This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/BOjpyE22EDrXW2wH5ueNqr-_t7M.roa File: BOjpyE22EDrXW2wH5ueNqr-_t7M.roa (raw, json) Hash identifier: JzVtX64VS2LC7Jo6NzhZJ9tn4S0/NMOoGFR3UGv+gFE= Subject key identifier: 04:E8:E9:C8:4D:B6:10:3A:D7:5B:6C:07:E6:E7:8D:AA:BF:BF:B7:B3 Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123 Certificate serial: 019B78A32FA8D60B2BD7AAD70A59AB79489F Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/BOjpyE22EDrXW2wH5ueNqr-_t7M.roa Signing time: Thu 01 Jan 2026 08:18:39 +0000 ROA not before: Thu 01 Jan 2026 08:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198976 IP address blocks: 213.135.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.mft rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:2f:a8:d6:0b:2b:d7:aa:d7:0a:59:ab:79:48:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123 Validity Not Before: Jan 1 08:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04e8e9c84db6103ad75b6c07e6e78daabfbfb7b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3d:68:32:9b:6c:f7:31:f4:be:be:77:4c:d6: 8f:90:1e:49:e8:03:e5:aa:f1:95:89:c0:52:db:66: 2d:04:7c:bd:82:e8:f6:b8:e3:5f:80:dd:b9:03:a1: 59:8a:9b:17:ef:86:ef:87:3e:1c:03:c6:55:55:37: bf:7c:d6:4f:37:66:c3:df:47:11:27:33:a5:00:4f: f0:7a:95:ab:c2:25:da:b0:e2:bc:ac:01:f1:3d:de: 59:c0:da:f1:e6:68:ee:c9:c5:d8:64:ed:fb:11:64: 3c:33:3c:31:45:a4:4c:aa:76:0f:e1:58:93:95:1f: 6c:bd:35:c3:2b:49:74:b0:19:ef:4a:cf:0a:b5:2b: 05:9a:7c:e3:3b:40:c2:8c:87:98:3d:9e:76:cb:41: 3b:ce:be:3d:af:05:e8:be:d8:d1:52:41:4b:14:ad: 8d:7a:9a:f2:f3:8b:c1:d0:e1:00:35:3f:b4:08:7d: 1d:55:89:02:ac:f2:28:2f:e2:0c:54:47:a9:3e:ee: ad:95:ae:8e:77:64:73:8a:40:e6:7a:7d:82:9f:50: 29:e1:5f:f3:17:66:85:d9:32:f8:a4:95:9a:17:de: 07:71:7b:95:46:ca:93:71:0d:a7:68:af:0e:01:38: 90:f5:17:d9:d2:1c:19:17:65:8a:0b:17:4f:02:70: 2b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E8:E9:C8:4D:B6:10:3A:D7:5B:6C:07:E6:E7:8D:AA:BF:BF:B7:B3 X509v3 Authority Key Identifier: keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/BOjpyE22EDrXW2wH5ueNqr-_t7M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.135.71.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:c5:ab:64:1b:8e:51:f4:1c:b1:69:f5:ac:2f:24:74:25:3e: 6a:aa:bc:ea:82:bb:a1:52:34:6d:a9:e6:6e:3b:48:39:81:cf: d1:d9:aa:72:46:9e:69:9d:9e:c0:1d:c5:74:7f:1b:79:20:ca: 2c:7d:68:37:eb:8e:2a:af:d1:d8:f1:c8:66:5d:b5:aa:74:bd: db:30:6d:c0:a3:f3:cd:34:65:68:c9:a2:a0:5e:32:6f:d2:8c: 4d:e8:43:f3:e0:53:87:b3:39:de:91:70:bc:26:bd:6a:81:51: 08:3b:87:37:07:da:a0:68:ff:b1:29:66:93:3e:96:1b:c7:66: e6:cc:e6:18:47:ce:a4:fa:44:32:ce:5a:a0:27:cd:7f:d0:73: 76:73:52:61:e7:d0:a5:41:c3:a9:49:92:a5:53:29:90:2d:cd: 97:07:8f:06:53:44:e9:3e:d2:02:78:da:9b:39:76:9b:a0:ba: 12:cf:a5:11:df:d3:c7:22:12:05:96:0d:71:42:37:b4:3e:f1: 83:29:c6:a8:8c:5a:1f:87:b0:7a:53:a0:c1:e0:ca:df:52:cc: ac:1e:f0:0e:c9:5c:47:0b:4c:c8:42:2e:c6:8c:7c:34:7a:d6: ad:6e:90:b1:17:2d:9e:13:f1:f9:77:d2:ec:4e:a6:0f:e8:72: 15:ff:68:10 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oy+o1gsr16rXClmreUifMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmMzgxODU1NGE1MTgwOGVlZmI4MjllYzc0NjVhMzIyMmYy NzAxMjMwHhcNMjYwMTAxMDgxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGU4ZTljODRkYjYxMDNhZDc1YjZjMDdlNmU3OGRhYWJmYmZiN2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4D1oMpts9zH0vr53TNaPkB5J6APl qvGVicBS22YtBHy9guj2uONfgN25A6FZipsX74bvhz4cA8ZVVTe/fNZPN2bD30cR JzOlAE/wepWrwiXasOK8rAHxPd5ZwNrx5mjuycXYZO37EWQ8MzwxRaRMqnYP4ViT lR9svTXDK0l0sBnvSs8KtSsFmnzjO0DCjIeYPZ52y0E7zr49rwXovtjRUkFLFK2N epry84vB0OEANT+0CH0dVYkCrPIoL+IMVEepPu6tla6Od2RzikDmen2Cn1Ap4V/z F2aF2TL4pJWaF94HcXuVRsqTcQ2naK8OATiQ9RfZ0hwZF2WKCxdPAnArdwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFATo6chNthA611tsB+bnjaq/v7ezMB8GA1UdIwQY MBaAFI84GFVKUYCO77gp7HRloyIvJwEjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgt YmZiNGJhMzBlNDVhLzEvQk9qcHlFMjJFRHJYVzJ3SDV1ZU5xci1fdDdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgtYmZiNGJhMzBlNDVh LzEvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1YdHMA0G CSqGSIb3DQEBCwUAA4IBAQCexatkG45R9ByxafWsLyR0JT5qqrzqgruhUjRtqeZu O0g5gc/R2apyRp5pnZ7AHcV0fxt5IMosfWg3644qr9HY8chmXbWqdL3bMG3Ao/PN NGVoyaKgXjJv0oxN6EPz4FOHsznekXC8Jr1qgVEIO4c3B9qgaP+xKWaTPpYbx2bm zOYYR86k+kQyzlqgJ81/0HN2c1Jh59ClQcOpSZKlUymQLc2XB48GU0TpPtICeNqb OXaboLoSz6UR39PHIhIFlg1xQje0PvGDKcaojFofh7B6U6DB4MrfUsysHvAOyVxH C0zIQi7GjHw0etatbpCxFy2eE/H5d9LsTqYP6HIV/2gQ -----END CERTIFICATE-----Generated at Sun Jan 25 22:47:47 2026 by rpki-client