This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/bf-5xPJXOlvnjj9XuGg_CHHQDYo.roa File: bf-5xPJXOlvnjj9XuGg_CHHQDYo.roa (raw, json) Hash identifier: wuuRLT5nN01skuq4vwISFAkG7AZQnuyPtTo01uD22ls= Subject key identifier: 6D:FF:B9:C4:F2:57:3A:5B:E7:8E:3F:57:B8:68:3F:08:71:D0:0D:8A Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d Certificate serial: 019B7A5B1DBFFFE116BF558877678795F370 Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/bf-5xPJXOlvnjj9XuGg_CHHQDYo.roa Signing time: Thu 01 Jan 2026 16:19:10 +0000 ROA not before: Thu 01 Jan 2026 16:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33908 IP address blocks: 94.125.8.0/24 maxlen: 24 185.42.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.mft rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:1d:bf:ff:e1:16:bf:55:88:77:67:87:95:f3:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d Validity Not Before: Jan 1 16:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6dffb9c4f2573a5be78e3f57b8683f0871d00d8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1b:d4:9f:28:ff:85:b5:40:f4:11:bf:98:9f: ab:f3:27:c2:52:cd:94:1f:a8:2c:b9:c5:b4:14:5f: 4e:1f:15:aa:26:40:99:10:77:b5:9a:5d:5c:cb:41: 60:4a:56:05:ff:18:58:e4:9c:2d:e8:35:f4:8c:5b: 98:7c:d9:fb:24:a6:3d:e1:be:bc:9a:5d:e0:93:a0: 62:97:71:65:77:5e:c2:cc:69:44:70:dd:a6:3a:02: 05:6a:e8:3f:d4:38:9b:d9:72:0f:44:11:e4:30:ef: 48:85:c0:a6:35:f1:47:71:c9:4d:e1:4c:2d:be:a6: 61:00:bb:c5:21:c0:93:46:bd:62:75:49:55:e3:f2: 34:f5:b1:04:91:52:0f:92:2f:15:f2:d4:1e:e8:39: 7a:d3:7d:4e:e1:04:4c:88:ea:65:1c:dd:fb:d6:32: 29:87:27:b0:0b:c3:a3:52:46:d7:51:40:c9:58:f3: cd:a7:28:25:84:5a:8a:8a:34:1c:c1:72:74:fc:78: 81:eb:10:2c:0a:ce:6e:38:ea:d0:ac:da:2e:8e:d2: a3:fa:ca:20:3e:03:04:0d:69:cb:de:f1:cd:01:34: c8:73:a6:88:61:a4:f6:bb:81:b1:34:fe:43:ec:a0: f3:b7:20:f8:3f:86:48:2d:d3:a4:d8:4a:b8:9e:50: 98:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:FF:B9:C4:F2:57:3A:5B:E7:8E:3F:57:B8:68:3F:08:71:D0:0D:8A X509v3 Authority Key Identifier: keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/bf-5xPJXOlvnjj9XuGg_CHHQDYo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.125.8.0/24 185.42.62.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:17:b2:37:37:a4:ad:c2:c0:cd:4c:ef:b0:93:78:a6:59:74: 3d:d4:ad:cf:58:b6:33:dc:55:27:90:72:f8:2b:38:91:f2:51: f8:1b:74:a2:6a:7b:29:d6:11:dd:f7:c6:9d:4d:05:d6:65:c2: 8b:e6:6d:e1:b5:72:7b:d0:89:5b:9b:db:3d:f9:61:6f:fb:15: 98:ea:f3:57:eb:21:55:d4:f9:10:13:d6:0d:04:88:2c:ab:47: 29:13:51:f8:67:3b:1b:ee:62:00:02:49:ff:92:0d:58:d0:97: 9e:1e:39:ee:8b:6e:08:d3:08:f8:ca:ca:cc:3d:bd:f6:36:48: 5c:18:df:8e:4f:ae:28:7f:a0:1b:9d:dd:72:3d:1c:af:2d:80: 70:7d:d5:39:26:39:61:f6:97:e6:90:b7:45:3b:6d:7a:dd:99: ab:39:88:87:60:88:b3:e6:41:f2:9f:47:ff:75:fe:f3:02:d0: 1f:bc:2b:5b:d0:c1:7f:23:9d:ff:5b:e2:6c:77:72:18:38:72: ab:33:5d:4a:d2:8c:e8:bb:a5:12:b2:96:e2:f6:7e:c0:eb:86: 75:87:85:62:4d:7e:0c:8d:cb:cc:af:44:a7:9d:3f:0c:1c:4a: da:7f:55:43:2d:1a:1b:2a:e9:b6:9e:44:31:ba:7a:ae:0f:bd: 0a:8f:8b:29 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6Wx2//+EWv1WId2eHlfNwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlYmE0OGM3ZTJjOWUwNWVkYTU0NmQ4OTkxNDZiODlmNzk5 ZGY4NWQwHhcNMjYwMTAxMTYxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGZmYjljNGYyNTczYTViZTc4ZTNmNTdiODY4M2YwODcxZDAwZDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxvUnyj/hbVA9BG/mJ+r8yfCUs2U H6gsucW0FF9OHxWqJkCZEHe1ml1cy0FgSlYF/xhY5Jwt6DX0jFuYfNn7JKY94b68 ml3gk6Bil3Fld17CzGlEcN2mOgIFaug/1Dib2XIPRBHkMO9IhcCmNfFHcclN4Uwt vqZhALvFIcCTRr1idUlV4/I09bEEkVIPki8V8tQe6Dl6031O4QRMiOplHN371jIp hyewC8OjUkbXUUDJWPPNpyglhFqKijQcwXJ0/HiB6xAsCs5uOOrQrNoujtKj+sog PgMEDWnL3vHNATTIc6aIYaT2u4GxNP5D7KDztyD4P4ZILdOk2Eq4nlCYZQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFG3/ucTyVzpb544/V7hoPwhx0A2KMB8GA1UdIwQY MBaAFL66SMfiyeBe2lRtiZFGuJ95nfhdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnJwSXgtTEo0RjdhVkcySmtVYTRuM21kLUYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC83Zjg4MjEtMTU2Ni00M2Y0LWFiMjYt M2Q1MjIxODFhMmM0LzEvYmYtNXhQSlhPbHZuamo5WHVHZ19DSEhRRFlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC83Zjg4MjEtMTU2Ni00M2Y0LWFiMjYtM2Q1MjIxODFhMmM0 LzEvdnJwSXgtTEo0RjdhVkcySmtVYTRuM21kLUYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXn0IAwQA uSo+MA0GCSqGSIb3DQEBCwUAA4IBAQBtF7I3N6StwsDNTO+wk3imWXQ91K3PWLYz 3FUnkHL4KziR8lH4G3Siansp1hHd98adTQXWZcKL5m3htXJ70Ilbm9s9+WFv+xWY 6vNX6yFV1PkQE9YNBIgsq0cpE1H4Zzsb7mIAAkn/kg1Y0JeeHjnui24I0wj4ysrM Pb32NkhcGN+OT64of6Abnd1yPRyvLYBwfdU5Jjlh9pfmkLdFO2163ZmrOYiHYIiz 5kHyn0f/df7zAtAfvCtb0MF/I53/W+Jsd3IYOHKrM11K0ozou6USspbi9n7A64Z1 h4ViTX4MjcvMr0SnnT8MHEraf1VDLRobKum2nkQxunquD70Kj4sp -----END CERTIFICATE-----Generated at Mon Jan 26 23:24:39 2026 by rpki-client