This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/BGFPLk7ZldT6kSj2inC4qix-xtI.roa File: BGFPLk7ZldT6kSj2inC4qix-xtI.roa (raw, json) Hash identifier: Noz95cmWs+k+wVGfQHBTa00dItJf0QaQtrsl4dLGxf4= Subject key identifier: 04:61:4F:2E:4E:D9:95:D4:FA:91:28:F6:8A:70:B8:AA:2C:7E:C6:D2 Certificate issuer: /CN=e94978779e930e01fbfe7e0c5fcb41611129d4e8 Certificate serial: 019B7B35D9D530D06AC10C6F37499FCC2FDC Authority key identifier: E9:49:78:77:9E:93:0E:01:FB:FE:7E:0C:5F:CB:41:61:11:29:D4:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Ul4d56TDgH7_n4MX8tBYREp1Og.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/BGFPLk7ZldT6kSj2inC4qix-xtI.roa Signing time: Thu 01 Jan 2026 20:18:05 +0000 ROA not before: Thu 01 Jan 2026 20:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44410 IP address blocks: 78.111.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/6Ul4d56TDgH7_n4MX8tBYREp1Og.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/6Ul4d56TDgH7_n4MX8tBYREp1Og.mft rsync://rpki.ripe.net/repository/DEFAULT/6Ul4d56TDgH7_n4MX8tBYREp1Og.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:d9:d5:30:d0:6a:c1:0c:6f:37:49:9f:cc:2f:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e94978779e930e01fbfe7e0c5fcb41611129d4e8 Validity Not Before: Jan 1 20:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04614f2e4ed995d4fa9128f68a70b8aa2c7ec6d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dc:90:ca:17:eb:cc:13:c1:ad:f7:ec:77:c0: 6d:9b:48:05:4c:e1:4d:43:84:66:9d:14:88:81:ed: 8b:53:45:81:3d:8f:65:09:be:25:c1:45:00:da:2d: a3:7d:b4:e3:65:fd:83:34:60:c1:1b:ab:36:db:61: 59:e9:dd:2a:6e:6f:70:3f:3f:08:01:3a:93:bf:dc: 33:c1:2e:44:d7:ab:de:d6:c1:f5:d2:88:7e:b0:c9: a2:a5:51:c3:f4:3d:7b:e2:78:14:39:8c:4a:73:e4: 95:4e:be:d6:c2:13:5b:70:c9:84:05:67:4d:8a:37: 8e:c6:44:65:1d:17:07:78:5d:af:3c:d0:f4:63:d0: e8:bf:e3:88:ef:af:24:7b:c2:ad:7f:c4:a3:4d:7f: 32:fb:3f:3a:19:3c:b0:f7:0b:13:0d:1b:53:70:7d: 16:3c:4d:55:7e:8f:a8:dc:a8:ea:c2:a7:49:8e:dd: 6c:70:e1:c1:83:8e:3e:a9:24:51:24:da:4d:b0:ba: c1:1d:c8:ff:f7:1a:20:d2:23:57:b7:3d:87:86:7a: f3:d5:9b:48:10:e1:7b:d9:fd:4d:bd:3e:78:09:8f: 9b:9d:cf:5e:58:c6:74:0d:b9:f5:1d:4b:17:cf:5e: 89:69:52:ee:ff:9e:8a:bb:6b:e8:6f:3a:39:7c:f2: d2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:61:4F:2E:4E:D9:95:D4:FA:91:28:F6:8A:70:B8:AA:2C:7E:C6:D2 X509v3 Authority Key Identifier: keyid:E9:49:78:77:9E:93:0E:01:FB:FE:7E:0C:5F:CB:41:61:11:29:D4:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Ul4d56TDgH7_n4MX8tBYREp1Og.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/BGFPLk7ZldT6kSj2inC4qix-xtI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/6Ul4d56TDgH7_n4MX8tBYREp1Og.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.111.7.0/24 Signature Algorithm: sha256WithRSAEncryption 68:f3:d0:6c:4a:3c:2f:ee:e6:ac:8c:47:e7:b8:bf:6d:3f:44: b0:9f:0b:0d:2f:54:9c:30:96:5c:2e:99:78:fa:55:55:d3:9e: 8e:7a:4e:19:e0:cc:42:14:ca:c2:da:94:e9:6f:72:01:5f:70: 37:20:4b:26:64:47:e8:d6:be:3f:a6:40:e7:fa:d8:64:bc:4f: 15:73:4e:12:e4:c9:cb:61:28:59:02:f6:08:89:31:1a:4d:fc: 9c:1b:6a:2d:c9:49:c1:e5:4e:83:7c:c3:f2:e1:4e:77:24:94: bd:8d:fb:a6:33:45:44:cb:f9:b3:09:c2:f8:7a:c1:c0:58:ad: 68:54:8f:16:2f:59:19:a2:a8:19:49:bd:be:2a:03:03:4d:0b: 66:fe:b5:11:ff:85:7e:36:43:66:5b:36:b1:12:98:18:fb:d0: b3:0a:93:28:57:92:3d:fc:51:12:e1:3c:7d:1d:a8:23:8a:52: 7c:06:b0:c4:b1:ce:26:84:8c:33:67:5d:c6:99:f0:9b:8b:72: 50:ef:a7:14:8d:0c:e7:8b:bb:c8:9d:20:d6:cc:a1:0c:9f:e5: 89:98:b2:20:6b:16:53:db:65:8c:61:0c:6a:86:39:77:bb:e7: d5:ce:3c:d6:4f:ec:59:a2:a7:d4:77:ee:21:b1:69:db:eb:0d: d6:78:c4:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NdnVMNBqwQxvN0mfzC/cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5NDk3ODc3OWU5MzBlMDFmYmZlN2UwYzVmY2I0MTYxMTEy OWQ0ZTgwHhcNMjYwMTAxMjAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDYxNGYyZTRlZDk5NWQ0ZmE5MTI4ZjY4YTcwYjhhYTJjN2VjNmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9yQyhfrzBPBrffsd8Btm0gFTOFN Q4RmnRSIge2LU0WBPY9lCb4lwUUA2i2jfbTjZf2DNGDBG6s222FZ6d0qbm9wPz8I ATqTv9wzwS5E16ve1sH10oh+sMmipVHD9D174ngUOYxKc+SVTr7WwhNbcMmEBWdN ijeOxkRlHRcHeF2vPND0Y9Dov+OI768ke8Ktf8SjTX8y+z86GTyw9wsTDRtTcH0W PE1Vfo+o3KjqwqdJjt1scOHBg44+qSRRJNpNsLrBHcj/9xog0iNXtz2Hhnrz1ZtI EOF72f1NvT54CY+bnc9eWMZ0Dbn1HUsXz16JaVLu/56Ku2vobzo5fPLSjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFARhTy5O2ZXU+pEo9opwuKosfsbSMB8GA1UdIwQY MBaAFOlJeHeekw4B+/5+DF/LQWERKdToMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlVsNGQ1NlREZ0g3X240TVg4dEJZUkVwMU9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83OGRiMjktZTQ2ZC00MWY0LTg3Yzct OTVjNDJlNGE4NGMwLzEvQkdGUExrN1psZFQ2a1NqMmluQzRxaXgteHRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83OGRiMjktZTQ2ZC00MWY0LTg3YzctOTVjNDJlNGE4NGMw LzEvNlVsNGQ1NlREZ0g3X240TVg4dEJZUkVwMU9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATm8HMA0G CSqGSIb3DQEBCwUAA4IBAQBo89BsSjwv7uasjEfnuL9tP0SwnwsNL1ScMJZcLpl4 +lVV056Oek4Z4MxCFMrC2pTpb3IBX3A3IEsmZEfo1r4/pkDn+thkvE8Vc04S5MnL YShZAvYIiTEaTfycG2otyUnB5U6DfMPy4U53JJS9jfumM0VEy/mzCcL4esHAWK1o VI8WL1kZoqgZSb2+KgMDTQtm/rUR/4V+NkNmWzaxEpgY+9CzCpMoV5I9/FES4Tx9 HagjilJ8BrDEsc4mhIwzZ13GmfCbi3JQ76cUjQzni7vInSDWzKEMn+WJmLIgaxZT 22WMYQxqhjl3u+fVzjzWT+xZoqfUd+4hsWnb6w3WeMTO -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:50 2026 by rpki-client