This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/VzdgV1bxOOkMBio-OPwUCejv-eI.roa File: VzdgV1bxOOkMBio-OPwUCejv-eI.roa (raw, json) Hash identifier: Dzp/xLOc3m+FFo59d9oRR774pTKwEklWqH44s+jw078= Subject key identifier: 57:37:60:57:56:F1:38:E9:0C:06:2A:3E:38:FC:14:09:E8:EF:F9:E2 Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823 Certificate serial: 019B7D5B4D0AA40F443D2FB4970D45002863 Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/VzdgV1bxOOkMBio-OPwUCejv-eI.roa Signing time: Fri 02 Jan 2026 06:18:13 +0000 ROA not before: Fri 02 Jan 2026 06:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207905 IP address blocks: 158.173.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.mft rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 08:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:4d:0a:a4:0f:44:3d:2f:b4:97:0d:45:00:28:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823 Validity Not Before: Jan 2 06:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5737605756f138e90c062a3e38fc1409e8eff9e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2c:0c:0c:16:c4:89:a7:77:ec:2a:69:f6:85: 52:4d:a7:ae:10:09:49:d0:3f:1f:ac:da:bd:95:50: c8:62:68:70:97:2c:c0:8c:0c:ba:7c:ce:87:a6:6d: 70:bb:26:8c:c0:24:b1:7e:68:92:4d:61:b7:40:6c: 71:d0:86:95:c3:66:de:d0:54:10:21:23:13:e6:45: 20:a3:c3:61:bc:30:99:ee:fa:9a:34:f1:42:25:4f: 1d:ce:02:2e:74:e9:ef:19:2a:eb:5f:76:13:a0:97: 03:0c:63:e7:91:40:9e:eb:4d:5c:3f:00:41:48:bf: 02:a9:8d:39:89:89:aa:68:5c:88:b7:8f:ba:f8:64: c3:54:a8:0d:78:a8:4a:ff:a1:6a:18:11:32:8f:da: 05:b6:a4:aa:29:87:f8:f9:ab:13:5f:c4:13:1c:f3: 36:af:83:90:dd:9a:ab:6d:ab:db:45:c7:5a:d3:89: a1:cb:7a:4a:86:15:cb:7c:00:3d:cb:b8:72:30:de: 77:27:2d:14:b2:c6:51:7d:37:aa:7c:aa:6c:56:db: 23:8d:67:cf:b2:f8:ff:67:8f:6c:77:ab:b2:46:c8: 36:b9:8a:86:77:25:39:bc:6b:2e:4b:3c:67:75:55: 16:6e:08:ff:38:27:e8:83:50:60:cd:47:f5:cb:03: 25:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:37:60:57:56:F1:38:E9:0C:06:2A:3E:38:FC:14:09:E8:EF:F9:E2 X509v3 Authority Key Identifier: keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/VzdgV1bxOOkMBio-OPwUCejv-eI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.40.0/24 Signature Algorithm: sha256WithRSAEncryption 97:33:8c:bc:63:72:20:f6:3b:8c:94:62:e6:72:11:77:da:04: a2:20:6e:22:37:2c:9e:cc:74:28:48:14:e2:58:89:75:fb:6c: 6c:df:c4:06:1c:20:90:40:9a:b0:e9:3b:66:b1:16:76:9d:7e: 6e:66:4b:7f:08:28:d6:77:64:16:3d:12:40:35:95:ff:93:f4: d0:92:83:c6:6c:6c:c4:8e:52:6d:d1:cd:27:23:90:0d:5e:a1: 10:b1:79:a7:ed:28:91:4d:85:7b:82:14:01:d8:4c:b8:1f:31: 63:a5:e1:21:85:9a:04:64:9c:5c:02:2b:17:e3:48:84:dd:aa: 2d:85:ee:ad:e6:7d:d4:63:72:8e:6d:15:07:59:ad:c2:7f:e4: 55:57:d0:ce:b8:5c:4e:02:ac:e4:67:f4:85:89:e8:6b:79:40: 06:08:2b:0c:e3:7a:32:96:81:ad:4e:ba:30:51:2d:be:f7:65: f9:1a:e3:c2:e5:0e:3d:56:ac:d4:45:c5:ba:dd:79:53:7e:b3: 92:c0:ba:2c:d1:73:04:0c:f2:01:28:77:cc:8a:c8:81:03:c5: c7:eb:13:f0:8d:7c:4c:d0:79:9f:ac:4f:2f:4d:07:12:ad:0d: 39:be:13:04:e5:fd:bd:f1:ad:29:0b:26:a9:81:c5:b5:49:05: 48:33:58:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9W00KpA9EPS+0lw1FAChjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyNmEyOGI3YzYzZWY2YWIyMTRhNTJjZmE3YzNlNzhkYjlh NDA4MjMwHhcNMjYwMTAyMDYxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NzM3NjA1NzU2ZjEzOGU5MGMwNjJhM2UzOGZjMTQwOWU4ZWZmOWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyiwMDBbEiad37Cpp9oVSTaeuEAlJ 0D8frNq9lVDIYmhwlyzAjAy6fM6Hpm1wuyaMwCSxfmiSTWG3QGxx0IaVw2be0FQQ ISMT5kUgo8NhvDCZ7vqaNPFCJU8dzgIudOnvGSrrX3YToJcDDGPnkUCe601cPwBB SL8CqY05iYmqaFyIt4+6+GTDVKgNeKhK/6FqGBEyj9oFtqSqKYf4+asTX8QTHPM2 r4OQ3ZqrbavbRcda04mhy3pKhhXLfAA9y7hyMN53Jy0UssZRfTeqfKpsVtsjjWfP svj/Z49sd6uyRsg2uYqGdyU5vGsuSzxndVUWbgj/OCfog1BgzUf1ywMlewIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFc3YFdW8TjpDAYqPjj8FAno7/niMB8GA1UdIwQY MBaAFGJqKLfGPvarIUpSz6fD5425pAgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWW1vb3Q4WS05cXNoU2xMUHA4UG5qYm1rQ0NNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zYzA3ODUtYjI3My00MDcyLWE2MzUt ZDJjZDI2YjY5ZGYxLzEvVnpkZ1YxYnhPT2tNQmlvLU9Qd1VDZWp2LWVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8zYzA3ODUtYjI3My00MDcyLWE2MzUtZDJjZDI2YjY5ZGYx LzEvWW1vb3Q4WS05cXNoU2xMUHA4UG5qYm1rQ0NNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnq0oMA0G CSqGSIb3DQEBCwUAA4IBAQCXM4y8Y3Ig9juMlGLmchF32gSiIG4iNyyezHQoSBTi WIl1+2xs38QGHCCQQJqw6TtmsRZ2nX5uZkt/CCjWd2QWPRJANZX/k/TQkoPGbGzE jlJt0c0nI5ANXqEQsXmn7SiRTYV7ghQB2Ey4HzFjpeEhhZoEZJxcAisX40iE3aot he6t5n3UY3KObRUHWa3Cf+RVV9DOuFxOAqzkZ/SFiehreUAGCCsM43oyloGtTrow US2+92X5GuPC5Q49VqzURcW63XlTfrOSwLos0XMEDPIBKHfMisiBA8XH6xPwjXxM 0HmfrE8vTQcSrQ05vhME5f298a0pCyapgcW1SQVIM1jH -----END CERTIFICATE-----Generated at Fri Jan 23 13:57:18 2026 by rpki-client