This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/vrzJKe06Kv3pGusg7vo_4lpx3jQ.roa File: vrzJKe06Kv3pGusg7vo_4lpx3jQ.roa (raw, json) Hash identifier: hLnvHO8i7CwgpM8QFslqTR7QsmT/3aqV/BvJ6FLuFCQ= Subject key identifier: BE:BC:C9:29:ED:3A:2A:FD:E9:1A:EB:20:EE:FA:3F:E2:5A:71:DE:34 Certificate issuer: /CN=85db83a8365a604476f282d24d327ad1ef0fde52 Certificate serial: 019B7D5D389AEE1E82B0752D08BC0F7C31BE Authority key identifier: 85:DB:83:A8:36:5A:60:44:76:F2:82:D2:4D:32:7A:D1:EF:0F:DE:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hduDqDZaYER28oLSTTJ60e8P3lI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/vrzJKe06Kv3pGusg7vo_4lpx3jQ.roa Signing time: Fri 02 Jan 2026 06:20:19 +0000 ROA not before: Fri 02 Jan 2026 06:20:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41153 IP address blocks: 91.215.4.0/22 maxlen: 24 194.140.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/hduDqDZaYER28oLSTTJ60e8P3lI.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/hduDqDZaYER28oLSTTJ60e8P3lI.mft rsync://rpki.ripe.net/repository/DEFAULT/hduDqDZaYER28oLSTTJ60e8P3lI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:38:9a:ee:1e:82:b0:75:2d:08:bc:0f:7c:31:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85db83a8365a604476f282d24d327ad1ef0fde52 Validity Not Before: Jan 2 06:20:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bebcc929ed3a2afde91aeb20eefa3fe25a71de34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ed:99:a1:bf:c5:6e:0d:6c:36:98:31:7a:36: 39:8f:69:f2:f0:e7:bb:28:ac:ef:6b:ae:22:f8:af: 6c:b7:20:7e:58:10:05:1c:06:31:e1:61:b7:ce:8d: 8f:cf:23:58:bc:c1:ae:05:9e:55:7f:75:cd:3f:1f: 9d:43:f8:3f:36:ea:09:d8:77:bc:7a:48:d0:d8:cb: b9:11:21:8c:43:50:7e:44:07:36:b4:7c:59:b5:8d: fd:e8:3c:0d:d3:b2:3b:a5:54:ac:8d:e3:9c:4a:c9: b1:0f:f5:b7:18:10:51:81:77:ed:5e:7b:fb:87:f0: 0a:3c:e7:69:b6:16:94:ca:eb:87:ec:f3:49:ff:54: db:69:ac:df:b0:55:db:8f:44:eb:75:21:c0:b7:5e: 4c:1d:1b:2a:a2:d8:d6:ac:30:c8:b8:5d:ad:56:5f: 29:c3:b2:94:2b:24:3f:b5:06:36:b6:a0:ad:31:21: 35:35:7e:e5:5a:06:52:4b:da:7c:d0:2f:b0:f2:38: 09:32:4e:31:ea:13:dc:84:b4:f3:0e:1d:b0:ca:06: ff:3e:d4:f3:71:a7:07:68:17:87:06:38:30:1a:c1: 62:73:e5:40:81:f1:73:b6:18:90:d3:46:f3:df:ca: bb:bb:aa:84:05:30:88:5d:83:32:98:3a:ed:16:90: 00:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BC:C9:29:ED:3A:2A:FD:E9:1A:EB:20:EE:FA:3F:E2:5A:71:DE:34 X509v3 Authority Key Identifier: keyid:85:DB:83:A8:36:5A:60:44:76:F2:82:D2:4D:32:7A:D1:EF:0F:DE:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hduDqDZaYER28oLSTTJ60e8P3lI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/vrzJKe06Kv3pGusg7vo_4lpx3jQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/hduDqDZaYER28oLSTTJ60e8P3lI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.215.4.0/22 194.140.246.0/24 Signature Algorithm: sha256WithRSAEncryption 89:51:33:b9:49:b2:40:91:27:aa:4f:37:8b:c5:55:11:8d:03: 92:f2:f9:f4:c9:9e:ea:f0:c7:2d:5e:c6:7f:b7:06:21:85:76: bf:a6:0d:80:38:1e:dd:2d:d0:90:d9:06:3b:b6:0e:c4:25:ea: ba:87:72:57:fc:75:43:ed:00:ff:b6:51:12:c4:d9:12:f9:f8: 61:bd:80:26:1f:ed:4f:7a:8d:26:1e:59:4a:26:5f:46:a6:b0: d4:a9:9f:e3:92:d8:b3:7f:7c:74:2e:23:10:79:fa:d4:fe:4d: 6b:64:47:5e:ba:41:f2:70:e2:65:11:7f:c9:a5:50:5e:e3:fe: 24:b3:9e:77:c7:55:34:d6:51:64:a8:ec:51:0c:b6:83:e8:ae: 70:d1:4c:f7:d4:ab:8c:33:bb:af:19:37:02:f3:0f:18:76:f4: 4e:1c:63:99:b1:6d:eb:40:8b:8d:f7:b2:a2:01:0e:08:68:24: e0:e6:5a:24:0b:41:f4:73:28:71:0f:14:10:47:da:1a:4b:12: c1:b5:ba:57:94:12:9c:92:9b:06:55:e7:af:57:98:34:33:38: db:04:fd:10:0f:42:a6:fe:4d:ef:f5:d8:b4:2c:e4:78:8d:55: cb:b2:f2:25:04:54:07:0d:be:66:40:06:22:54:1a:7f:57:b3: fc:a5:6d:df -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9XTia7h6CsHUtCLwPfDG+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZGI4M2E4MzY1YTYwNDQ3NmYyODJkMjRkMzI3YWQxZWYw ZmRlNTIwHhcNMjYwMTAyMDYyMDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWJjYzkyOWVkM2EyYWZkZTkxYWViMjBlZWZhM2ZlMjVhNzFkZTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuu2Zob/Fbg1sNpgxejY5j2ny8Oe7 KKzva64i+K9styB+WBAFHAYx4WG3zo2PzyNYvMGuBZ5Vf3XNPx+dQ/g/NuoJ2He8 ekjQ2Mu5ESGMQ1B+RAc2tHxZtY396DwN07I7pVSsjeOcSsmxD/W3GBBRgXftXnv7 h/AKPOdpthaUyuuH7PNJ/1TbaazfsFXbj0TrdSHAt15MHRsqotjWrDDIuF2tVl8p w7KUKyQ/tQY2tqCtMSE1NX7lWgZSS9p80C+w8jgJMk4x6hPchLTzDh2wygb/PtTz cacHaBeHBjgwGsFic+VAgfFzthiQ00bz38q7u6qEBTCIXYMymDrtFpAAhQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFL68ySntOir96RrrIO76P+Jacd40MB8GA1UdIwQY MBaAFIXbg6g2WmBEdvKC0k0yetHvD95SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGR1RHFEWmFZRVIyOG9MU1RUSjYwZThQM2xJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yYzhmMDgtZTU5OS00NGYzLWJiYzEt OGNiZWY5MTNlMzQyLzEvdnJ6SktlMDZLdjNwR3VzZzd2b180bHB4M2pRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8yYzhmMDgtZTU5OS00NGYzLWJiYzEtOGNiZWY5MTNlMzQy LzEvaGR1RHFEWmFZRVIyOG9MU1RUSjYwZThQM2xJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW9cEAwQA woz2MA0GCSqGSIb3DQEBCwUAA4IBAQCJUTO5SbJAkSeqTzeLxVURjQOS8vn0yZ7q 8MctXsZ/twYhhXa/pg2AOB7dLdCQ2QY7tg7EJeq6h3JX/HVD7QD/tlESxNkS+fhh vYAmH+1Peo0mHllKJl9GprDUqZ/jktizf3x0LiMQefrU/k1rZEdeukHycOJlEX/J pVBe4/4ks553x1U01lFkqOxRDLaD6K5w0Uz31KuMM7uvGTcC8w8YdvROHGOZsW3r QIuN97KiAQ4IaCTg5lokC0H0cyhxDxQQR9oaSxLBtbpXlBKckpsGVeevV5g0Mzjb BP0QD0Km/k3v9di0LOR4jVXLsvIlBFQHDb5mQAYiVBp/V7P8pW3f -----END CERTIFICATE-----Generated at Tue Jan 27 02:13:20 2026 by rpki-client