This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/cfdd72-ac43-47f2-a88d-515a0ef686ab/1/BoaIQSYbboRffe69ZqloN_D0H0Y.roa File: BoaIQSYbboRffe69ZqloN_D0H0Y.roa (raw, json) Hash identifier: i3KDPa2RxyWwYzP/G5P21Ic9687HXXfMyZ15RYSZ6ek= Subject key identifier: 06:86:88:41:26:1B:6E:84:5F:7D:EE:BD:66:A9:68:37:F0:F4:1F:46 Certificate issuer: /CN=c1fb492f0a188f0014278e0df6bbb029cebadbaf Certificate serial: 019B78A2A5CD5F7335465FB617E8446EAF41 Authority key identifier: C1:FB:49:2F:0A:18:8F:00:14:27:8E:0D:F6:BB:B0:29:CE:BA:DB:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wftJLwoYjwAUJ44N9ruwKc66268.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/cfdd72-ac43-47f2-a88d-515a0ef686ab/1/BoaIQSYbboRffe69ZqloN_D0H0Y.roa Signing time: Thu 01 Jan 2026 08:18:03 +0000 ROA not before: Thu 01 Jan 2026 08:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216265 IP address blocks: 91.239.55.0/24 maxlen: 24 2001:678:1104::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/cfdd72-ac43-47f2-a88d-515a0ef686ab/1/wftJLwoYjwAUJ44N9ruwKc66268.crl rsync://rpki.ripe.net/repository/DEFAULT/48/cfdd72-ac43-47f2-a88d-515a0ef686ab/1/wftJLwoYjwAUJ44N9ruwKc66268.mft rsync://rpki.ripe.net/repository/DEFAULT/wftJLwoYjwAUJ44N9ruwKc66268.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:a5:cd:5f:73:35:46:5f:b6:17:e8:44:6e:af:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c1fb492f0a188f0014278e0df6bbb029cebadbaf Validity Not Before: Jan 1 08:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06868841261b6e845f7deebd66a96837f0f41f46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ad:ee:ae:1a:39:16:e1:0e:ff:41:30:5d:b9: be:21:bd:b9:b0:dc:2d:1b:b6:47:7c:0f:d6:29:89: 30:10:0a:d2:b2:22:ae:41:02:c7:4d:50:5c:f7:ba: c1:7a:69:43:31:8d:c2:62:42:6e:2d:98:92:16:73: 9a:8f:1e:8f:12:92:e4:d2:6e:f4:da:ac:b8:1e:6f: f7:6f:c5:5e:f8:54:fa:a9:ad:a3:69:cf:83:07:01: dc:02:60:75:6a:91:fb:f0:7c:03:df:19:25:61:3e: 06:c3:70:2a:02:32:85:f4:cb:8b:9b:76:7a:57:c6: 10:6d:f1:b2:1c:c0:06:5c:f3:55:9f:9b:5c:f9:4b: 0d:e2:08:cf:e1:66:59:ad:ca:26:b4:c3:6d:31:79: e6:ab:74:20:2c:a8:f4:fa:d3:2a:89:de:e5:51:93: 80:d7:f6:a9:51:d7:6c:a5:8f:c8:5a:25:18:e2:fc: c1:e3:06:ce:1c:2b:a3:f6:70:6d:7f:5c:7a:14:b0: 4d:91:85:99:6a:ed:fa:20:98:3e:67:4f:b9:4b:70: 90:7e:7d:8c:4d:52:c6:27:c1:e6:eb:fc:c6:9e:b6: f8:e6:ac:7b:ba:cf:11:db:7a:83:77:98:78:dc:e9: 71:92:36:2c:d6:12:22:ee:36:77:c6:1b:50:ac:77: 97:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:86:88:41:26:1B:6E:84:5F:7D:EE:BD:66:A9:68:37:F0:F4:1F:46 X509v3 Authority Key Identifier: keyid:C1:FB:49:2F:0A:18:8F:00:14:27:8E:0D:F6:BB:B0:29:CE:BA:DB:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wftJLwoYjwAUJ44N9ruwKc66268.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/cfdd72-ac43-47f2-a88d-515a0ef686ab/1/BoaIQSYbboRffe69ZqloN_D0H0Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/cfdd72-ac43-47f2-a88d-515a0ef686ab/1/wftJLwoYjwAUJ44N9ruwKc66268.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.55.0/24 IPv6: 2001:678:1104::/48 Signature Algorithm: sha256WithRSAEncryption 86:e0:5a:9b:cf:be:9f:ca:41:0c:2b:79:33:49:56:77:dc:79: af:8a:f7:e8:6d:c3:cf:3d:86:89:b7:4b:d3:e1:0e:fd:94:ea: c1:fe:1a:f1:e8:e0:b0:71:a6:ba:13:92:82:0e:4a:7f:8d:0c: e4:e7:7f:bb:91:77:18:00:55:b6:0c:a6:fe:81:c9:77:0c:7a: a3:0f:3a:37:dc:0f:62:b3:6e:f8:92:38:35:f4:7d:86:23:fd: 2b:5e:23:01:71:8d:ab:61:65:db:89:57:7c:84:54:3b:d8:16: 61:0a:0d:5b:66:44:d8:21:df:85:aa:b5:06:f9:1b:a8:41:39: 9d:f8:e5:dd:d8:d3:5e:2b:a5:b1:f1:99:26:2d:d7:b5:cf:2b: f9:5a:da:00:c1:2b:79:f8:60:f8:0b:a0:ab:b0:e8:c5:25:57: a7:10:6d:bf:e3:0f:df:d2:9b:57:9d:b3:18:82:51:fa:c3:40: 31:f6:52:3f:c3:c0:10:65:aa:6b:35:01:f6:7e:de:92:99:d1: 1f:60:eb:dd:f5:73:c0:01:c4:d1:1b:a6:2a:e2:2d:13:d1:5b: dd:66:45:d9:db:c7:f9:7f:42:09:b3:8f:b0:43:4d:ba:d9:96: 16:35:f2:c8:42:8b:31:c6:da:a7:76:40:8f:0a:09:ce:ec:46: 61:57:e8:c9 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4oqXNX3M1Rl+2F+hEbq9BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxZmI0OTJmMGExODhmMDAxNDI3OGUwZGY2YmJiMDI5Y2Vi YWRiYWYwHhcNMjYwMTAxMDgxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjg2ODg0MTI2MWI2ZTg0NWY3ZGVlYmQ2NmE5NjgzN2YwZjQxZjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA263urho5FuEO/0EwXbm+Ib25sNwt G7ZHfA/WKYkwEArSsiKuQQLHTVBc97rBemlDMY3CYkJuLZiSFnOajx6PEpLk0m70 2qy4Hm/3b8Ve+FT6qa2jac+DBwHcAmB1apH78HwD3xklYT4Gw3AqAjKF9MuLm3Z6 V8YQbfGyHMAGXPNVn5tc+UsN4gjP4WZZrcomtMNtMXnmq3QgLKj0+tMqid7lUZOA 1/apUddspY/IWiUY4vzB4wbOHCuj9nBtf1x6FLBNkYWZau36IJg+Z0+5S3CQfn2M TVLGJ8Hm6/zGnrb45qx7us8R23qDd5h43OlxkjYs1hIi7jZ3xhtQrHeXRwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFAaGiEEmG26EX33uvWapaDfw9B9GMB8GA1UdIwQY MBaAFMH7SS8KGI8AFCeODfa7sCnOutuvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2Z0Skx3b1lqd0FVSjQ0TjlydXdLYzY2MjY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9jZmRkNzItYWM0My00N2YyLWE4OGQt NTE1YTBlZjY4NmFiLzEvQm9hSVFTWWJib1JmZmU2OVpxbG9OX0QwSDBZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9jZmRkNzItYWM0My00N2YyLWE4OGQtNTE1YTBlZjY4NmFi LzEvd2Z0Skx3b1lqd0FVSjQ0TjlydXdLYzY2MjY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW+83MA8E AgACMAkDBwAgAQZ4EQQwDQYJKoZIhvcNAQELBQADggEBAIbgWpvPvp/KQQwreTNJ Vnfcea+K9+htw889hom3S9PhDv2U6sH+GvHo4LBxproTkoIOSn+NDOTnf7uRdxgA VbYMpv6ByXcMeqMPOjfcD2KzbviSODX0fYYj/SteIwFxjathZduJV3yEVDvYFmEK DVtmRNgh34WqtQb5G6hBOZ345d3Y014rpbHxmSYt17XPK/la2gDBK3n4YPgLoKuw 6MUlV6cQbb/jD9/Sm1edsxiCUfrDQDH2Uj/DwBBlqms1AfZ+3pKZ0R9g6931c8AB xNEbpiriLRPRW91mRdnbx/l/Qgmzj7BDTbrZlhY18shCizHG2qd2QI8KCc7sRmFX 6Mk= -----END CERTIFICATE-----Generated at Mon Jan 12 16:39:22 2026 by rpki-client