This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/vRy4dtwuzcoaMObZOrhsdgekFn8.roa File: vRy4dtwuzcoaMObZOrhsdgekFn8.roa (raw, json) Hash identifier: EEHH4lnEcaLiLMDse86Umm3P044hYY8hcdkDDqvn/M4= Subject key identifier: BD:1C:B8:76:DC:2E:CD:CA:1A:30:E6:D9:3A:B8:6C:76:07:A4:16:7F Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Certificate serial: 019B7EA469A1DCC694F8E5CAA7D7F2D8A9F7 Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/vRy4dtwuzcoaMObZOrhsdgekFn8.roa Signing time: Fri 02 Jan 2026 12:17:42 +0000 ROA not before: Fri 02 Jan 2026 12:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20640 IP address blocks: 217.173.128.0/20 maxlen: 24 2001:4b88::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:69:a1:dc:c6:94:f8:e5:ca:a7:d7:f2:d8:a9:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Validity Not Before: Jan 2 12:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd1cb876dc2ecdca1a30e6d93ab86c7607a4167f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:81:4a:66:81:10:0b:d5:cf:41:1a:f4:f2:7b: ba:a5:0f:88:b7:c7:fd:5a:46:b0:3d:66:ff:75:21: b0:58:ae:ef:57:fe:51:85:2e:e1:c8:bb:0f:cc:3e: 4f:39:5b:cd:25:42:81:f0:f8:5a:0e:54:4d:bd:f7: 4b:ae:fa:43:de:de:ee:fb:19:cc:07:61:57:6a:47: f4:2e:95:18:8a:23:74:22:7b:f4:c2:04:28:89:b0: ab:19:95:86:25:9d:d2:1d:dc:95:c4:e0:77:57:76: c8:27:a5:78:05:d0:33:76:e0:ed:ae:a8:34:d1:17: 9b:70:d8:70:98:91:a6:16:e1:84:0a:40:25:b0:5b: 80:f8:20:3b:4d:a1:9a:c5:56:2f:5d:bd:0d:78:10: 2b:3e:62:a6:b9:68:45:32:67:3a:b2:89:e9:d8:3c: e9:c2:bf:98:28:28:ff:ff:f5:1e:23:dd:e9:84:71: e1:fc:8b:94:7d:4d:bb:62:bb:20:69:e5:14:e9:77: 66:cb:0b:05:7a:7e:7e:bd:46:ef:ad:d2:0f:3b:c5: 6c:0d:44:f7:e2:29:5d:f4:c0:c8:84:af:7b:21:56: 90:11:43:bd:a8:85:65:81:a6:36:bc:30:77:89:e6: f1:75:26:79:7b:5a:6f:c0:78:6e:ce:4d:98:d0:3e: c0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1C:B8:76:DC:2E:CD:CA:1A:30:E6:D9:3A:B8:6C:76:07:A4:16:7F X509v3 Authority Key Identifier: keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/vRy4dtwuzcoaMObZOrhsdgekFn8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.173.128.0/20 IPv6: 2001:4b88::/32 Signature Algorithm: sha256WithRSAEncryption 7f:db:3d:b2:a6:03:39:af:46:7e:9a:cd:09:56:d1:a5:a6:c6: 49:64:f2:ca:1e:6a:d9:e5:da:a7:57:d1:90:f2:f8:5b:f9:b5: 73:43:6e:df:9c:27:be:8e:4a:0d:a2:53:bd:7e:52:b2:d3:4c: 2b:e3:67:50:00:e7:a3:f8:93:7f:72:48:45:f0:ea:d4:06:7f: 7b:8e:84:59:f0:63:db:98:39:29:18:b3:f4:87:43:5e:df:60: 02:c3:06:b0:e0:a2:32:41:81:ae:0c:84:e1:45:90:52:45:f6: ec:ff:92:15:92:22:86:6b:ff:3a:ac:5e:32:1f:58:e1:94:4a: 7f:a3:bc:b3:4f:05:5d:0b:dd:f4:70:a1:1c:69:95:9c:f2:b8: 1d:2a:0d:71:ca:68:20:e7:11:f1:4a:c4:3b:e0:09:8f:cb:89: 73:47:8f:99:1a:42:59:77:6d:1f:a2:1f:9f:f2:bf:e1:88:ed: c4:4b:ee:0d:77:d2:a9:a8:dd:be:49:76:e6:c7:5e:0c:aa:b5: 37:69:71:b6:81:e5:bf:6a:8e:30:2d:43:fe:7b:3e:5c:8d:1a: 24:28:87:39:36:56:03:ef:a8:3e:76:83:ef:fa:f2:91:8a:2a: 0f:43:24:94:7d:c9:18:3e:79:47:11:6a:84:f4:d3:fb:1b:b6: 4f:56:c6:fc -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pGmh3MaU+OXKp9fy2Kn3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDcwYWYwZDg5ZDc4NWJhMThiYTYxN2RjMDllM2Y3MmM1 OTk2ZjMwHhcNMjYwMTAyMTIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDFjYjg3NmRjMmVjZGNhMWEzMGU2ZDkzYWI4NmM3NjA3YTQxNjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9oFKZoEQC9XPQRr08nu6pQ+It8f9 WkawPWb/dSGwWK7vV/5RhS7hyLsPzD5POVvNJUKB8PhaDlRNvfdLrvpD3t7u+xnM B2FXakf0LpUYiiN0Inv0wgQoibCrGZWGJZ3SHdyVxOB3V3bIJ6V4BdAzduDtrqg0 0RebcNhwmJGmFuGECkAlsFuA+CA7TaGaxVYvXb0NeBArPmKmuWhFMmc6sonp2Dzp wr+YKCj///UeI93phHHh/IuUfU27YrsgaeUU6XdmywsFen5+vUbvrdIPO8VsDUT3 4ild9MDIhK97IVaQEUO9qIVlgaY2vDB3iebxdSZ5e1pvwHhuzk2Y0D7A/QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL0cuHbcLs3KGjDm2Tq4bHYHpBZ/MB8GA1UdIwQY MBaAFIRHCvDYnXhboYumF9wJ4/csWZbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDIt ZTc2ZTNlMjkzZTAyLzEvdlJ5NGR0d3V6Y29hTU9iWk9yaHNkZ2VrRm44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDItZTc2ZTNlMjkzZTAy LzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQE2a2AMA0E AgACMAcDBQAgAUuIMA0GCSqGSIb3DQEBCwUAA4IBAQB/2z2ypgM5r0Z+ms0JVtGl psZJZPLKHmrZ5dqnV9GQ8vhb+bVzQ27fnCe+jkoNolO9flKy00wr42dQAOej+JN/ ckhF8OrUBn97joRZ8GPbmDkpGLP0h0Ne32ACwwaw4KIyQYGuDIThRZBSRfbs/5IV kiKGa/86rF4yH1jhlEp/o7yzTwVdC930cKEcaZWc8rgdKg1xymgg5xHxSsQ74AmP y4lzR4+ZGkJZd20foh+f8r/hiO3ES+4Nd9KpqN2+SXbmx14MqrU3aXG2geW/ao4w LUP+ez5cjRokKIc5NlYD76g+doPv+vKRiioPQySUfckYPnlHEWqE9NP7G7ZPVsb8 -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:40 2026 by rpki-client