This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/BYALiKXhPOQ02Hw-V2KCeSS6UEM.roa File: BYALiKXhPOQ02Hw-V2KCeSS6UEM.roa (raw, json) Hash identifier: wcCp2Xf2EOZVt+1tgRpy5nj8+z3A1BqylBiZD1oAuXk= Subject key identifier: 05:80:0B:88:A5:E1:3C:E4:34:D8:7C:3E:57:62:82:79:24:BA:50:43 Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Certificate serial: 019B7A5ADD2D62D7793E5ED2A9B56FD77A35 Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/BYALiKXhPOQ02Hw-V2KCeSS6UEM.roa Signing time: Thu 01 Jan 2026 16:18:53 +0000 ROA not before: Thu 01 Jan 2026 16:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215184 IP address blocks: 82.152.105.0/24 maxlen: 24 213.130.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:dd:2d:62:d7:79:3e:5e:d2:a9:b5:6f:d7:7a:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Validity Not Before: Jan 1 16:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05800b88a5e13ce434d87c3e5762827924ba5043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a7:7b:c5:84:98:5d:99:fb:c0:79:34:5e:ac: c7:93:76:f7:aa:14:ea:fb:bb:fb:db:25:35:4e:a0: b1:dc:10:2c:38:d0:b9:9a:11:88:9c:e4:b4:0e:5a: 78:b8:f4:92:92:23:f4:a3:d2:eb:7a:32:89:2d:2d: b8:c5:52:97:3f:83:b7:53:9b:9a:f8:3c:db:e6:8f: 65:57:88:43:28:00:9d:36:60:a7:69:9d:66:87:86: 51:0e:36:90:68:d1:53:b6:84:df:64:42:96:2e:31: 42:04:bc:b4:24:8f:2c:b2:3d:53:18:74:98:98:93: 9e:8d:ca:cd:1e:c4:9b:d5:d2:7d:79:ed:89:c5:48: ad:12:3c:fd:a0:dd:32:c9:fb:d6:ad:61:df:8f:b9: 3f:17:fd:dc:04:17:55:40:47:b2:ad:0f:b7:97:3e: 7f:94:df:68:21:27:0d:ac:93:77:df:55:bc:90:9c: c1:47:a7:f3:f5:6f:7f:93:f2:25:14:6c:f1:e1:00: 1e:e9:76:a2:19:ec:90:b2:be:9b:b1:ce:26:51:b0: ba:ab:7d:4c:bd:ca:0b:c3:96:c4:b2:40:c7:5e:b3: 43:e2:ec:70:d7:b7:97:d8:ff:03:28:6d:63:98:f7: b2:ca:ce:7b:ef:fb:66:56:ef:10:6c:20:05:ff:92: 96:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:80:0B:88:A5:E1:3C:E4:34:D8:7C:3E:57:62:82:79:24:BA:50:43 X509v3 Authority Key Identifier: keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/BYALiKXhPOQ02Hw-V2KCeSS6UEM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.152.105.0/24 213.130.140.0/22 Signature Algorithm: sha256WithRSAEncryption 95:43:92:8b:06:58:88:e9:26:81:6f:28:68:2a:5c:f4:59:14: db:2d:48:9a:ce:b7:d8:d2:dc:ea:49:60:3e:82:c7:53:af:c0: 83:7e:7b:44:ce:fa:ee:d6:3a:17:19:bc:7c:81:79:28:f7:5d: 33:b9:73:79:a2:81:48:4f:3c:c5:d7:b3:9b:60:0e:56:c8:f7: 06:ad:c5:00:4a:7a:de:18:7f:cf:9e:74:38:cc:74:eb:85:ce: 87:5d:99:1d:3d:3c:9e:60:9c:27:03:2d:e9:ba:74:a2:f2:09: 30:65:b0:25:0e:c6:aa:f8:58:22:ee:0a:3a:7e:d1:65:3b:cd: 35:07:90:48:b0:a2:32:03:04:e1:f9:5e:c4:8d:e2:a3:5a:1b: 66:78:f2:5c:1d:7b:62:99:fe:61:bc:d5:b6:8b:73:52:5b:6d: 1f:93:bc:b7:2c:7b:6e:9c:73:5a:0e:c0:4b:7a:5a:e8:de:de: b8:5a:e8:4f:77:af:73:c3:0e:43:44:89:81:d1:13:89:c1:18: 97:47:1f:0c:b0:cc:34:21:66:13:62:63:36:fe:73:39:4e:d8: 78:ff:e0:c6:82:1f:84:fe:56:5b:60:65:aa:f0:48:d5:52:03: 15:cb:f4:51:73:a9:dc:a3:51:78:0c:78:3c:a8:18:04:ae:81: 87:4d:d7:94 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6Wt0tYtd5Pl7SqbVv13o1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh NTNiOWIwHhcNMjYwMTAxMTYxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTgwMGI4OGE1ZTEzY2U0MzRkODdjM2U1NzYyODI3OTI0YmE1MDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA66d7xYSYXZn7wHk0XqzHk3b3qhTq +7v72yU1TqCx3BAsONC5mhGInOS0Dlp4uPSSkiP0o9LrejKJLS24xVKXP4O3U5ua +Dzb5o9lV4hDKACdNmCnaZ1mh4ZRDjaQaNFTtoTfZEKWLjFCBLy0JI8ssj1TGHSY mJOejcrNHsSb1dJ9ee2JxUitEjz9oN0yyfvWrWHfj7k/F/3cBBdVQEeyrQ+3lz5/ lN9oIScNrJN331W8kJzBR6fz9W9/k/IlFGzx4QAe6XaiGeyQsr6bsc4mUbC6q31M vcoLw5bEskDHXrND4uxw17eX2P8DKG1jmPeyys577/tmVu8QbCAF/5KWDQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAWAC4il4TzkNNh8PldignkkulBDMB8GA1UdIwQY MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt NDEyMjhlMzlmZjdjLzEvQllBTGlLWGhQT1EwMkh3LVYyS0NlU1M2VUVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUphpAwQC 1YKMMA0GCSqGSIb3DQEBCwUAA4IBAQCVQ5KLBliI6SaBbyhoKlz0WRTbLUiazrfY 0tzqSWA+gsdTr8CDfntEzvru1joXGbx8gXko910zuXN5ooFITzzF17ObYA5WyPcG rcUASnreGH/PnnQ4zHTrhc6HXZkdPTyeYJwnAy3punSi8gkwZbAlDsaq+Fgi7go6 ftFlO801B5BIsKIyAwTh+V7EjeKjWhtmePJcHXtimf5hvNW2i3NSW20fk7y3LHtu nHNaDsBLelro3t64WuhPd69zww5DRImB0ROJwRiXRx8MsMw0IWYTYmM2/nM5Tth4 /+DGgh+E/lZbYGWq8EjVUgMVy/RRc6nco1F4DHg8qBgEroGHTdeU -----END CERTIFICATE-----Generated at Sun Jan 25 08:47:30 2026 by rpki-client