This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/VndZi1ag43yUYbp1p18VZaT1S-Q.roa File: VndZi1ag43yUYbp1p18VZaT1S-Q.roa (raw, json) Hash identifier: YUCC1yTTSNVtoC4MDdJQsWo/Nb81JBpWk0EnfDrruB8= Subject key identifier: 56:77:59:8B:56:A0:E3:7C:94:61:BA:75:A7:5F:15:65:A4:F5:4B:E4 Certificate issuer: /CN=8ec1f7d0530682e1b68e3bfe5a8744ee51ad335d Certificate serial: 019B7C7F71BA973CBA14BCC8BCB7AABB994E Authority key identifier: 8E:C1:F7:D0:53:06:82:E1:B6:8E:3B:FE:5A:87:44:EE:51:AD:33:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jsH30FMGguG2jjv-WodE7lGtM10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/VndZi1ag43yUYbp1p18VZaT1S-Q.roa Signing time: Fri 02 Jan 2026 02:18:05 +0000 ROA not before: Fri 02 Jan 2026 02:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61956 IP address blocks: 185.47.120.0/22 maxlen: 22 185.47.122.0/23 maxlen: 23 2a01:8be0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/jsH30FMGguG2jjv-WodE7lGtM10.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/jsH30FMGguG2jjv-WodE7lGtM10.mft rsync://rpki.ripe.net/repository/DEFAULT/jsH30FMGguG2jjv-WodE7lGtM10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 14:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:71:ba:97:3c:ba:14:bc:c8:bc:b7:aa:bb:99:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ec1f7d0530682e1b68e3bfe5a8744ee51ad335d Validity Not Before: Jan 2 02:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5677598b56a0e37c9461ba75a75f1565a4f54be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:7a:af:57:08:41:2f:07:6b:bb:81:49:a5:00: 01:0a:75:7b:96:3e:34:e2:99:3f:f3:2c:69:85:6a: df:dd:b4:85:a3:30:18:18:b4:fc:fc:ca:cf:c9:e9: 2b:2b:95:5e:5f:88:83:7d:90:db:5a:bd:fe:e6:d8: 9c:71:02:47:46:d2:de:c7:28:49:ef:79:78:e2:48: 89:73:b4:75:1f:69:01:08:1e:e9:14:5b:d2:53:1e: 9d:00:31:d3:bc:13:ad:f8:b9:9b:3e:26:92:54:af: 95:02:82:6c:6d:65:81:d0:f0:a8:a3:29:d1:9b:ec: 03:fc:39:9a:66:ef:ce:7a:7d:04:e7:f0:7b:f2:5c: fa:cd:35:d6:45:f4:00:a8:38:97:c2:e6:e8:ae:10: 7a:c4:d3:97:7f:44:bc:d2:3d:44:5f:73:0d:c8:28: 3a:62:0d:1a:df:6d:61:5f:dc:4f:26:2b:27:d0:d4: a8:e6:52:27:8c:87:5f:7d:b9:66:11:7f:b6:c0:c3: 5b:79:73:0b:ea:5b:13:f7:1b:d1:f7:ab:62:05:f7: 44:3d:90:f2:ed:e6:4e:da:f2:eb:96:96:9a:30:54: ff:33:60:7f:7d:73:81:4a:69:ec:36:ee:0b:9f:7e: 8e:25:9c:f8:3a:1b:7f:69:13:eb:2c:b4:93:48:a5: 93:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:77:59:8B:56:A0:E3:7C:94:61:BA:75:A7:5F:15:65:A4:F5:4B:E4 X509v3 Authority Key Identifier: keyid:8E:C1:F7:D0:53:06:82:E1:B6:8E:3B:FE:5A:87:44:EE:51:AD:33:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jsH30FMGguG2jjv-WodE7lGtM10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/VndZi1ag43yUYbp1p18VZaT1S-Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/jsH30FMGguG2jjv-WodE7lGtM10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.47.120.0/22 IPv6: 2a01:8be0::/29 Signature Algorithm: sha256WithRSAEncryption 63:96:90:e4:56:dd:1b:7c:63:05:cb:db:77:c5:54:55:38:9c: 25:d0:b8:5a:4f:7c:89:48:4d:1a:78:20:e0:4e:2a:2f:be:cf: 64:a4:03:c1:dd:9a:ee:ed:71:88:31:5e:c8:21:88:d4:6b:d7: 6b:41:5c:5c:fb:2a:93:23:8e:8a:e6:3d:d5:2a:e3:16:72:c2: cc:65:30:3c:e5:a4:9d:a1:5e:2e:fe:f0:08:ea:22:06:c2:9d: 32:75:15:bb:c8:98:b3:e9:67:de:bb:cc:4e:9a:20:fb:d8:f7: 17:90:ec:5c:78:ff:75:23:60:7a:3b:9d:fd:bb:b1:0d:2e:62: 22:8a:01:1f:0c:99:93:f8:cb:db:ea:a5:37:c0:a2:d7:8b:a2: f8:a8:60:54:9b:0f:28:00:6d:f1:8a:ef:77:ea:3d:b6:d1:85: a3:23:cb:da:58:75:2b:db:19:b0:48:1a:bc:eb:06:38:92:68: 71:e6:a3:c8:05:60:39:62:e0:44:de:5a:9c:4b:c1:e9:c6:25: 04:75:57:b0:bb:3e:35:09:ed:a0:95:7b:37:ff:4c:c8:8c:90: 58:2f:e4:5b:4f:4b:c5:17:62:d2:98:ef:55:9b:b6:55:b7:13: 33:0f:90:a5:21:87:8e:8a:9a:1f:33:b0:f7:d7:4b:33:6f:19: e1:77:24:29 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8f3G6lzy6FLzIvLequ5lOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlYzFmN2QwNTMwNjgyZTFiNjhlM2JmZTVhODc0NGVlNTFh ZDMzNWQwHhcNMjYwMTAyMDIxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Njc3NTk4YjU2YTBlMzdjOTQ2MWJhNzVhNzVmMTU2NWE0ZjU0YmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8nqvVwhBLwdru4FJpQABCnV7lj40 4pk/8yxphWrf3bSFozAYGLT8/MrPyekrK5VeX4iDfZDbWr3+5ticcQJHRtLexyhJ 73l44kiJc7R1H2kBCB7pFFvSUx6dADHTvBOt+LmbPiaSVK+VAoJsbWWB0PCooynR m+wD/DmaZu/Oen0E5/B78lz6zTXWRfQAqDiXwuborhB6xNOXf0S80j1EX3MNyCg6 Yg0a321hX9xPJisn0NSo5lInjIdffblmEX+2wMNbeXML6lsT9xvR96tiBfdEPZDy 7eZO2vLrlpaaMFT/M2B/fXOBSmnsNu4Ln36OJZz4Oht/aRPrLLSTSKWTdwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFZ3WYtWoON8lGG6dadfFWWk9UvkMB8GA1UdIwQY MBaAFI7B99BTBoLhto47/lqHRO5RrTNdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanNIMzBGTUdndUcyamp2LVdvZEU3bEd0TTEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS85MThhMzMtNjc2Ni00Nzk1LTg1NzMt YWVlNjk4YWY2OGI3LzEvVm5kWmkxYWc0M3lVWWJwMXAxOFZaYVQxUy1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS85MThhMzMtNjc2Ni00Nzk1LTg1NzMtYWVlNjk4YWY2OGI3 LzEvanNIMzBGTUdndUcyamp2LVdvZEU3bEd0TTEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuS94MA0E AgACMAcDBQMqAYvgMA0GCSqGSIb3DQEBCwUAA4IBAQBjlpDkVt0bfGMFy9t3xVRV OJwl0LhaT3yJSE0aeCDgTiovvs9kpAPB3Zru7XGIMV7IIYjUa9drQVxc+yqTI46K 5j3VKuMWcsLMZTA85aSdoV4u/vAI6iIGwp0ydRW7yJiz6Wfeu8xOmiD72PcXkOxc eP91I2B6O539u7ENLmIiigEfDJmT+Mvb6qU3wKLXi6L4qGBUmw8oAG3xiu936j22 0YWjI8vaWHUr2xmwSBq86wY4kmhx5qPIBWA5YuBE3lqcS8HpxiUEdVewuz41Ce2g lXs3/0zIjJBYL+RbT0vFF2LSmO9Vm7ZVtxMzD5ClIYeOipofM7D310szbxnhdyQp -----END CERTIFICATE-----Generated at Mon Jan 12 17:18:28 2026 by rpki-client