This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/bb-V_rGf3B0QiaioeNxnU56I040.roa File: bb-V_rGf3B0QiaioeNxnU56I040.roa (raw, json) Hash identifier: 4nxBn8kzAZLq0QSt7O7jxqlGii0yEkqJb0VFpRa6+jU= Subject key identifier: 6D:BF:95:FE:B1:9F:DC:1D:10:89:A8:A8:78:DC:67:53:9E:88:D3:8D Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Certificate serial: 019B79EC57C4568382C32E97742D349A65C7 Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/bb-V_rGf3B0QiaioeNxnU56I040.roa Signing time: Thu 01 Jan 2026 14:18:10 +0000 ROA not before: Thu 01 Jan 2026 14:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57630 IP address blocks: 80.88.126.0/24 maxlen: 24 81.8.212.0/24 maxlen: 24 81.8.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:57:c4:56:83:82:c3:2e:97:74:2d:34:9a:65:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Validity Not Before: Jan 1 14:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6dbf95feb19fdc1d1089a8a878dc67539e88d38d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7f:ab:f5:37:6d:80:49:e2:b3:b8:e1:63:38: 4c:63:66:71:1a:d2:ea:d0:cd:f1:34:31:92:8f:52: 8e:0d:a1:98:05:f2:6c:a1:01:30:43:73:b7:bd:c4: 4c:55:9b:33:bf:07:53:9a:f6:1c:79:2c:26:36:d5: 9f:aa:45:b8:a8:68:40:76:2e:85:36:cc:ea:67:fe: 24:64:c0:aa:15:6e:7f:3c:1f:28:d4:3b:09:b2:79: 0c:b7:d9:12:18:4e:92:c6:c9:fb:e4:ef:bf:3f:5f: ba:85:9a:75:0d:67:cb:1b:1f:8c:b0:c6:95:4d:4e: 32:66:f6:5e:9e:bf:cc:91:39:8c:01:6c:5d:28:fa: 6c:4b:8c:8d:38:02:8d:6f:0c:a6:16:37:90:4f:5b: 02:1a:87:57:b3:f9:e2:dc:1f:ce:0d:3f:93:09:b0: 25:28:52:28:41:90:f6:e1:bd:0f:90:b7:10:ed:9b: 1f:60:f2:cc:63:71:26:ce:f3:32:64:f4:3b:3e:9f: 69:3e:d9:e2:1e:bb:a4:7e:41:72:a4:84:16:1b:6b: 23:84:56:02:aa:85:f1:e0:92:11:4d:f3:aa:4f:4a: 5b:d3:12:be:5c:60:31:6a:ee:e1:3e:d8:52:22:5d: 9b:99:87:7f:c4:b0:0c:70:8b:7b:f3:d0:38:62:52: 47:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BF:95:FE:B1:9F:DC:1D:10:89:A8:A8:78:DC:67:53:9E:88:D3:8D X509v3 Authority Key Identifier: keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/bb-V_rGf3B0QiaioeNxnU56I040.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.88.126.0/24 81.8.212.0/24 81.8.245.0/24 Signature Algorithm: sha256WithRSAEncryption 72:ad:8d:c6:26:01:b9:3b:bf:46:52:5e:51:6d:8a:a2:2b:e9: ed:02:7a:6c:02:da:37:ca:ad:28:77:dc:05:49:86:42:66:6f: 47:5e:7e:c6:90:ab:ea:fc:a2:f2:39:d7:c4:ad:fe:f1:a7:f1: cc:62:1a:38:0f:db:d0:25:cd:5c:72:39:cd:cf:67:8b:02:bd: 82:0f:cd:b3:2a:62:10:90:4c:b5:62:96:80:5d:3c:6f:da:51: dc:b9:8f:a9:5a:73:8c:d3:f3:dd:41:af:d5:e5:42:dc:9d:aa: df:b2:f4:60:79:22:ef:ba:f4:13:0f:0a:d7:da:2e:96:ab:cc: 77:de:65:76:35:ca:35:f7:c3:36:cb:09:d6:5c:07:b6:40:48: a1:75:f9:1d:12:05:50:81:c0:13:eb:fd:41:e0:6b:a3:41:1d: d5:00:fa:6f:1a:74:9e:45:6c:3d:64:59:cc:10:9e:8a:10:55: 0f:20:c7:52:fd:a6:e3:5f:9d:cf:5e:93:36:ea:38:bd:1a:01: 64:e7:c5:27:be:20:21:22:99:6d:49:f1:b7:98:b8:11:b6:c9: 9a:dd:02:c4:da:00:26:55:9d:16:a0:50:c2:b8:74:d0:da:59: 01:77:5e:12:83:00:f5:6f:49:e9:15:4b:5f:cc:5c:3f:f0:15: 6b:96:22:79 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt57FfEVoOCwy6XdC00mmXHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMGIzM2NkZGI3OTliN2JjZjVkM2RjZTAwNGZkYmE4YzNl ODY0ZmYwHhcNMjYwMTAxMTQxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGJmOTVmZWIxOWZkYzFkMTA4OWE4YTg3OGRjNjc1MzllODhkMzhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAln+r9TdtgEnis7jhYzhMY2ZxGtLq 0M3xNDGSj1KODaGYBfJsoQEwQ3O3vcRMVZszvwdTmvYceSwmNtWfqkW4qGhAdi6F NszqZ/4kZMCqFW5/PB8o1DsJsnkMt9kSGE6Sxsn75O+/P1+6hZp1DWfLGx+MsMaV TU4yZvZenr/MkTmMAWxdKPpsS4yNOAKNbwymFjeQT1sCGodXs/ni3B/ODT+TCbAl KFIoQZD24b0PkLcQ7ZsfYPLMY3EmzvMyZPQ7Pp9pPtniHrukfkFypIQWG2sjhFYC qoXx4JIRTfOqT0pb0xK+XGAxau7hPthSIl2bmYd/xLAMcIt789A4YlJH4wIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFG2/lf6xn9wdEImoqHjcZ1OeiNONMB8GA1UdIwQY MBaAFNoLM83beZt7z109zgBP26jD6GT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQt NzczM2JkODg4ZTI4LzEvYmItVl9yR2YzQjBRaWFpb2VOeG5VNTZJMDQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQtNzczM2JkODg4ZTI4 LzEvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUFh+AwQA UQjUAwQAUQj1MA0GCSqGSIb3DQEBCwUAA4IBAQByrY3GJgG5O79GUl5RbYqiK+nt AnpsAto3yq0od9wFSYZCZm9HXn7GkKvq/KLyOdfErf7xp/HMYho4D9vQJc1ccjnN z2eLAr2CD82zKmIQkEy1YpaAXTxv2lHcuY+pWnOM0/PdQa/V5ULcnarfsvRgeSLv uvQTDwrX2i6Wq8x33mV2Nco198M2ywnWXAe2QEihdfkdEgVQgcAT6/1B4GujQR3V APpvGnSeRWw9ZFnMEJ6KEFUPIMdS/abjX53PXpM26ji9GgFk58UnviAhIpltSfG3 mLgRtsma3QLE2gAmVZ0WoFDCuHTQ2lkBd14SgwD1b0npFUtfzFw/8BVrliJ5 -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:45 2026 by rpki-client