This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9c5a00-0b5f-4a95-98a8-8bd976910dbf/1/BpitMkNTOG0_ouRmz2bpaYkKoBY.roa File: BpitMkNTOG0_ouRmz2bpaYkKoBY.roa (raw, json) Hash identifier: YpWL3AH39Erg/3Vj3WOA5eh5wrqjLGB0H0SvsITlAwA= Subject key identifier: 06:98:AD:32:43:53:38:6D:3F:A2:E4:66:CF:66:E9:69:89:0A:A0:16 Certificate issuer: /CN=c3bd26fe2295e462be2678533efa531e23b7f102 Certificate serial: 019B7CECD91873BE88D23EE25745B584BA9E Authority key identifier: C3:BD:26:FE:22:95:E4:62:BE:26:78:53:3E:FA:53:1E:23:B7:F1:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w70m_iKV5GK-JnhTPvpTHiO38QI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/9c5a00-0b5f-4a95-98a8-8bd976910dbf/1/BpitMkNTOG0_ouRmz2bpaYkKoBY.roa Signing time: Fri 02 Jan 2026 04:17:35 +0000 ROA not before: Fri 02 Jan 2026 04:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12552 IP address blocks: 91.208.188.0/24 maxlen: 24 2001:67c:43c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/9c5a00-0b5f-4a95-98a8-8bd976910dbf/1/w70m_iKV5GK-JnhTPvpTHiO38QI.crl rsync://rpki.ripe.net/repository/DEFAULT/40/9c5a00-0b5f-4a95-98a8-8bd976910dbf/1/w70m_iKV5GK-JnhTPvpTHiO38QI.mft rsync://rpki.ripe.net/repository/DEFAULT/w70m_iKV5GK-JnhTPvpTHiO38QI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:d9:18:73:be:88:d2:3e:e2:57:45:b5:84:ba:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c3bd26fe2295e462be2678533efa531e23b7f102 Validity Not Before: Jan 2 04:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0698ad324353386d3fa2e466cf66e969890aa016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e8:d7:51:d5:5a:0e:ec:78:05:e5:8a:a2:40: db:6a:98:39:a4:2f:70:65:31:cb:13:d0:2f:fa:77: 19:1f:dd:49:12:6d:e8:21:60:ef:bc:c4:3e:6e:33: 59:d4:bd:15:3c:95:d6:d2:ba:7a:89:a0:a6:b0:49: 8e:74:0b:b9:d5:84:4f:a2:d7:4b:f3:40:5e:57:6a: 26:63:6e:db:49:6f:01:9c:d4:e8:85:fe:0f:b3:e9: c3:8a:ac:ba:a6:34:d9:cd:9b:fa:65:d4:51:f0:c7: 0f:93:44:10:3b:53:52:07:4d:29:95:ec:aa:a7:81: 11:4c:a2:13:18:3a:a2:64:12:aa:65:91:f4:98:d7: 31:e2:e4:6a:17:92:81:38:31:c8:1c:14:c9:c4:ba: 1e:c2:1e:93:07:17:0e:9e:4d:bc:49:61:90:ac:2c: c5:28:b4:2a:17:3a:c1:68:60:db:fc:6b:05:0f:72: fb:e2:56:51:98:d5:99:63:a4:b1:68:df:a6:ab:2d: 27:89:be:59:88:b9:e5:7b:a3:6f:af:65:05:66:15: 0a:e5:8d:75:4d:59:3a:19:42:09:c9:d8:76:81:74: 92:f8:61:5d:f2:f3:6e:6a:cd:91:ce:fa:85:c5:01: 89:65:e7:19:89:91:e5:1b:48:aa:58:2a:07:f9:5b: a5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:98:AD:32:43:53:38:6D:3F:A2:E4:66:CF:66:E9:69:89:0A:A0:16 X509v3 Authority Key Identifier: keyid:C3:BD:26:FE:22:95:E4:62:BE:26:78:53:3E:FA:53:1E:23:B7:F1:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w70m_iKV5GK-JnhTPvpTHiO38QI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c5a00-0b5f-4a95-98a8-8bd976910dbf/1/BpitMkNTOG0_ouRmz2bpaYkKoBY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c5a00-0b5f-4a95-98a8-8bd976910dbf/1/w70m_iKV5GK-JnhTPvpTHiO38QI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.188.0/24 IPv6: 2001:67c:43c::/48 Signature Algorithm: sha256WithRSAEncryption 8f:9b:eb:cf:19:5a:5a:ed:f3:c2:ea:96:66:d7:26:92:52:f0: 83:ef:d2:b0:f6:41:e8:5d:74:a2:39:39:37:59:74:56:d2:c4: 48:65:70:53:d4:19:84:9c:8a:4b:69:80:af:35:d8:0f:a9:0c: 66:4d:2d:d1:c3:9c:5b:24:54:63:ac:52:0d:e5:40:08:4f:17: 2a:7b:30:52:4a:60:78:8e:89:ed:dd:8e:4f:41:da:6a:06:63: 7a:f7:01:98:c2:fe:a6:2e:c4:db:38:61:7e:62:02:49:64:3d: cb:e6:b6:3e:b7:a3:73:04:33:cc:ed:cc:6d:bb:e9:25:36:87: 36:18:ee:3e:19:3b:d8:a6:e8:3f:2c:e6:5c:a9:d2:8a:27:61: f6:39:0b:21:7b:f8:bd:d2:cd:9a:9b:91:c2:fd:ed:29:9a:b9: 09:c6:2d:85:7a:9e:1b:60:55:eb:04:0d:95:44:14:f6:4a:19: b0:93:98:25:3b:23:fc:ad:12:5e:62:67:3f:f5:c0:58:31:a8: be:63:36:a0:ab:c9:c8:84:ac:f6:52:eb:f1:26:30:e3:df:a5: d3:59:65:61:7d:00:82:89:b4:ac:de:d6:cf:c5:c1:d9:07:a1: f1:3f:b7:0d:f4:8f:72:78:2b:d2:e8:c7:48:ab:5c:5d:7f:d9: 73:ae:09:bd -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87NkYc76I0j7iV0W1hLqeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzYmQyNmZlMjI5NWU0NjJiZTI2Nzg1MzNlZmE1MzFlMjNi N2YxMDIwHhcNMjYwMTAyMDQxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjk4YWQzMjQzNTMzODZkM2ZhMmU0NjZjZjY2ZTk2OTg5MGFhMDE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvejXUdVaDux4BeWKokDbapg5pC9w ZTHLE9Av+ncZH91JEm3oIWDvvMQ+bjNZ1L0VPJXW0rp6iaCmsEmOdAu51YRPotdL 80BeV2omY27bSW8BnNTohf4Ps+nDiqy6pjTZzZv6ZdRR8McPk0QQO1NSB00pleyq p4ERTKITGDqiZBKqZZH0mNcx4uRqF5KBODHIHBTJxLoewh6TBxcOnk28SWGQrCzF KLQqFzrBaGDb/GsFD3L74lZRmNWZY6SxaN+mqy0nib5ZiLnle6Nvr2UFZhUK5Y11 TVk6GUIJydh2gXSS+GFd8vNuas2RzvqFxQGJZecZiZHlG0iqWCoH+Vul6QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFAaYrTJDUzhtP6LkZs9m6WmJCqAWMB8GA1UdIwQY MBaAFMO9Jv4ileRiviZ4Uz76Ux4jt/ECMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzcwbV9pS1Y1R0stSm5oVFB2cFRIaU8zOFFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85YzVhMDAtMGI1Zi00YTk1LTk4YTgt OGJkOTc2OTEwZGJmLzEvQnBpdE1rTlRPRzBfb3VSbXoyYnBhWWtLb0JZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC85YzVhMDAtMGI1Zi00YTk1LTk4YTgtOGJkOTc2OTEwZGJm LzEvdzcwbV9pS1Y1R0stSm5oVFB2cFRIaU8zOFFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9C8MA8E AgACMAkDBwAgAQZ8BDwwDQYJKoZIhvcNAQELBQADggEBAI+b688ZWlrt88LqlmbX JpJS8IPv0rD2QehddKI5OTdZdFbSxEhlcFPUGYSciktpgK812A+pDGZNLdHDnFsk VGOsUg3lQAhPFyp7MFJKYHiOie3djk9B2moGY3r3AZjC/qYuxNs4YX5iAklkPcvm tj63o3MEM8ztzG276SU2hzYY7j4ZO9im6D8s5lyp0oonYfY5CyF7+L3SzZqbkcL9 7SmauQnGLYV6nhtgVesEDZVEFPZKGbCTmCU7I/ytEl5iZz/1wFgxqL5jNqCryciE rPZS6/EmMOPfpdNZZWF9AIKJtKze1s/FwdkHofE/tw30j3J4K9Lox0irXF1/2XOu Cb0= -----END CERTIFICATE-----Generated at Sun Jan 25 16:36:21 2026 by rpki-client