This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/BeicUhLwICTO8cVcXpc2YR5fEEE.roa File: BeicUhLwICTO8cVcXpc2YR5fEEE.roa (raw, json) Hash identifier: NBAp4OBSGSLH1NeP0zC3WTPEBbQC55s2mOIxxMPsOT4= Subject key identifier: 05:E8:9C:52:12:F0:20:24:CE:F1:C5:5C:5E:97:36:61:1E:5F:10:41 Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Certificate serial: 019B7A5AB52EA25FD79D30DFD325D3B26AC5 Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/BeicUhLwICTO8cVcXpc2YR5fEEE.roa Signing time: Thu 01 Jan 2026 16:18:43 +0000 ROA not before: Thu 01 Jan 2026 16:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 154049 IP address blocks: 37.252.25.0/24 maxlen: 24 77.107.83.0/24 maxlen: 24 79.99.147.0/24 maxlen: 24 81.168.38.0/24 maxlen: 24 109.176.14.0/24 maxlen: 24 212.38.80.0/24 maxlen: 24 213.210.24.0/24 maxlen: 24 217.144.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:b5:2e:a2:5f:d7:9d:30:df:d3:25:d3:b2:6a:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Validity Not Before: Jan 1 16:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05e89c5212f02024cef1c55c5e9736611e5f1041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cd:82:96:fd:ab:43:bc:63:eb:11:9d:9c:21: 05:20:ab:22:94:08:a0:fc:3a:86:08:ca:6a:a1:b2: b5:d3:1e:36:be:04:15:63:db:8e:58:4b:92:5f:c8: 40:09:d4:7b:a3:c0:50:c4:9e:3b:0c:d0:ff:38:ae: d1:a9:cc:ba:3f:4b:16:4d:d9:a5:f0:f0:36:f6:70: 3d:5b:b5:b1:ca:51:4e:29:d1:b9:ba:68:9e:e9:2b: ac:f1:01:8b:3c:50:47:fa:3f:b7:bb:ee:c4:10:a4: f1:ed:13:06:40:dd:db:9a:8f:3d:ed:29:24:6c:b1: f1:f0:ce:3f:8d:e2:52:5e:eb:e2:5c:d3:f8:df:f3: fd:f1:e1:29:2e:60:b0:bc:4a:f1:10:df:83:f9:ea: a5:ba:fa:1c:fc:3f:46:d2:dc:fd:11:a6:df:70:e3: c3:84:f2:87:51:49:af:d7:92:e2:00:81:c1:ca:78: 1b:7e:86:df:f3:3f:63:58:58:0a:46:66:69:79:e0: e5:d1:88:b7:ed:8e:d9:d5:f4:04:5a:84:0c:42:cb: 97:b8:e1:e5:15:2c:6d:a6:26:cb:22:b6:3e:e6:10: b2:76:83:d2:cd:1a:b0:34:cb:ab:17:f5:f0:62:7e: de:85:e4:6c:74:25:18:01:1d:c6:a5:13:3d:20:79: 85:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E8:9C:52:12:F0:20:24:CE:F1:C5:5C:5E:97:36:61:1E:5F:10:41 X509v3 Authority Key Identifier: keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/BeicUhLwICTO8cVcXpc2YR5fEEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.252.25.0/24 77.107.83.0/24 79.99.147.0/24 81.168.38.0/24 109.176.14.0/24 212.38.80.0/24 213.210.24.0/24 217.144.147.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:5f:47:40:01:4b:32:1a:31:f4:78:68:b0:67:c4:8f:4f:05: 5b:f4:fc:40:a4:3d:ae:ef:c2:28:12:54:1c:e1:8b:66:66:e5: 8b:0e:5b:16:c6:a3:d5:bd:a6:31:40:47:03:72:d4:a5:62:4d: cc:50:b1:b7:fb:7a:a8:16:9d:3f:85:4c:ca:ac:c4:28:45:44: f9:78:f5:d7:a4:87:23:d7:ce:27:7f:13:42:91:f3:2b:43:64: 7b:d0:1f:2d:0d:80:b2:1a:a9:af:9e:5e:f0:e1:a2:e5:80:f3: 9b:15:21:b2:82:b4:61:95:37:e8:4a:e9:d2:78:22:55:23:d9: 8f:34:16:b6:4b:74:08:e9:ae:41:ad:c2:e8:90:30:a7:e4:d2: d3:10:8b:36:b1:29:f2:2d:b9:07:42:e3:12:bc:c1:61:98:80: 1d:ce:a6:19:36:76:00:76:49:40:0b:b3:a8:91:aa:b6:c0:6e: 54:fb:da:dc:0b:87:a1:3b:20:2f:6b:06:39:b1:1c:51:8b:9d: e5:65:be:ed:65:42:d1:0c:d1:4b:54:eb:cf:5a:74:68:66:d9: 8d:4b:dd:20:9e:fb:12:0f:88:9b:fc:2e:ab:d9:a5:6e:6d:94: 56:3a:6d:67:3a:85:83:b2:f7:97:e9:75:a7:91:6b:14:e0:9d: 52:f3:54:f8 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt6WrUuol/XnTDf0yXTsmrFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh NTNiOWIwHhcNMjYwMTAxMTYxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWU4OWM1MjEyZjAyMDI0Y2VmMWM1NWM1ZTk3MzY2MTFlNWYxMDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc2Clv2rQ7xj6xGdnCEFIKsilAig /DqGCMpqobK10x42vgQVY9uOWEuSX8hACdR7o8BQxJ47DND/OK7Rqcy6P0sWTdml 8PA29nA9W7WxylFOKdG5umie6Sus8QGLPFBH+j+3u+7EEKTx7RMGQN3bmo897Skk bLHx8M4/jeJSXuviXNP43/P98eEpLmCwvErxEN+D+eqluvoc/D9G0tz9EabfcOPD hPKHUUmv15LiAIHByngbfobf8z9jWFgKRmZpeeDl0Yi37Y7Z1fQEWoQMQsuXuOHl FSxtpibLIrY+5hCydoPSzRqwNMurF/XwYn7eheRsdCUYAR3GpRM9IHmF8QIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFAXonFIS8CAkzvHFXF6XNmEeXxBBMB8GA1UdIwQY MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt NDEyMjhlMzlmZjdjLzEvQmVpY1VoTHdJQ1RPOGNWY1hwYzJZUjVmRUVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAJfwZAwQA TWtTAwQAT2OTAwQAUagmAwQAbbAOAwQA1CZQAwQA1dIYAwQA2ZCTMA0GCSqGSIb3 DQEBCwUAA4IBAQCMX0dAAUsyGjH0eGiwZ8SPTwVb9PxApD2u78IoElQc4YtmZuWL DlsWxqPVvaYxQEcDctSlYk3MULG3+3qoFp0/hUzKrMQoRUT5ePXXpIcj184nfxNC kfMrQ2R70B8tDYCyGqmvnl7w4aLlgPObFSGygrRhlTfoSunSeCJVI9mPNBa2S3QI 6a5BrcLokDCn5NLTEIs2sSnyLbkHQuMSvMFhmIAdzqYZNnYAdklAC7Ookaq2wG5U +9rcC4ehOyAvawY5sRxRi53lZb7tZULRDNFLVOvPWnRoZtmNS90gnvsSD4ib/C6r 2aVubZRWOm1nOoWDsveX6XWnkWsU4J1S81T4 -----END CERTIFICATE-----Generated at Sun Jan 25 11:40:14 2026 by rpki-client