This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/38ec5b-336d-4a1c-a84a-f6c6859b30f0/1/vhW7lS-JBYebJEO-U1J2yweu6Yo.roa File: vhW7lS-JBYebJEO-U1J2yweu6Yo.roa (raw, json) Hash identifier: hv3bo8RYqKbVjpyma1UuE8rn8DDYyjzn6U1qa0IMKCI= Subject key identifier: BE:15:BB:95:2F:89:05:87:9B:24:43:BE:53:52:76:CB:07:AE:E9:8A Certificate issuer: /CN=e29ed9a9d1b6b5383ebf946d5fc54980612563ea Certificate serial: 019B7910DD28193A85F827A82C48921061BC Authority key identifier: E2:9E:D9:A9:D1:B6:B5:38:3E:BF:94:6D:5F:C5:49:80:61:25:63:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4p7ZqdG2tTg-v5RtX8VJgGElY-o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/38ec5b-336d-4a1c-a84a-f6c6859b30f0/1/vhW7lS-JBYebJEO-U1J2yweu6Yo.roa Signing time: Thu 01 Jan 2026 10:18:26 +0000 ROA not before: Thu 01 Jan 2026 10:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197745 IP address blocks: 185.2.0.0/22 maxlen: 24 2a00:90c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/38ec5b-336d-4a1c-a84a-f6c6859b30f0/1/4p7ZqdG2tTg-v5RtX8VJgGElY-o.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/38ec5b-336d-4a1c-a84a-f6c6859b30f0/1/4p7ZqdG2tTg-v5RtX8VJgGElY-o.mft rsync://rpki.ripe.net/repository/DEFAULT/4p7ZqdG2tTg-v5RtX8VJgGElY-o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:dd:28:19:3a:85:f8:27:a8:2c:48:92:10:61:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e29ed9a9d1b6b5383ebf946d5fc54980612563ea Validity Not Before: Jan 1 10:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be15bb952f8905879b2443be535276cb07aee98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4f:80:a9:9e:be:17:06:93:11:3a:37:9b:bb: 54:1e:9a:59:49:7b:af:dd:44:f3:01:b1:24:9f:f9: 55:e0:d2:a1:5b:5b:4e:5c:5a:8f:d8:d5:dc:0e:b1: 55:4d:33:09:98:50:e3:60:72:39:02:37:53:b0:45: 6b:59:a8:bb:d7:25:1d:45:d7:8c:ff:3f:9f:0e:b1: f9:ab:85:8c:d2:44:f7:63:a3:9a:19:45:99:84:6b: be:2b:43:a9:25:fc:36:53:49:5b:d2:cc:3b:a9:c2: c4:af:99:90:89:7c:cd:d3:d0:3f:58:ef:6b:55:95: 24:cc:e7:0e:31:16:85:24:79:a1:22:c5:16:1d:9e: 32:d6:7a:80:e1:2a:4a:b3:52:2e:a3:19:39:5a:fe: f3:43:a4:f5:8d:71:2f:63:5d:c5:9a:88:be:83:88: e5:6f:61:39:d3:c7:6a:0b:45:78:06:5e:8a:e8:c2: b2:2d:3b:60:28:d4:66:71:01:7d:bb:ea:63:f7:1e: f1:ba:56:13:50:1c:03:58:53:97:bc:03:fb:19:e2: 1d:ae:f3:4d:d7:2b:78:b6:bf:12:4e:6e:b1:f2:5e: 1f:09:fe:bd:a7:aa:fc:33:98:5b:4c:26:82:fd:8e: d0:fa:7f:af:2a:09:1f:3e:14:b0:21:b8:42:19:57: 07:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:15:BB:95:2F:89:05:87:9B:24:43:BE:53:52:76:CB:07:AE:E9:8A X509v3 Authority Key Identifier: keyid:E2:9E:D9:A9:D1:B6:B5:38:3E:BF:94:6D:5F:C5:49:80:61:25:63:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4p7ZqdG2tTg-v5RtX8VJgGElY-o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/38ec5b-336d-4a1c-a84a-f6c6859b30f0/1/vhW7lS-JBYebJEO-U1J2yweu6Yo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/38ec5b-336d-4a1c-a84a-f6c6859b30f0/1/4p7ZqdG2tTg-v5RtX8VJgGElY-o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.2.0.0/22 IPv6: 2a00:90c0::/29 Signature Algorithm: sha256WithRSAEncryption 0a:9d:21:bc:90:3f:4d:00:3e:52:a7:4e:1b:bf:d1:e5:5a:b3: 86:12:2c:a7:42:d7:21:5f:ac:66:94:f8:45:93:e7:51:8a:62: d4:f6:e7:91:63:43:62:4a:56:33:ff:f2:d5:4b:54:97:5b:72: f5:90:81:c1:17:4f:b2:f1:0d:31:a7:40:9d:dc:57:d2:76:c4: 4d:ef:c0:19:2b:74:16:39:16:eb:06:04:9a:bb:f4:ab:67:fd: 56:f9:e7:85:fe:e0:55:45:a9:5d:5b:10:2c:18:9c:64:2f:0f: de:b3:96:bd:d1:bf:50:98:69:02:0c:d5:4d:3b:21:d2:ec:05: af:d4:83:96:42:1f:7f:9a:ef:b0:7a:62:d2:30:26:61:91:89: bf:12:a4:49:30:b1:2d:15:ea:1b:a4:d5:16:c8:ae:2d:8c:19: ef:36:2d:62:16:44:de:67:25:1f:a1:64:e4:6f:57:9e:67:38: d7:57:16:23:ac:13:69:9d:74:53:15:6b:a4:33:e2:4a:54:7f: 05:b8:5c:32:6b:c9:3d:20:80:ee:a6:2c:88:63:1c:b4:3e:60: 5e:c9:fe:96:39:49:bd:4e:ee:91:15:08:ac:90:90:e2:8d:3a: e3:d9:86:04:41:dc:a3:54:89:81:6f:1a:bd:a5:6c:7c:1d:93: d3:e5:de:b1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EN0oGTqF+CeoLEiSEGG8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyOWVkOWE5ZDFiNmI1MzgzZWJmOTQ2ZDVmYzU0OTgwNjEy NTYzZWEwHhcNMjYwMTAxMTAxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTE1YmI5NTJmODkwNTg3OWIyNDQzYmU1MzUyNzZjYjA3YWVlOThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0+AqZ6+FwaTETo3m7tUHppZSXuv 3UTzAbEkn/lV4NKhW1tOXFqP2NXcDrFVTTMJmFDjYHI5AjdTsEVrWai71yUdRdeM /z+fDrH5q4WM0kT3Y6OaGUWZhGu+K0OpJfw2U0lb0sw7qcLEr5mQiXzN09A/WO9r VZUkzOcOMRaFJHmhIsUWHZ4y1nqA4SpKs1Iuoxk5Wv7zQ6T1jXEvY13Fmoi+g4jl b2E508dqC0V4Bl6K6MKyLTtgKNRmcQF9u+pj9x7xulYTUBwDWFOXvAP7GeIdrvNN 1yt4tr8STm6x8l4fCf69p6r8M5hbTCaC/Y7Q+n+vKgkfPhSwIbhCGVcHEQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL4Vu5UviQWHmyRDvlNSdssHrumKMB8GA1UdIwQY MBaAFOKe2anRtrU4Pr+UbV/FSYBhJWPqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHA3WnFkRzJ0VGctdjVSdFg4VkpnR0VsWS1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zOGVjNWItMzM2ZC00YTFjLWE4NGEt ZjZjNjg1OWIzMGYwLzEvdmhXN2xTLUpCWWViSkVPLVUxSjJ5d2V1NllvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi8zOGVjNWItMzM2ZC00YTFjLWE4NGEtZjZjNjg1OWIzMGYw LzEvNHA3WnFkRzJ0VGctdjVSdFg4VkpnR0VsWS1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQIAMA0E AgACMAcDBQMqAJDAMA0GCSqGSIb3DQEBCwUAA4IBAQAKnSG8kD9NAD5Sp04bv9Hl WrOGEiynQtchX6xmlPhFk+dRimLU9ueRY0NiSlYz//LVS1SXW3L1kIHBF0+y8Q0x p0Cd3FfSdsRN78AZK3QWORbrBgSau/SrZ/1W+eeF/uBVRaldWxAsGJxkLw/es5a9 0b9QmGkCDNVNOyHS7AWv1IOWQh9/mu+wemLSMCZhkYm/EqRJMLEtFeobpNUWyK4t jBnvNi1iFkTeZyUfoWTkb1eeZzjXVxYjrBNpnXRTFWukM+JKVH8FuFwya8k9IIDu piyIYxy0PmBeyf6WOUm9Tu6RFQiskJDijTrj2YYEQdyjVImBbxq9pWx8HZPT5d6x -----END CERTIFICATE-----Generated at Thu Jan 1 21:18:48 2026 by rpki-client