This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/vFPz2EZZAEU2N3SgGFxaDNU5jHs.roa File: vFPz2EZZAEU2N3SgGFxaDNU5jHs.roa (raw, json) Hash identifier: EuLVLB/JUDTlNe7Sgb1DpN69/WpO8B+6KWA2ZGoI7bg= Subject key identifier: BC:53:F3:D8:46:59:00:45:36:37:74:A0:18:5C:5A:0C:D5:39:8C:7B Certificate issuer: /CN=a77325e495cb0150203b79f246f4cd4c0fec24ff Certificate serial: 019B7DCAB4C4BE8ACA6998AC59591746D0D1 Authority key identifier: A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/vFPz2EZZAEU2N3SgGFxaDNU5jHs.roa Signing time: Fri 02 Jan 2026 08:19:55 +0000 ROA not before: Fri 02 Jan 2026 08:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15520 IP address blocks: 194.176.168.0/22 maxlen: 22 194.176.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:b4:c4:be:8a:ca:69:98:ac:59:59:17:46:d0:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a77325e495cb0150203b79f246f4cd4c0fec24ff Validity Not Before: Jan 2 08:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc53f3d846590045363774a0185c5a0cd5398c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:8e:d5:97:05:a8:6d:58:5a:23:52:1e:2f:cc: 69:ae:c7:59:76:bb:4c:d7:33:18:0e:ab:0a:71:2b: a8:7d:5f:59:6f:e1:ad:75:9c:77:af:7c:8e:fc:7f: 7d:92:21:94:38:ef:ad:fa:b6:7c:25:fd:98:24:87: ba:4a:ad:b4:b3:d2:bf:46:4a:c1:18:fb:a0:14:59: 7c:27:35:c8:11:8b:ee:35:cf:10:2a:74:e3:b1:80: bb:bb:48:c4:94:69:5e:1e:d1:0b:a8:9d:38:55:46: 22:8c:c0:7b:53:64:77:ff:fa:fa:c9:c4:9c:82:f0: bb:8f:1d:2f:23:67:c1:f8:28:c1:6a:92:eb:09:69: 0b:6a:12:bb:ef:1a:4d:8c:3a:76:24:b2:22:fa:a7: 8e:17:23:15:88:a7:df:b0:da:3a:41:79:79:c6:da: be:31:3a:0d:1f:dc:3e:72:22:17:bd:f7:39:20:89: 56:89:f6:89:c2:ca:a8:14:d1:e8:7e:d7:74:a0:8a: 92:e7:98:1f:33:2d:fe:01:c0:73:62:15:f6:45:95: 4c:79:1f:00:fb:a7:90:ee:b7:18:81:44:95:ef:29: a9:06:4c:b6:c5:d3:41:fe:ad:4d:3c:6c:71:3a:d4: 65:93:e2:6a:6c:3c:3d:11:dd:50:bf:a6:f9:8e:23: 1e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:53:F3:D8:46:59:00:45:36:37:74:A0:18:5C:5A:0C:D5:39:8C:7B X509v3 Authority Key Identifier: keyid:A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/vFPz2EZZAEU2N3SgGFxaDNU5jHs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.176.168.0-194.176.172.255 Signature Algorithm: sha256WithRSAEncryption 83:1f:7e:60:fd:ed:2f:c7:2d:d4:70:08:2d:ad:7c:d3:c5:e4: 9b:91:a5:9b:ab:93:57:ac:8c:19:5f:5f:24:88:6a:b6:8f:02: 76:ee:55:a9:17:8f:22:6a:f9:00:53:a8:64:07:61:9f:84:c6: 06:c0:51:9d:17:72:9f:3d:cd:44:6b:c3:0e:d1:cd:71:c3:66: 0e:8a:11:91:31:49:2b:ee:d0:64:28:96:38:d7:60:a0:93:46: cd:28:ba:02:f6:dc:b4:5e:21:19:f3:b3:78:a4:ef:e7:ee:d2: 7c:28:d7:8c:44:32:d4:6e:68:72:e3:f8:72:9f:95:f6:86:57: b9:9e:69:4a:8d:74:83:36:ff:b9:1b:60:b2:02:4c:d3:e2:54: b2:a9:96:1e:bc:7c:d2:bc:ba:0d:1f:7b:77:b9:19:75:3d:36: b6:00:e5:98:92:a7:80:4e:90:db:a4:7c:45:91:4c:ca:57:60: 8c:e5:57:c6:b5:68:b4:8c:b4:87:31:14:fa:cc:c1:f2:fb:26: 67:9b:11:92:42:30:a5:ea:68:57:bc:e8:67:e7:e7:8e:fe:dd: 57:59:9c:fb:81:d2:2f:53:79:ff:c2:ae:82:46:1a:73:df:b1: 33:f5:1b:74:14:b2:6a:0f:d3:5a:22:f6:61:0d:ae:6d:4f:90: 82:72:fb:b3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt9yrTEvorKaZisWVkXRtDRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NzMyNWU0OTVjYjAxNTAyMDNiNzlmMjQ2ZjRjZDRjMGZl YzI0ZmYwHhcNMjYwMTAyMDgxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzUzZjNkODQ2NTkwMDQ1MzYzNzc0YTAxODVjNWEwY2Q1Mzk4YzdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiI7VlwWobVhaI1IeL8xprsdZdrtM 1zMYDqsKcSuofV9Zb+GtdZx3r3yO/H99kiGUOO+t+rZ8Jf2YJIe6Sq20s9K/RkrB GPugFFl8JzXIEYvuNc8QKnTjsYC7u0jElGleHtELqJ04VUYijMB7U2R3//r6ycSc gvC7jx0vI2fB+CjBapLrCWkLahK77xpNjDp2JLIi+qeOFyMViKffsNo6QXl5xtq+ MToNH9w+ciIXvfc5IIlWifaJwsqoFNHoftd0oIqS55gfMy3+AcBzYhX2RZVMeR8A +6eQ7rcYgUSV7ympBky2xdNB/q1NPGxxOtRlk+JqbDw9Ed1Qv6b5jiMevwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFLxT89hGWQBFNjd0oBhcWgzVOYx7MB8GA1UdIwQY MBaAFKdzJeSVywFQIDt58kb0zUwP7CT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDNNbDVKWExBVkFnTzNueVJ2VE5UQV9zSlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9iZjg0MTEtNjk2MC00Y2VmLTkxZjkt MTNiNmE2ZDcxYTQxLzEvdkZQejJFWlpBRVUyTjNTZ0dGeGFETlU1akhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9iZjg0MTEtNjk2MC00Y2VmLTkxZjktMTNiNmE2ZDcxYTQx LzEvcDNNbDVKWExBVkFnTzNueVJ2VE5UQV9zSlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAPCsKgD BADCsKwwDQYJKoZIhvcNAQELBQADggEBAIMffmD97S/HLdRwCC2tfNPF5JuRpZur k1esjBlfXySIaraPAnbuVakXjyJq+QBTqGQHYZ+ExgbAUZ0Xcp89zURrww7RzXHD Zg6KEZExSSvu0GQoljjXYKCTRs0ougL23LReIRnzs3ik7+fu0nwo14xEMtRuaHLj +HKflfaGV7meaUqNdIM2/7kbYLICTNPiVLKplh68fNK8ug0fe3e5GXU9NrYA5ZiS p4BOkNukfEWRTMpXYIzlV8a1aLSMtIcxFPrMwfL7JmebEZJCMKXqaFe86Gfn547+ 3VdZnPuB0i9Tef/CroJGGnPfsTP1G3QUsmoP01oi9mENrm1PkIJy+7M= -----END CERTIFICATE-----Generated at Sat Jan 3 04:13:12 2026 by rpki-client