This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/Bge4UQP__-DVB-KXu8QE0dyV_no.roa File: Bge4UQP__-DVB-KXu8QE0dyV_no.roa (raw, json) Hash identifier: empz0X3iGWbWnVRP0ZliKC+Au9jenyd1vXKmWTaIsLA= Subject key identifier: 06:07:B8:51:03:FF:FF:E0:D5:07:E2:97:BB:C4:04:D1:DC:95:FE:7A Certificate issuer: /CN=659a6b975eafd2ce51468723814355f56c55bafb Certificate serial: 019B79ED4A4C86ABEE5AB5A4A31E72B6D62B Authority key identifier: 65:9A:6B:97:5E:AF:D2:CE:51:46:87:23:81:43:55:F5:6C:55:BA:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZZprl16v0s5RRocjgUNV9WxVuvs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/Bge4UQP__-DVB-KXu8QE0dyV_no.roa Signing time: Thu 01 Jan 2026 14:19:12 +0000 ROA not before: Thu 01 Jan 2026 14:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15642 IP address blocks: 194.125.232.0/22 maxlen: 24 194.125.232.0/24 maxlen: 24 194.242.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/ZZprl16v0s5RRocjgUNV9WxVuvs.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/ZZprl16v0s5RRocjgUNV9WxVuvs.mft rsync://rpki.ripe.net/repository/DEFAULT/ZZprl16v0s5RRocjgUNV9WxVuvs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:4a:4c:86:ab:ee:5a:b5:a4:a3:1e:72:b6:d6:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=659a6b975eafd2ce51468723814355f56c55bafb Validity Not Before: Jan 1 14:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0607b85103ffffe0d507e297bbc404d1dc95fe7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4d:cd:88:6d:9c:07:39:ea:30:2e:6a:7c:83: 14:c4:29:41:c8:3e:8c:06:eb:bf:ae:ed:60:d6:c1: 5a:e1:2b:0c:93:1b:2f:2c:59:1e:6a:ae:f9:68:fb: d7:76:a6:7a:b0:ce:a4:3b:26:db:13:f6:89:e6:a5: a7:7a:48:67:f3:fa:91:b3:73:71:09:6f:13:ee:cf: c9:7f:9e:2e:52:ee:74:e2:e7:ca:69:95:15:68:06: 56:46:50:c9:65:bf:fb:f5:c9:4f:39:01:2f:ac:89: 2b:0a:f5:da:f7:e6:4f:34:cf:b4:91:13:3f:ea:5e: c1:67:4a:43:11:60:43:6c:43:b3:9b:7a:72:32:8c: fa:4a:03:f5:93:ba:85:98:da:fc:64:79:a7:82:3e: 11:cd:01:73:9a:3b:37:c8:8b:f6:c8:7e:cc:6a:20: 36:8c:87:fc:96:4f:1f:32:94:9f:c5:c2:e1:8a:f0: b4:31:da:d2:6f:61:10:7c:6e:18:f4:96:7d:62:a9: 84:d0:5e:ad:ca:1c:ee:94:4f:1a:30:aa:55:78:9f: 7a:02:49:f3:8b:f1:5b:7d:93:e0:d0:62:47:65:f5: e1:cc:2d:71:e3:92:93:27:65:c7:63:f8:29:0a:2f: 44:41:bd:df:77:b7:bb:8e:06:1a:87:56:10:df:42: cc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:07:B8:51:03:FF:FF:E0:D5:07:E2:97:BB:C4:04:D1:DC:95:FE:7A X509v3 Authority Key Identifier: keyid:65:9A:6B:97:5E:AF:D2:CE:51:46:87:23:81:43:55:F5:6C:55:BA:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZZprl16v0s5RRocjgUNV9WxVuvs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/Bge4UQP__-DVB-KXu8QE0dyV_no.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/ZZprl16v0s5RRocjgUNV9WxVuvs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.125.232.0/22 194.242.32.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:cc:e9:96:c3:04:c3:3e:2a:60:58:39:85:a1:8b:50:39:9c: 46:e8:2b:ab:f4:c4:8e:6d:a3:14:22:18:e2:1a:fc:91:98:c4: e2:e5:33:7b:7f:11:eb:25:6f:25:b6:78:01:8d:07:39:4b:53: 95:50:6d:00:f3:a7:59:6b:79:74:98:bc:f9:4b:48:e2:80:5a: 06:d9:97:46:39:e9:fd:75:17:ee:ba:41:6f:6b:d4:2c:a6:87: 47:14:66:af:0f:f4:75:a6:83:98:69:4e:3c:b8:d4:b0:27:bf: 48:c2:12:0c:53:7a:05:48:6c:71:70:00:d4:3e:91:9d:fa:22: bc:bd:c1:44:fe:80:c5:f6:fe:98:3f:0a:e0:2d:27:14:73:45: bb:39:17:f9:b2:2e:11:d4:67:2a:83:60:aa:71:25:f9:a1:c0: 30:16:55:2b:ec:d8:82:be:43:af:32:12:d2:18:ca:43:04:72: 88:bc:69:d5:af:c5:82:20:ec:df:2f:f1:4d:f1:9a:2f:52:73: b7:2c:14:3d:51:21:ce:7b:03:4c:b4:f6:72:70:6d:da:80:c6: 83:26:7f:bb:dd:ea:42:9c:ee:64:be:bc:8c:3c:de:b6:58:e7: f3:67:be:a2:35:66:39:ad:4b:d3:92:41:31:3c:3a:0b:14:da: a1:7a:cf:6b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57UpMhqvuWrWkox5yttYrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1OWE2Yjk3NWVhZmQyY2U1MTQ2ODcyMzgxNDM1NWY1NmM1 NWJhZmIwHhcNMjYwMTAxMTQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjA3Yjg1MTAzZmZmZmUwZDUwN2UyOTdiYmM0MDRkMWRjOTVmZTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn03NiG2cBznqMC5qfIMUxClByD6M Buu/ru1g1sFa4SsMkxsvLFkeaq75aPvXdqZ6sM6kOybbE/aJ5qWnekhn8/qRs3Nx CW8T7s/Jf54uUu504ufKaZUVaAZWRlDJZb/79clPOQEvrIkrCvXa9+ZPNM+0kRM/ 6l7BZ0pDEWBDbEOzm3pyMoz6SgP1k7qFmNr8ZHmngj4RzQFzmjs3yIv2yH7MaiA2 jIf8lk8fMpSfxcLhivC0MdrSb2EQfG4Y9JZ9YqmE0F6tyhzulE8aMKpVeJ96Aknz i/FbfZPg0GJHZfXhzC1x45KTJ2XHY/gpCi9EQb3fd7e7jgYah1YQ30LMCQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAYHuFED///g1Qfil7vEBNHclf56MB8GA1UdIwQY MBaAFGWaa5der9LOUUaHI4FDVfVsVbr7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlpwcmwxNnYwczVSUm9jamdVTlY5V3hWdXZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xNzA0MjItMzlhZC00OTljLWJiZmQt ZWZmM2NkY2JkMDBhLzEvQmdlNFVRUF9fLURWQi1LWHU4UUUwZHlWX25vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xNzA0MjItMzlhZC00OTljLWJiZmQtZWZmM2NkY2JkMDBh LzEvWlpwcmwxNnYwczVSUm9jamdVTlY5V3hWdXZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwn3oAwQA wvIgMA0GCSqGSIb3DQEBCwUAA4IBAQBKzOmWwwTDPipgWDmFoYtQOZxG6Cur9MSO baMUIhjiGvyRmMTi5TN7fxHrJW8ltngBjQc5S1OVUG0A86dZa3l0mLz5S0jigFoG 2ZdGOen9dRfuukFva9QspodHFGavD/R1poOYaU48uNSwJ79IwhIMU3oFSGxxcADU PpGd+iK8vcFE/oDF9v6YPwrgLScUc0W7ORf5si4R1Gcqg2CqcSX5ocAwFlUr7NiC vkOvMhLSGMpDBHKIvGnVr8WCIOzfL/FN8ZovUnO3LBQ9USHOewNMtPZycG3agMaD Jn+73epCnO5kvryMPN62WOfzZ76iNWY5rUvTkkExPDoLFNqhes9r -----END CERTIFICATE-----Generated at Mon Jan 26 00:24:37 2026 by rpki-client