This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/bgNIlCaYdXC-jvWNp_PZUF5Wjv8.roa File: bgNIlCaYdXC-jvWNp_PZUF5Wjv8.roa (raw, json) Hash identifier: HOrOgGxOBWyo+S8wn7jt9DAC9QdGgJNYdRMb72H+pWc= Subject key identifier: 6E:03:48:94:26:98:75:70:BE:8E:F5:8D:A7:F3:D9:50:5E:56:8E:FF Certificate issuer: /CN=81a7ce8bacbeceeb16f600b607d1bfd08033b302 Certificate serial: 019B7834BE2A480AB135C730FB24585B0C85 Authority key identifier: 81:A7:CE:8B:AC:BE:CE:EB:16:F6:00:B6:07:D1:BF:D0:80:33:B3:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gafOi6y-zusW9gC2B9G_0IAzswI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/bgNIlCaYdXC-jvWNp_PZUF5Wjv8.roa Signing time: Thu 01 Jan 2026 06:18:01 +0000 ROA not before: Thu 01 Jan 2026 06:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212391 IP address blocks: 194.0.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/gafOi6y-zusW9gC2B9G_0IAzswI.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/gafOi6y-zusW9gC2B9G_0IAzswI.mft rsync://rpki.ripe.net/repository/DEFAULT/gafOi6y-zusW9gC2B9G_0IAzswI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 18:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:be:2a:48:0a:b1:35:c7:30:fb:24:58:5b:0c:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81a7ce8bacbeceeb16f600b607d1bfd08033b302 Validity Not Before: Jan 1 06:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6e03489426987570be8ef58da7f3d9505e568eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:76:01:e1:4f:27:51:42:1d:46:90:a1:03:e7: 1d:11:bb:d5:b3:51:fc:a9:a9:97:58:26:8a:e0:11: 52:99:f7:fb:dd:ca:ee:19:cb:ad:cd:3e:bf:41:b2: c4:cd:7c:85:81:06:62:4f:6d:1d:69:e8:d3:9d:21: 22:10:3b:ba:2a:b6:f3:eb:e7:53:18:39:1f:fe:10: c4:c5:2f:06:31:1a:c0:d7:e7:da:f2:73:c1:b9:be: 35:19:e0:d8:a0:0d:43:1d:e8:94:4a:23:99:6f:fe: d8:57:49:3e:7f:f8:b9:25:5d:dd:24:29:f6:9e:e8: 0e:c8:2a:be:6b:d9:45:e0:37:62:8f:dc:45:7e:ca: 46:bb:65:fb:a6:d4:07:75:81:b0:a6:f1:dc:eb:96: 94:2d:23:f1:10:03:b1:e1:22:a8:3b:f5:10:78:9c: 0d:0b:39:62:23:0d:1a:9a:7a:2a:03:e0:39:b6:5d: 03:13:3c:ee:0d:d5:8f:0b:3d:8b:b2:ac:34:0a:f4: 4b:f9:21:54:ac:96:5d:5f:f8:e2:85:82:8d:d0:91: 69:ff:73:a1:54:c2:5d:e3:cc:ab:52:ba:cc:3d:9f: a2:97:ef:35:c9:50:ed:21:6d:ae:24:b7:07:df:63: 1d:2c:8c:d9:17:0f:70:07:3c:ed:93:b4:2f:d0:e4: b4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:03:48:94:26:98:75:70:BE:8E:F5:8D:A7:F3:D9:50:5E:56:8E:FF X509v3 Authority Key Identifier: keyid:81:A7:CE:8B:AC:BE:CE:EB:16:F6:00:B6:07:D1:BF:D0:80:33:B3:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gafOi6y-zusW9gC2B9G_0IAzswI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/bgNIlCaYdXC-jvWNp_PZUF5Wjv8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/gafOi6y-zusW9gC2B9G_0IAzswI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.0.182.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:41:53:03:c4:56:95:88:6e:04:9f:1c:93:e0:77:a8:0e:cf: f3:1b:47:fc:2d:78:98:1c:9b:43:c1:7e:10:4e:fd:3c:a0:3b: 32:fe:6e:0a:66:99:9e:8e:c7:90:17:1f:29:f3:e4:33:0c:e6: 3d:e2:7c:89:5e:ea:8e:59:f4:e8:da:64:3f:aa:26:00:55:32: 81:ae:6f:58:67:a3:65:48:4b:16:97:00:62:3d:ad:2a:94:43: d7:df:01:d7:4d:b5:14:60:78:dc:6a:dc:df:3a:97:d3:66:6a: b9:92:59:99:f5:1c:f7:80:9c:a3:87:53:aa:0a:90:ac:f9:60: 08:aa:d1:cd:26:74:e7:96:7b:73:9e:a8:57:23:80:97:2b:b0: 9c:1a:fb:70:87:15:ca:41:ee:67:74:ca:7a:90:ac:1e:c2:c8: dc:b5:1a:90:f7:f2:bb:ca:97:75:83:1d:c5:89:7b:61:b4:a1: 12:b3:1a:be:3a:c7:32:e8:a7:0e:e8:54:4d:18:fd:be:d7:73: df:89:4f:aa:d9:be:d1:64:75:10:6e:90:1f:12:27:a8:67:46: bb:e5:4c:5b:1a:ab:7d:cc:41:cb:18:46:b0:9d:67:0c:bf:6a: fa:7a:9b:0b:78:78:e5:7b:a0:a4:5c:67:f5:82:46:f3:39:42: 1a:4e:0e:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NL4qSAqxNccw+yRYWwyFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYTdjZThiYWNiZWNlZWIxNmY2MDBiNjA3ZDFiZmQwODAz M2IzMDIwHhcNMjYwMTAxMDYxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZTAzNDg5NDI2OTg3NTcwYmU4ZWY1OGRhN2YzZDk1MDVlNTY4ZWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnYB4U8nUUIdRpChA+cdEbvVs1H8 qamXWCaK4BFSmff73cruGcutzT6/QbLEzXyFgQZiT20daejTnSEiEDu6Krbz6+dT GDkf/hDExS8GMRrA1+fa8nPBub41GeDYoA1DHeiUSiOZb/7YV0k+f/i5JV3dJCn2 nugOyCq+a9lF4Ddij9xFfspGu2X7ptQHdYGwpvHc65aULSPxEAOx4SKoO/UQeJwN CzliIw0amnoqA+A5tl0DEzzuDdWPCz2Lsqw0CvRL+SFUrJZdX/jihYKN0JFp/3Oh VMJd48yrUrrMPZ+il+81yVDtIW2uJLcH32MdLIzZFw9wBzztk7Qv0OS0twIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG4DSJQmmHVwvo71jafz2VBeVo7/MB8GA1UdIwQY MBaAFIGnzousvs7rFvYAtgfRv9CAM7MCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2FmT2k2eS16dXNXOWdDMkI5R18wSUF6c3dJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9lZTY2ZmItNWRjMC00MTIyLTliYzct YjI3ZDg3MzBhMjcwLzEvYmdOSWxDYVlkWEMtanZXTnBfUFpVRjVXanY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9lZTY2ZmItNWRjMC00MTIyLTliYzctYjI3ZDg3MzBhMjcw LzEvZ2FmT2k2eS16dXNXOWdDMkI5R18wSUF6c3dJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgC2MA0G CSqGSIb3DQEBCwUAA4IBAQCLQVMDxFaViG4EnxyT4HeoDs/zG0f8LXiYHJtDwX4Q Tv08oDsy/m4KZpmejseQFx8p8+QzDOY94nyJXuqOWfTo2mQ/qiYAVTKBrm9YZ6Nl SEsWlwBiPa0qlEPX3wHXTbUUYHjcatzfOpfTZmq5klmZ9Rz3gJyjh1OqCpCs+WAI qtHNJnTnlntznqhXI4CXK7CcGvtwhxXKQe5ndMp6kKwewsjctRqQ9/K7ypd1gx3F iXthtKESsxq+Oscy6KcO6FRNGP2+13PfiU+q2b7RZHUQbpAfEieoZ0a75UxbGqt9 zEHLGEawnWcMv2r6epsLeHjle6CkXGf1gkbzOUIaTg7O -----END CERTIFICATE-----Generated at Tue Jan 27 02:08:23 2026 by rpki-client