This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/bFM6FERaVVRU02fldIoPef0ROHk.roa File: bFM6FERaVVRU02fldIoPef0ROHk.roa (raw, json) Hash identifier: 7w8/fjo0jfXcbPuEWIPIAKvCvyo5DBEsn3E1jFiUwbo= Subject key identifier: 6C:53:3A:14:44:5A:55:54:54:D3:67:E5:74:8A:0F:79:FD:11:38:79 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78346EC44876D851BFD4B2FB740E733B Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/bFM6FERaVVRU02fldIoPef0ROHk.roa Signing time: Thu 01 Jan 2026 06:17:40 +0000 ROA not before: Thu 01 Jan 2026 06:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 53745 IP address blocks: 193.235.66.0/24 maxlen: 24 194.14.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:6e:c4:48:76:d8:51:bf:d4:b2:fb:74:0e:73:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c533a14445a555454d367e5748a0f79fd113879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:2a:f3:bb:e0:65:09:e3:e0:7f:bc:7c:02:92: 66:ce:45:4f:8c:9e:b9:8b:94:85:70:14:c0:57:f1: 0c:69:b8:7d:e5:3f:45:e5:6f:76:28:35:e0:11:06: a9:0e:6a:20:41:a8:da:5f:aa:0b:d6:fa:90:3a:25: 8a:64:fa:d6:05:5e:84:76:d4:c2:37:f2:62:de:4b: 73:53:53:b9:e5:f5:46:14:e7:ae:3d:f4:e4:89:3b: e6:d3:fd:d2:50:c0:5f:2c:ae:b1:48:d4:36:61:8d: b8:34:f8:fb:28:54:c5:09:e0:ba:ea:18:85:ce:bb: fa:43:3a:36:b5:19:05:38:04:c4:f7:b5:fa:a0:c0: b5:ce:93:dd:83:8a:7f:5d:16:12:6c:d9:76:fb:4e: 62:78:fc:ee:96:b9:96:ac:df:7f:45:7e:ea:33:1e: a8:0c:b3:24:e7:f3:36:9e:8c:df:e7:4a:03:ce:11: 6b:49:93:7d:0d:93:05:2c:2e:3d:e0:f0:c0:ef:15: 64:ff:96:cf:f9:1e:32:fa:c4:24:38:b4:b8:0e:bb: 40:ab:e8:9a:95:34:9b:c6:57:5d:79:27:52:c9:5d: 07:af:92:1e:ae:4d:f8:7f:84:c1:45:07:18:bb:12: 00:7a:cd:76:05:c1:fd:9e:ba:e9:8d:70:81:4e:8d: d9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:53:3A:14:44:5A:55:54:54:D3:67:E5:74:8A:0F:79:FD:11:38:79 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/bFM6FERaVVRU02fldIoPef0ROHk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.235.66.0/24 194.14.248.0/24 Signature Algorithm: sha256WithRSAEncryption 53:a2:e6:62:e7:28:ef:93:77:21:cb:89:d1:be:8f:21:4d:d5: 9b:9e:73:e6:12:dc:b3:bd:05:c4:4b:09:ba:27:bc:a6:3e:b2: f4:5e:9e:35:4d:9f:88:54:4e:c6:ad:c5:eb:47:84:66:1b:b9: e9:03:47:87:4c:92:84:fc:70:32:29:f3:0e:69:77:89:67:7f: 69:45:c3:b6:14:ec:b5:88:8c:ae:ba:ad:e5:83:a8:69:25:27: 15:76:3b:d7:58:f9:0f:d4:d5:7e:41:c9:66:ca:9a:77:be:7a: 24:6c:e8:a3:4d:ed:71:14:e0:b8:c0:2d:2f:ca:80:ef:73:fb: ed:bc:f8:b1:17:d7:c1:df:37:ae:16:31:ea:22:71:a4:7a:00: 17:dc:7c:f1:ea:19:78:a9:9d:73:f3:93:e0:2e:af:9a:e2:54: 14:c8:30:ad:ac:d4:83:10:51:78:ce:49:9a:99:ba:18:e7:72: a2:f5:a9:ed:c0:45:39:11:6d:c2:5b:da:79:4d:84:6b:05:b1: ad:64:75:f0:d9:c0:17:e1:24:87:38:9a:61:aa:4e:0f:55:17: af:e1:d5:e7:34:79:67:4d:9c:a2:25:ef:7e:9d:1f:d7:5e:f9: 28:76:ec:6b:43:2f:b1:8f:bc:0d:e2:9a:1d:5c:4b:0e:cb:a0: 86:07:78:17 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NG7ESHbYUb/Usvt0DnM7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzUzM2ExNDQ0NWE1NTU0NTRkMzY3ZTU3NDhhMGY3OWZkMTEzODc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiSrzu+BlCePgf7x8ApJmzkVPjJ65 i5SFcBTAV/EMabh95T9F5W92KDXgEQapDmogQajaX6oL1vqQOiWKZPrWBV6EdtTC N/Ji3ktzU1O55fVGFOeuPfTkiTvm0/3SUMBfLK6xSNQ2YY24NPj7KFTFCeC66hiF zrv6Qzo2tRkFOATE97X6oMC1zpPdg4p/XRYSbNl2+05iePzulrmWrN9/RX7qMx6o DLMk5/M2nozf50oDzhFrSZN9DZMFLC494PDA7xVk/5bP+R4y+sQkOLS4DrtAq+ia lTSbxlddeSdSyV0Hr5Ierk34f4TBRQcYuxIAes12BcH9nrrpjXCBTo3ZgwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGxTOhREWlVUVNNn5XSKD3n9ETh5MB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvYkZNNkZFUmFWVlJVMDJmbGRJb1BlZjBST0hrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwetCAwQA wg74MA0GCSqGSIb3DQEBCwUAA4IBAQBTouZi5yjvk3chy4nRvo8hTdWbnnPmEtyz vQXESwm6J7ymPrL0Xp41TZ+IVE7GrcXrR4RmG7npA0eHTJKE/HAyKfMOaXeJZ39p RcO2FOy1iIyuuq3lg6hpJScVdjvXWPkP1NV+Qclmypp3vnokbOijTe1xFOC4wC0v yoDvc/vtvPixF9fB3zeuFjHqInGkegAX3Hzx6hl4qZ1z85PgLq+a4lQUyDCtrNSD EFF4zkmamboY53Ki9antwEU5EW3CW9p5TYRrBbGtZHXw2cAX4SSHOJphqk4PVRev 4dXnNHlnTZyiJe9+nR/XXvkoduxrQy+xj7wN4podXEsOy6CGB3gX -----END CERTIFICATE-----Generated at Sun Jan 25 10:30:59 2026 by rpki-client