This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/vm3F0xQGakla9DfEA-Uo9IzA6SA.roa File: vm3F0xQGakla9DfEA-Uo9IzA6SA.roa (raw, json) Hash identifier: xXnJmfaiYSW/TARMH735EsotJrvwS4p+cJ4r2AFPbFY= Subject key identifier: BE:6D:C5:D3:14:06:6A:49:5A:F4:37:C4:03:E5:28:F4:8C:C0:E9:20 Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722 Certificate serial: 019B7B355802BEED6FA843FF8EF0ABAFB4B4 Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/vm3F0xQGakla9DfEA-Uo9IzA6SA.roa Signing time: Thu 01 Jan 2026 20:17:32 +0000 ROA not before: Thu 01 Jan 2026 20:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8751 IP address blocks: 80.96.28.0/24 maxlen: 32 81.180.224.0/24 maxlen: 32 81.181.146.0/24 maxlen: 32 85.120.250.0/24 maxlen: 32 85.122.8.0/22 maxlen: 32 193.226.85.0/24 maxlen: 32 193.231.133.0/24 maxlen: 24 193.231.169.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:58:02:be:ed:6f:a8:43:ff:8e:f0:ab:af:b4:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722 Validity Not Before: Jan 1 20:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be6dc5d314066a495af437c403e528f48cc0e920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:34:2e:15:f9:ba:96:b1:de:47:1b:f4:0c: 9f:57:23:db:2d:0f:34:89:e1:e0:0a:cf:cf:76:ba: a1:e5:73:f6:21:09:c5:f6:a6:d7:32:ad:4b:39:d2: 8b:bc:85:90:54:1a:61:54:e3:51:c1:6f:b4:bd:67: 90:90:33:5e:4d:c9:c1:b7:5f:1b:e2:e7:7f:2e:3d: 11:c6:7e:c0:28:62:4b:52:19:c0:36:f9:ee:f0:83: 60:6f:1d:86:22:f5:b9:f5:1a:bc:46:ee:50:a3:e4: 7b:0c:04:1a:5b:4a:c7:b3:b2:9a:de:d9:58:a8:a3: c8:ec:2f:5e:ed:c4:f0:2c:f1:de:8e:0e:7a:ce:28: 0e:da:d0:bb:e2:2f:45:8f:4f:fb:c3:dd:74:14:64: 36:5d:8c:14:4f:c1:4f:e7:59:b9:17:01:4a:f4:ff: 87:42:f4:5d:14:e7:c9:83:fd:44:82:0f:81:21:c8: 15:67:c3:ef:47:1f:e4:52:a6:eb:7b:53:62:cb:02: c7:94:03:3b:98:1e:10:6a:b9:7d:b4:60:28:8f:40: 5f:84:84:c9:4e:1a:71:29:28:a0:e5:10:1e:2d:e2: 72:cb:66:56:76:c2:16:1c:24:2e:b1:6d:b1:e9:31: 86:08:cc:72:98:f6:45:85:11:40:26:21:4d:5d:12: 22:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6D:C5:D3:14:06:6A:49:5A:F4:37:C4:03:E5:28:F4:8C:C0:E9:20 X509v3 Authority Key Identifier: keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/vm3F0xQGakla9DfEA-Uo9IzA6SA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.96.28.0/24 81.180.224.0/24 81.181.146.0/24 85.120.250.0/24 85.122.8.0/22 193.226.85.0/24 193.231.133.0/24 193.231.169.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:f4:ff:49:8c:6a:dc:83:4b:4c:ab:08:e9:b7:50:5e:07:0a: 63:1d:72:63:66:92:d9:5c:3b:16:00:c7:d0:14:d5:8d:7d:21: 13:7d:66:e7:69:db:40:0c:2d:68:6c:69:98:73:17:9d:5f:7a: ad:81:19:11:11:ca:80:db:c1:8a:92:de:8b:28:cf:49:dc:90: 6e:33:63:8f:17:eb:a4:dc:e2:cf:49:be:6b:92:35:86:48:d5: a5:44:6d:ff:87:8a:b3:ce:aa:67:a3:e6:32:0e:7a:4b:96:ed: 3d:12:7e:97:f3:6e:5b:f3:11:ab:0c:4c:78:ed:7f:8f:ca:67: 63:dc:97:cc:4f:45:37:29:2b:37:68:a0:a8:c1:85:31:ef:f9: 46:48:09:37:0e:e5:96:e4:f6:86:89:33:4f:5c:ec:30:a8:d6: 6b:ab:a0:15:d4:44:a6:a1:e4:6a:f3:40:96:3e:85:e1:1d:88: e3:e0:27:78:24:c0:2c:0c:5b:71:86:dd:b1:81:c4:c8:9d:7f: b2:13:77:b9:b3:9b:9b:1a:ba:0c:98:b3:76:12:39:0d:d5:9f: 64:17:bd:47:69:6e:cc:20:91:77:4d:1e:0f:56:78:2a:3d:a5: 69:d4:2b:7f:fc:17:79:11:07:90:14:9d:55:79:ad:ab:60:5b: 16:30:19:fc -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt7NVgCvu1vqEP/jvCrr7S0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh MTU3MjIwHhcNMjYwMTAxMjAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTZkYzVkMzE0MDY2YTQ5NWFmNDM3YzQwM2U1MjhmNDhjYzBlOTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoB40LhX5upax3kcb9AyfVyPbLQ80 ieHgCs/Pdrqh5XP2IQnF9qbXMq1LOdKLvIWQVBphVONRwW+0vWeQkDNeTcnBt18b 4ud/Lj0Rxn7AKGJLUhnANvnu8INgbx2GIvW59Rq8Ru5Qo+R7DAQaW0rHs7Ka3tlY qKPI7C9e7cTwLPHejg56zigO2tC74i9Fj0/7w910FGQ2XYwUT8FP51m5FwFK9P+H QvRdFOfJg/1Egg+BIcgVZ8PvRx/kUqbre1NiywLHlAM7mB4Qarl9tGAoj0BfhITJ ThpxKSig5RAeLeJyy2ZWdsIWHCQusW2x6TGGCMxymPZFhRFAJiFNXRIigwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFL5txdMUBmpJWvQ3xAPlKPSMwOkgMB8GA1UdIwQY MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt ZjUyYzQ3YzIyNWRiLzEvdm0zRjB4UUdha2xhOURmRUEtVW85SXpBNlNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAUGAcAwQA UbTgAwQAUbWSAwQAVXj6AwQCVXoIAwQAweJVAwQAweeFAwQAweepMA0GCSqGSIb3 DQEBCwUAA4IBAQB69P9JjGrcg0tMqwjpt1BeBwpjHXJjZpLZXDsWAMfQFNWNfSET fWbnadtADC1obGmYcxedX3qtgRkREcqA28GKkt6LKM9J3JBuM2OPF+uk3OLPSb5r kjWGSNWlRG3/h4qzzqpno+YyDnpLlu09En6X825b8xGrDEx47X+Pymdj3JfMT0U3 KSs3aKCowYUx7/lGSAk3DuWW5PaGiTNPXOwwqNZrq6AV1ESmoeRq80CWPoXhHYjj 4Cd4JMAsDFtxht2xgcTInX+yE3e5s5ubGroMmLN2EjkN1Z9kF71HaW7MIJF3TR4P VngqPaVp1Ct//Bd5EQeQFJ1Vea2rYFsWMBn8 -----END CERTIFICATE-----Generated at Tue Jan 20 02:49:02 2026 by rpki-client