This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/BS5IPpy602b0P9LZT_8NLf8j87k.roa File: BS5IPpy602b0P9LZT_8NLf8j87k.roa (raw, json) Hash identifier: rFpHzyrk3W9kwB0GwSUlANwsnD6QKAwk516vFwL56UI= Subject key identifier: 05:2E:48:3E:9C:BA:D3:66:F4:3F:D2:D9:4F:FF:0D:2D:FF:23:F3:B9 Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b Certificate serial: 019B7A5B1128EF34A73E9705D54D58972678 Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/BS5IPpy602b0P9LZT_8NLf8j87k.roa Signing time: Thu 01 Jan 2026 16:19:06 +0000 ROA not before: Thu 01 Jan 2026 16:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211904 IP address blocks: 195.190.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.mft rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:11:28:ef:34:a7:3e:97:05:d5:4d:58:97:26:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b Validity Not Before: Jan 1 16:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=052e483e9cbad366f43fd2d94fff0d2dff23f3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:64:fb:51:9e:1f:cc:f7:5d:b9:c8:10:24:87: 28:3f:62:f5:de:59:c7:30:dc:d8:7f:36:4b:cf:45: 80:68:ed:48:ff:34:7b:ac:df:a7:c5:b1:b9:05:5d: 87:99:d9:fe:62:43:a3:af:a8:29:79:14:fa:02:c0: ea:41:52:e2:31:86:ec:bf:81:f5:29:97:d2:d6:c4: 57:73:5b:e1:3f:bf:b9:53:81:71:50:42:3f:03:0a: 76:c6:08:23:25:d6:a5:f1:50:97:0e:8c:14:1b:7d: 1b:9b:b4:49:d9:2c:7b:c6:aa:23:2b:83:99:30:25: 6b:29:41:13:8b:0e:7b:3d:3b:3b:cb:a8:bb:16:bc: bb:67:58:b8:3d:30:85:cb:a9:85:89:f2:c0:71:97: bb:4e:0e:cc:c6:55:50:54:f8:8f:33:b9:bd:ba:fe: 58:67:35:2e:e6:8f:a7:14:9e:cd:f5:9d:c3:fa:ca: c2:3b:5d:59:f2:13:11:ee:e5:4f:7c:0c:a9:32:11: 0c:9b:33:6c:3d:1f:5b:c1:41:76:16:61:94:01:86: a1:b9:4e:18:0c:91:e2:e8:5c:ff:83:c3:24:5e:bc: 49:37:f4:f8:b2:e6:24:22:4c:be:9c:3a:72:3f:f4: 71:2e:ef:ba:c6:fe:9e:7e:6c:a5:c1:50:4a:42:4e: bb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:2E:48:3E:9C:BA:D3:66:F4:3F:D2:D9:4F:FF:0D:2D:FF:23:F3:B9 X509v3 Authority Key Identifier: keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/BS5IPpy602b0P9LZT_8NLf8j87k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.190.144.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:c8:44:a3:db:59:30:62:94:4c:ac:80:93:2d:f5:f6:7e:9a: 7d:73:dc:ea:0e:c7:ac:70:53:59:ab:cd:16:b3:c9:10:5f:c3: e2:0c:88:e8:2d:0d:fc:ad:72:50:c2:80:0d:08:99:e7:93:5f: 3d:80:ea:7b:66:92:f0:79:74:74:63:a3:7f:ab:b6:2e:e7:3a: 49:5e:78:5e:82:f6:57:96:ef:de:e5:a4:14:ed:b9:b4:15:ca: 3c:25:3e:af:b6:f9:91:fa:b2:c2:92:c9:be:3a:b7:c1:37:d0: d6:08:98:9e:0f:46:bc:81:c1:db:5c:28:2c:81:1c:3c:80:e2: 70:ae:3b:be:d7:99:09:c4:57:cc:8b:1f:7e:15:3f:0a:4a:c9: 57:39:9f:c2:2a:93:64:35:25:ae:15:af:d0:11:57:61:24:3e: 81:c9:9c:be:3e:57:5a:5d:4d:43:e0:1f:8f:2f:38:58:b7:ce: fa:97:cc:dd:f1:6e:bd:35:0d:48:2a:12:02:d2:6a:0f:6f:1e: f1:ca:12:55:25:5c:3c:e6:10:a5:fa:78:dc:e0:ad:f3:d9:83: 33:40:b4:aa:00:39:3b:2e:64:84:da:cb:d5:d4:94:0e:10:97: 63:45:f8:07:4c:25:cd:74:b1:cf:f9:fd:99:fb:4e:d4:14:06: 1a:69:bf:b8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WxEo7zSnPpcF1U1YlyZ4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjM2QwMjJhMjQwY2U3MWUwYTZlMWU5YWFlMDExMmRhODQw Y2MzNGIwHhcNMjYwMTAxMTYxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTJlNDgzZTljYmFkMzY2ZjQzZmQyZDk0ZmZmMGQyZGZmMjNmM2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2T7UZ4fzPdducgQJIcoP2L13lnH MNzYfzZLz0WAaO1I/zR7rN+nxbG5BV2Hmdn+YkOjr6gpeRT6AsDqQVLiMYbsv4H1 KZfS1sRXc1vhP7+5U4FxUEI/Awp2xggjJdal8VCXDowUG30bm7RJ2Sx7xqojK4OZ MCVrKUETiw57PTs7y6i7Fry7Z1i4PTCFy6mFifLAcZe7Tg7MxlVQVPiPM7m9uv5Y ZzUu5o+nFJ7N9Z3D+srCO11Z8hMR7uVPfAypMhEMmzNsPR9bwUF2FmGUAYahuU4Y DJHi6Fz/g8MkXrxJN/T4suYkIky+nDpyP/RxLu+6xv6efmylwVBKQk67UwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAUuSD6cutNm9D/S2U//DS3/I/O5MB8GA1UdIwQY MBaAFHw9AiokDOceCm4emq4BEtqEDMNLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYt MDk0ODk4OWU2ZDU1LzEvQlM1SVBweTYwMmIwUDlMWlRfOE5MZjhqODdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYtMDk0ODk4OWU2ZDU1 LzEvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw76QMA0G CSqGSIb3DQEBCwUAA4IBAQB8yESj21kwYpRMrICTLfX2fpp9c9zqDsescFNZq80W s8kQX8PiDIjoLQ38rXJQwoANCJnnk189gOp7ZpLweXR0Y6N/q7Yu5zpJXnhegvZX lu/e5aQU7bm0Fco8JT6vtvmR+rLCksm+OrfBN9DWCJieD0a8gcHbXCgsgRw8gOJw rju+15kJxFfMix9+FT8KSslXOZ/CKpNkNSWuFa/QEVdhJD6ByZy+PldaXU1D4B+P LzhYt876l8zd8W69NQ1IKhIC0moPbx7xyhJVJVw85hCl+njc4K3z2YMzQLSqADk7 LmSE2svV1JQOEJdjRfgHTCXNdLHP+f2Z+07UFAYaab+4 -----END CERTIFICATE-----Generated at Mon Jan 5 13:05:27 2026 by rpki-client