This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/d2d99e-a7c1-43e8-93f5-a11a96d21861/1/vHNaMxjl_jxvOB7TUQY7frZB4BA.roa File: vHNaMxjl_jxvOB7TUQY7frZB4BA.roa (raw, json) Hash identifier: tPeRf17Q/t/ooDmwNWzZrhi14ldaBDrCWvBhdfbsIYE= Subject key identifier: BC:73:5A:33:18:E5:FE:3C:6F:38:1E:D3:51:06:3B:7E:B6:41:E0:10 Certificate issuer: /CN=739f3ebcd26792b913c1dcb9941996e998f16078 Certificate serial: 019B79EC95F36D350B08514C73720DC376D4 Authority key identifier: 73:9F:3E:BC:D2:67:92:B9:13:C1:DC:B9:94:19:96:E9:98:F1:60:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c58-vNJnkrkTwdy5lBmW6ZjxYHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/d2d99e-a7c1-43e8-93f5-a11a96d21861/1/vHNaMxjl_jxvOB7TUQY7frZB4BA.roa Signing time: Thu 01 Jan 2026 14:18:26 +0000 ROA not before: Thu 01 Jan 2026 14:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35063 IP address blocks: 31.7.40.0/21 maxlen: 21 46.29.144.0/21 maxlen: 24 85.237.160.0/19 maxlen: 24 185.18.140.0/22 maxlen: 22 212.109.160.0/21 maxlen: 21 217.171.48.0/20 maxlen: 24 2a03:9500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/d2d99e-a7c1-43e8-93f5-a11a96d21861/1/c58-vNJnkrkTwdy5lBmW6ZjxYHg.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/d2d99e-a7c1-43e8-93f5-a11a96d21861/1/c58-vNJnkrkTwdy5lBmW6ZjxYHg.mft rsync://rpki.ripe.net/repository/DEFAULT/c58-vNJnkrkTwdy5lBmW6ZjxYHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:95:f3:6d:35:0b:08:51:4c:73:72:0d:c3:76:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=739f3ebcd26792b913c1dcb9941996e998f16078 Validity Not Before: Jan 1 14:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc735a3318e5fe3c6f381ed351063b7eb641e010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5e:1a:90:ea:cf:34:26:c0:c5:6f:06:b9:fe: 03:5c:ec:6b:f3:f3:9a:bb:9f:22:fd:e2:29:1d:a5: 61:78:64:e1:1c:d9:26:48:1c:30:d0:a0:15:d9:0d: 93:81:0a:dc:51:10:e1:87:f6:d5:7d:3e:19:b2:35: d7:20:11:d7:34:58:2d:63:0d:28:6f:c2:b3:e6:b0: 62:9c:3f:11:c9:b1:e3:b8:14:c6:95:43:0b:39:9d: 38:74:d9:ad:8a:50:18:d7:e5:6e:6c:23:84:df:55: 57:2a:ea:9d:22:79:bb:1e:05:2c:0d:d6:9c:e1:75: bb:ce:88:fc:74:ab:37:1c:2d:9f:23:65:42:c8:d1: 99:90:81:50:63:02:5b:01:59:9b:45:ab:5b:98:f0: 97:8c:1e:a8:cd:72:c4:7f:51:8f:4a:69:ca:ef:4a: 6e:7c:af:c4:c7:d9:06:39:6c:39:7a:ae:e7:70:10: 84:2f:4a:76:4d:87:e9:33:bc:0e:49:09:60:3f:8a: 30:23:88:46:13:52:13:12:2c:79:ea:9e:3f:a4:8d: 7c:2c:9a:f1:2a:6a:59:67:e5:a7:a6:e5:87:8f:4c: 76:cd:93:c9:e7:b0:1a:5b:d2:ff:b8:a1:5f:da:f4: 30:76:78:a9:b4:7c:bb:60:2c:92:9b:df:93:0a:a3: 1a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:73:5A:33:18:E5:FE:3C:6F:38:1E:D3:51:06:3B:7E:B6:41:E0:10 X509v3 Authority Key Identifier: keyid:73:9F:3E:BC:D2:67:92:B9:13:C1:DC:B9:94:19:96:E9:98:F1:60:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c58-vNJnkrkTwdy5lBmW6ZjxYHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/d2d99e-a7c1-43e8-93f5-a11a96d21861/1/vHNaMxjl_jxvOB7TUQY7frZB4BA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/d2d99e-a7c1-43e8-93f5-a11a96d21861/1/c58-vNJnkrkTwdy5lBmW6ZjxYHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.7.40.0/21 46.29.144.0/21 85.237.160.0/19 185.18.140.0/22 212.109.160.0/21 217.171.48.0/20 IPv6: 2a03:9500::/32 Signature Algorithm: sha256WithRSAEncryption 6b:03:17:8b:bb:76:3b:c0:1a:7d:83:75:72:75:a5:b2:5a:00: 08:ae:bf:d4:04:71:26:b2:59:0b:79:48:da:51:7d:a1:4a:a0: 2e:70:2b:22:7b:60:40:e4:35:56:18:df:a6:61:31:a8:62:ac: 48:e9:79:f2:1d:3d:11:1b:aa:a1:75:b0:f4:ba:2e:26:84:de: dc:09:31:f9:6f:e0:ee:77:3b:12:f9:99:86:81:4f:86:af:91: 08:e7:ec:29:bb:ff:81:86:b6:25:f6:e9:1d:5e:3b:a2:f6:16: 3a:4d:13:96:d7:e1:46:96:b3:4d:3e:06:c2:a5:36:14:4f:f5: 45:95:47:f8:85:95:33:22:52:c4:09:8e:5c:6c:79:a8:39:6b: eb:42:10:cf:d5:a0:41:08:ff:00:3a:c4:ff:ca:41:49:d0:f1: 9a:6c:11:61:ea:3d:71:e7:46:67:c1:91:91:b7:8b:6a:e7:bf: 58:ed:b7:66:eb:f8:fa:03:d0:48:f8:98:f8:20:f5:78:ad:71: ac:93:9a:7d:04:85:fb:21:73:b1:0e:0d:2f:8b:62:b8:33:5d: c2:67:61:25:b2:7c:e6:a9:8e:27:af:cd:78:db:9b:4f:13:5c: 9d:8b:d2:5d:61:52:01:f5:60:94:35:17:12:48:29:69:98:87: d4:81:7d:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt57JXzbTULCFFMc3INw3bUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczOWYzZWJjZDI2NzkyYjkxM2MxZGNiOTk0MTk5NmU5OThm MTYwNzgwHhcNMjYwMTAxMTQxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzczNWEzMzE4ZTVmZTNjNmYzODFlZDM1MTA2M2I3ZWI2NDFlMDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8V4akOrPNCbAxW8Guf4DXOxr8/Oa u58i/eIpHaVheGThHNkmSBww0KAV2Q2TgQrcURDhh/bVfT4ZsjXXIBHXNFgtYw0o b8Kz5rBinD8RybHjuBTGlUMLOZ04dNmtilAY1+VubCOE31VXKuqdInm7HgUsDdac 4XW7zoj8dKs3HC2fI2VCyNGZkIFQYwJbAVmbRatbmPCXjB6ozXLEf1GPSmnK70pu fK/Ex9kGOWw5eq7ncBCEL0p2TYfpM7wOSQlgP4owI4hGE1ITEix56p4/pI18LJrx KmpZZ+WnpuWHj0x2zZPJ57AaW9L/uKFf2vQwdniptHy7YCySm9+TCqMaVQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFLxzWjMY5f48bzge01EGO362QeAQMB8GA1UdIwQY MBaAFHOfPrzSZ5K5E8HcuZQZlumY8WB4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYzU4LXZOSm5rcmtUd2R5NWxCbVc2Wmp4WUhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9kMmQ5OWUtYTdjMS00M2U4LTkzZjUt YTExYTk2ZDIxODYxLzEvdkhOYU14amxfanh2T0I3VFVRWTdmclpCNEJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9kMmQ5OWUtYTdjMS00M2U4LTkzZjUtYTExYTk2ZDIxODYx LzEvYzU4LXZOSm5rcmtUd2R5NWxCbVc2Wmp4WUhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDHwcoAwQD Lh2QAwQFVe2gAwQCuRKMAwQD1G2gAwQE2aswMA0EAgACMAcDBQAqA5UAMA0GCSqG SIb3DQEBCwUAA4IBAQBrAxeLu3Y7wBp9g3VydaWyWgAIrr/UBHEmslkLeUjaUX2h SqAucCsie2BA5DVWGN+mYTGoYqxI6XnyHT0RG6qhdbD0ui4mhN7cCTH5b+DudzsS +ZmGgU+Gr5EI5+wpu/+BhrYl9ukdXjui9hY6TROW1+FGlrNNPgbCpTYUT/VFlUf4 hZUzIlLECY5cbHmoOWvrQhDP1aBBCP8AOsT/ykFJ0PGabBFh6j1x50ZnwZGRt4tq 579Y7bdm6/j6A9BI+Jj4IPV4rXGsk5p9BIX7IXOxDg0vi2K4M13CZ2ElsnzmqY4n r81425tPE1ydi9JdYVIB9WCUNRcSSClpmIfUgX2s -----END CERTIFICATE-----Generated at Sat Jan 3 06:25:50 2026 by rpki-client