This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/BXXFKI13QIjnmOfPn-DjAJ-A154.roa File: BXXFKI13QIjnmOfPn-DjAJ-A154.roa (raw, json) Hash identifier: urOCs6K6oSn1logMMcL9PFqOpqILrWbLQHv74ICPatk= Subject key identifier: 05:75:C5:28:8D:77:40:88:E7:98:E7:CF:9F:E0:E3:00:9F:80:D7:9E Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728 Certificate serial: 019B76EB7ABA8CBA5351B7D6ABF974100197 Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/BXXFKI13QIjnmOfPn-DjAJ-A154.roa Signing time: Thu 01 Jan 2026 00:18:22 +0000 ROA not before: Thu 01 Jan 2026 00:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62395 IP address blocks: 185.151.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.mft rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:7a:ba:8c:ba:53:51:b7:d6:ab:f9:74:10:01:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c7844abef711c232c84f83c807a420af3804728 Validity Not Before: Jan 1 00:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0575c5288d774088e798e7cf9fe0e3009f80d79e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:26:1e:f6:24:00:54:32:42:32:66:76:9b:6c: ae:fd:cb:a9:78:0f:d9:23:c1:4e:6b:6d:6c:43:9e: be:2e:1f:76:b9:dc:63:71:13:3a:21:79:cf:6c:00: 15:ec:79:85:4d:58:05:f7:ee:24:d3:d8:80:03:22: f5:b3:87:b9:1c:22:e8:c7:d2:10:db:74:9b:86:08: 70:2d:3f:ea:6c:0b:93:3d:c5:f6:ea:40:aa:44:da: ac:83:ea:8f:12:93:e5:0a:9f:a3:eb:b7:93:8e:8e: ec:7f:88:2b:08:c3:ae:4a:2d:bd:62:ae:be:f7:b3: e7:cf:56:39:77:43:40:a8:53:46:c7:b0:d3:cd:04: d4:99:ac:b3:9a:24:74:00:d0:10:60:4d:b4:26:f1: 9b:51:64:d0:02:e9:51:b4:65:27:6e:fe:49:4c:c4: 18:b2:83:0b:26:dc:5f:ad:de:ce:47:ce:3f:19:85: af:e4:cc:56:7c:2a:fc:93:74:d4:d5:00:87:98:a9: cc:29:fe:28:69:20:f6:71:8b:98:51:01:c4:2e:c2: 7a:0b:3e:6d:d7:d9:60:12:15:1a:0b:1b:f2:ff:0b: a2:fc:f5:2c:be:d7:4a:a3:8a:b5:ac:8e:4f:61:8c: fd:76:ac:20:d5:62:16:b8:cd:ed:b5:a8:9e:07:72: 37:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:75:C5:28:8D:77:40:88:E7:98:E7:CF:9F:E0:E3:00:9F:80:D7:9E X509v3 Authority Key Identifier: keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/BXXFKI13QIjnmOfPn-DjAJ-A154.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.151.8.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:86:95:50:67:eb:18:b9:46:9c:d1:23:52:91:0f:25:f7:e7: 0d:17:f1:0d:06:5d:7f:df:49:6c:ed:b1:74:22:8d:fa:e8:05: 66:47:60:ad:5d:14:93:fc:91:33:2f:92:eb:b6:b4:e7:3e:65: 53:85:3a:c1:ca:bb:56:20:d5:7e:9f:e7:26:1b:a9:83:42:1d: 85:d0:43:34:8f:9c:e2:bf:5f:48:8d:10:10:75:23:06:d7:06: 75:f1:02:ef:c4:85:5d:21:db:a2:14:a7:2e:4f:f5:8c:2a:ee: 23:46:aa:2d:c2:b3:ea:91:d4:f2:f4:30:69:7d:a3:80:b5:f2: 3e:f9:9c:94:30:65:07:ca:cc:35:61:39:55:74:58:53:f3:f6: 4b:44:21:d5:fe:2f:f5:63:a9:65:ba:2e:34:c1:05:c9:66:af: 87:39:91:ea:ad:3c:2a:66:10:db:c7:ab:76:66:c0:13:8a:db: 29:b7:de:01:43:cd:49:9a:89:7a:e4:ea:f3:e8:b9:8f:b7:df: 84:52:c6:18:5e:33:a3:52:a5:a9:98:5b:4b:1c:2a:f2:29:12: 63:d5:f2:59:fe:e3:c2:14:eb:ec:25:9c:d0:29:ed:4c:85:22: df:17:fe:e5:8b:90:e0:76:69:4c:d2:42:53:c3:59:bc:35:39: 95:2c:72:d3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt263q6jLpTUbfWq/l0EAGXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjNzg0NGFiZWY3MTFjMjMyYzg0ZjgzYzgwN2E0MjBhZjM4 MDQ3MjgwHhcNMjYwMTAxMDAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTc1YzUyODhkNzc0MDg4ZTc5OGU3Y2Y5ZmUwZTMwMDlmODBkNzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5CYe9iQAVDJCMmZ2m2yu/cupeA/Z I8FOa21sQ56+Lh92udxjcRM6IXnPbAAV7HmFTVgF9+4k09iAAyL1s4e5HCLox9IQ 23SbhghwLT/qbAuTPcX26kCqRNqsg+qPEpPlCp+j67eTjo7sf4grCMOuSi29Yq6+ 97Pnz1Y5d0NAqFNGx7DTzQTUmayzmiR0ANAQYE20JvGbUWTQAulRtGUnbv5JTMQY soMLJtxfrd7OR84/GYWv5MxWfCr8k3TU1QCHmKnMKf4oaSD2cYuYUQHELsJ6Cz5t 19lgEhUaCxvy/wui/PUsvtdKo4q1rI5PYYz9dqwg1WIWuM3ttaieB3I3zwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAV1xSiNd0CI55jnz5/g4wCfgNeeMB8GA1UdIwQY MBaAFEx4RKvvcRwjLIT4PIB6QgrzgEcoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEhoRXEtOXhIQ01zaFBnOGdIcENDdk9BUnlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi84ZDU1YzAtOWFhMC00YmU3LTgyYTgt ZGFiNmI4M2NmN2VjLzEvQlhYRktJMTNRSWpubU9mUG4tRGpBSi1BMTU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi84ZDU1YzAtOWFhMC00YmU3LTgyYTgtZGFiNmI4M2NmN2Vj LzEvVEhoRXEtOXhIQ01zaFBnOGdIcENDdk9BUnlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZcIMA0G CSqGSIb3DQEBCwUAA4IBAQAuhpVQZ+sYuUac0SNSkQ8l9+cNF/ENBl1/30ls7bF0 Io366AVmR2CtXRST/JEzL5LrtrTnPmVThTrByrtWINV+n+cmG6mDQh2F0EM0j5zi v19IjRAQdSMG1wZ18QLvxIVdIduiFKcuT/WMKu4jRqotwrPqkdTy9DBpfaOAtfI+ +ZyUMGUHysw1YTlVdFhT8/ZLRCHV/i/1Y6llui40wQXJZq+HOZHqrTwqZhDbx6t2 ZsATitspt94BQ81Jmol65Orz6LmPt9+EUsYYXjOjUqWpmFtLHCryKRJj1fJZ/uPC FOvsJZzQKe1MhSLfF/7li5DgdmlM0kJTw1m8NTmVLHLT -----END CERTIFICATE-----Generated at Sun Jan 25 22:47:47 2026 by rpki-client