This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/BnOgunmIqHqBKFwZE6Xibr5iLQE.roa File: BnOgunmIqHqBKFwZE6Xibr5iLQE.roa (raw, json) Hash identifier: 3glyWq/lhdplqPwBOhZY42x6RX3FaqrpH1fRgyoCtik= Subject key identifier: 06:73:A0:BA:79:88:A8:7A:81:28:5C:19:13:A5:E2:6E:BE:62:2D:01 Certificate issuer: /CN=2874e46bf636ea63e5d12362f551b80b27714780 Certificate serial: 019B7FF244C08E59F8DD8851096CACAE03E0 Authority key identifier: 28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/BnOgunmIqHqBKFwZE6Xibr5iLQE.roa Signing time: Fri 02 Jan 2026 18:22:22 +0000 ROA not before: Fri 02 Jan 2026 18:22:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203875 IP address blocks: 37.16.107.0/24 maxlen: 24 2a00:4cc5::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.mft rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:44:c0:8e:59:f8:dd:88:51:09:6c:ac:ae:03:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2874e46bf636ea63e5d12362f551b80b27714780 Validity Not Before: Jan 2 18:22:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0673a0ba7988a87a81285c1913a5e26ebe622d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cb:b3:c7:51:dc:c8:09:29:ae:56:e8:9d:59: 74:96:f0:8b:7a:e3:1e:f8:c9:ab:2e:e1:a2:bc:9c: 9f:fe:66:a7:ab:14:1e:5e:a9:56:3c:2d:ab:36:96: bd:65:44:b4:23:03:10:29:4b:19:64:32:29:e1:bd: d3:80:11:c1:22:a5:58:12:5c:e7:8b:d8:37:e0:59: c0:0b:04:b1:4d:46:d9:54:8b:26:53:02:47:20:94: 37:6a:cf:29:40:c0:d1:88:da:0b:10:55:99:d0:1f: 52:f6:15:f3:f5:26:72:d4:1c:27:65:6f:92:b7:b0: 5d:ee:fb:ff:a8:48:03:5b:6c:79:0b:34:ab:a9:a7: ed:31:5e:e6:11:7f:27:26:f8:fa:ae:0c:57:eb:0c: 7f:94:b4:31:8a:d3:b0:c0:ea:22:3b:89:37:bd:f5: c9:3a:fa:c8:5c:e2:2b:95:7c:fb:e2:0c:0d:7d:81: ca:4f:ce:20:ba:05:7e:c8:47:c0:e2:13:fc:99:10: 32:77:89:d5:bf:3c:d2:f6:b5:5d:c9:0b:96:72:a7: 71:a0:fb:1e:85:df:90:07:02:ee:43:49:5e:d1:2a: 14:db:a9:3f:1a:85:74:e1:9d:33:e9:73:f7:62:10: dd:16:0e:44:18:a1:e4:7f:b2:3e:6c:fd:03:e7:14: 6a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:73:A0:BA:79:88:A8:7A:81:28:5C:19:13:A5:E2:6E:BE:62:2D:01 X509v3 Authority Key Identifier: keyid:28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/BnOgunmIqHqBKFwZE6Xibr5iLQE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.16.107.0/24 IPv6: 2a00:4cc5::/32 Signature Algorithm: sha256WithRSAEncryption 04:e3:c1:b7:c3:b2:a0:8b:67:15:89:af:b1:d8:6b:e6:85:4e: 0b:a5:4d:2a:c3:0c:42:6c:86:f7:3e:1e:32:20:4f:94:bd:da: 8a:c7:21:3e:75:7f:92:a9:8f:92:e4:c0:39:0a:84:8b:8e:62: a3:ea:a3:20:ba:a7:1e:e8:0e:07:35:db:73:2c:a7:e4:9c:2c: 13:90:86:27:d5:d7:83:81:22:b8:d1:24:3d:6d:5b:eb:b8:32: fb:63:f0:5e:76:72:44:79:c7:1b:09:df:60:32:ac:08:4e:75: 3c:62:dd:e5:62:ec:74:62:5a:e5:75:41:76:47:64:42:9b:db: 55:67:30:40:4b:08:16:bd:36:32:8f:af:85:9f:6a:eb:bc:7a: 24:00:15:70:1c:e6:04:27:61:3a:0f:7f:42:c3:9d:42:7c:00: 8d:bc:51:df:45:ea:df:41:5d:aa:8b:cc:5d:cf:2b:1b:4d:f5: f8:61:bc:4b:a1:44:19:b4:8d:72:bb:6b:6e:30:ec:3b:78:5b: 98:69:f8:f2:e2:2a:fe:82:64:d6:82:8c:c4:53:8a:ab:c1:76: db:52:91:3a:d9:be:d3:d4:5d:25:b2:60:d9:5b:5d:99:e2:73: cf:e3:a0:b7:b0:78:ac:55:6a:41:db:b9:6c:96:88:61:57:59: 0c:c1:99:6f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8kTAjln43YhRCWysrgPgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NzRlNDZiZjYzNmVhNjNlNWQxMjM2MmY1NTFiODBiMjc3 MTQ3ODAwHhcNMjYwMTAyMTgyMjIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjczYTBiYTc5ODhhODdhODEyODVjMTkxM2E1ZTI2ZWJlNjIyZDAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Muzx1HcyAkprlbonVl0lvCLeuMe +MmrLuGivJyf/manqxQeXqlWPC2rNpa9ZUS0IwMQKUsZZDIp4b3TgBHBIqVYElzn i9g34FnACwSxTUbZVIsmUwJHIJQ3as8pQMDRiNoLEFWZ0B9S9hXz9SZy1BwnZW+S t7Bd7vv/qEgDW2x5CzSrqaftMV7mEX8nJvj6rgxX6wx/lLQxitOwwOoiO4k3vfXJ OvrIXOIrlXz74gwNfYHKT84gugV+yEfA4hP8mRAyd4nVvzzS9rVdyQuWcqdxoPse hd+QBwLuQ0le0SoU26k/GoV04Z0z6XP3YhDdFg5EGKHkf7I+bP0D5xRqoQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAZzoLp5iKh6gShcGROl4m6+Yi0BMB8GA1UdIwQY MBaAFCh05Gv2Nupj5dEjYvVRuAsncUeAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0hUa2FfWTI2bVBsMFNOaTlWRzRDeWR4UjRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9lZGRjMDUtNDAyZC00ZGE3LTk3ZWYt YzEwZGE2YWFjMWIxLzEvQm5PZ3VubUlxSHFCS0Z3WkU2WGlicjVpTFFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9lZGRjMDUtNDAyZC00ZGE3LTk3ZWYtYzEwZGE2YWFjMWIx LzEvS0hUa2FfWTI2bVBsMFNOaTlWRzRDeWR4UjRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAJRBrMA0E AgACMAcDBQAqAEzFMA0GCSqGSIb3DQEBCwUAA4IBAQAE48G3w7Kgi2cVia+x2Gvm hU4LpU0qwwxCbIb3Ph4yIE+UvdqKxyE+dX+SqY+S5MA5CoSLjmKj6qMguqce6A4H NdtzLKfknCwTkIYn1deDgSK40SQ9bVvruDL7Y/BednJEeccbCd9gMqwITnU8Yt3l Yux0YlrldUF2R2RCm9tVZzBASwgWvTYyj6+Fn2rrvHokABVwHOYEJ2E6D39Cw51C fACNvFHfRerfQV2qi8xdzysbTfX4YbxLoUQZtI1yu2tuMOw7eFuYafjy4ir+gmTW gozEU4qrwXbbUpE62b7T1F0lsmDZW12Z4nPP46C3sHisVWpB27lslohhV1kMwZlv -----END CERTIFICATE-----Generated at Tue Feb 10 03:11:14 2026 by rpki-client