This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/BSGPWmtsgwbJGnKFG5brSPXj4hk.roa File: BSGPWmtsgwbJGnKFG5brSPXj4hk.roa (raw, json) Hash identifier: KGxIkg0MS8XaKz2jRrsvog2q0vQwaAcswUFzEf/VLTI= Subject key identifier: 05:21:8F:5A:6B:6C:83:06:C9:1A:72:85:1B:96:EB:48:F5:E3:E2:19 Certificate issuer: /CN=e4cc76e3b5477ffd42a0fe4b8c783aad2f96fe70 Certificate serial: 019B7BA517BE9A72EB2F3C753A8F491B92D2 Authority key identifier: E4:CC:76:E3:B5:47:7F:FD:42:A0:FE:4B:8C:78:3A:AD:2F:96:FE:70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Mx247VHf_1CoP5LjHg6rS-W_nA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/BSGPWmtsgwbJGnKFG5brSPXj4hk.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202423 IP address blocks: 185.149.194.0/24 maxlen: 24 193.0.178.0/24 maxlen: 24 193.0.179.0/24 maxlen: 24 2a0b:9080::/48 maxlen: 48 2a0b:9080:1::/48 maxlen: 48 2a0b:9080:2::/48 maxlen: 48 2a0b:9080:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/5Mx247VHf_1CoP5LjHg6rS-W_nA.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/5Mx247VHf_1CoP5LjHg6rS-W_nA.mft rsync://rpki.ripe.net/repository/DEFAULT/5Mx247VHf_1CoP5LjHg6rS-W_nA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:17:be:9a:72:eb:2f:3c:75:3a:8f:49:1b:92:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4cc76e3b5477ffd42a0fe4b8c783aad2f96fe70 Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05218f5a6b6c8306c91a72851b96eb48f5e3e219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:eb:31:cd:31:ce:b7:ce:28:4e:35:58:19: eb:82:65:dc:53:b0:83:6b:d1:32:f9:75:3c:71:47: f0:ea:d9:8e:ae:43:89:1c:79:7f:16:4d:0c:21:e8: 46:9d:75:5c:83:f7:ac:af:5b:88:5d:36:47:b5:82: 46:ee:25:f0:24:23:c1:d1:6a:8e:53:8e:9e:82:00: 85:f2:72:1b:ea:2e:63:3f:d2:6b:43:36:e0:f1:dc: 02:70:c1:c3:eb:78:04:19:25:93:dc:03:12:37:2c: d4:1e:e0:74:6b:53:72:11:80:ec:c9:d1:a2:a2:f9: 04:36:66:4c:b7:61:65:b9:c3:cd:02:09:ab:2e:d7: 58:40:2a:48:2b:65:55:87:81:df:14:83:11:3a:ca: 85:e1:65:13:34:05:6c:f1:f2:e0:c6:2d:ff:a7:7d: 72:40:53:5c:33:86:96:5c:15:cc:39:38:02:62:d6: 05:bb:be:47:43:38:ac:f9:7e:ab:63:fd:8f:4a:04: ee:3f:90:0e:fa:42:00:03:35:29:76:2b:a6:65:09: e2:ec:92:6b:8e:ef:28:0d:43:42:48:9f:03:14:04: 98:07:f8:ac:86:be:b1:6d:03:09:23:ff:43:21:4f: 08:c7:1d:68:ce:e2:f6:3d:83:83:52:6c:38:3f:26: 4a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:21:8F:5A:6B:6C:83:06:C9:1A:72:85:1B:96:EB:48:F5:E3:E2:19 X509v3 Authority Key Identifier: keyid:E4:CC:76:E3:B5:47:7F:FD:42:A0:FE:4B:8C:78:3A:AD:2F:96:FE:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Mx247VHf_1CoP5LjHg6rS-W_nA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/BSGPWmtsgwbJGnKFG5brSPXj4hk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/5Mx247VHf_1CoP5LjHg6rS-W_nA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.149.194.0/24 193.0.178.0/23 IPv6: 2a0b:9080::/46 Signature Algorithm: sha256WithRSAEncryption 78:f7:5d:37:b6:73:67:aa:fb:ad:80:36:32:9a:32:d4:8e:6b: 16:e1:38:26:19:a9:c3:ec:e4:ac:03:e7:16:7c:72:e7:52:99: 6e:59:df:c4:4b:74:1d:07:8f:93:ea:28:0e:1b:d5:fa:b5:a2: 33:87:c6:17:49:eb:a0:fb:d6:7a:12:26:63:15:8b:d8:72:99: 04:07:69:66:e5:ef:eb:80:88:84:6a:12:91:42:0d:86:a3:be: 77:4e:27:34:eb:48:23:71:bf:00:f8:34:e0:7e:8c:04:fe:94: 59:c8:f3:ff:c5:29:4a:1e:66:23:07:27:93:52:2e:06:b2:ca: a1:a1:79:3e:62:f6:90:48:ce:a4:09:ca:0d:a1:14:aa:9b:0a: 78:6a:a4:ce:c0:ed:4a:f3:5e:a0:57:b4:3e:6d:d8:57:6c:63: 81:43:09:86:47:8b:37:e7:53:5e:fc:e7:00:4a:bd:a8:1c:43: 2e:15:fa:82:a5:76:23:5d:41:84:bd:8f:70:0d:30:6c:5c:e8: bc:a2:74:3f:dc:b8:69:2b:31:f2:fe:0f:28:e1:32:23:e0:c5: 3a:af:c7:73:bb:69:10:16:5b:02:46:01:ea:b5:f0:5b:04:a5: 99:5c:92:34:a4:45:f7:7f:fe:9b:e2:83:1a:1b:07:f6:e8:03: b3:57:fe:d0 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt7pRe+mnLrLzx1Oo9JG5LSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0Y2M3NmUzYjU0NzdmZmQ0MmEwZmU0YjhjNzgzYWFkMmY5 NmZlNzAwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTIxOGY1YTZiNmM4MzA2YzkxYTcyODUxYjk2ZWI0OGY1ZTNlMjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0zrMc0xzrfOKE41WBnrgmXcU7CD a9Ey+XU8cUfw6tmOrkOJHHl/Fk0MIehGnXVcg/esr1uIXTZHtYJG7iXwJCPB0WqO U46eggCF8nIb6i5jP9JrQzbg8dwCcMHD63gEGSWT3AMSNyzUHuB0a1NyEYDsydGi ovkENmZMt2FlucPNAgmrLtdYQCpIK2VVh4HfFIMROsqF4WUTNAVs8fLgxi3/p31y QFNcM4aWXBXMOTgCYtYFu75HQzis+X6rY/2PSgTuP5AO+kIAAzUpdiumZQni7JJr ju8oDUNCSJ8DFASYB/ishr6xbQMJI/9DIU8Ixx1ozuL2PYODUmw4PyZK5wIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFAUhj1prbIMGyRpyhRuW60j14+IZMB8GA1UdIwQY MBaAFOTMduO1R3/9QqD+S4x4Oq0vlv5wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNU14MjQ3VkhmXzFDb1A1TGpIZzZyUy1XX25BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi81Zjg4ODEtOGE0NC00ODQyLTgwMDkt MTE2NWQxZDE1NjRmLzEvQlNHUFdtdHNnd2JKR25LRkc1YnJTUFhqNGhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi81Zjg4ODEtOGE0NC00ODQyLTgwMDktMTE2NWQxZDE1NjRm LzEvNU14MjQ3VkhmXzFDb1A1TGpIZzZyUy1XX25BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAuZXCAwQB wQCyMA8EAgACMAkDBwIqC5CAAAAwDQYJKoZIhvcNAQELBQADggEBAHj3XTe2c2eq +62ANjKaMtSOaxbhOCYZqcPs5KwD5xZ8cudSmW5Z38RLdB0Hj5PqKA4b1fq1ojOH xhdJ66D71noSJmMVi9hymQQHaWbl7+uAiIRqEpFCDYajvndOJzTrSCNxvwD4NOB+ jAT+lFnI8//FKUoeZiMHJ5NSLgayyqGheT5i9pBIzqQJyg2hFKqbCnhqpM7A7Urz XqBXtD5t2FdsY4FDCYZHizfnU1785wBKvagcQy4V+oKldiNdQYS9j3ANMGxc6Lyi dD/cuGkrMfL+DyjhMiPgxTqvx3O7aRAWWwJGAeq18FsEpZlckjSkRfd//pvigxob B/boA7NX/tA= -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:14 2026 by rpki-client