This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/BkDRLAa3B4lViMgjpTtfQSFV14I.roa File: BkDRLAa3B4lViMgjpTtfQSFV14I.roa (raw, json) Hash identifier: FjVWnkZKxfwmWvnmDOyzpHJdLPGSitKsvtBzxG3wncA= Subject key identifier: 06:40:D1:2C:06:B7:07:89:55:88:C8:23:A5:3B:5F:41:21:55:D7:82 Certificate issuer: /CN=df27b939934a2cc206ffba6bce9c90fdcba39c71 Certificate serial: 019B7E385AD289831DB029880AB7EF81E435 Authority key identifier: DF:27:B9:39:93:4A:2C:C2:06:FF:BA:6B:CE:9C:90:FD:CB:A3:9C:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ye5OZNKLMIG_7przpyQ_cujnHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/BkDRLAa3B4lViMgjpTtfQSFV14I.roa Signing time: Fri 02 Jan 2026 10:19:41 +0000 ROA not before: Fri 02 Jan 2026 10:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58331 IP address blocks: 193.242.194.0/24 maxlen: 24 193.242.195.0/24 maxlen: 24 2a05:5440::/32 maxlen: 32 2a05:5441::/32 maxlen: 32 2a05:5442::/32 maxlen: 32 2a05:5443::/32 maxlen: 32 2a05:5444::/32 maxlen: 32 2a05:5445::/32 maxlen: 32 2a05:5446::/32 maxlen: 32 2a05:5447::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/3ye5OZNKLMIG_7przpyQ_cujnHE.crl rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/3ye5OZNKLMIG_7przpyQ_cujnHE.mft rsync://rpki.ripe.net/repository/DEFAULT/3ye5OZNKLMIG_7przpyQ_cujnHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:5a:d2:89:83:1d:b0:29:88:0a:b7:ef:81:e4:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df27b939934a2cc206ffba6bce9c90fdcba39c71 Validity Not Before: Jan 2 10:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0640d12c06b707895588c823a53b5f412155d782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:1a:b8:5c:4a:53:f1:e0:0b:7f:12:63:7a: 02:c9:51:44:b0:18:f8:6c:a1:11:6a:db:6f:a5:7f: c1:31:08:a3:59:b8:3b:f0:2d:55:b0:5d:68:b0:2b: 21:0b:07:75:63:1c:62:ed:51:93:34:8a:67:33:51: b2:96:93:ab:4f:b5:9f:c6:a1:95:c3:c1:9e:8f:7f: f6:57:67:a6:8b:53:ee:47:a4:77:d9:b0:af:06:2e: 0e:58:b7:30:f2:1a:55:37:2a:95:bc:c4:21:56:a5: 3a:58:d3:c6:a8:d5:51:db:05:d7:4e:d2:7b:fa:c0: 88:9f:83:70:32:28:50:5d:ae:0a:19:92:ce:63:c4: 8a:ce:fd:70:d4:69:33:22:e6:17:b3:ae:7a:82:63: 9b:65:93:cc:8b:78:f6:30:a9:6f:ac:f4:93:1d:81: 9d:2d:73:ad:ef:e7:cd:da:88:e2:3f:3e:b7:6c:e9: 90:4c:57:b3:bb:26:5d:ab:75:bc:8d:13:fa:d1:79: 91:f5:b6:a6:08:2e:fc:eb:1e:26:b1:ff:79:93:62: 10:13:53:dd:f6:d0:37:53:cf:cf:f0:dc:09:78:fb: de:74:ba:e8:3b:eb:4b:5f:7e:ad:d8:9a:e4:68:fb: d1:a0:cb:d8:1d:69:72:e9:a5:47:82:5a:c0:2d:3e: 26:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:40:D1:2C:06:B7:07:89:55:88:C8:23:A5:3B:5F:41:21:55:D7:82 X509v3 Authority Key Identifier: keyid:DF:27:B9:39:93:4A:2C:C2:06:FF:BA:6B:CE:9C:90:FD:CB:A3:9C:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ye5OZNKLMIG_7przpyQ_cujnHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/BkDRLAa3B4lViMgjpTtfQSFV14I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/3ye5OZNKLMIG_7przpyQ_cujnHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.242.194.0/23 IPv6: 2a05:5440::/29 Signature Algorithm: sha256WithRSAEncryption 4b:3f:c1:93:99:81:8e:5f:e5:44:92:9d:6e:ae:19:13:97:12: 03:fc:51:29:d5:fe:12:26:cc:8c:77:67:20:85:79:9a:1f:f8: ca:1d:d4:6b:fb:48:5b:c8:eb:3c:bb:7e:84:35:fd:b8:8e:34: 85:5c:a8:ef:c5:ac:91:1e:e1:30:85:30:03:75:8b:3b:b8:45: a1:ba:61:1a:a2:22:92:93:ba:a9:72:84:74:79:77:03:de:b9: c5:ec:dc:be:fb:a0:94:30:00:4a:c9:b5:e1:4e:28:c3:f0:b8: fe:db:bf:78:31:3b:aa:6e:ae:0a:1b:25:e8:10:a5:02:f4:75: 87:88:74:76:39:38:6c:9d:d6:b4:3b:36:8b:dc:66:9c:60:6d: 17:09:8c:f0:75:79:bf:74:8c:18:af:69:50:83:ae:b3:54:8a: ca:8b:9b:7b:29:42:ae:e8:d8:76:8a:47:67:4a:0f:34:3d:ca: 59:fe:aa:f1:3e:c9:72:1d:a5:30:94:7c:79:81:de:e3:ea:c7: 68:a0:66:df:e4:45:9d:e0:91:97:ae:4c:87:ac:be:0e:af:41: 1f:c6:c2:b4:7c:2b:c7:a5:1b:f0:78:3f:04:61:57:a9:2a:ee: 3e:4a:77:f2:6f:39:a1:81:14:58:f2:da:4c:26:da:de:ea:b4: f8:6c:6c:49 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+OFrSiYMdsCmICrfvgeQ1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmMjdiOTM5OTM0YTJjYzIwNmZmYmE2YmNlOWM5MGZkY2Jh MzljNzEwHhcNMjYwMTAyMTAxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjQwZDEyYzA2YjcwNzg5NTU4OGM4MjNhNTNiNWY0MTIxNTVkNzgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKEauFxKU/HgC38SY3oCyVFEsBj4 bKERattvpX/BMQijWbg78C1VsF1osCshCwd1Yxxi7VGTNIpnM1GylpOrT7WfxqGV w8Gej3/2V2emi1PuR6R32bCvBi4OWLcw8hpVNyqVvMQhVqU6WNPGqNVR2wXXTtJ7 +sCIn4NwMihQXa4KGZLOY8SKzv1w1GkzIuYXs656gmObZZPMi3j2MKlvrPSTHYGd LXOt7+fN2ojiPz63bOmQTFezuyZdq3W8jRP60XmR9bamCC786x4msf95k2IQE1Pd 9tA3U8/P8NwJePvedLroO+tLX36t2JrkaPvRoMvYHWly6aVHglrALT4mAQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAZA0SwGtweJVYjII6U7X0EhVdeCMB8GA1UdIwQY MBaAFN8nuTmTSizCBv+6a86ckP3Lo5xxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3llNU9aTktMTUlHXzdwcnpweVFfY3VqbkhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi85NjYyNjEtODNiNS00ZWFkLWE0Njgt NmVkNTRkM2ZlNGY0LzEvQmtEUkxBYTNCNGxWaU1nanBUdGZRU0ZWMTRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi85NjYyNjEtODNiNS00ZWFkLWE0NjgtNmVkNTRkM2ZlNGY0 LzEvM3llNU9aTktMTUlHXzdwcnpweVFfY3VqbkhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwfLCMA0E AgACMAcDBQMqBVRAMA0GCSqGSIb3DQEBCwUAA4IBAQBLP8GTmYGOX+VEkp1urhkT lxID/FEp1f4SJsyMd2cghXmaH/jKHdRr+0hbyOs8u36ENf24jjSFXKjvxayRHuEw hTADdYs7uEWhumEaoiKSk7qpcoR0eXcD3rnF7Ny++6CUMABKybXhTijD8Lj+2794 MTuqbq4KGyXoEKUC9HWHiHR2OThsnda0OzaL3GacYG0XCYzwdXm/dIwYr2lQg66z VIrKi5t7KUKu6Nh2ikdnSg80PcpZ/qrxPslyHaUwlHx5gd7j6sdooGbf5EWd4JGX rkyHrL4Or0EfxsK0fCvHpRvweD8EYVepKu4+SnfybzmhgRRY8tpMJtre6rT4bGxJ -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:32 2026 by rpki-client