This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/BVNGTt8uEfptl8LHqCuP3kOpdcg.roa File: BVNGTt8uEfptl8LHqCuP3kOpdcg.roa (raw, json) Hash identifier: WOkCvrVCojpbDJ9AWqXg096xx3M+xHQMny/jk9IrI1w= Subject key identifier: 05:53:46:4E:DF:2E:11:FA:6D:97:C2:C7:A8:2B:8F:DE:43:A9:75:C8 Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019B7F15C2A5602E9AB298165A71F12EDB53 Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/BVNGTt8uEfptl8LHqCuP3kOpdcg.roa Signing time: Fri 02 Jan 2026 14:21:31 +0000 ROA not before: Fri 02 Jan 2026 14:21:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50053 IP address blocks: 88.214.53.0/24 maxlen: 24 217.147.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c2:a5:60:2e:9a:b2:98:16:5a:71:f1:2e:db:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Jan 2 14:21:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0553464edf2e11fa6d97c2c7a82b8fde43a975c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:41:ab:f7:5b:c9:83:a3:de:ef:87:85:d0:1d: ce:fd:f9:2a:8e:e5:e5:55:55:8a:f7:44:41:fe:ba: 31:a1:0b:81:c3:92:92:47:7e:93:35:22:38:45:4d: 7c:c0:99:3b:42:b5:68:91:67:b3:f4:f5:77:e7:1b: 53:ac:cb:54:2b:06:2a:57:8c:c4:63:c1:e4:bf:a9: 54:e0:75:d7:69:ad:6e:8d:be:8a:10:d1:d9:31:03: ec:d7:e0:1d:33:64:db:6d:60:f1:8c:fc:e2:31:a8: 0e:d6:74:f9:4e:27:b0:44:77:4c:5b:fc:77:44:ac: 17:77:f0:32:b7:81:4a:dd:f5:c3:01:14:1a:0b:27: 7c:1f:0d:fc:63:83:b1:2b:d1:f4:ad:6c:13:83:67: 62:14:05:6a:8e:6c:c2:d8:b3:71:b5:3b:eb:09:46: f3:3c:bd:da:c3:4e:65:ae:19:90:f6:06:25:9a:30: b2:18:41:5e:2c:b0:d7:8c:b2:81:78:d6:68:f2:38: 22:82:10:89:dd:74:00:e1:e3:07:09:96:49:2c:86: f1:53:c9:39:5f:88:ff:bc:91:79:c5:7d:d2:ba:06: 83:6f:ea:74:d5:af:e9:4d:29:74:28:62:60:ac:92: 85:a0:b3:f9:13:4e:c7:da:23:46:81:63:5e:02:0c: 3f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:53:46:4E:DF:2E:11:FA:6D:97:C2:C7:A8:2B:8F:DE:43:A9:75:C8 X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/BVNGTt8uEfptl8LHqCuP3kOpdcg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.214.53.0/24 217.147.15.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:47:cb:6b:ec:46:25:57:f8:a4:72:42:d8:76:9f:b0:4e:1c: 52:cb:2b:0a:fe:87:3b:4f:45:e9:c1:d5:f2:b1:28:8d:51:eb: ee:9b:67:b6:ff:12:35:5e:90:5b:48:f5:e2:61:dd:1f:75:ae: 31:d9:70:d3:d4:a7:58:fa:bd:67:7f:cb:cd:7f:5f:cd:f1:f0: 9b:bb:ae:54:84:42:47:6c:68:fe:2c:e9:bd:b6:93:68:af:94: cc:3f:1e:ba:a9:99:e2:ed:7e:b8:70:9c:a2:9f:97:e1:73:04: 6b:90:0d:74:01:da:26:aa:54:2b:33:29:c2:2b:fa:90:91:37: 0b:4a:d5:e0:08:48:cc:c2:8b:17:11:cc:b4:b6:cf:11:f7:ca: 21:a6:e2:3f:46:be:b5:02:4d:33:78:89:2c:dc:6c:7c:f2:15: 4a:57:24:40:d0:16:09:95:61:9f:ce:6f:a0:ca:4c:79:50:9a: e1:3d:07:c0:83:c1:c7:15:fd:62:5d:de:2a:08:4f:d5:9c:25: 59:7f:ee:3d:12:2e:55:df:e9:61:85:3a:75:46:27:f0:64:44: 0d:ab:63:54:13:04:43:27:3b:24:33:f3:f7:86:3a:0a:fb:73: 6d:d8:90:b9:7f:1d:66:b3:7a:68:c2:a7:bf:98:0b:ea:11:3c: 81:58:af:e7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FcKlYC6aspgWWnHxLttTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjYwMTAyMTQyMTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTUzNDY0ZWRmMmUxMWZhNmQ5N2MyYzdhODJiOGZkZTQzYTk3NWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0Gr91vJg6Pe74eF0B3O/fkqjuXl VVWK90RB/roxoQuBw5KSR36TNSI4RU18wJk7QrVokWez9PV35xtTrMtUKwYqV4zE Y8Hkv6lU4HXXaa1ujb6KENHZMQPs1+AdM2TbbWDxjPziMagO1nT5TiewRHdMW/x3 RKwXd/Ayt4FK3fXDARQaCyd8Hw38Y4OxK9H0rWwTg2diFAVqjmzC2LNxtTvrCUbz PL3aw05lrhmQ9gYlmjCyGEFeLLDXjLKBeNZo8jgighCJ3XQA4eMHCZZJLIbxU8k5 X4j/vJF5xX3SugaDb+p01a/pTSl0KGJgrJKFoLP5E07H2iNGgWNeAgw/FQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAVTRk7fLhH6bZfCx6grj95DqXXIMB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvQlZOR1R0OHVFZnB0bDhMSHFDdVAza09wZGNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWNY1AwQA 2ZMPMA0GCSqGSIb3DQEBCwUAA4IBAQBsR8tr7EYlV/ikckLYdp+wThxSyysK/oc7 T0XpwdXysSiNUevum2e2/xI1XpBbSPXiYd0fda4x2XDT1KdY+r1nf8vNf1/N8fCb u65UhEJHbGj+LOm9tpNor5TMPx66qZni7X64cJyin5fhcwRrkA10AdomqlQrMynC K/qQkTcLStXgCEjMwosXEcy0ts8R98ohpuI/Rr61Ak0zeIks3Gx88hVKVyRA0BYJ lWGfzm+gykx5UJrhPQfAg8HHFf1iXd4qCE/VnCVZf+49Ei5V3+lhhTp1RifwZEQN q2NUEwRDJzskM/P3hjoK+3Nt2JC5fx1ms3powqe/mAvqETyBWK/n -----END CERTIFICATE-----Generated at Sun Jan 25 17:32:36 2026 by rpki-client