This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/BkC40mbaOV_h_YwTP9f-9NLfy-Q.roa File: BkC40mbaOV_h_YwTP9f-9NLfy-Q.roa (raw, json) Hash identifier: 4vfqykfujOiIEaQCahXyp7UqTA/5c3kGM0M/jQ0Yj54= Subject key identifier: 06:40:B8:D2:66:DA:39:5F:E1:FD:8C:13:3F:D7:FE:F4:D2:DF:CB:E4 Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Certificate serial: 019B7BA3D0D3D42AFC2F65305E70925A3FBA Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/BkC40mbaOV_h_YwTP9f-9NLfy-Q.roa Signing time: Thu 01 Jan 2026 22:18:11 +0000 ROA not before: Thu 01 Jan 2026 22:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 10111 IP address blocks: 212.100.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:d0:d3:d4:2a:fc:2f:65:30:5e:70:92:5a:3f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Validity Not Before: Jan 1 22:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0640b8d266da395fe1fd8c133fd7fef4d2dfcbe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:11:ba:1c:4b:c1:75:dd:1e:00:78:da:92: 13:d6:d5:9c:15:99:80:d5:22:5a:51:2a:22:c2:c8: e3:0c:b6:ba:7a:a7:12:87:6e:78:fa:0c:1c:08:5a: 31:d2:81:ea:22:bb:24:ac:8b:0e:60:12:a4:cc:d8: c5:ad:38:22:ee:dd:87:a8:04:08:e8:21:70:98:a1: 7a:29:b2:e4:3e:fa:3d:07:c7:fc:4c:1e:83:e4:d9: b9:06:8c:53:39:a9:69:d8:91:eb:9f:c9:ba:fa:39: 44:e1:90:05:a1:c7:ce:94:df:1b:fd:69:d6:7f:50: 63:d8:3d:7f:6e:52:39:bb:f2:8a:b7:dd:64:fb:6a: 4d:98:7d:b9:3b:9c:57:01:b3:89:b3:a5:03:7a:79: db:f6:6e:21:e0:78:4c:3d:05:7d:68:d7:d8:d5:0f: 51:3d:46:f3:81:c4:2f:ca:76:4e:25:4d:40:58:21: 04:84:86:5f:1e:0b:77:a4:b2:8e:d7:d7:bd:61:28: b4:cf:9c:c3:3b:98:33:bb:3d:a9:f1:97:56:a0:f2: 94:1c:af:36:b6:69:6b:84:5f:b0:c6:a1:ea:e2:e9: 30:36:d2:d9:5e:9e:fa:c9:2b:11:6c:7e:1d:9e:dd: e1:67:05:23:28:56:c4:5a:89:61:0f:a4:0a:fb:3d: 27:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:40:B8:D2:66:DA:39:5F:E1:FD:8C:13:3F:D7:FE:F4:D2:DF:CB:E4 X509v3 Authority Key Identifier: keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/BkC40mbaOV_h_YwTP9f-9NLfy-Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.100.186.0/24 Signature Algorithm: sha256WithRSAEncryption a7:c8:a6:02:45:cc:73:29:42:36:ad:a2:ef:f2:4f:f1:66:23: e8:f1:cf:0c:30:f8:61:d4:97:d1:c4:d8:23:f9:23:2f:70:1d: c2:98:f6:fc:86:64:9d:93:7e:4a:a4:65:15:54:83:05:5b:a0: 01:9b:72:3b:b1:0b:f5:9d:ed:94:bf:03:2b:44:b4:20:82:5a: aa:7e:e5:09:a7:5b:1e:44:08:4e:ba:ab:46:fc:06:44:2d:b1: 07:ef:5e:07:f2:f1:6f:1f:76:d4:06:39:1c:e9:93:9c:4d:c6: bf:17:ef:f2:42:94:a2:15:ea:16:e1:47:23:84:f0:82:86:36: ad:d7:f1:9b:84:95:84:e1:c9:a1:8d:b2:27:14:73:67:bd:9c: 0a:f9:3e:9f:63:4c:7a:73:63:31:d6:65:ee:25:78:1e:79:e4: 4c:a9:1c:49:85:0b:88:d9:59:7b:63:6b:83:e1:47:3a:84:ec: c6:4b:ce:f4:9b:b0:8b:7d:01:dc:6d:d2:ed:f2:46:68:38:df: ab:92:76:a0:4f:4e:68:02:9d:28:15:78:51:c3:0d:e7:3e:c5: 8e:75:50:8d:c6:14:d9:49:dd:e8:69:e9:9d:04:6f:ee:d5:b9: 7a:2a:00:69:82:13:cb:65:51:cd:bf:0f:f8:85:95:97:03:f3: 55:67:3b:62 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o9DT1Cr8L2UwXnCSWj+6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxYjQ5YmEwZGQ4NjE1MTI4NjE4ZDUwMTU5Y2IwZjNiNWU5 ZWU2MjYwHhcNMjYwMTAxMjIxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjQwYjhkMjY2ZGEzOTVmZTFmZDhjMTMzZmQ3ZmVmNGQyZGZjYmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOQRuhxLwXXdHgB42pIT1tWcFZmA 1SJaUSoiwsjjDLa6eqcSh254+gwcCFox0oHqIrskrIsOYBKkzNjFrTgi7t2HqAQI 6CFwmKF6KbLkPvo9B8f8TB6D5Nm5BoxTOalp2JHrn8m6+jlE4ZAFocfOlN8b/WnW f1Bj2D1/blI5u/KKt91k+2pNmH25O5xXAbOJs6UDennb9m4h4HhMPQV9aNfY1Q9R PUbzgcQvynZOJU1AWCEEhIZfHgt3pLKO19e9YSi0z5zDO5gzuz2p8ZdWoPKUHK82 tmlrhF+wxqHq4ukwNtLZXp76ySsRbH4dnt3hZwUjKFbEWolhD6QK+z0n8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAZAuNJm2jlf4f2MEz/X/vTS38vkMB8GA1UdIwQY MBaAFFG0m6DdhhUShhjVAVnLDztenuYmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQt NGFiOWU4YWEzMjYyLzEvQmtDNDBtYmFPVl9oX1l3VFA5Zi05TkxmeS1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQtNGFiOWU4YWEzMjYy LzEvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GS6MA0G CSqGSIb3DQEBCwUAA4IBAQCnyKYCRcxzKUI2raLv8k/xZiPo8c8MMPhh1JfRxNgj +SMvcB3CmPb8hmSdk35KpGUVVIMFW6ABm3I7sQv1ne2UvwMrRLQgglqqfuUJp1se RAhOuqtG/AZELbEH714H8vFvH3bUBjkc6ZOcTca/F+/yQpSiFeoW4UcjhPCChjat 1/GbhJWE4cmhjbInFHNnvZwK+T6fY0x6c2Mx1mXuJXgeeeRMqRxJhQuI2Vl7Y2uD 4Uc6hOzGS870m7CLfQHcbdLt8kZoON+rknagT05oAp0oFXhRww3nPsWOdVCNxhTZ Sd3oaemdBG/u1bl6KgBpghPLZVHNvw/4hZWXA/NVZzti -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:34 2026 by rpki-client