This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/BF-nL4uG2sSiQtOPU2cS1CI2KIs.roa File: BF-nL4uG2sSiQtOPU2cS1CI2KIs.roa (raw, json) Hash identifier: xmeFaZONF0d3logp8Ko7Dq9BIdCJ2HzNVPvTRTT54tA= Subject key identifier: 04:5F:A7:2F:8B:86:DA:C4:A2:42:D3:8F:53:67:12:D4:22:36:28:8B Certificate issuer: /CN=5403e5f8405d6085b8df4bfce1dd9bb3e78c2199 Certificate serial: 019B7DCAADC09BA5B1B0503DDE224E63558B Authority key identifier: 54:03:E5:F8:40:5D:60:85:B8:DF:4B:FC:E1:DD:9B:B3:E7:8C:21:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAPl-EBdYIW430v84d2bs-eMIZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/BF-nL4uG2sSiQtOPU2cS1CI2KIs.roa Signing time: Fri 02 Jan 2026 08:19:53 +0000 ROA not before: Fri 02 Jan 2026 08:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215747 IP address blocks: 185.189.181.0/24 maxlen: 24 2a0b:f380:3e8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/VAPl-EBdYIW430v84d2bs-eMIZk.crl rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/VAPl-EBdYIW430v84d2bs-eMIZk.mft rsync://rpki.ripe.net/repository/DEFAULT/VAPl-EBdYIW430v84d2bs-eMIZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:ad:c0:9b:a5:b1:b0:50:3d:de:22:4e:63:55:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5403e5f8405d6085b8df4bfce1dd9bb3e78c2199 Validity Not Before: Jan 2 08:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=045fa72f8b86dac4a242d38f536712d42236288b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f2:c2:59:46:fe:73:de:78:0d:44:04:1d:7f: 8b:dc:b5:3c:a8:5c:e4:c4:65:fa:e6:20:32:2f:8c: 26:46:a5:0c:af:40:91:af:53:78:c2:06:2c:75:91: f4:5c:0e:eb:6d:90:67:ea:6d:e4:75:44:76:15:28: 10:9a:09:9f:5a:59:87:30:81:40:56:71:0c:79:53: f0:b4:2e:0d:20:94:a4:e6:28:7e:83:e2:6c:42:ec: cf:71:38:bc:4d:ae:ee:30:a5:df:cc:9d:b2:40:15: 29:ab:a0:c5:65:8f:cb:15:8b:85:17:04:b5:0b:17: 49:90:c8:b2:56:d0:9d:ae:0c:a1:9a:28:8b:7b:ae: 6d:ed:15:63:5d:a1:5a:bf:65:75:c2:07:00:40:5a: ee:5f:f9:00:89:d5:dd:a9:14:af:ce:e1:8f:ad:b5: 3a:d9:16:ba:37:29:bb:e5:e0:05:8a:7a:d3:f7:84: 26:c7:76:65:89:46:d3:1b:7a:19:47:97:67:1c:f4: bd:ff:20:4d:96:08:95:e8:10:62:08:01:0a:b0:2c: 97:b1:8e:bc:96:30:cf:24:92:8f:1e:86:68:e8:d7: 70:b6:2d:bf:f4:b1:72:99:95:bb:94:52:a7:5f:28: 95:cf:03:44:c7:97:54:b2:2c:cd:75:55:db:96:6a: 61:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:5F:A7:2F:8B:86:DA:C4:A2:42:D3:8F:53:67:12:D4:22:36:28:8B X509v3 Authority Key Identifier: keyid:54:03:E5:F8:40:5D:60:85:B8:DF:4B:FC:E1:DD:9B:B3:E7:8C:21:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAPl-EBdYIW430v84d2bs-eMIZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/BF-nL4uG2sSiQtOPU2cS1CI2KIs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/VAPl-EBdYIW430v84d2bs-eMIZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.189.181.0/24 IPv6: 2a0b:f380:3e8::/48 Signature Algorithm: sha256WithRSAEncryption 5b:2d:58:f0:3f:c0:6e:e8:67:c6:5b:80:69:34:9d:c2:16:3a: ed:27:ef:0a:8b:31:68:ca:d0:cd:4c:b9:2f:5e:75:e0:33:8b: 3a:d8:77:47:e9:ca:6a:be:b8:e5:2d:71:45:11:79:3b:3a:4f: 52:91:ee:49:0f:52:54:82:ff:03:45:dd:89:87:5f:b1:60:13: 04:e4:19:24:3f:a5:54:1e:da:4d:e9:0f:9a:70:04:d3:1e:8d: cc:e0:1f:d9:46:90:ba:37:fd:4c:f5:ec:df:8a:c8:f0:91:8b: f3:cb:a8:ce:33:47:e0:0b:10:9f:13:e5:8f:c2:9c:ac:19:76: 17:64:d7:52:19:ba:5a:5b:f5:ad:af:c6:b2:21:f0:e5:9b:a2: e9:19:23:cf:4b:d7:4c:6c:41:3b:fe:31:bf:f4:22:17:71:e1: 22:d6:df:4a:ac:60:33:58:43:43:ce:cc:96:ff:7f:b4:e6:f2: 02:3e:b4:7b:85:3e:5a:f5:96:2a:6d:2d:af:3f:96:60:6c:4e: 89:ba:a7:08:c4:7c:60:cf:cd:30:c1:86:84:a0:44:82:9e:02: 8f:e7:da:30:ee:0a:47:73:a4:3f:f0:a1:3a:05:48:8f:6d:53: 27:78:9b:28:60:4c:35:fd:74:c2:f4:60:f1:7b:ab:de:71:da: 1c:c8:f6:36 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9yq3Am6WxsFA93iJOY1WLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0MDNlNWY4NDA1ZDYwODViOGRmNGJmY2UxZGQ5YmIzZTc4 YzIxOTkwHhcNMjYwMTAyMDgxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDVmYTcyZjhiODZkYWM0YTI0MmQzOGY1MzY3MTJkNDIyMzYyODhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/LCWUb+c954DUQEHX+L3LU8qFzk xGX65iAyL4wmRqUMr0CRr1N4wgYsdZH0XA7rbZBn6m3kdUR2FSgQmgmfWlmHMIFA VnEMeVPwtC4NIJSk5ih+g+JsQuzPcTi8Ta7uMKXfzJ2yQBUpq6DFZY/LFYuFFwS1 CxdJkMiyVtCdrgyhmiiLe65t7RVjXaFav2V1wgcAQFruX/kAidXdqRSvzuGPrbU6 2Ra6Nym75eAFinrT94Qmx3ZliUbTG3oZR5dnHPS9/yBNlgiV6BBiCAEKsCyXsY68 ljDPJJKPHoZo6Ndwti2/9LFymZW7lFKnXyiVzwNEx5dUsizNdVXblmphRQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFARfpy+LhtrEokLTj1NnEtQiNiiLMB8GA1UdIwQY MBaAFFQD5fhAXWCFuN9L/OHdm7PnjCGZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkFQbC1FQmRZSVc0MzB2ODRkMmJzLWVNSVprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hZWU4ZDktMjFlZC00ZGI3LWJkNzAt MTVhNDJhYzllZmE4LzEvQkYtbkw0dUcyc1NpUXRPUFUyY1MxQ0kyS0lzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hZWU4ZDktMjFlZC00ZGI3LWJkNzAtMTVhNDJhYzllZmE4 LzEvVkFQbC1FQmRZSVc0MzB2ODRkMmJzLWVNSVprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAub21MA8E AgACMAkDBwAqC/OAA+gwDQYJKoZIhvcNAQELBQADggEBAFstWPA/wG7oZ8ZbgGk0 ncIWOu0n7wqLMWjK0M1MuS9edeAzizrYd0fpymq+uOUtcUUReTs6T1KR7kkPUlSC /wNF3YmHX7FgEwTkGSQ/pVQe2k3pD5pwBNMejczgH9lGkLo3/Uz17N+KyPCRi/PL qM4zR+ALEJ8T5Y/CnKwZdhdk11IZulpb9a2vxrIh8OWboukZI89L10xsQTv+Mb/0 Ihdx4SLW30qsYDNYQ0POzJb/f7Tm8gI+tHuFPlr1liptLa8/lmBsTom6pwjEfGDP zTDBhoSgRIKeAo/n2jDuCkdzpD/woToFSI9tUyd4myhgTDX9dML0YPF7q95x2hzI 9jY= -----END CERTIFICATE-----Generated at Sun Jan 25 18:05:17 2026 by rpki-client