This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/433edf-aaf8-4669-877c-e3781d8fe74c/1/BGkcJfFENHuGNqi5KdKaJIpLpGs.roa File: BGkcJfFENHuGNqi5KdKaJIpLpGs.roa (raw, json) Hash identifier: 14oAN4dkpEIBe9l+/o/n9bZWb4SWffTykhypz7bbQig= Subject key identifier: 04:69:1C:25:F1:44:34:7B:86:36:A8:B9:29:D2:9A:24:8A:4B:A4:6B Certificate issuer: /CN=6135c1f7b7140c872e7f3ff3462b4edc631d7674 Certificate serial: 019B7DCA65593845F44C956F1CF8D313A290 Authority key identifier: 61:35:C1:F7:B7:14:0C:87:2E:7F:3F:F3:46:2B:4E:DC:63:1D:76:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YTXB97cUDIcufz_zRitO3GMddnQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/433edf-aaf8-4669-877c-e3781d8fe74c/1/BGkcJfFENHuGNqi5KdKaJIpLpGs.roa Signing time: Fri 02 Jan 2026 08:19:34 +0000 ROA not before: Fri 02 Jan 2026 08:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52000 IP address blocks: 194.147.115.0/24 maxlen: 24 194.147.148.0/24 maxlen: 24 194.147.149.0/24 maxlen: 24 2a0f:4240::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/433edf-aaf8-4669-877c-e3781d8fe74c/1/YTXB97cUDIcufz_zRitO3GMddnQ.crl rsync://rpki.ripe.net/repository/DEFAULT/01/433edf-aaf8-4669-877c-e3781d8fe74c/1/YTXB97cUDIcufz_zRitO3GMddnQ.mft rsync://rpki.ripe.net/repository/DEFAULT/YTXB97cUDIcufz_zRitO3GMddnQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:65:59:38:45:f4:4c:95:6f:1c:f8:d3:13:a2:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6135c1f7b7140c872e7f3ff3462b4edc631d7674 Validity Not Before: Jan 2 08:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04691c25f144347b8636a8b929d29a248a4ba46b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8c:b9:ea:83:87:c4:f6:a7:b6:74:b6:f7:86: 96:8e:c2:62:18:5c:4a:eb:5a:99:f7:bd:71:a6:e7: 60:fb:27:f4:63:27:3a:e5:0c:0d:e2:60:c4:e5:42: 24:48:e5:37:95:75:a8:b0:62:49:76:14:eb:74:90: 94:dc:c9:35:97:66:ea:3a:37:fc:70:7c:73:a7:3f: c8:7f:1a:44:0f:19:3f:26:b3:47:75:26:9d:c8:fa: 70:53:0b:28:8b:0c:e5:21:74:d2:4e:58:7e:74:14: 5c:d4:36:23:23:03:f7:c2:70:00:5c:44:fd:c5:bc: c4:f4:66:be:c2:ef:ed:ec:f1:98:4b:fe:60:dd:5b: 37:d6:8e:47:29:21:66:69:41:c3:c6:64:54:c1:52: be:43:73:21:ed:d4:2b:e8:91:ef:d3:19:cd:0a:29: 6e:8b:c9:b3:c0:97:94:cb:42:2f:27:53:de:61:49: 23:0a:02:05:e3:7c:e4:e7:94:e1:00:87:c0:96:c9: 1f:4b:58:60:19:69:77:5f:5d:26:96:53:dd:bf:41: 19:c9:96:6d:03:97:c9:f5:63:46:b5:74:11:84:76: 9f:8a:fd:14:08:e9:24:fc:75:31:c9:b8:46:2d:fd: 56:16:a8:29:e1:90:9a:85:0e:86:11:1d:3e:98:50: 97:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:69:1C:25:F1:44:34:7B:86:36:A8:B9:29:D2:9A:24:8A:4B:A4:6B X509v3 Authority Key Identifier: keyid:61:35:C1:F7:B7:14:0C:87:2E:7F:3F:F3:46:2B:4E:DC:63:1D:76:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YTXB97cUDIcufz_zRitO3GMddnQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/433edf-aaf8-4669-877c-e3781d8fe74c/1/BGkcJfFENHuGNqi5KdKaJIpLpGs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/433edf-aaf8-4669-877c-e3781d8fe74c/1/YTXB97cUDIcufz_zRitO3GMddnQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.147.115.0/24 194.147.148.0/23 IPv6: 2a0f:4240::/29 Signature Algorithm: sha256WithRSAEncryption 9c:0c:ab:56:5c:3a:03:08:cc:79:5b:52:e4:ca:23:08:97:cd: df:99:ce:15:53:06:79:05:a9:66:c4:93:0e:73:86:60:b4:98: bc:40:6c:60:09:60:4e:26:67:95:4b:e8:a3:c3:8c:23:5e:dc: b0:22:11:00:8a:8f:96:51:a3:1e:cc:6e:cb:0e:ac:2e:ff:5a: 2c:54:dc:d7:cc:29:2b:a4:09:47:20:8b:e1:53:b3:5b:aa:ff: 38:02:27:f9:13:3e:7b:8d:d0:c2:0c:a2:7d:cb:ce:f0:1d:91: 4c:50:be:43:87:b3:d7:ec:b0:1c:f1:f3:9e:04:6a:e9:e8:9d: 82:43:71:bd:bf:a6:31:ed:5e:29:ba:00:65:a3:d8:94:ed:ee: 05:47:a8:8b:87:d1:ec:6a:6c:b2:74:a7:b1:80:3c:f9:8b:90: fb:a8:b4:d6:63:f8:fc:2c:75:43:4f:d1:32:f9:29:77:5f:2e: bf:35:ef:40:eb:5d:6e:80:b3:a7:c6:d7:ed:92:ff:97:73:28: c1:1d:24:cd:13:62:aa:a5:d7:e9:c1:d2:6b:d1:79:b4:dd:05: d6:92:35:27:a8:ba:8e:8b:f0:0a:7d:39:c5:c1:79:63:69:71: 03:0a:c2:4a:b7:ec:63:85:c9:ae:c3:40:f0:dd:48:fd:31:71: ed:d3:bf:75 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt9ymVZOEX0TJVvHPjTE6KQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMzVjMWY3YjcxNDBjODcyZTdmM2ZmMzQ2MmI0ZWRjNjMx ZDc2NzQwHhcNMjYwMTAyMDgxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDY5MWMyNWYxNDQzNDdiODYzNmE4YjkyOWQyOWEyNDhhNGJhNDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oy56oOHxPantnS294aWjsJiGFxK 61qZ971xpudg+yf0Yyc65QwN4mDE5UIkSOU3lXWosGJJdhTrdJCU3Mk1l2bqOjf8 cHxzpz/IfxpEDxk/JrNHdSadyPpwUwsoiwzlIXTSTlh+dBRc1DYjIwP3wnAAXET9 xbzE9Ga+wu/t7PGYS/5g3Vs31o5HKSFmaUHDxmRUwVK+Q3Mh7dQr6JHv0xnNCilu i8mzwJeUy0IvJ1PeYUkjCgIF43zk55ThAIfAlskfS1hgGWl3X10mllPdv0EZyZZt A5fJ9WNGtXQRhHafiv0UCOkk/HUxybhGLf1WFqgp4ZCahQ6GER0+mFCXfQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFARpHCXxRDR7hjaouSnSmiSKS6RrMB8GA1UdIwQY MBaAFGE1wfe3FAyHLn8/80YrTtxjHXZ0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVRYQjk3Y1VESWN1ZnpfelJpdE8zR01kZG5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS80MzNlZGYtYWFmOC00NjY5LTg3N2Mt ZTM3ODFkOGZlNzRjLzEvQkdrY0pmRkVOSHVHTnFpNUtkS2FKSXBMcEdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS80MzNlZGYtYWFmOC00NjY5LTg3N2MtZTM3ODFkOGZlNzRj LzEvWVRYQjk3Y1VESWN1ZnpfelJpdE8zR01kZG5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAwpNzAwQB wpOUMA0EAgACMAcDBQMqD0JAMA0GCSqGSIb3DQEBCwUAA4IBAQCcDKtWXDoDCMx5 W1LkyiMIl83fmc4VUwZ5BalmxJMOc4ZgtJi8QGxgCWBOJmeVS+ijw4wjXtywIhEA io+WUaMezG7LDqwu/1osVNzXzCkrpAlHIIvhU7Nbqv84Aif5Ez57jdDCDKJ9y87w HZFMUL5Dh7PX7LAc8fOeBGrp6J2CQ3G9v6Yx7V4pugBlo9iU7e4FR6iLh9Hsamyy dKexgDz5i5D7qLTWY/j8LHVDT9Ey+Sl3Xy6/Ne9A611ugLOnxtftkv+XcyjBHSTN E2KqpdfpwdJr0Xm03QXWkjUnqLqOi/AKfTnFwXljaXEDCsJKt+xjhcmuw0Dw3Uj9 MXHt0791 -----END CERTIFICATE-----Generated at Thu Jan 8 23:54:40 2026 by rpki-client