This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_bgOMIgl5YD22GLFhIayF5W0H98.roa File: _bgOMIgl5YD22GLFhIayF5W0H98.roa (raw, json) Hash identifier: YVz2Tfwx8C1mKqc7gEOvJyA8kHNkiPYcjmBTfZn3ppo= Subject key identifier: FD:B8:0E:30:88:25:E5:80:F6:D8:62:C5:84:86:B2:17:95:B4:1F:DF Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e Certificate serial: 019B79ECFA658D66BDD88B16290E2C64CCF9 Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_bgOMIgl5YD22GLFhIayF5W0H98.roa Signing time: Thu 01 Jan 2026 14:18:52 +0000 ROA not before: Thu 01 Jan 2026 14:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208942 IP address blocks: 2001:bf7:fc00::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.mft rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:fa:65:8d:66:bd:d8:8b:16:29:0e:2c:64:cc:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e Validity Not Before: Jan 1 14:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fdb80e308825e580f6d862c58486b21795b41fdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a5:34:62:3e:7a:72:8d:45:59:8c:73:da:e7: fa:47:42:c9:98:e3:13:c2:de:6d:67:6d:84:83:2c: b3:58:8f:c9:41:ba:1a:23:3d:a7:25:eb:6c:f5:8a: a2:b2:19:ee:cb:f2:54:5f:a2:43:fd:dc:b4:15:04: d7:a2:ba:b1:a6:b1:34:73:0f:1b:33:9f:34:02:58: d8:d4:48:dd:70:6f:ce:ec:d7:9c:03:e6:4f:a8:41: 61:ff:d9:6f:1d:7c:f5:5d:c1:1e:e5:18:7b:7b:ae: 9d:b9:a2:82:4f:fa:55:ca:54:38:92:52:90:60:1a: 96:63:73:3e:50:bc:17:e4:18:c8:b8:a6:78:b0:ac: d3:19:be:98:08:0b:2a:d6:8e:51:a4:d5:25:d6:9a: 2b:09:13:92:54:4d:14:60:d4:4d:59:e1:31:2a:35: 30:97:4f:1d:87:4f:07:94:74:1a:a6:72:02:0b:8c: 36:f2:a2:08:32:9b:d4:67:38:e0:c6:09:a2:ba:f2: fe:9c:75:89:3b:4a:65:17:72:84:50:b4:18:a2:69: a6:27:40:69:d6:b0:fa:ab:b3:50:2b:3f:2c:c5:ea: f6:08:a7:c8:30:52:16:b6:98:83:21:87:ca:99:04: 04:b8:43:31:19:51:c3:66:fc:1d:27:f1:87:72:3c: af:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B8:0E:30:88:25:E5:80:F6:D8:62:C5:84:86:B2:17:95:B4:1F:DF X509v3 Authority Key Identifier: keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_bgOMIgl5YD22GLFhIayF5W0H98.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:bf7:fc00::/44 Signature Algorithm: sha256WithRSAEncryption 56:73:df:9a:f7:1a:b1:6a:c4:41:19:57:14:dd:35:b2:fc:31: 76:48:39:e2:fd:82:47:2b:f7:6a:42:6c:cf:89:de:7a:ba:e7: 9d:d2:6e:4f:34:cd:ba:1c:61:ca:f3:ad:47:b1:46:10:02:e4: 7c:d4:a1:55:a9:ca:6d:56:e1:8f:da:a1:13:7d:6c:d9:68:f6: b7:64:ac:bb:b5:60:e1:b4:8b:8c:6a:ea:d2:74:6f:4d:df:fd: 45:13:da:6c:47:b0:48:f1:87:2d:bf:f5:a7:8c:dc:14:92:48: ba:0c:e4:7d:57:31:85:d7:9b:f3:f2:e2:7c:aa:49:db:dd:24: a0:e7:49:5e:31:71:63:5b:b9:d8:fb:49:dc:f9:0d:0c:45:ba: 60:ae:04:eb:7c:a1:0c:04:cd:9b:41:39:60:76:d9:51:fe:9c: e8:06:12:7c:bc:db:ca:7b:73:ef:77:e6:e0:a6:28:8d:32:d8: 00:72:a9:d9:ae:19:c3:13:89:81:ff:68:02:20:f0:ab:26:0f: e7:7e:23:af:10:e4:6d:5e:d0:f6:05:10:60:5d:09:d2:02:d6: f0:26:3a:3a:3e:86:4f:15:58:21:3c:06:c1:dd:30:fe:d0:32: 5c:5e:fa:ea:72:46:11:e9:7c:a8:6d:7f:92:c0:1b:a7:c2:83: 2e:da:7d:ea -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt57PpljWa92IsWKQ4sZMz5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMzE0OTI0NzNhNzhjNmZlOWY1MzlmOWZhN2QyMjUyNTYw YTJiN2UwHhcNMjYwMTAxMTQxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZGI4MGUzMDg4MjVlNTgwZjZkODYyYzU4NDg2YjIxNzk1YjQxZmRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApaU0Yj56co1FWYxz2uf6R0LJmOMT wt5tZ22EgyyzWI/JQboaIz2nJets9Yqishnuy/JUX6JD/dy0FQTXorqxprE0cw8b M580AljY1EjdcG/O7NecA+ZPqEFh/9lvHXz1XcEe5Rh7e66duaKCT/pVylQ4klKQ YBqWY3M+ULwX5BjIuKZ4sKzTGb6YCAsq1o5RpNUl1porCROSVE0UYNRNWeExKjUw l08dh08HlHQapnICC4w28qIIMpvUZzjgxgmiuvL+nHWJO0plF3KEULQYommmJ0Bp 1rD6q7NQKz8sxer2CKfIMFIWtpiDIYfKmQQEuEMxGVHDZvwdJ/GHcjyvuQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFP24DjCIJeWA9thixYSGsheVtB/fMB8GA1UdIwQY MBaAFP8xSSRzp4xv6fU5+fp9IlJWCit+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDct NzNmZDNiYzE5YWE3LzEvX2JnT01JZ2w1WUQyMkdMRmhJYXlGNVcwSDk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDctNzNmZDNiYzE5YWE3 LzEvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEIAEL9/wA MA0GCSqGSIb3DQEBCwUAA4IBAQBWc9+a9xqxasRBGVcU3TWy/DF2SDni/YJHK/dq QmzPid56uued0m5PNM26HGHK861HsUYQAuR81KFVqcptVuGP2qETfWzZaPa3ZKy7 tWDhtIuMaurSdG9N3/1FE9psR7BI8Yctv/WnjNwUkki6DOR9VzGF15vz8uJ8qknb 3SSg50leMXFjW7nY+0nc+Q0MRbpgrgTrfKEMBM2bQTlgdtlR/pzoBhJ8vNvKe3Pv d+bgpiiNMtgAcqnZrhnDE4mB/2gCIPCrJg/nfiOvEORtXtD2BRBgXQnSAtbwJjo6 PoZPFVghPAbB3TD+0DJcXvrqckYR6XyobX+SwBunwoMu2n3q -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:32 2026 by rpki-client