This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/bKZux_GRyhQisliOyg0o3pomUGE.roa File: bKZux_GRyhQisliOyg0o3pomUGE.roa (raw, json) Hash identifier: UT5otdZIy6+fjq+k6mHMr69f+BiRVOr2Dbn8liI5eMU= Subject key identifier: 6C:A6:6E:C7:F1:91:CA:14:22:B2:58:8E:CA:0D:28:DE:9A:26:50:61 Certificate issuer: /CN=52e02224ffb971172e4935ed7dd965d1155089b6 Certificate serial: 019B77C76E70682F65C9252A96BA730E0EED Authority key identifier: 52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/bKZux_GRyhQisliOyg0o3pomUGE.roa Signing time: Thu 01 Jan 2026 04:18:37 +0000 ROA not before: Thu 01 Jan 2026 04:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8791 IP address blocks: 185.121.16.0/22 maxlen: 22 185.121.16.0/24 maxlen: 24 185.121.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:6e:70:68:2f:65:c9:25:2a:96:ba:73:0e:0e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52e02224ffb971172e4935ed7dd965d1155089b6 Validity Not Before: Jan 1 04:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ca66ec7f191ca1422b2588eca0d28de9a265061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:10:c4:39:7b:4b:6d:06:2d:f4:f5:65:ae:0f: 7b:85:f6:b6:e6:96:c7:39:dc:94:0e:f0:a0:e6:fe: 38:26:38:c9:70:74:98:f0:ed:a6:47:30:51:b6:4e: a3:36:2d:0e:62:4f:82:e8:2a:e6:90:f3:58:1d:3d: 5d:78:24:1e:e0:88:25:70:35:7a:ca:e5:c9:04:86: c5:38:0e:58:26:86:10:22:77:af:ba:6c:7f:3e:67: a7:c0:12:8b:e8:ff:7c:c9:0c:f6:35:88:50:a4:3e: b2:9e:25:67:58:26:91:b6:84:b5:df:93:80:2d:07: b1:e1:e6:d3:71:c9:57:0e:1c:85:b3:a1:6a:12:84: e2:87:f3:87:56:71:b3:99:2b:48:65:ca:83:73:e9: 1d:e2:06:6a:ee:cb:f0:51:bd:11:ad:54:3b:35:2f: f8:05:0b:2b:71:be:a7:6c:57:b6:f5:32:14:87:c2: 39:8f:35:89:c8:cf:17:17:0b:4c:53:49:ec:a4:37: 34:00:6f:c6:e3:1c:83:0d:ad:c2:93:8b:19:2a:ee: 1b:e4:97:59:b9:95:a4:74:68:d0:7a:1a:01:c2:be: b1:34:e5:8a:a8:c2:0a:cf:56:de:18:47:09:68:27: 30:e2:27:4a:3f:c9:73:35:af:4d:06:46:87:98:bd: c0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A6:6E:C7:F1:91:CA:14:22:B2:58:8E:CA:0D:28:DE:9A:26:50:61 X509v3 Authority Key Identifier: keyid:52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/bKZux_GRyhQisliOyg0o3pomUGE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.121.16.0/22 Signature Algorithm: sha256WithRSAEncryption 09:de:33:23:c1:ec:ac:65:ca:52:9b:07:43:d8:ca:c8:9c:84: 81:c0:be:4a:35:18:dc:1d:c4:f0:93:bf:5b:82:2f:b3:02:aa: 30:c3:8b:b6:8c:60:c2:8b:5e:43:a6:cd:95:e0:51:2f:e6:71: b5:f3:69:f6:b1:45:e6:ba:9f:21:3f:9d:31:db:c8:e6:43:4b: 01:dc:4e:7c:dd:f1:fd:91:ee:9a:9d:d7:dc:d5:51:db:8b:7b: ce:26:3e:60:ae:da:55:9e:77:6f:46:a2:a0:a9:92:77:b2:d4: 79:c5:cb:79:ee:f3:db:93:48:86:33:5f:81:dc:c9:14:74:cd: fb:a9:0c:d2:75:c3:db:1b:73:1a:97:92:52:6b:d1:96:5a:de: e1:37:4c:d3:12:ed:77:b3:65:d1:ec:e0:21:93:dd:de:dd:33: a1:48:6f:ac:9a:14:2b:a6:6a:38:53:4c:7a:f2:8b:29:87:09: ae:e2:6a:b3:f9:d9:e5:a7:c5:26:dd:f4:0c:43:52:26:1d:a8: c0:22:28:ab:dc:b5:51:df:3b:fb:ae:8c:79:dd:c4:bd:e9:e7: 8b:f4:0c:aa:85:c6:4a:8e:b9:48:0d:d5:66:2f:db:17:cf:11: 4c:d0:92:69:fb:bc:21:91:62:12:14:22:75:c4:73:08:9f:d8: 4c:16:3e:ad -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x25waC9lySUqlrpzDg7tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZTAyMjI0ZmZiOTcxMTcyZTQ5MzVlZDdkZDk2NWQxMTU1 MDg5YjYwHhcNMjYwMTAxMDQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Y2E2NmVjN2YxOTFjYTE0MjJiMjU4OGVjYTBkMjhkZTlhMjY1MDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxDEOXtLbQYt9PVlrg97hfa25pbH OdyUDvCg5v44JjjJcHSY8O2mRzBRtk6jNi0OYk+C6CrmkPNYHT1deCQe4IglcDV6 yuXJBIbFOA5YJoYQInevumx/PmenwBKL6P98yQz2NYhQpD6yniVnWCaRtoS135OA LQex4ebTcclXDhyFs6FqEoTih/OHVnGzmStIZcqDc+kd4gZq7svwUb0RrVQ7NS/4 BQsrcb6nbFe29TIUh8I5jzWJyM8XFwtMU0nspDc0AG/G4xyDDa3Ck4sZKu4b5JdZ uZWkdGjQehoBwr6xNOWKqMIKz1beGEcJaCcw4idKP8lzNa9NBkaHmL3AuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGymbsfxkcoUIrJYjsoNKN6aJlBhMB8GA1UdIwQY MBaAFFLgIiT/uXEXLkk17X3ZZdEVUIm2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXVBaUpQLTVjUmN1U1RYdGZkbGwwUlZRaWJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8zMTFiYzUtM2YzNi00ZDVlLWFiZGUt YjhkYTg5NDA2YmVkLzEvYktadXhfR1J5aFFpc2xpT3lnMG8zcG9tVUdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8zMTFiYzUtM2YzNi00ZDVlLWFiZGUtYjhkYTg5NDA2YmVk LzEvVXVBaUpQLTVjUmN1U1RYdGZkbGwwUlZRaWJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXkQMA0G CSqGSIb3DQEBCwUAA4IBAQAJ3jMjweysZcpSmwdD2MrInISBwL5KNRjcHcTwk79b gi+zAqoww4u2jGDCi15Dps2V4FEv5nG182n2sUXmup8hP50x28jmQ0sB3E583fH9 ke6andfc1VHbi3vOJj5grtpVnndvRqKgqZJ3stR5xct57vPbk0iGM1+B3MkUdM37 qQzSdcPbG3Mal5JSa9GWWt7hN0zTEu13s2XR7OAhk93e3TOhSG+smhQrpmo4U0x6 8osphwmu4mqz+dnlp8Um3fQMQ1ImHajAIiir3LVR3zv7rox53cS96eeL9AyqhcZK jrlIDdVmL9sXzxFM0JJp+7whkWISFCJ1xHMIn9hMFj6t -----END CERTIFICATE-----Generated at Mon Jan 26 11:04:53 2026 by rpki-client