This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/BOCXQ8ofuINC7NWg9ark3CiIuh8.roa File: BOCXQ8ofuINC7NWg9ark3CiIuh8.roa (raw, json) Hash identifier: M5X292UcDUghDaOeeV9OqbMKITYHWT6z7gAF8PnyTPo= Subject key identifier: 04:E0:97:43:CA:1F:B8:83:42:EC:D5:A0:F5:AA:E4:DC:28:88:BA:1F Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82B32CB10D4603B03FA4F8C959BD5A Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/BOCXQ8ofuINC7NWg9ark3CiIuh8.roa Signing time: Fri 02 Jan 2026 16:20:30 +0000 ROA not before: Fri 02 Jan 2026 16:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13627 IP address blocks: 85.202.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:b3:2c:b1:0d:46:03:b0:3f:a4:f8:c9:59:bd:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04e09743ca1fb88342ecd5a0f5aae4dc2888ba1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7a:0e:27:86:f2:d6:33:6f:48:56:34:ba:1d: 9b:14:5a:c1:dc:6a:8f:84:8c:78:32:49:59:ea:5c: c9:e9:14:83:8f:1d:1f:0c:9f:9e:61:9d:12:dc:0a: 1c:c0:47:d0:d0:8b:0e:dd:68:87:cc:e5:73:72:26: 8d:ff:02:d4:dc:f0:70:d6:b6:dc:b7:a4:ff:25:36: 99:4e:b6:06:7d:0d:07:0f:fd:70:77:4e:15:2b:ea: 63:2a:4a:df:4a:89:2a:de:5a:cf:d9:84:8f:51:4f: d8:4a:c4:70:06:9c:46:49:a9:e9:37:71:ae:60:e1: a8:71:fc:2b:93:b5:00:8a:1e:ef:34:1a:5f:e4:a2: f0:77:a1:bf:dd:ad:4b:53:f5:35:85:9c:f1:b8:45: cd:e1:82:1f:4e:66:fb:13:70:fd:25:4a:a2:db:39: 6e:bf:d5:60:d2:bf:55:48:a3:2e:3d:72:11:17:cd: cf:0b:79:57:fb:85:80:24:9a:ec:1b:0e:9b:88:36: 18:70:7a:15:92:0d:62:e7:bd:c5:d4:c2:ec:ba:83: e8:f2:4a:87:6c:10:5e:89:29:8a:5a:8a:65:71:84: 49:4b:62:e7:2a:d9:5f:27:7a:69:39:99:31:ff:10: e7:66:33:a2:3d:af:92:68:c7:5a:2d:5a:a2:6b:4b: 0c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E0:97:43:CA:1F:B8:83:42:EC:D5:A0:F5:AA:E4:DC:28:88:BA:1F X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/BOCXQ8ofuINC7NWg9ark3CiIuh8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.202.160.0/24 Signature Algorithm: sha256WithRSAEncryption 45:03:e2:8c:e4:da:ad:e0:62:5f:de:e0:f1:74:df:fa:9c:24: 24:37:b4:bf:d1:08:a6:ed:76:a4:38:2c:d5:ea:25:5e:3e:a6: 7d:38:0f:9f:2d:87:78:40:11:0e:14:12:07:eb:89:1e:2e:26: 01:19:d5:93:3d:48:cf:01:cf:9b:66:1c:e2:34:84:21:66:d6: 76:0d:23:a5:dd:ae:2e:2e:92:9b:84:69:bb:9e:84:22:de:a7: c3:0a:95:81:49:40:ce:1f:74:04:a0:bf:0b:5f:1b:88:3b:88: 13:d3:04:83:51:9f:13:ee:fa:f3:1b:af:da:c9:5e:18:8a:36: 41:77:61:13:a3:27:45:89:f0:51:f5:0d:09:f8:e3:cb:c9:cd: 18:f5:9c:31:bd:c6:fe:dc:14:4b:0a:b2:0a:f3:63:c9:65:ce: 86:28:70:b3:17:90:c4:1c:97:e2:e3:45:fa:cf:65:e4:16:f6: 3d:4a:48:94:91:b9:26:4d:5d:39:ab:98:c2:7c:1e:27:f9:e7: 13:fa:8a:30:bf:ed:29:a5:62:5e:50:4e:5e:17:5f:7d:be:33: 60:04:65:e1:4f:10:1e:1c:25:12:fa:f0:d5:02:34:bb:29:2c: 11:07:d0:48:b1:1d:33:1f:a2:45:7e:64:34:30:b8:13:98:20: d3:92:58:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/grMssQ1GA7A/pPjJWb1aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGUwOTc0M2NhMWZiODgzNDJlY2Q1YTBmNWFhZTRkYzI4ODhiYTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHoOJ4by1jNvSFY0uh2bFFrB3GqP hIx4MklZ6lzJ6RSDjx0fDJ+eYZ0S3AocwEfQ0IsO3WiHzOVzciaN/wLU3PBw1rbc t6T/JTaZTrYGfQ0HD/1wd04VK+pjKkrfSokq3lrP2YSPUU/YSsRwBpxGSanpN3Gu YOGocfwrk7UAih7vNBpf5KLwd6G/3a1LU/U1hZzxuEXN4YIfTmb7E3D9JUqi2zlu v9Vg0r9VSKMuPXIRF83PC3lX+4WAJJrsGw6biDYYcHoVkg1i573F1MLsuoPo8kqH bBBeiSmKWoplcYRJS2LnKtlfJ3ppOZkx/xDnZjOiPa+SaMdaLVqia0sMLQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFATgl0PKH7iDQuzVoPWq5NwoiLofMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvQk9DWFE4b2Z1SU5DN05XZzlhcmszQ2lJdWg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVcqgMA0G CSqGSIb3DQEBCwUAA4IBAQBFA+KM5Nqt4GJf3uDxdN/6nCQkN7S/0Qim7XakOCzV 6iVePqZ9OA+fLYd4QBEOFBIH64keLiYBGdWTPUjPAc+bZhziNIQhZtZ2DSOl3a4u LpKbhGm7noQi3qfDCpWBSUDOH3QEoL8LXxuIO4gT0wSDUZ8T7vrzG6/ayV4YijZB d2EToydFifBR9Q0J+OPLyc0Y9Zwxvcb+3BRLCrIK82PJZc6GKHCzF5DEHJfi40X6 z2XkFvY9SkiUkbkmTV05q5jCfB4n+ecT+oowv+0ppWJeUE5eF199vjNgBGXhTxAe HCUS+vDVAjS7KSwRB9BIsR0zH6JFfmQ0MLgTmCDTklgz -----END CERTIFICATE-----Generated at Tue Jan 20 15:19:05 2026 by rpki-client