This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/bmPTnK5_lSzi5g2t8KWQSdmusiw.roa File: bmPTnK5_lSzi5g2t8KWQSdmusiw.roa (raw, json) Hash identifier: c+FOKLLhi0euPzTQWelJXOJ3OAMbQ5k1sWXqQVEcYEM= Subject key identifier: 6E:63:D3:9C:AE:7F:95:2C:E2:E6:0D:AD:F0:A5:90:49:D9:AE:B2:2C Certificate issuer: /CN=7e3150f8c67063121027328954968d08d4cf329a Certificate serial: 019BA23EA9BB7A883A7060043D566AEFEAB8 Authority key identifier: 7E:31:50:F8:C6:70:63:12:10:27:32:89:54:96:8D:08:D4:CF:32:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/bmPTnK5_lSzi5g2t8KWQSdmusiw.roa Signing time: Fri 09 Jan 2026 10:12:54 +0000 ROA not before: Fri 09 Jan 2026 10:12:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212949 IP address blocks: 212.115.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.mft rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a2:3e:a9:bb:7a:88:3a:70:60:04:3d:56:6a:ef:ea:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e3150f8c67063121027328954968d08d4cf329a Validity Not Before: Jan 9 10:12:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6e63d39cae7f952ce2e60dadf0a59049d9aeb22c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f7:78:8a:36:56:36:89:d9:f3:46:ec:af:cd: d7:3f:da:57:9f:eb:44:90:e4:c3:f0:49:d5:6d:79: b7:e3:b8:a8:91:2a:eb:56:ae:03:67:f4:af:d1:9b: d7:47:b3:17:b2:cf:c5:ca:d5:0d:ca:49:83:6a:16: 27:3b:ca:36:1c:e7:a8:47:7a:78:47:99:a7:36:f3: d1:dc:53:73:24:5a:74:98:6c:67:d4:34:9b:9f:81: 02:b7:72:7e:c0:14:9c:08:64:45:9b:51:8f:45:ad: 00:6d:72:86:b9:d8:cb:60:43:23:88:42:44:d9:b2: 47:a3:6d:ae:82:84:00:50:02:c9:6f:8e:3d:2f:51: 0d:df:75:ae:c0:32:fc:7d:54:c6:98:c7:19:69:8b: d7:21:15:97:95:d1:88:a4:b2:54:23:17:d9:46:da: 2c:eb:7e:25:b5:32:99:8d:1b:cf:b7:e4:1e:26:6b: 30:b0:7e:cb:f8:2a:81:88:8d:28:17:07:a6:2a:90: b3:33:1f:51:dd:c2:8a:bf:39:6e:37:df:f2:5a:16: f8:55:ff:12:46:5a:39:e3:6c:8e:9d:13:87:df:61: c1:38:00:12:75:bc:6d:12:7c:10:17:0b:56:29:2a: 42:82:cd:3a:f2:0f:ac:23:ee:6d:1e:40:dc:0c:68: 8d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:63:D3:9C:AE:7F:95:2C:E2:E6:0D:AD:F0:A5:90:49:D9:AE:B2:2C X509v3 Authority Key Identifier: keyid:7E:31:50:F8:C6:70:63:12:10:27:32:89:54:96:8D:08:D4:CF:32:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/bmPTnK5_lSzi5g2t8KWQSdmusiw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.115.41.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:43:6e:f0:84:3e:b4:3a:5d:4e:2e:f2:e3:1f:66:77:9c:4f: e5:6b:cc:24:eb:d7:aa:53:99:2a:49:94:cb:d7:cc:64:92:94: f2:91:0a:f6:a2:52:c3:1e:43:2e:0e:5d:c9:9f:fd:af:f6:b8: 0c:ab:ad:1c:a7:69:29:de:0a:2b:4f:c4:a2:7a:1c:9c:4d:ca: fd:42:51:29:f8:a2:2e:64:d4:ef:2f:4e:af:55:ae:85:89:db: e6:c9:5c:cf:e6:da:37:36:2d:9d:14:b4:89:e0:81:b9:2e:2f: 65:33:ea:9f:c4:b4:4d:ec:af:5c:17:1c:d5:3f:10:e4:ea:f0: a5:3e:3f:46:fb:09:36:68:e3:c3:6f:ea:f2:b2:ef:4f:6e:df: 23:39:53:c8:6e:64:3f:9a:bf:35:d3:b0:7f:2e:de:e9:43:26: ae:db:32:94:92:ac:d9:bb:ae:6a:5b:0d:e8:46:0e:eb:26:df: fb:38:3d:94:cc:48:75:2d:0d:ad:d3:c3:34:fb:7d:77:7d:fb: cc:59:15:26:f0:4a:4c:42:92:8b:89:99:91:19:bd:a4:99:a3: 24:1c:84:ee:ca:2f:00:06:f4:cf:44:a1:8e:af:48:46:bb:96: 6f:a9:78:94:08:59:3e:3a:7f:93:2d:68:aa:f6:b4:40:90:6c: 8d:93:db:2b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuiPqm7eog6cGAEPVZq7+q4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMzE1MGY4YzY3MDYzMTIxMDI3MzI4OTU0OTY4ZDA4ZDRj ZjMyOWEwHhcNMjYwMTA5MTAxMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZTYzZDM5Y2FlN2Y5NTJjZTJlNjBkYWRmMGE1OTA0OWQ5YWViMjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/d4ijZWNonZ80bsr83XP9pXn+tE kOTD8EnVbXm347iokSrrVq4DZ/Sv0ZvXR7MXss/FytUNykmDahYnO8o2HOeoR3p4 R5mnNvPR3FNzJFp0mGxn1DSbn4ECt3J+wBScCGRFm1GPRa0AbXKGudjLYEMjiEJE 2bJHo22ugoQAUALJb449L1EN33WuwDL8fVTGmMcZaYvXIRWXldGIpLJUIxfZRtos 634ltTKZjRvPt+QeJmswsH7L+CqBiI0oFwemKpCzMx9R3cKKvzluN9/yWhb4Vf8S Rlo542yOnROH32HBOAASdbxtEnwQFwtWKSpCgs068g+sI+5tHkDcDGiNNwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG5j05yuf5Us4uYNrfClkEnZrrIsMB8GA1UdIwQY MBaAFH4xUPjGcGMSECcyiVSWjQjUzzKaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmpGUS1NWndZeElRSnpLSlZKYU5DTlRQTXBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi84YmNmZDctZjZkMy00MzJhLWI1ZjAt OTM1ZTQxOGJkYmU3LzEvYm1QVG5LNV9sU3ppNWcydDhLV1FTZG11c2l3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi84YmNmZDctZjZkMy00MzJhLWI1ZjAtOTM1ZTQxOGJkYmU3 LzEvZmpGUS1NWndZeElRSnpLSlZKYU5DTlRQTXBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1HMpMA0G CSqGSIb3DQEBCwUAA4IBAQCKQ27whD60Ol1OLvLjH2Z3nE/la8wk69eqU5kqSZTL 18xkkpTykQr2olLDHkMuDl3Jn/2v9rgMq60cp2kp3gorT8SiehycTcr9QlEp+KIu ZNTvL06vVa6FidvmyVzP5to3Ni2dFLSJ4IG5Li9lM+qfxLRN7K9cFxzVPxDk6vCl Pj9G+wk2aOPDb+rysu9Pbt8jOVPIbmQ/mr8107B/Lt7pQyau2zKUkqzZu65qWw3o Rg7rJt/7OD2UzEh1LQ2t08M0+313ffvMWRUm8EpMQpKLiZmRGb2kmaMkHITuyi8A BvTPRKGOr0hGu5ZvqXiUCFk+On+TLWiq9rRAkGyNk9sr -----END CERTIFICATE-----Generated at Mon Jan 26 05:56:14 2026 by rpki-client