This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/bBMlqfhZbgU4RFc29xzMS28J5Yc.roa File: bBMlqfhZbgU4RFc29xzMS28J5Yc.roa (raw, json) Hash identifier: wmFqb2uW30KLYhFd4JkMsA8poWqQ5oZsDAIy44oWkC4= Subject key identifier: 6C:13:25:A9:F8:59:6E:05:38:44:57:36:F7:1C:CC:4B:6F:09:E5:87 Certificate issuer: /CN=51da0066122e6ba294d2b747938d46c74e99f880 Certificate serial: 019B7F83F3B8606ADD69B71213FCEC5F5BEF Authority key identifier: 51:DA:00:66:12:2E:6B:A2:94:D2:B7:47:93:8D:46:C7:4E:99:F8:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UdoAZhIua6KU0rdHk41Gx06Z-IA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/bBMlqfhZbgU4RFc29xzMS28J5Yc.roa Signing time: Fri 02 Jan 2026 16:21:52 +0000 ROA not before: Fri 02 Jan 2026 16:21:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211644 IP address blocks: 185.252.192.0/24 maxlen: 24 2a10:b0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/UdoAZhIua6KU0rdHk41Gx06Z-IA.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/UdoAZhIua6KU0rdHk41Gx06Z-IA.mft rsync://rpki.ripe.net/repository/DEFAULT/UdoAZhIua6KU0rdHk41Gx06Z-IA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:f3:b8:60:6a:dd:69:b7:12:13:fc:ec:5f:5b:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51da0066122e6ba294d2b747938d46c74e99f880 Validity Not Before: Jan 2 16:21:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c1325a9f8596e0538445736f71ccc4b6f09e587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d3:e2:3e:dc:7f:7a:58:7e:bb:10:b2:52:6f: b9:73:dc:f6:a0:ef:76:a2:26:25:81:35:e4:d2:cc: 3b:77:2f:6b:2f:a4:c3:c8:03:ba:8b:49:8a:7c:ae: 5b:0a:a1:6b:6a:80:51:f0:fd:9b:6b:9d:df:06:dc: 1a:c5:88:96:be:fc:3e:15:7d:13:f3:00:09:76:2d: 13:3e:2d:46:29:51:d3:e4:5b:6a:93:c0:57:47:13: f5:14:5e:21:dc:c3:d6:7f:fb:18:e6:e6:41:8e:db: 6c:7a:77:87:72:37:ce:f2:9e:8d:d8:bb:e3:a1:c8: 27:12:4a:5b:f6:c7:fe:54:ef:76:dc:7f:9b:f3:2d: 5b:41:41:48:40:f8:58:93:b8:90:0a:e3:f8:e8:ff: 55:f6:9e:ba:da:fd:cf:ac:57:4f:c2:b6:71:de:85: 9a:0f:63:b9:87:64:9f:c2:7c:60:65:7d:93:ef:45: a3:f5:0a:16:07:47:f9:36:02:c2:18:d3:28:f5:a8: 7a:6f:a0:40:8d:65:78:f8:74:f3:c8:fc:d0:36:be: d9:10:ed:0d:03:27:a4:ea:f2:da:c6:85:e7:4f:06: 22:c3:16:f3:67:47:27:6e:ee:a4:62:97:ee:27:9c: 14:4f:b3:f3:21:f0:2e:7b:4f:ba:a6:93:1d:e8:13: f9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:13:25:A9:F8:59:6E:05:38:44:57:36:F7:1C:CC:4B:6F:09:E5:87 X509v3 Authority Key Identifier: keyid:51:DA:00:66:12:2E:6B:A2:94:D2:B7:47:93:8D:46:C7:4E:99:F8:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UdoAZhIua6KU0rdHk41Gx06Z-IA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/bBMlqfhZbgU4RFc29xzMS28J5Yc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/UdoAZhIua6KU0rdHk41Gx06Z-IA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.252.192.0/24 IPv6: 2a10:b0c0::/32 Signature Algorithm: sha256WithRSAEncryption 85:39:b2:ae:52:83:24:98:a3:cf:46:7a:47:70:96:86:0a:14: bf:f0:9a:93:84:f7:ea:30:28:cc:36:1a:6b:bb:4f:09:38:0b: 55:20:f1:2d:b9:b3:19:ec:a6:0c:ac:b9:fb:a5:bd:03:f8:63: cf:3a:c4:f2:22:2c:ec:c1:8a:3e:bc:74:68:ed:26:c2:76:d1: d0:d2:f4:bc:d1:d5:d4:18:01:20:1d:c1:de:59:ad:1a:7f:13: 24:bc:3b:04:ca:1e:ee:79:fb:7f:d2:32:83:4c:af:f3:ca:7d: df:27:f8:83:b0:27:0b:9a:e4:67:65:5f:a0:1d:a2:46:db:0f: 67:d6:ba:f0:69:9b:83:d7:fc:cc:82:ee:42:25:03:ac:88:63: e7:29:f3:fe:97:61:c5:e3:e2:96:d0:3d:20:0c:08:21:83:62: b9:ab:f0:0b:d6:10:17:41:81:1a:98:10:e1:ce:b2:1b:4c:b1: f1:22:f3:13:27:6d:6e:a1:0f:e1:aa:29:db:3f:ac:f4:4a:17: c7:4f:b8:6d:f0:e1:d9:e6:3f:7d:aa:a8:b8:42:8c:d6:c1:36: 59:3d:aa:af:53:19:5d:92:a9:36:1f:9a:4c:7f:ef:2a:ea:f5: e5:0b:52:4b:10:2f:07:59:6b:db:61:fd:22:b6:82:39:ec:c8: e7:05:9b:9e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/g/O4YGrdabcSE/zsX1vvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxZGEwMDY2MTIyZTZiYTI5NGQyYjc0NzkzOGQ0NmM3NGU5 OWY4ODAwHhcNMjYwMTAyMTYyMTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzEzMjVhOWY4NTk2ZTA1Mzg0NDU3MzZmNzFjY2M0YjZmMDllNTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtPiPtx/elh+uxCyUm+5c9z2oO92 oiYlgTXk0sw7dy9rL6TDyAO6i0mKfK5bCqFraoBR8P2ba53fBtwaxYiWvvw+FX0T 8wAJdi0TPi1GKVHT5Ftqk8BXRxP1FF4h3MPWf/sY5uZBjttseneHcjfO8p6N2Lvj ocgnEkpb9sf+VO923H+b8y1bQUFIQPhYk7iQCuP46P9V9p662v3PrFdPwrZx3oWa D2O5h2SfwnxgZX2T70Wj9QoWB0f5NgLCGNMo9ah6b6BAjWV4+HTzyPzQNr7ZEO0N Ayek6vLaxoXnTwYiwxbzZ0cnbu6kYpfuJ5wUT7PzIfAue0+6ppMd6BP5zwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGwTJan4WW4FOERXNvcczEtvCeWHMB8GA1UdIwQY MBaAFFHaAGYSLmuilNK3R5ONRsdOmfiAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWRvQVpoSXVhNktVMHJkSGs0MUd4MDZaLUlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9mNjRlYjQtMjZjYy00MDU2LTg1M2It YmU0OGI3OTI1NDc4LzEvYkJNbHFmaFpiZ1U0UkZjMjl4ek1TMjhKNVljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9mNjRlYjQtMjZjYy00MDU2LTg1M2ItYmU0OGI3OTI1NDc4 LzEvVWRvQVpoSXVhNktVMHJkSGs0MUd4MDZaLUlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufzAMA0E AgACMAcDBQAqELDAMA0GCSqGSIb3DQEBCwUAA4IBAQCFObKuUoMkmKPPRnpHcJaG ChS/8JqThPfqMCjMNhpru08JOAtVIPEtubMZ7KYMrLn7pb0D+GPPOsTyIizswYo+ vHRo7SbCdtHQ0vS80dXUGAEgHcHeWa0afxMkvDsEyh7ueft/0jKDTK/zyn3fJ/iD sCcLmuRnZV+gHaJG2w9n1rrwaZuD1/zMgu5CJQOsiGPnKfP+l2HF4+KW0D0gDAgh g2K5q/AL1hAXQYEamBDhzrIbTLHxIvMTJ21uoQ/hqinbP6z0ShfHT7ht8OHZ5j99 qqi4QozWwTZZPaqvUxldkqk2H5pMf+8q6vXlC1JLEC8HWWvbYf0itoI57MjnBZue -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:20 2026 by rpki-client