This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BnCeGx810mwRHqqUiaXJKiRjxk0.roa File: BnCeGx810mwRHqqUiaXJKiRjxk0.roa (raw, json) Hash identifier: XYkvxPuR/a5/uwRDnxqaSMGqtGD0868Ph8j0NisvmME= Subject key identifier: 06:70:9E:1B:1F:35:D2:6C:11:1E:AA:94:89:A5:C9:2A:24:63:C6:4D Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Certificate serial: 019B7F845EFFD943A94073D19605F92E4B3C Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BnCeGx810mwRHqqUiaXJKiRjxk0.roa Signing time: Fri 02 Jan 2026 16:22:20 +0000 ROA not before: Fri 02 Jan 2026 16:22:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34418 IP address blocks: 85.153.153.0/24 maxlen: 24 85.153.154.0/24 maxlen: 24 176.236.215.0/24 maxlen: 24 212.252.208.0/23 maxlen: 23 212.252.208.0/24 maxlen: 24 212.252.209.0/24 maxlen: 24 212.252.210.0/23 maxlen: 23 212.252.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.mft rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:5e:ff:d9:43:a9:40:73:d1:96:05:f9:2e:4b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Validity Not Before: Jan 2 16:22:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06709e1b1f35d26c111eaa9489a5c92a2463c64d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6b:91:61:fd:32:57:02:80:f2:70:9f:0c:58: a9:56:6e:64:72:6d:43:e5:19:b5:4b:1f:69:14:73: c7:94:34:ef:14:bf:13:bd:5a:25:c8:ed:01:3f:4c: fd:27:7d:9b:66:1d:3d:91:6f:3f:6a:4d:3a:21:af: 8a:dc:4c:fa:b8:96:80:69:8d:70:28:99:7b:e8:f2: b8:08:10:d8:77:18:fa:2f:54:a4:b1:00:0f:18:47: 3c:e5:67:e4:d5:63:5a:31:cc:0e:32:8b:42:08:a9: fa:55:0e:30:26:78:6d:58:28:4c:f3:86:50:fe:ed: 69:bb:ee:cc:10:23:9e:19:82:49:80:3b:9b:3a:3b: a8:5b:9a:44:f2:6f:0d:b4:9c:8c:70:9e:dc:83:bf: cb:07:ab:56:5f:c9:2d:15:0a:58:3f:38:c7:c1:b1: 60:c1:88:9f:3f:be:d0:d6:f3:87:84:d7:dd:9d:4d: 28:66:8d:ca:b0:cc:2d:21:83:98:df:e9:0e:63:c7: 7b:78:ac:c9:b5:53:a7:72:51:ce:d4:0c:99:b0:92: 86:8e:a8:13:08:7d:a1:90:05:79:c1:6a:99:34:c4: fb:39:d4:2d:0b:18:e4:e3:7d:c3:a5:26:10:19:04: 83:96:32:cd:39:45:64:c4:5d:b9:26:a0:03:b1:fe: b1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:70:9E:1B:1F:35:D2:6C:11:1E:AA:94:89:A5:C9:2A:24:63:C6:4D X509v3 Authority Key Identifier: keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BnCeGx810mwRHqqUiaXJKiRjxk0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.153.153.0-85.153.154.255 176.236.215.0/24 212.252.208.0/22 Signature Algorithm: sha256WithRSAEncryption 07:18:95:4c:d5:19:ab:20:a6:6f:d7:25:d5:f2:01:5c:7b:78: 98:4b:b4:94:6f:a4:d9:cd:01:db:e5:83:ed:b5:47:23:22:61: c4:11:b2:4b:fa:be:75:19:f6:4d:a2:94:78:86:00:4d:ad:7f: dc:01:f4:7e:2f:78:6a:32:8e:14:91:c9:b7:d6:ce:4b:68:26: 65:58:dd:19:99:15:89:cf:6d:a2:a7:a0:73:fd:5b:27:88:1e: be:74:8e:b2:35:98:ae:31:78:e5:4b:a3:46:a8:17:74:1d:be: fe:ff:8c:ec:41:44:d5:30:7e:d5:ee:e6:98:e5:a7:31:58:78: 52:15:6f:f8:36:fb:79:e2:12:f5:ad:f3:35:4b:bd:dd:b4:49: 1d:40:a8:72:dc:cb:e0:ef:86:a9:c0:ac:88:e6:5c:72:9d:03: 97:da:57:2f:39:c1:8b:3c:cd:e0:e9:65:24:a5:0c:53:f6:1d: 87:df:a8:3d:c9:f4:51:ad:fc:14:1b:50:af:ae:99:64:0b:d7: 83:2f:ca:55:3b:a8:9a:5f:aa:13:b7:72:41:5b:76:a3:fd:c8: b9:ca:23:28:0a:6e:f2:b4:93:3e:9d:4d:f1:83:82:03:88:19: 4e:93:77:dc:b8:5e:68:f9:e9:4d:81:97:db:50:bd:7e:f9:88: b9:63:65:73 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt/hF7/2UOpQHPRlgX5Lks8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkNTljNDMyM2Y3NjdjZTRmZmM4NWRhYWQyMDhiOTBjMDRm YmQzZTkwHhcNMjYwMTAyMTYyMjIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjcwOWUxYjFmMzVkMjZjMTExZWFhOTQ4OWE1YzkyYTI0NjNjNjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWuRYf0yVwKA8nCfDFipVm5kcm1D 5Rm1Sx9pFHPHlDTvFL8TvVolyO0BP0z9J32bZh09kW8/ak06Ia+K3Ez6uJaAaY1w KJl76PK4CBDYdxj6L1SksQAPGEc85Wfk1WNaMcwOMotCCKn6VQ4wJnhtWChM84ZQ /u1pu+7MECOeGYJJgDubOjuoW5pE8m8NtJyMcJ7cg7/LB6tWX8ktFQpYPzjHwbFg wYifP77Q1vOHhNfdnU0oZo3KsMwtIYOY3+kOY8d7eKzJtVOnclHO1AyZsJKGjqgT CH2hkAV5wWqZNMT7OdQtCxjk433DpSYQGQSDljLNOUVkxF25JqADsf6xjwIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFAZwnhsfNdJsER6qlImlySokY8ZNMB8GA1UdIwQY MBaAFI1ZxDI/dnzk/8hdqtIIuQwE+9PpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUt ZjJiZTlmNmM2NjRjLzEvQm5DZUd4ODEwbXdSSHFxVWlhWEpLaVJqeGswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUtZjJiZTlmNmM2NjRj LzEvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBABVmZkD BABVmZoDBACw7NcDBALU/NAwDQYJKoZIhvcNAQELBQADggEBAAcYlUzVGasgpm/X JdXyAVx7eJhLtJRvpNnNAdvlg+21RyMiYcQRskv6vnUZ9k2ilHiGAE2tf9wB9H4v eGoyjhSRybfWzktoJmVY3RmZFYnPbaKnoHP9WyeIHr50jrI1mK4xeOVLo0aoF3Qd vv7/jOxBRNUwftXu5pjlpzFYeFIVb/g2+3niEvWt8zVLvd20SR1AqHLcy+DvhqnA rIjmXHKdA5faVy85wYs8zeDpZSSlDFP2HYffqD3J9FGt/BQbUK+umWQL14MvylU7 qJpfqhO3ckFbdqP9yLnKIygKbvK0kz6dTfGDggOIGU6Td9y4Xmj56U2Bl9tQvX75 iLljZXM= -----END CERTIFICATE-----Generated at Sun Jan 25 19:19:56 2026 by rpki-client