This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/BqYGoMadTRg3PGzK7Xh_am0n1Go.roa File: BqYGoMadTRg3PGzK7Xh_am0n1Go.roa (raw, json) Hash identifier: scY6lS1Giu5fZ5nMiXdTZLdzDy0AADhVUX6qd+QhFlc= Subject key identifier: 06:A6:06:A0:C6:9D:4D:18:37:3C:6C:CA:ED:78:7F:6A:6D:27:D4:6A Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019A796C63B15B3F9B56D078E54245F3E5E9 Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/BqYGoMadTRg3PGzK7Xh_am0n1Go.roa Signing time: Wed 12 Nov 2025 18:55:37 +0000 ROA not before: Wed 12 Nov 2025 18:55:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 205220 IP address blocks: 88.214.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:79:6c:63:b1:5b:3f:9b:56:d0:78:e5:42:45:f3:e5:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Nov 12 18:55:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=06a606a0c69d4d18373c6ccaed787f6a6d27d46a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f9:f3:39:9c:50:e9:a3:b5:1b:7f:3d:e9:09: 5e:86:81:48:70:b0:2e:58:fb:a3:0b:69:35:bf:e4: 84:07:d9:81:18:ec:b0:15:49:17:70:a4:87:bf:ea: 91:b1:b4:f9:3b:ec:a8:cd:d3:14:ea:f5:86:06:86: 7b:f3:32:a2:a2:19:91:68:4b:ce:84:00:68:99:bc: 1f:f2:ff:03:7c:7e:b4:2e:bd:fd:1d:5e:61:cf:2c: a5:5c:84:6a:4f:6e:50:11:ed:73:29:58:90:2e:bf: a7:2d:2d:7f:40:50:f0:bc:68:b8:dd:a5:3c:0c:0f: 7d:6f:17:23:c7:5c:54:29:6f:0d:4e:6e:a2:c0:91: a9:f5:91:4e:1a:ed:6a:1d:39:a4:34:ce:57:15:0d: 76:55:2b:55:4d:e9:d9:2b:3d:3c:8d:1d:2f:4a:5e: 41:0e:73:dc:2f:ae:79:53:be:6a:87:32:b1:fc:8b: dc:b1:8e:2e:6e:59:21:54:dc:16:6a:03:2f:ec:75: 58:4f:15:38:e0:67:1c:d8:65:6d:a5:dd:ac:91:e8: 25:2e:0e:aa:a8:91:87:8b:b6:c0:60:60:0c:5c:3d: f3:15:68:a2:f4:38:12:df:3c:da:40:33:7a:b0:c2: d7:1d:92:7f:e1:97:77:30:28:fe:c2:90:44:04:9b: 55:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A6:06:A0:C6:9D:4D:18:37:3C:6C:CA:ED:78:7F:6A:6D:27:D4:6A X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/BqYGoMadTRg3PGzK7Xh_am0n1Go.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.214.52.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:54:f8:bc:7e:8b:07:82:11:43:6b:fd:74:d0:0a:5c:38:3e: c1:ef:13:bd:7f:9c:38:d3:95:9e:dd:04:11:07:c6:45:d3:a6: 1e:fd:66:e2:a0:48:3d:d7:c1:bb:1a:f0:23:bc:9b:1f:ef:1b: 31:91:2e:02:47:08:7b:ee:a9:02:46:29:91:48:6d:6c:72:1e: 43:89:bb:db:4a:c3:76:43:0e:fb:a6:4a:e9:e6:d5:ca:86:5a: 21:a1:da:8d:d8:61:c8:d9:dd:61:21:89:b2:7c:24:0a:88:a4: b4:e2:c2:ae:36:2a:1d:28:0b:c0:40:71:ec:19:e2:3d:9f:cc: f2:1f:b6:ee:dc:f9:be:18:ad:91:65:7a:92:19:30:78:d2:93: 8b:2d:50:a0:ff:1a:7c:f1:3e:3a:55:36:c6:88:fb:23:f2:e3: dd:fa:e7:5e:99:77:b8:94:45:e8:6b:35:fa:9b:2b:f6:b5:1d: 07:e1:c1:a4:1c:27:d0:4a:7a:86:f9:9d:78:77:73:12:b6:18: 17:e4:f7:db:76:31:44:d2:be:78:e5:0c:97:30:5d:f6:8f:da: 28:0f:9a:03:df:96:1e:1d:a1:92:f0:81:77:f7:ed:db:fb:c6: e1:8c:39:b0:70:7d:df:08:e7:4e:06:46:d1:ff:f5:28:a5:ce: 54:cb:85:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZp5bGOxWz+bVtB45UJF8+XpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjUxMTEyMTg1NTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNmE2MDZhMGM2OWQ0ZDE4MzczYzZjY2FlZDc4N2Y2YTZkMjdkNDZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3vnzOZxQ6aO1G3896QlehoFIcLAu WPujC2k1v+SEB9mBGOywFUkXcKSHv+qRsbT5O+yozdMU6vWGBoZ78zKiohmRaEvO hABombwf8v8DfH60Lr39HV5hzyylXIRqT25QEe1zKViQLr+nLS1/QFDwvGi43aU8 DA99bxcjx1xUKW8NTm6iwJGp9ZFOGu1qHTmkNM5XFQ12VStVTenZKz08jR0vSl5B DnPcL655U75qhzKx/IvcsY4ublkhVNwWagMv7HVYTxU44Gcc2GVtpd2skeglLg6q qJGHi7bAYGAMXD3zFWii9DgS3zzaQDN6sMLXHZJ/4Zd3MCj+wpBEBJtVPwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAamBqDGnU0YNzxsyu14f2ptJ9RqMB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvQnFZR29NYWRUUmczUEd6SzdYaF9hbTBuMUdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNY0MA0G CSqGSIb3DQEBCwUAA4IBAQA/VPi8fosHghFDa/100ApcOD7B7xO9f5w405We3QQR B8ZF06Ye/WbioEg918G7GvAjvJsf7xsxkS4CRwh77qkCRimRSG1sch5DibvbSsN2 Qw77pkrp5tXKhlohodqN2GHI2d1hIYmyfCQKiKS04sKuNiodKAvAQHHsGeI9n8zy H7bu3Pm+GK2RZXqSGTB40pOLLVCg/xp88T46VTbGiPsj8uPd+udemXe4lEXoazX6 myv2tR0H4cGkHCfQSnqG+Z14d3MSthgX5PfbdjFE0r545QyXMF32j9ooD5oD35Ye HaGS8IF39+3b+8bhjDmwcH3fCOdOBkbR//Uopc5Uy4XX -----END CERTIFICATE-----Generated at Sat Dec 6 10:52:18 2025 by rpki-client