This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vkSOzCbWxXVE1i3At-sNNCxqlkM.roa File: vkSOzCbWxXVE1i3At-sNNCxqlkM.roa (raw, json) Hash identifier: S9kOozaJr4eTIL0/lY0wRLTeBXqDXUPbwXx1kILAQxw= Subject key identifier: BE:44:8E:CC:26:D6:C5:75:44:D6:2D:C0:B7:EB:0D:34:2C:6A:96:43 Certificate issuer: /CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd Certificate serial: 019B7AC7F2A1CAE8118BFE1304C56DAB2522 Authority key identifier: BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vkSOzCbWxXVE1i3At-sNNCxqlkM.roa Signing time: Thu 01 Jan 2026 18:18:02 +0000 ROA not before: Thu 01 Jan 2026 18:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50304 IP address blocks: 185.37.0.0/24 maxlen: 24 185.37.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.mft rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 18:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:f2:a1:ca:e8:11:8b:fe:13:04:c5:6d:ab:25:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd Validity Not Before: Jan 1 18:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be448ecc26d6c57544d62dc0b7eb0d342c6a9643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:96:8c:77:ef:df:c6:42:18:f2:27:4f:2d:8b: ba:43:61:7c:10:22:b0:e3:d6:9d:30:6a:d2:db:83: ca:4c:6c:4b:aa:76:ff:74:29:72:3f:f5:22:97:f9: 54:08:b6:1c:bc:dc:03:e8:22:34:46:b8:61:62:3f: 8c:3a:76:3a:1d:27:f1:57:c5:fd:af:12:77:a1:bd: 27:42:53:25:24:0d:b8:41:e8:a8:37:a0:43:ca:99: c1:b8:b1:28:bd:07:81:1a:e6:93:1b:fe:71:da:e5: 1e:26:f3:21:8c:66:f8:d3:a1:b4:0e:a1:40:2d:94: 34:16:80:47:c7:d4:31:5a:03:68:07:8a:37:da:de: fd:d6:8b:c9:2c:49:44:6d:07:42:8a:53:71:6f:d3: 68:32:99:69:46:48:f0:af:e6:64:5b:e3:a1:1a:9f: f1:ba:22:27:f6:ed:21:9e:ed:c1:54:96:b1:75:21: 1d:b2:57:c9:d8:07:31:ed:a9:22:3c:c2:b8:a3:56: 49:ad:9f:2c:49:50:be:3e:45:a8:f6:e8:88:72:7c: 6e:a7:6c:9d:23:3d:27:56:dd:c2:1a:f3:49:b0:33: 9b:9b:dc:df:ec:78:48:bc:17:c9:b3:17:5b:ee:70: 52:f8:73:08:bb:b5:4b:fa:cc:74:63:62:b2:15:07: 8c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:44:8E:CC:26:D6:C5:75:44:D6:2D:C0:B7:EB:0D:34:2C:6A:96:43 X509v3 Authority Key Identifier: keyid:BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vkSOzCbWxXVE1i3At-sNNCxqlkM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.37.0.0/23 Signature Algorithm: sha256WithRSAEncryption 65:f4:ee:7e:e5:d6:8d:9c:98:1d:4d:fe:d1:5f:41:03:f0:46: d5:64:30:55:0e:64:7f:0e:6e:a7:af:5e:ba:6b:3e:c8:ba:e0: 9d:b8:1d:1e:9b:53:08:84:5a:12:4d:3e:aa:b7:fc:00:0f:0d: d4:d0:e5:ef:f0:19:4c:d9:56:66:77:28:2a:72:20:a2:89:59: 40:d9:49:3c:ba:ac:64:54:b6:00:9c:87:fc:bc:ba:d6:ac:25: 68:5a:3c:2b:51:f6:04:6b:c2:a7:2a:c1:d2:6b:bf:e9:f4:0b: e0:84:18:3f:2b:ef:2f:e1:a9:81:02:d7:34:e4:55:21:f3:19: 4a:20:66:9f:b2:a0:12:67:f1:fe:09:44:16:c8:0c:55:fc:8d: 21:4c:26:3b:86:69:cd:b2:37:de:c1:ae:8b:e0:5b:8c:d5:7a: e5:2f:16:0b:3d:d9:da:3e:a0:3b:45:11:18:d3:eb:ad:7b:f7: d8:85:e2:c0:5d:19:53:c9:4a:54:87:3b:04:b3:f9:42:fe:77: d4:4f:8f:08:11:21:b6:65:74:e7:5b:a4:77:51:11:7a:59:4b: aa:63:4c:3e:fa:73:07:2d:c2:16:3c:79:dc:f0:15:d6:da:6a: 08:7f:65:92:f4:ba:16:6f:04:af:d0:59:91:50:0d:27:e3:d9: 8d:5f:9c:4d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x/KhyugRi/4TBMVtqyUiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkYjgzZTk5YmY3MjU0Zjk0ODA1N2E1ZTk4MWJlNmZhNWMy MDU0ZGQwHhcNMjYwMTAxMTgxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTQ0OGVjYzI2ZDZjNTc1NDRkNjJkYzBiN2ViMGQzNDJjNmE5NjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpaMd+/fxkIY8idPLYu6Q2F8ECKw 49adMGrS24PKTGxLqnb/dClyP/Uil/lUCLYcvNwD6CI0RrhhYj+MOnY6HSfxV8X9 rxJ3ob0nQlMlJA24QeioN6BDypnBuLEovQeBGuaTG/5x2uUeJvMhjGb406G0DqFA LZQ0FoBHx9QxWgNoB4o32t791ovJLElEbQdCilNxb9NoMplpRkjwr+ZkW+OhGp/x uiIn9u0hnu3BVJaxdSEdslfJ2Acx7akiPMK4o1ZJrZ8sSVC+PkWo9uiIcnxup2yd Iz0nVt3CGvNJsDObm9zf7HhIvBfJsxdb7nBS+HMIu7VL+sx0Y2KyFQeMBQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL5Ejswm1sV1RNYtwLfrDTQsapZDMB8GA1UdIwQY MBaAFL24Ppm/clT5SAV6Xpgb5vpcIFTdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmJnLW1iOXlWUGxJQlhwZW1Cdm0tbHdnVk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC81ZTIwNWEtZWMwYS00ZmVlLWFlZjEt ZTQ5NWFhYTBjYWMwLzEvdmtTT3pDYld4WFZFMWkzQXQtc05OQ3hxbGtNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC81ZTIwNWEtZWMwYS00ZmVlLWFlZjEtZTQ5NWFhYTBjYWMw LzEvdmJnLW1iOXlWUGxJQlhwZW1Cdm0tbHdnVk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuSUAMA0G CSqGSIb3DQEBCwUAA4IBAQBl9O5+5daNnJgdTf7RX0ED8EbVZDBVDmR/Dm6nr166 az7IuuCduB0em1MIhFoSTT6qt/wADw3U0OXv8BlM2VZmdygqciCiiVlA2Uk8uqxk VLYAnIf8vLrWrCVoWjwrUfYEa8KnKsHSa7/p9AvghBg/K+8v4amBAtc05FUh8xlK IGafsqASZ/H+CUQWyAxV/I0hTCY7hmnNsjfewa6L4FuM1XrlLxYLPdnaPqA7RREY 0+ute/fYheLAXRlTyUpUhzsEs/lC/nfUT48IESG2ZXTnW6R3URF6WUuqY0w++nMH LcIWPHnc8BXW2moIf2WS9LoWbwSv0FmRUA0n49mNX5xN -----END CERTIFICATE-----Generated at Fri Jan 23 21:38:41 2026 by rpki-client