This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/BaCjj0GLJaGkCIJ_iiWKcu73XDI.roa File: BaCjj0GLJaGkCIJ_iiWKcu73XDI.roa (raw, json) Hash identifier: VP6Vr4TzbvdauH2ppsPw/bcyRKYsvp9ZnrBor6tuGNU= Subject key identifier: 05:A0:A3:8F:41:8B:25:A1:A4:08:82:7F:8A:25:8A:72:EE:F7:5C:32 Certificate issuer: /CN=bcc63f010c540bcd4554344bfb9a59a2edbabc29 Certificate serial: 019BE52AB298399B3494C8FD3DB4D4AC9BCE Authority key identifier: BC:C6:3F:01:0C:54:0B:CD:45:54:34:4B:FB:9A:59:A2:ED:BA:BC:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vMY_AQxUC81FVDRL-5pZou26vCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/BaCjj0GLJaGkCIJ_iiWKcu73XDI.roa Signing time: Thu 22 Jan 2026 10:05:39 +0000 ROA not before: Thu 22 Jan 2026 10:05:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60144 IP address blocks: 45.138.36.0/22 maxlen: 32 45.150.76.0/22 maxlen: 32 91.215.156.0/22 maxlen: 32 146.19.105.0/24 maxlen: 32 185.27.236.0/24 maxlen: 32 185.27.237.0/24 maxlen: 32 185.27.238.0/24 maxlen: 32 185.27.239.0/24 maxlen: 32 185.53.8.0/22 maxlen: 32 185.56.28.0/22 maxlen: 32 192.162.136.0/22 maxlen: 32 2a02:5060::/32 maxlen: 128 2a07:f9c0::/29 maxlen: 128 2a07:f9c0:fefe::/48 maxlen: 128 2a12:1680::/29 maxlen: 128 2a12:8f00::/29 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/vMY_AQxUC81FVDRL-5pZou26vCk.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/vMY_AQxUC81FVDRL-5pZou26vCk.mft rsync://rpki.ripe.net/repository/DEFAULT/vMY_AQxUC81FVDRL-5pZou26vCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e5:2a:b2:98:39:9b:34:94:c8:fd:3d:b4:d4:ac:9b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bcc63f010c540bcd4554344bfb9a59a2edbabc29 Validity Not Before: Jan 22 10:05:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05a0a38f418b25a1a408827f8a258a72eef75c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c1:4c:1a:16:d9:02:05:1e:47:4f:b0:8a:77: 66:e8:8b:f7:fb:60:a9:0c:12:3e:27:1b:59:13:de: fb:3f:06:88:be:ee:fd:59:f2:30:8b:1a:69:0d:e7: e4:aa:68:a3:a8:1b:ed:55:36:57:c0:7a:dc:24:49: ff:12:14:98:e7:89:db:a4:33:cf:d7:b4:00:e9:02: 20:1c:73:1b:b6:92:f1:10:54:a7:d9:6e:67:2e:85: 16:19:9b:c1:e0:18:42:a0:ea:7a:4d:84:1b:90:54: 9e:bf:26:81:00:cc:ee:a7:10:d3:8a:9b:23:a8:fb: 4c:43:3f:e1:c7:33:d0:2e:9d:26:8f:2c:cb:ab:f7: df:b6:a5:b2:51:46:6b:a6:b2:26:d9:6a:47:ea:e5: dd:5d:03:36:61:35:96:02:9f:15:1a:08:02:04:d4: 37:ef:d4:ba:a6:60:c9:5e:36:1e:70:d3:fa:39:b9: 1d:79:fc:4f:d2:32:22:4f:88:28:aa:3c:04:7e:28: fd:c8:73:d2:ff:ef:f0:4c:c2:ec:30:ad:63:7d:10: 1c:0f:41:20:b7:81:b6:43:54:11:24:67:61:84:f9: 49:ab:5b:5d:ca:dc:85:ff:20:fb:06:36:7a:a8:70: e2:aa:d8:a9:20:82:4e:6d:ee:d7:36:fa:9e:a6:f6: 72:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A0:A3:8F:41:8B:25:A1:A4:08:82:7F:8A:25:8A:72:EE:F7:5C:32 X509v3 Authority Key Identifier: keyid:BC:C6:3F:01:0C:54:0B:CD:45:54:34:4B:FB:9A:59:A2:ED:BA:BC:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vMY_AQxUC81FVDRL-5pZou26vCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/BaCjj0GLJaGkCIJ_iiWKcu73XDI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/vMY_AQxUC81FVDRL-5pZou26vCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.138.36.0/22 45.150.76.0/22 91.215.156.0/22 146.19.105.0/24 185.27.236.0/22 185.53.8.0/22 185.56.28.0/22 192.162.136.0/22 IPv6: 2a02:5060::/32 2a07:f9c0::/29 2a12:1680::/29 2a12:8f00::/29 Signature Algorithm: sha256WithRSAEncryption 65:f5:02:3e:a4:29:87:ec:9f:14:a8:22:f3:e3:3b:2d:75:69: 68:fa:ba:98:a4:9b:ba:cd:7a:5e:6b:ef:5d:9d:a8:a0:73:82: 17:75:b2:45:44:7f:04:8d:89:ed:69:48:dc:95:34:f9:e1:e3: f4:22:ff:04:54:14:a8:5c:42:2a:83:8b:27:74:f0:f5:83:6e: 5f:4f:62:6c:00:10:1c:77:f5:71:a2:75:ef:c7:3b:99:41:6d: 5c:bd:c0:e9:3c:91:62:28:ea:aa:d6:4b:2e:5a:eb:b3:48:e1: b2:dd:40:80:25:7e:89:84:b7:23:26:84:94:17:14:d3:d0:9e: 67:fc:98:51:ab:17:43:ea:65:90:0d:fb:a3:45:41:b9:40:e6: 1b:0b:b5:0c:ae:7d:da:dc:2a:0b:d6:a0:49:28:0a:af:19:b0: bf:35:14:f0:fb:50:ca:6b:32:90:40:71:c4:da:cf:57:ed:34: b0:70:0f:06:9f:2a:8a:97:2b:7c:80:b6:c7:79:5f:e0:84:66: 30:12:a0:6a:6b:fb:fb:b4:b0:f9:e2:d9:54:c7:d7:5a:de:ac: cd:33:d9:be:7b:3a:0f:28:d6:0c:13:0b:a4:b8:1e:88:87:f9: 2a:64:be:d4:9a:bc:3a:69:fb:34:58:88:51:ef:e0:6c:2c:5e: ee:62:b1:e9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZvlKrKYOZs0lMj9PbTUrJvOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjYzYzZjAxMGM1NDBiY2Q0NTU0MzQ0YmZiOWE1OWEyZWRi YWJjMjkwHhcNMjYwMTIyMTAwNTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWEwYTM4ZjQxOGIyNWExYTQwODgyN2Y4YTI1OGE3MmVlZjc1YzMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8FMGhbZAgUeR0+windm6Iv3+2Cp DBI+JxtZE977PwaIvu79WfIwixppDefkqmijqBvtVTZXwHrcJEn/EhSY54nbpDPP 17QA6QIgHHMbtpLxEFSn2W5nLoUWGZvB4BhCoOp6TYQbkFSevyaBAMzupxDTipsj qPtMQz/hxzPQLp0mjyzLq/fftqWyUUZrprIm2WpH6uXdXQM2YTWWAp8VGggCBNQ3 79S6pmDJXjYecNP6ObkdefxP0jIiT4goqjwEfij9yHPS/+/wTMLsMK1jfRAcD0Eg t4G2Q1QRJGdhhPlJq1tdytyF/yD7BjZ6qHDiqtipIIJObe7XNvqepvZywQIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFAWgo49BiyWhpAiCf4olinLu91wyMB8GA1UdIwQY MBaAFLzGPwEMVAvNRVQ0S/uaWaLturwpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdk1ZX0FReFVDODFGVkRSTC01cFpvdTI2dkNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hMjljNjctZjI0ZC00OTc5LWIyYWYt Y2M0MWM0YTMxOThkLzEvQmFDamowR0xKYUdrQ0lKX2lpV0tjdTczWERJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9hMjljNjctZjI0ZC00OTc5LWIyYWYtY2M0MWM0YTMxOThk LzEvdk1ZX0FReFVDODFGVkRSTC01cFpvdTI2dkNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDA2BAIAATAwAwQCLYokAwQC LZZMAwQCW9ecAwQAkhNpAwQCuRvsAwQCuTUIAwQCuTgcAwQCwKKIMCIEAgACMBwD BQAqAlBgAwUDKgf5wAMFAyoSFoADBQMqEo8AMA0GCSqGSIb3DQEBCwUAA4IBAQBl 9QI+pCmH7J8UqCLz4zstdWlo+rqYpJu6zXpea+9dnaigc4IXdbJFRH8EjYntaUjc lTT54eP0Iv8EVBSoXEIqg4sndPD1g25fT2JsABAcd/VxonXvxzuZQW1cvcDpPJFi KOqq1ksuWuuzSOGy3UCAJX6JhLcjJoSUFxTT0J5n/JhRqxdD6mWQDfujRUG5QOYb C7UMrn3a3CoL1qBJKAqvGbC/NRTw+1DKazKQQHHE2s9X7TSwcA8GnyqKlyt8gLbH eV/ghGYwEqBqa/v7tLD54tlUx9da3qzNM9m+ezoPKNYMEwukuB6Ih/kqZL7Umrw6 afs0WIhR7+BsLF7uYrHp -----END CERTIFICATE-----Generated at Mon Jan 26 04:40:18 2026 by rpki-client