185.46.69.0/24 maxlen: 24 193.37.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/1FurIIZT1CYevyAvYDYzQRmEYFU.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/1FurIIZT1CYevyAvYDYzQRmEYFU.mft rsync://rpki.ripe.net/repository/DEFAULT/1FurIIZT1CYevyAvYDYzQRmEYFU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 13:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:30:82:9a:c7:e6:7c:56:47:51:6d:7d:6f:6f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d45bab208653d4261ebf202f6036334119846055 Validity Not Before: Jan 2 10:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0660c9afa355bcc45925f571589013f0e08cedf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0b:59:5f:9a:19:94:df:f9:22:3d:14:b2:c4: 04:a3:34:97:ff:d1:24:80:f1:de:80:fd:d0:c5:18: 46:a8:02:6d:7b:da:ae:51:e1:49:8b:36:a1:10:85: 8e:e1:de:06:bd:cb:f9:f7:81:7b:b2:5e:05:d9:6e: 36:85:72:a5:de:02:dc:e3:26:56:1b:af:e2:1f:b2: 18:93:1c:5e:1a:08:fb:33:31:fb:33:e7:3b:54:82: b0:34:74:fa:79:f3:ee:44:2c:77:ab:f8:d7:2c:fa: 1b:88:90:2e:21:b0:f2:1d:38:91:39:72:58:b8:49: 77:c5:a0:e9:74:00:12:9e:b3:3f:0c:26:68:ca:2e: 80:b8:2f:c8:b4:c7:9d:93:3d:7d:71:28:06:6a:96: b2:00:3b:1d:97:ee:bc:37:24:2a:a4:88:1a:92:ff: a4:57:84:8d:ba:aa:78:a4:26:66:50:0e:ec:32:71: 1f:43:24:8f:44:3a:88:7f:f6:67:49:71:25:09:d8: 5e:bf:33:54:01:99:0f:a3:62:2f:cf:b3:53:26:99: ba:1e:6d:84:a7:36:dc:29:c6:84:02:fb:2e:8f:79: b5:e8:53:fc:2c:d5:72:d0:a1:6d:9b:0f:dc:ba:82: 65:67:ef:fd:bb:9e:21:01:9e:2e:f3:ab:c1:37:d6: c6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:60:C9:AF:A3:55:BC:C4:59:25:F5:71:58:90:13:F0:E0:8C:ED:F6 X509v3 Authority Key Identifier: keyid:D4:5B:AB:20:86:53:D4:26:1E:BF:20:2F:60:36:33:41:19:84:60:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FurIIZT1CYevyAvYDYzQRmEYFU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/BmDJr6NVvMRZJfVxWJAT8OCM7fY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/1FurIIZT1CYevyAvYDYzQRmEYFU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.46.69.0/24 193.37.135.0/24 Signature Algorithm: sha256WithRSAEncryption 33:f8:43:12:20:77:40:df:ca:cb:5a:bf:67:a5:94:6c:e0:9b: 2f:5c:0d:a5:7e:dc:a5:b3:ff:a7:4a:ef:e0:72:a2:60:32:48: 60:cf:06:4c:66:b4:69:7c:0c:ea:5c:07:f7:5b:da:12:29:8a: 56:ea:e1:5a:10:aa:2e:07:85:4c:8a:72:5d:48:8c:bb:af:dc: 06:b7:3d:81:bc:31:ee:d6:7e:d4:fc:53:b3:cc:d1:0b:08:ac: 92:04:16:1e:bd:a9:da:61:eb:7f:c6:f9:e5:b4:16:e3:8f:5b: cc:4c:aa:46:ef:6b:77:2d:fe:39:f0:8e:35:3a:1c:aa:b1:c6: b2:2c:78:45:45:8e:4d:de:b1:0f:e5:10:98:04:3f:05:0c:8d: da:3f:7e:53:25:d7:0c:ea:62:30:c2:a9:d2:22:12:a9:45:50: d7:a3:a0:3d:25:62:d8:77:e3:0b:8c:5f:ab:7e:82:ca:7d:9e: dd:19:ec:0c:ca:ad:c3:98:b6:70:ca:7c:bf:05:42:ec:e8:cc: 92:d5:08:2a:cd:38:a0:82:4a:19:e1:c7:b7:4d:56:a9:54:99: b8:07:d8:94:d2:ee:20:e3:16:c4:11:ba:90:af:0b:1a:8d:37: 03:24:26:2a:e7:39:78:3f:8a:ba:66:74:75:c2:1d:91:c0:bd: 36:33:74:e6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+NzCCmsfmfFZHUW19b28SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NWJhYjIwODY1M2Q0MjYxZWJmMjAyZjYwMzYzMzQxMTk4 NDYwNTUwHhcNMjYwMTAyMTAxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjYwYzlhZmEzNTViY2M0NTkyNWY1NzE1ODkwMTNmMGUwOGNlZGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAtZX5oZlN/5Ij0UssQEozSX/9Ek gPHegP3QxRhGqAJte9quUeFJizahEIWO4d4Gvcv594F7sl4F2W42hXKl3gLc4yZW G6/iH7IYkxxeGgj7MzH7M+c7VIKwNHT6efPuRCx3q/jXLPobiJAuIbDyHTiROXJY uEl3xaDpdAASnrM/DCZoyi6AuC/ItMedkz19cSgGapayADsdl+68NyQqpIgakv+k V4SNuqp4pCZmUA7sMnEfQySPRDqIf/ZnSXElCdhevzNUAZkPo2Ivz7NTJpm6Hm2E pzbcKcaEAvsuj3m16FP8LNVy0KFtmw/cuoJlZ+/9u54hAZ4u86vBN9bGjwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAZgya+jVbzEWSX1cViQE/DgjO32MB8GA1UdIwQY MBaAFNRbqyCGU9QmHr8gL2A2M0EZhGBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUZ1cklJWlQxQ1lldnlBdllEWXpRUm1FWUZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8wYWVjMWYtNjA2NS00ZDg4LTg0NTQt MTI0ZDNmYjM5MDZhLzEvQm1ESnI2TlZ2TVJaSmZWeFdKQVQ4T0NNN2ZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8wYWVjMWYtNjA2NS00ZDg4LTg0NTQtMTI0ZDNmYjM5MDZh LzEvMUZ1cklJWlQxQ1lldnlBdllEWXpRUm1FWUZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuS5FAwQA wSWHMA0GCSqGSIb3DQEBCwUAA4IBAQAz+EMSIHdA38rLWr9npZRs4JsvXA2lftyl s/+nSu/gcqJgMkhgzwZMZrRpfAzqXAf3W9oSKYpW6uFaEKouB4VMinJdSIy7r9wG tz2BvDHu1n7U/FOzzNELCKySBBYevanaYet/xvnltBbjj1vMTKpG72t3Lf458I41 OhyqscayLHhFRY5N3rEP5RCYBD8FDI3aP35TJdcM6mIwwqnSIhKpRVDXo6A9JWLY d+MLjF+rfoLKfZ7dGewMyq3DmLZwyny/BULs6MyS1QgqzTiggkoZ4ce3TVapVJm4 B9iU0u4g4xbEEbqQrwsajTcDJCYq5zl4P4q6ZnR1wh2RwL02M3Tm -----END CERTIFICATE-----Generated at Wed Jan 21 16:15:46 2026 by rpki-client