This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BiGsSCFxQe4ehMcSyVDXnkaklGA.roa File: BiGsSCFxQe4ehMcSyVDXnkaklGA.roa (raw, json) Hash identifier: GNtKHtzt0tLkXVLLJz2uzJBircMJXc9AVH5mFysv+No= Subject key identifier: 06:21:AC:48:21:71:41:EE:1E:84:C7:12:C9:50:D7:9E:46:A4:94:60 Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d Certificate serial: 019B7C1307FAB0FCF60D6954A47B062022DA Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BiGsSCFxQe4ehMcSyVDXnkaklGA.roa Signing time: Fri 02 Jan 2026 00:19:40 +0000 ROA not before: Fri 02 Jan 2026 00:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209494 IP address blocks: 195.65.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:07:fa:b0:fc:f6:0d:69:54:a4:7b:06:20:22:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d Validity Not Before: Jan 2 00:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0621ac48217141ee1e84c712c950d79e46a49460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:25:cc:46:c7:aa:02:4e:1f:83:fa:b8:90:01: 06:0d:6d:a7:46:04:c1:11:54:30:24:b1:1f:18:2e: 2f:25:31:b0:84:1a:e0:b0:12:f0:c8:68:5c:30:85: 1c:5d:41:e6:fa:cd:ea:04:f5:3c:d6:d5:31:20:2e: 23:db:56:fd:7b:c5:90:c4:4f:33:4b:58:4a:dd:05: c3:ad:4f:7e:09:6e:05:78:f1:d4:f3:74:49:17:aa: c7:2f:91:74:f1:5b:cb:52:14:b9:cd:b3:b4:c3:b4: b2:40:4a:03:86:2d:42:be:bc:b8:57:9e:f4:d3:7f: 9c:a0:4b:20:fe:0d:71:14:18:da:d2:c6:e0:e0:f8: c3:f7:2a:84:ad:d9:e4:2c:a5:fe:cc:bb:4e:ef:7d: fb:6d:83:44:32:29:1a:0b:0e:5c:eb:08:dc:dc:64: 2b:32:45:bb:d6:a9:c4:43:51:c8:f2:03:95:8a:2d: d1:ea:82:80:5b:20:4b:fb:fc:c2:e6:79:93:24:83: ff:74:2e:0a:cf:99:72:31:7c:0d:7a:0e:7a:d4:77: bd:dd:10:a0:67:c6:45:90:02:dc:27:23:c5:9d:fd: 85:ea:37:0a:c9:ea:74:19:db:19:ef:38:7f:38:16: ec:c2:a1:b0:c4:14:7c:d1:3c:db:cf:f9:fe:4d:39: 8a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:21:AC:48:21:71:41:EE:1E:84:C7:12:C9:50:D7:9E:46:A4:94:60 X509v3 Authority Key Identifier: keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BiGsSCFxQe4ehMcSyVDXnkaklGA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.65.43.0/24 Signature Algorithm: sha256WithRSAEncryption 47:73:84:3b:d6:05:fe:e7:85:bd:e5:b6:a2:1f:8b:52:cf:ab: 52:b6:f1:21:4a:b9:63:21:07:ae:29:4e:50:ff:7f:c5:51:08: f1:50:22:10:74:ef:ba:d5:b4:2f:93:f3:11:08:46:ce:b9:ff: b8:cd:09:a3:b5:55:17:2f:0c:f5:97:76:13:4d:30:71:4c:c2: d1:86:d8:c5:3a:aa:0a:83:7c:56:7b:84:01:32:d2:d7:97:4f: 85:c2:92:38:2d:de:86:e4:fa:aa:a2:15:b5:2c:c6:6d:77:28: 49:42:b3:63:7e:e8:f5:ed:aa:0d:e3:85:c6:70:d6:a5:55:4f: 5e:a4:b0:dc:48:28:6b:fd:ed:3d:96:05:36:28:72:d6:71:d9: 57:73:e5:f0:a6:27:f6:9f:65:68:cd:f9:7f:a8:d4:bc:ea:6b: f5:34:d4:3f:09:36:9d:70:57:ed:b3:5c:59:87:0a:da:4b:ba: 5c:d4:28:e1:c1:af:2e:3d:51:00:ec:03:22:db:db:22:62:75: 33:e7:d8:e8:ee:54:d9:61:b8:37:a8:69:9f:c7:67:7a:ea:2b: 67:8a:b6:3e:c9:c5:d0:17:bc:d2:fc:9d:c2:52:19:c5:96:ae: c9:14:cd:43:ba:e8:b8:a7:81:66:b1:ac:89:09:90:a5:59:2a: 9f:51:a9:83 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ewf6sPz2DWlUpHsGICLaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy MDRjOGQwHhcNMjYwMTAyMDAxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjIxYWM0ODIxNzE0MWVlMWU4NGM3MTJjOTUwZDc5ZTQ2YTQ5NDYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9yXMRseqAk4fg/q4kAEGDW2nRgTB EVQwJLEfGC4vJTGwhBrgsBLwyGhcMIUcXUHm+s3qBPU81tUxIC4j21b9e8WQxE8z S1hK3QXDrU9+CW4FePHU83RJF6rHL5F08VvLUhS5zbO0w7SyQEoDhi1Cvry4V570 03+coEsg/g1xFBja0sbg4PjD9yqErdnkLKX+zLtO7337bYNEMikaCw5c6wjc3GQr MkW71qnEQ1HI8gOVii3R6oKAWyBL+/zC5nmTJIP/dC4Kz5lyMXwNeg561He93RCg Z8ZFkALcJyPFnf2F6jcKyep0GdsZ7zh/OBbswqGwxBR80Tzbz/n+TTmKXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAYhrEghcUHuHoTHEslQ155GpJRgMB8GA1UdIwQY MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt YmQxOTI2NzZjOWJiLzEvQmlHc1NDRnhRZTRlaE1jU3lWRFhua2FrbEdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0ErMA0G CSqGSIb3DQEBCwUAA4IBAQBHc4Q71gX+54W95baiH4tSz6tStvEhSrljIQeuKU5Q /3/FUQjxUCIQdO+61bQvk/MRCEbOuf+4zQmjtVUXLwz1l3YTTTBxTMLRhtjFOqoK g3xWe4QBMtLXl0+FwpI4Ld6G5PqqohW1LMZtdyhJQrNjfuj17aoN44XGcNalVU9e pLDcSChr/e09lgU2KHLWcdlXc+Xwpif2n2Vozfl/qNS86mv1NNQ/CTadcFfts1xZ hwraS7pc1Cjhwa8uPVEA7AMi29siYnUz59jo7lTZYbg3qGmfx2d66itnirY+ycXQ F7zS/J3CUhnFlq7JFM1Duui4p4FmsayJCZClWSqfUamD -----END CERTIFICATE-----Generated at Mon Jan 26 17:44:24 2026 by rpki-client