This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/bfREzEwR-EXPjAe3wBGoI04LV-k.roa File: bfREzEwR-EXPjAe3wBGoI04LV-k.roa (raw, json) Hash identifier: 769fYTMFcVF5MUU/DGKAsF33sj2AY85ZIEX4Env7vD8= Subject key identifier: 6D:F4:44:CC:4C:11:F8:45:CF:8C:07:B7:C0:11:A8:23:4E:0B:57:E9 Certificate issuer: /CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec Certificate serial: 019B76EBA1CE96387A61A3DBAF12F03C5400 Authority key identifier: CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/bfREzEwR-EXPjAe3wBGoI04LV-k.roa Signing time: Thu 01 Jan 2026 00:18:32 +0000 ROA not before: Thu 01 Jan 2026 00:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198485 IP address blocks: 195.22.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 03:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:a1:ce:96:38:7a:61:a3:db:af:12:f0:3c:54:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec Validity Not Before: Jan 1 00:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6df444cc4c11f845cf8c07b7c011a8234e0b57e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bd:a4:23:fb:ec:22:48:8b:74:3e:11:f6:4b: 7f:ee:0d:95:a6:c1:3b:f7:41:25:fd:c3:51:96:17: 10:65:4f:f2:00:ad:9d:63:bf:ce:27:a9:89:ae:41: 4c:28:9e:6b:8d:8d:87:66:27:7b:84:dc:96:7b:93: 14:ab:0b:72:0c:a2:b3:db:4e:a5:8e:2b:03:37:cd: 62:ab:68:f2:92:87:48:a4:3f:8b:73:c8:91:68:99: a0:42:36:b2:b0:1e:45:d2:13:7e:23:64:06:c4:d3: c8:fb:06:4f:ab:6c:29:68:01:8c:4c:bb:89:5f:b7: c6:1b:d9:50:10:81:dd:60:d8:56:3e:95:b6:01:ff: 75:8d:1b:96:ce:63:f9:0b:b3:2b:92:e2:f2:1c:6c: 0d:6b:1f:4d:e6:73:4d:2c:70:44:ae:5a:ba:21:3c: c1:83:36:fe:fb:ac:f5:1a:2d:b8:e7:39:cf:e4:a4: 01:21:06:24:ec:a8:6c:71:d5:b5:52:79:c8:a2:ae: 7c:4f:5c:1b:f2:8f:e3:b9:8b:a3:2d:e4:02:77:61: 9c:7c:34:9c:83:05:07:a1:09:95:01:77:9a:62:63: 64:50:64:9b:9f:f8:01:a4:22:15:ba:3d:ca:06:95: b7:87:36:2a:03:c5:a3:41:f9:44:c1:e6:05:78:fa: 6a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F4:44:CC:4C:11:F8:45:CF:8C:07:B7:C0:11:A8:23:4E:0B:57:E9 X509v3 Authority Key Identifier: keyid:CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/bfREzEwR-EXPjAe3wBGoI04LV-k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.22.122.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:3c:91:ef:9d:a5:04:c2:36:79:3a:d2:98:55:d3:00:b7:b1: ff:11:9e:18:bd:74:f1:6d:5f:d4:80:41:2a:66:fe:e2:8d:7d: 34:d3:0a:96:55:91:31:e7:e7:de:bc:4b:34:58:47:9d:33:de: a2:f2:96:e8:0a:3d:63:06:a8:6f:d0:8e:ac:b2:ae:11:9c:99: d4:99:66:58:f6:18:91:98:b2:78:58:3f:f5:c2:ae:ec:30:fc: bb:ef:aa:b8:92:38:0e:ab:85:80:61:5c:32:0b:a7:5c:ca:8f: a6:3e:73:5e:64:91:c4:69:22:b2:a2:0a:ed:c7:68:d8:98:09: bd:ab:c0:1f:b5:29:77:27:fa:28:12:b4:97:fc:65:b1:3e:65: 33:aa:94:bc:e9:af:1f:a9:80:2a:23:17:b6:81:97:49:4a:d6: 05:b7:46:46:ca:7e:af:b7:eb:87:a8:5d:f4:d5:dd:d8:11:04: 78:95:d4:e6:57:d1:0a:d3:68:e8:f7:ee:cd:ea:7d:63:71:cf: 03:0b:22:95:3f:06:0f:46:a2:e4:ab:98:82:6c:51:77:2c:39: 1d:81:80:11:9e:7b:0e:a1:a5:3b:a1:43:63:eb:b7:9a:d3:f8: b2:2e:fe:2e:31:8b:56:49:09:e5:1d:64:d6:b1:b2:be:66:e4: 3f:14:06:06 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt266HOljh6YaPbrxLwPFQAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNWVmN2E4NzBkNGIxNDhlYjFkNGY0ZmU2NjZlZDUwNTRh ZGVhZWMwHhcNMjYwMTAxMDAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGY0NDRjYzRjMTFmODQ1Y2Y4YzA3YjdjMDExYTgyMzRlMGI1N2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb2kI/vsIkiLdD4R9kt/7g2VpsE7 90El/cNRlhcQZU/yAK2dY7/OJ6mJrkFMKJ5rjY2HZid7hNyWe5MUqwtyDKKz206l jisDN81iq2jykodIpD+Lc8iRaJmgQjaysB5F0hN+I2QGxNPI+wZPq2wpaAGMTLuJ X7fGG9lQEIHdYNhWPpW2Af91jRuWzmP5C7MrkuLyHGwNax9N5nNNLHBErlq6ITzB gzb++6z1Gi245znP5KQBIQYk7KhscdW1UnnIoq58T1wb8o/juYujLeQCd2GcfDSc gwUHoQmVAXeaYmNkUGSbn/gBpCIVuj3KBpW3hzYqA8WjQflEweYFePpq6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG30RMxMEfhFz4wHt8ARqCNOC1fpMB8GA1UdIwQY MBaAFM9e96hw1LFI6x1PT+Zm7VBUrersMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82MzE1MjEtZDRiNy00ZjEwLThjMDYt ODdhYTI4NWY4MDdjLzEvYmZSRXpFd1ItRVhQakFlM3dCR29JMDRMVi1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82MzE1MjEtZDRiNy00ZjEwLThjMDYtODdhYTI4NWY4MDdj LzEvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwxZ6MA0G CSqGSIb3DQEBCwUAA4IBAQCfPJHvnaUEwjZ5OtKYVdMAt7H/EZ4YvXTxbV/UgEEq Zv7ijX000wqWVZEx5+fevEs0WEedM96i8pboCj1jBqhv0I6ssq4RnJnUmWZY9hiR mLJ4WD/1wq7sMPy776q4kjgOq4WAYVwyC6dcyo+mPnNeZJHEaSKyogrtx2jYmAm9 q8AftSl3J/ooErSX/GWxPmUzqpS86a8fqYAqIxe2gZdJStYFt0ZGyn6vt+uHqF30 1d3YEQR4ldTmV9EK02jo9+7N6n1jcc8DCyKVPwYPRqLkq5iCbFF3LDkdgYARnnsO oaU7oUNj67ea0/iyLv4uMYtWSQnlHWTWsbK+ZuQ/FAYG -----END CERTIFICATE-----Generated at Wed Feb 4 12:37:48 2026 by rpki-client