This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/vt7DyLKUCf23QQLyZIR7DPMJBBk.roa File: vt7DyLKUCf23QQLyZIR7DPMJBBk.roa (raw, json) Hash identifier: 4cTJ4u2lPUjyZpzC/qN04ASg0UBqt7RnpnKm2l9uNP0= Subject key identifier: BE:DE:C3:C8:B2:94:09:FD:B7:41:02:F2:64:84:7B:0C:F3:09:04:19 Certificate issuer: /CN=3be4761d44d806c3f9e4e76b79c8f2296cc7bbcf Certificate serial: 019B7CED9FEDC70B183F87B04F482D0B47BA Authority key identifier: 3B:E4:76:1D:44:D8:06:C3:F9:E4:E7:6B:79:C8:F2:29:6C:C7:BB:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-R2HUTYBsP55OdrecjyKWzHu88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/vt7DyLKUCf23QQLyZIR7DPMJBBk.roa Signing time: Fri 02 Jan 2026 04:18:26 +0000 ROA not before: Fri 02 Jan 2026 04:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202234 IP address blocks: 185.49.108.0/22 maxlen: 24 2a04:b940::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/O-R2HUTYBsP55OdrecjyKWzHu88.crl rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/O-R2HUTYBsP55OdrecjyKWzHu88.mft rsync://rpki.ripe.net/repository/DEFAULT/O-R2HUTYBsP55OdrecjyKWzHu88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 16:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:9f:ed:c7:0b:18:3f:87:b0:4f:48:2d:0b:47:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3be4761d44d806c3f9e4e76b79c8f2296cc7bbcf Validity Not Before: Jan 2 04:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bedec3c8b29409fdb74102f264847b0cf3090419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:60:6a:f8:43:b7:a0:ec:39:3a:a0:fd:b3: 43:2e:a7:57:da:28:00:ab:c6:b0:2e:c6:f6:a2:9c: 65:41:e8:3f:e9:d2:ca:00:22:2d:bb:9b:d3:6c:b4: 72:b8:83:90:f9:4b:08:2f:5a:f1:51:56:09:c1:dd: 86:91:bb:58:8a:68:7e:d4:d8:79:c2:57:6f:66:0c: 64:c1:c4:12:45:5d:db:39:56:14:02:eb:3f:c0:96: bc:ca:e2:d2:b8:7f:80:d9:f9:05:95:0a:88:1d:7e: b5:af:bc:08:17:c5:a1:91:b7:c1:ba:9a:3c:1e:9d: 67:91:20:50:3c:25:48:2f:2b:c2:b5:b4:e2:c7:67: 52:63:8d:58:c8:db:4e:85:1d:a4:16:61:e2:72:6a: af:b3:4c:82:2e:99:7f:48:19:66:f5:25:f9:88:40: c1:00:e6:c2:20:9a:ba:79:96:d3:2d:16:5f:cd:5d: 07:74:c5:21:87:d5:ff:48:01:84:ed:0b:5a:4c:43: 06:e6:5a:d5:21:ac:db:8f:e7:a2:be:65:3e:ec:8f: b6:35:12:3b:75:be:62:ef:dd:8e:31:5a:3f:32:e2: 68:50:a4:83:01:8a:da:da:48:33:e8:d2:43:a9:b0: 09:4c:25:54:2d:ce:27:64:88:ea:cf:72:86:6b:a5: e1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DE:C3:C8:B2:94:09:FD:B7:41:02:F2:64:84:7B:0C:F3:09:04:19 X509v3 Authority Key Identifier: keyid:3B:E4:76:1D:44:D8:06:C3:F9:E4:E7:6B:79:C8:F2:29:6C:C7:BB:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-R2HUTYBsP55OdrecjyKWzHu88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/vt7DyLKUCf23QQLyZIR7DPMJBBk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/d2c38e-0aaf-4e3b-8ed8-b54ae6f08f4f/1/O-R2HUTYBsP55OdrecjyKWzHu88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.49.108.0/22 IPv6: 2a04:b940::/29 Signature Algorithm: sha256WithRSAEncryption a2:25:4b:bc:4f:31:83:3f:18:30:cd:96:f7:36:ea:84:cd:f2: de:59:f0:c8:5e:7f:ab:6a:16:cf:15:1e:a0:e8:0c:06:6f:61: 78:10:dd:24:db:85:f4:d3:2e:d3:8e:fe:6c:be:ff:81:7b:ed: 1b:61:b6:08:13:f0:47:21:1d:86:90:c0:51:77:80:cd:6c:c0: 85:e6:a8:29:c8:28:4d:89:fd:53:77:65:32:87:96:d7:7a:38: 93:21:b0:2b:f2:89:8d:ac:cc:7d:5c:c7:58:c8:46:4d:41:7a: 39:4f:9d:f3:e3:ff:25:91:fa:34:07:51:a0:dc:e4:1a:31:9a: 06:5d:e1:d0:6a:99:a1:a9:fa:16:07:e5:c8:5f:3e:8d:69:76: 47:00:67:4b:a7:66:9a:bd:e1:37:17:79:1a:fd:19:a6:dc:42: 1f:fc:c4:bd:ac:c1:04:20:2f:b6:46:dc:5f:7f:b3:d7:4a:93: 84:8c:22:a5:ea:35:ea:c9:f7:9b:88:03:1d:31:89:bc:f9:f6: fa:4a:7e:09:59:ab:9b:f9:99:3a:3d:bf:c6:0e:5a:0e:94:72: 74:0b:1c:8d:19:79:ee:4b:2c:95:53:7e:b8:43:9e:4a:f4:9e: be:c8:d0:2e:0e:23:05:c0:cd:03:ad:ef:e5:cc:d1:74:78:ee: 22:a0:f0:a2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87Z/txwsYP4ewT0gtC0e6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZTQ3NjFkNDRkODA2YzNmOWU0ZTc2Yjc5YzhmMjI5NmNj N2JiY2YwHhcNMjYwMTAyMDQxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWRlYzNjOGIyOTQwOWZkYjc0MTAyZjI2NDg0N2IwY2YzMDkwNDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPZgavhDt6DsOTqg/bNDLqdX2igA q8awLsb2opxlQeg/6dLKACItu5vTbLRyuIOQ+UsIL1rxUVYJwd2GkbtYimh+1Nh5 wldvZgxkwcQSRV3bOVYUAus/wJa8yuLSuH+A2fkFlQqIHX61r7wIF8WhkbfBupo8 Hp1nkSBQPCVILyvCtbTix2dSY41YyNtOhR2kFmHicmqvs0yCLpl/SBlm9SX5iEDB AObCIJq6eZbTLRZfzV0HdMUhh9X/SAGE7QtaTEMG5lrVIazbj+eivmU+7I+2NRI7 db5i792OMVo/MuJoUKSDAYra2kgz6NJDqbAJTCVULc4nZIjqz3KGa6XhxQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL7ew8iylAn9t0EC8mSEewzzCQQZMB8GA1UdIwQY MBaAFDvkdh1E2AbD+eTna3nI8ilsx7vPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTy1SMkhVVFlCc1A1NU9kcmVjanlLV3pIdTg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kMmMzOGUtMGFhZi00ZTNiLThlZDgt YjU0YWU2ZjA4ZjRmLzEvdnQ3RHlMS1VDZjIzUVFMeVpJUjdEUE1KQkJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9kMmMzOGUtMGFhZi00ZTNiLThlZDgtYjU0YWU2ZjA4ZjRm LzEvTy1SMkhVVFlCc1A1NU9kcmVjanlLV3pIdTg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTFsMA0E AgACMAcDBQMqBLlAMA0GCSqGSIb3DQEBCwUAA4IBAQCiJUu8TzGDPxgwzZb3NuqE zfLeWfDIXn+rahbPFR6g6AwGb2F4EN0k24X00y7Tjv5svv+Be+0bYbYIE/BHIR2G kMBRd4DNbMCF5qgpyChNif1Td2Uyh5bXejiTIbAr8omNrMx9XMdYyEZNQXo5T53z 4/8lkfo0B1Gg3OQaMZoGXeHQapmhqfoWB+XIXz6NaXZHAGdLp2aaveE3F3ka/Rmm 3EIf/MS9rMEEIC+2Rtxff7PXSpOEjCKl6jXqyfebiAMdMYm8+fb6Sn4JWaub+Zk6 Pb/GDloOlHJ0CxyNGXnuSyyVU364Q55K9J6+yNAuDiMFwM0Dre/lzNF0eO4ioPCi -----END CERTIFICATE-----Generated at Tue Jan 13 00:09:43 2026 by rpki-client