This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VR9kkM6riL_UnjiPLn997_UOhiI.roa File: VR9kkM6riL_UnjiPLn997_UOhiI.roa (raw, json) Hash identifier: 7cUMyf8WFPegociCFOdgoKkPKZzdoMo8ElLPrSWbs0w= Subject key identifier: 55:1F:64:90:CE:AB:88:BF:D4:9E:38:8F:2E:7F:7D:EF:F5:0E:86:22 Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Certificate serial: 019B797E61ADA6703003C3B34D1D4EE657BC Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VR9kkM6riL_UnjiPLn997_UOhiI.roa Signing time: Thu 01 Jan 2026 12:18:04 +0000 ROA not before: Thu 01 Jan 2026 12:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 174 IP address blocks: 89.251.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.mft rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:61:ad:a6:70:30:03:c3:b3:4d:1d:4e:e6:57:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Validity Not Before: Jan 1 12:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=551f6490ceab88bfd49e388f2e7f7deff50e8622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e5:7d:d6:34:ee:c8:d3:fb:18:df:e3:d2:cb: 3b:fd:b4:88:18:af:9d:2b:ad:a8:69:4c:b0:6a:73: 2f:ef:a9:26:ce:67:12:e0:ae:eb:5d:ba:5a:78:f5: d0:09:c0:cd:4b:28:d2:2c:02:15:55:56:4c:57:9e: 08:68:7a:03:d8:51:d2:47:f8:21:4d:c2:a4:b9:c5: 60:a4:e5:0a:d7:be:75:a1:1c:74:b7:f5:ac:c6:58: 49:78:ea:c2:0b:08:b7:1e:aa:b3:bf:81:f2:00:24: 3e:05:44:31:ac:e0:e4:0c:67:5f:0a:0a:cd:0d:ef: 02:2e:f2:5b:a1:27:9d:ba:0d:6f:d4:23:ed:cf:1c: e4:6c:a4:f4:a8:05:5f:a5:b6:c6:02:3c:30:ad:fc: c9:c6:75:bc:e8:13:68:2e:9c:ac:67:d0:80:84:90: 27:58:d1:ef:5e:c1:ab:58:4a:0a:cb:fd:1c:c2:6e: 79:4d:eb:a7:0a:ae:a5:6f:9b:63:64:4b:d8:0c:48: 3c:ad:ef:31:27:a8:44:91:95:0e:32:ad:d3:66:20: 96:82:87:6d:f2:5f:8a:67:a7:7d:11:57:74:35:c1: b7:1a:cc:94:f1:ea:f6:24:e2:bc:c4:44:24:37:a4: 56:65:30:0f:43:f8:2f:ea:05:15:b9:39:b8:d6:b5: f5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1F:64:90:CE:AB:88:BF:D4:9E:38:8F:2E:7F:7D:EF:F5:0E:86:22 X509v3 Authority Key Identifier: keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VR9kkM6riL_UnjiPLn997_UOhiI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.251.17.0/24 Signature Algorithm: sha256WithRSAEncryption 66:8c:a1:50:e8:e9:b0:00:a5:4d:17:ff:a7:1e:0e:1d:95:60: 5b:38:78:ca:38:de:17:ae:bf:6c:bd:38:e4:08:01:d7:4d:b0: bd:2b:fe:42:51:27:97:97:c9:20:6a:dc:13:3e:b5:aa:37:ba: ec:0d:d5:52:68:d2:65:94:61:ac:56:94:f9:f9:2f:7e:b2:f7: d4:05:f3:e9:65:a0:c3:cc:8b:11:bc:2a:f7:f5:c3:ce:0d:1d: ef:87:38:61:02:60:da:22:45:68:8e:b7:13:25:bc:c7:6d:18: 89:65:9b:df:86:4e:af:cd:c4:8d:fd:cd:6d:46:f8:d2:11:6e: aa:27:41:e1:db:68:c1:0a:52:db:e4:11:62:5f:76:81:a0:ce: 65:7c:01:50:b2:b7:3a:b1:b5:9d:29:70:80:f3:f2:7a:8b:c3: 35:f9:3b:bc:15:2e:0b:58:8c:44:95:f6:39:2e:0d:2e:15:c6: 00:d1:ea:6b:3a:f8:cc:3a:91:02:47:52:1c:ac:7a:75:ba:d0: cc:7e:0f:ef:15:c2:5e:6e:1e:87:dd:23:d4:f4:fc:1b:26:6b: 4c:ab:d6:2e:4f:72:33:ff:6e:ce:7b:96:c6:c5:c4:fc:31:45: 98:0e:c2:13:19:db:ca:f6:0f:c1:53:d6:fc:2c:4c:f7:eb:e5: 4a:ca:9b:6a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fmGtpnAwA8OzTR1O5le8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj NWFjOGQwHhcNMjYwMTAxMTIxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTFmNjQ5MGNlYWI4OGJmZDQ5ZTM4OGYyZTdmN2RlZmY1MGU4NjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouV91jTuyNP7GN/j0ss7/bSIGK+d K62oaUywanMv76kmzmcS4K7rXbpaePXQCcDNSyjSLAIVVVZMV54IaHoD2FHSR/gh TcKkucVgpOUK1751oRx0t/WsxlhJeOrCCwi3Hqqzv4HyACQ+BUQxrODkDGdfCgrN De8CLvJboSedug1v1CPtzxzkbKT0qAVfpbbGAjwwrfzJxnW86BNoLpysZ9CAhJAn WNHvXsGrWEoKy/0cwm55TeunCq6lb5tjZEvYDEg8re8xJ6hEkZUOMq3TZiCWgodt 8l+KZ6d9EVd0NcG3GsyU8er2JOK8xEQkN6RWZTAPQ/gv6gUVuTm41rX1ewIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFUfZJDOq4i/1J44jy5/fe/1DoYiMB8GA1UdIwQY MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt MzE4YTI2ZDRhOGM5LzEvVlI5a2tNNnJpTF9VbmppUExuOTk3X1VPaGlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5 LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfsRMA0G CSqGSIb3DQEBCwUAA4IBAQBmjKFQ6OmwAKVNF/+nHg4dlWBbOHjKON4Xrr9svTjk CAHXTbC9K/5CUSeXl8kgatwTPrWqN7rsDdVSaNJllGGsVpT5+S9+svfUBfPpZaDD zIsRvCr39cPODR3vhzhhAmDaIkVojrcTJbzHbRiJZZvfhk6vzcSN/c1tRvjSEW6q J0Hh22jBClLb5BFiX3aBoM5lfAFQsrc6sbWdKXCA8/J6i8M1+Tu8FS4LWIxElfY5 Lg0uFcYA0eprOvjMOpECR1IcrHp1utDMfg/vFcJebh6H3SPU9PwbJmtMq9YuT3Iz /27Oe5bGxcT8MUWYDsITGdvK9g/BU9b8LEz36+VKyptq -----END CERTIFICATE-----Generated at Mon Jan 12 00:51:31 2026 by rpki-client