This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/BQL1UodOw2IvGC4xxuFD0Gup-ck.roa File: BQL1UodOw2IvGC4xxuFD0Gup-ck.roa (raw, json) Hash identifier: iOewEWQk7NAvJ6RGnALMkUi6KmZ2O0je6In9lVGWYQg= Subject key identifier: 05:02:F5:52:87:4E:C3:62:2F:18:2E:31:C6:E1:43:D0:6B:A9:F9:C9 Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f Certificate serial: 019B79ED2A07CEC13ADC89F2C5621BA498E0 Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/BQL1UodOw2IvGC4xxuFD0Gup-ck.roa Signing time: Thu 01 Jan 2026 14:19:04 +0000 ROA not before: Thu 01 Jan 2026 14:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212422 IP address blocks: 193.59.94.0/24 maxlen: 24 193.59.95.0/24 maxlen: 24 193.59.98.0/24 maxlen: 24 193.59.102.0/24 maxlen: 24 193.59.103.0/24 maxlen: 24 194.181.181.0/24 maxlen: 24 194.181.250.0/24 maxlen: 24 195.187.35.0/24 maxlen: 24 195.187.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:2a:07:ce:c1:3a:dc:89:f2:c5:62:1b:a4:98:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f Validity Not Before: Jan 1 14:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0502f552874ec3622f182e31c6e143d06ba9f9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:04:f4:f8:da:78:06:69:00:13:54:1a:ab:81: 79:ca:50:92:3a:6c:de:fa:aa:48:b3:0b:f4:c3:bb: f2:89:82:83:33:fe:6f:5c:17:67:f2:38:3a:01:05: 07:81:5b:ce:44:94:a8:1c:f4:e1:13:49:f3:20:24: 4b:8f:9f:fb:fa:ae:48:ad:d0:d9:44:67:1c:f5:24: 3a:50:fa:eb:1f:ac:65:cc:69:bd:29:cc:b6:c1:e1: 5b:b5:41:6c:3b:eb:fa:18:ef:3b:54:fa:53:3a:98: da:3b:97:ca:34:b2:63:e4:28:a4:d3:48:88:85:4e: f0:25:bf:c3:9e:54:d4:4c:07:e3:0f:db:de:39:db: 1b:10:a8:37:43:4e:0d:ae:2c:05:f7:91:ea:da:95: 51:28:ca:63:f6:84:27:70:67:b8:b5:bc:4b:4a:f4: a1:e3:d6:e6:32:af:40:74:76:37:1e:4c:04:9e:b8: 75:25:1c:2d:f6:5a:e1:d6:40:e1:ca:d4:0b:08:1d: 66:01:d6:fd:90:f4:36:a5:d2:07:b8:78:88:30:76: 89:96:b9:e8:1a:2d:16:ff:6d:52:47:7d:8b:b0:c8: 34:62:57:9a:25:b3:e4:63:29:7c:13:33:3c:0d:7a: fa:6e:33:fd:e3:dd:29:20:ea:33:2c:71:70:bd:ab: a6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:02:F5:52:87:4E:C3:62:2F:18:2E:31:C6:E1:43:D0:6B:A9:F9:C9 X509v3 Authority Key Identifier: keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/BQL1UodOw2IvGC4xxuFD0Gup-ck.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.59.94.0/23 193.59.98.0/24 193.59.102.0/23 194.181.181.0/24 194.181.250.0/24 195.187.35.0/24 195.187.53.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:7d:44:bb:d7:5b:89:d5:3b:74:36:33:21:bf:aa:59:51:96: d2:17:d9:aa:4a:f5:37:92:fd:19:d3:06:b6:03:d4:bc:fa:b9: f2:00:b7:c3:8d:07:01:6c:d4:9f:48:d7:9d:74:79:b5:92:3c: b0:a9:66:37:e1:2b:98:3e:b8:43:77:b1:53:b0:90:6b:1e:46: 3d:2e:65:5f:e6:fa:0b:5c:51:59:40:43:45:b5:ab:aa:11:5b: f9:6f:f7:a1:db:f0:d7:5f:25:7e:17:d2:74:52:f0:be:81:5b: 14:af:a4:e7:da:bc:cc:69:b1:58:9a:7d:e0:9e:8e:bd:11:3b: d2:50:60:3c:a6:f9:9c:56:c9:40:f9:f9:e4:9d:50:d5:86:45: 27:4c:29:a8:8e:68:14:69:22:bf:71:6b:ea:ef:4c:92:d4:eb: 31:1f:4c:0b:62:62:08:15:69:aa:37:6f:45:2d:05:17:a8:56: ff:0e:f6:b5:ab:25:b9:4c:62:27:c3:a8:a2:1a:8f:43:e6:91: 98:52:b9:69:1d:b7:d8:37:ec:a8:84:ac:05:9e:bd:b3:f3:ed: e2:a1:ef:30:2e:46:cf:b6:13:d7:eb:25:14:03:42:cb:b9:8d: 1d:48:b7:4d:cd:94:10:77:ca:51:78:dd:64:5e:b1:6a:cd:d4: 23:a2:3a:0d -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt57SoHzsE63InyxWIbpJjgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw MTE4OGYwHhcNMjYwMTAxMTQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTAyZjU1Mjg3NGVjMzYyMmYxODJlMzFjNmUxNDNkMDZiYTlmOWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgT0+Np4BmkAE1Qaq4F5ylCSOmze +qpIswv0w7vyiYKDM/5vXBdn8jg6AQUHgVvORJSoHPThE0nzICRLj5/7+q5IrdDZ RGcc9SQ6UPrrH6xlzGm9Kcy2weFbtUFsO+v6GO87VPpTOpjaO5fKNLJj5Cik00iI hU7wJb/DnlTUTAfjD9veOdsbEKg3Q04NriwF95Hq2pVRKMpj9oQncGe4tbxLSvSh 49bmMq9AdHY3HkwEnrh1JRwt9lrh1kDhytQLCB1mAdb9kPQ2pdIHuHiIMHaJlrno Gi0W/21SR32LsMg0YleaJbPkYyl8EzM8DXr6bjP9490pIOozLHFwvaumNQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFAUC9VKHTsNiLxguMcbhQ9BrqfnJMB8GA1UdIwQY MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt YzA2NzFiZjRjZjNlLzEvQlFMMVVvZE93Mkl2R0M0eHh1RkQwR3VwLWNrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBwTteAwQA wTtiAwQBwTtmAwQAwrW1AwQAwrX6AwQAw7sjAwQAw7s1MA0GCSqGSIb3DQEBCwUA A4IBAQAffUS711uJ1Tt0NjMhv6pZUZbSF9mqSvU3kv0Z0wa2A9S8+rnyALfDjQcB bNSfSNeddHm1kjywqWY34SuYPrhDd7FTsJBrHkY9LmVf5voLXFFZQENFtauqEVv5 b/eh2/DXXyV+F9J0UvC+gVsUr6Tn2rzMabFYmn3gno69ETvSUGA8pvmcVslA+fnk nVDVhkUnTCmojmgUaSK/cWvq70yS1OsxH0wLYmIIFWmqN29FLQUXqFb/Dva1qyW5 TGInw6iiGo9D5pGYUrlpHbfYN+yohKwFnr2z8+3ioe8wLkbPthPX6yUUA0LLuY0d SLdNzZQQd8pReN1kXrFqzdQjojoN -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:47 2026 by rpki-client