This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/Vbu4WFHtQs8CWjvDwWDBgOfuqwQ.roa File: Vbu4WFHtQs8CWjvDwWDBgOfuqwQ.roa (raw, json) Hash identifier: N29scv8xguie+t9aPoJpoSulc1+RZLFrY9t5xm5Se4E= Subject key identifier: 55:BB:B8:58:51:ED:42:CF:02:5A:3B:C3:C1:60:C1:80:E7:EE:AB:04 Certificate issuer: /CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81 Certificate serial: 019B7CED77942B49101DAFA4E1DCA399AB0B Authority key identifier: 8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/Vbu4WFHtQs8CWjvDwWDBgOfuqwQ.roa Signing time: Fri 02 Jan 2026 04:18:15 +0000 ROA not before: Fri 02 Jan 2026 04:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204018 IP address blocks: 156.67.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.mft rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 14:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:77:94:2b:49:10:1d:af:a4:e1:dc:a3:99:ab:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81 Validity Not Before: Jan 2 04:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=55bbb85851ed42cf025a3bc3c160c180e7eeab04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:be:7d:3a:82:ac:3e:3b:cc:21:91:d5:a7:d5: c4:04:11:77:5f:aa:76:4d:f4:f1:40:3c:02:6f:e0: 4d:f8:c2:6b:56:61:28:ef:bd:2e:38:3f:95:d0:f8: 80:75:1c:c0:07:a4:41:03:15:9a:14:97:0c:67:22: e8:1b:44:16:51:3e:52:33:28:f0:e8:96:b8:ac:09: 52:32:16:25:68:de:c3:83:91:e8:51:ae:4b:bf:5f: ac:86:df:77:74:7c:d5:c7:0d:ea:aa:25:4d:5d:22: d0:c5:43:c0:db:8d:69:70:f3:73:7c:51:20:f7:bf: fc:fc:3e:41:06:ac:7c:05:32:17:6d:cf:a8:2f:be: 79:81:11:c9:2a:32:03:ed:9e:ad:e7:84:f0:8a:91: f1:7a:7f:55:1d:e1:28:eb:7a:c3:33:9a:9c:59:6f: cd:72:78:99:36:6b:3c:c8:5f:95:77:ba:de:28:53: 40:19:27:a2:71:1b:f8:63:75:9b:11:79:71:02:fa: e0:9f:9e:e5:af:01:a9:4f:f9:9d:82:f8:5a:a1:0a: 3c:c0:21:cf:c4:16:a8:0c:59:06:92:36:21:01:db: f9:8f:00:24:ef:e8:92:76:1a:c4:46:de:76:76:de: 17:b6:33:2e:3a:42:cb:64:81:47:a7:26:2c:71:a8: cc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BB:B8:58:51:ED:42:CF:02:5A:3B:C3:C1:60:C1:80:E7:EE:AB:04 X509v3 Authority Key Identifier: keyid:8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/Vbu4WFHtQs8CWjvDwWDBgOfuqwQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.67.240.0/24 Signature Algorithm: sha256WithRSAEncryption 59:73:02:89:99:a0:7b:d7:44:28:b9:b9:f3:d2:48:56:58:17: b7:7f:4d:44:3f:5d:65:aa:48:5e:41:9d:e1:fa:71:a9:55:e0: 13:24:00:c0:03:80:45:3d:92:b3:bd:6a:7b:a3:02:1f:80:60: f5:98:58:61:d7:96:e0:d8:cc:20:60:0e:f7:ec:bf:20:6a:79: 4f:7b:75:d3:66:b8:1a:e3:a7:d2:31:85:89:d6:4e:16:47:a4: 85:41:ad:76:02:08:70:61:86:41:ce:2e:83:5d:87:25:73:ba: e9:10:fd:81:8d:0e:34:ce:74:3c:8f:d1:14:3f:38:8a:fc:95: 93:31:d4:80:c1:d8:d1:c1:0f:b2:36:01:91:3f:26:9d:62:a5: 26:e4:38:4d:58:e5:f0:87:8d:67:db:0e:b5:74:3a:d9:83:a4: 7e:bc:fc:74:6e:a6:ec:1f:65:74:1f:4a:10:8d:0e:aa:6d:4c: e6:68:90:cf:9c:6b:b3:83:b4:51:45:e9:b3:ba:a8:89:f5:fb: 50:de:97:a3:8c:20:e5:e2:3b:0f:13:ad:a5:13:08:d1:e3:ec: fb:85:07:cf:cb:00:b6:ae:71:8b:35:44:3b:48:9d:68:b9:be: f7:ea:d9:ca:7e:4d:3f:39:1d:68:d4:6e:70:ea:c1:1d:61:7d: b3:d3:58:99 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87XeUK0kQHa+k4dyjmasLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmNzg5NjNiM2M0ZjJkZDE4N2MyMDQzN2RmMWQ3ZDljMTY4 Y2FiODEwHhcNMjYwMTAyMDQxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NWJiYjg1ODUxZWQ0MmNmMDI1YTNiYzNjMTYwYzE4MGU3ZWVhYjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtL59OoKsPjvMIZHVp9XEBBF3X6p2 TfTxQDwCb+BN+MJrVmEo770uOD+V0PiAdRzAB6RBAxWaFJcMZyLoG0QWUT5SMyjw 6Ja4rAlSMhYlaN7Dg5HoUa5Lv1+sht93dHzVxw3qqiVNXSLQxUPA241pcPNzfFEg 97/8/D5BBqx8BTIXbc+oL755gRHJKjID7Z6t54TwipHxen9VHeEo63rDM5qcWW/N cniZNms8yF+Vd7reKFNAGSeicRv4Y3WbEXlxAvrgn57lrwGpT/mdgvhaoQo8wCHP xBaoDFkGkjYhAdv5jwAk7+iSdhrERt52dt4XtjMuOkLLZIFHpyYscajM2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFW7uFhR7ULPAlo7w8FgwYDn7qsEMB8GA1UdIwQY MBaAFI94ljs8Ty3Rh8IEN98dfZwWjKuBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajNpV096eFBMZEdId2dRMzN4MTluQmFNcTRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9kYmZjYTEtMmI5NC00ZDBiLTlkZDgt MWVmOWYyMzE5NTIyLzEvVmJ1NFdGSHRRczhDV2p2RHdXREJnT2Z1cXdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9kYmZjYTEtMmI5NC00ZDBiLTlkZDgtMWVmOWYyMzE5NTIy LzEvajNpV096eFBMZEdId2dRMzN4MTluQmFNcTRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnEPwMA0G CSqGSIb3DQEBCwUAA4IBAQBZcwKJmaB710Qoubnz0khWWBe3f01EP11lqkheQZ3h +nGpVeATJADAA4BFPZKzvWp7owIfgGD1mFhh15bg2MwgYA737L8ganlPe3XTZrga 46fSMYWJ1k4WR6SFQa12AghwYYZBzi6DXYclc7rpEP2BjQ40znQ8j9EUPziK/JWT MdSAwdjRwQ+yNgGRPyadYqUm5DhNWOXwh41n2w61dDrZg6R+vPx0bqbsH2V0H0oQ jQ6qbUzmaJDPnGuzg7RRRemzuqiJ9ftQ3pejjCDl4jsPE62lEwjR4+z7hQfPywC2 rnGLNUQ7SJ1oub736tnKfk0/OR1o1G5w6sEdYX2z01iZ -----END CERTIFICATE-----Generated at Fri Jan 9 23:45:00 2026 by rpki-client