This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/vyQaTgnZmO6A2QP5fltvyAiHn2w.roa File: vyQaTgnZmO6A2QP5fltvyAiHn2w.roa (raw, json) Hash identifier: CuO+A8UIrEVOD42Zu4NLM0xT7n43WzFhoUCyh9EEw7U= Subject key identifier: BF:24:1A:4E:09:D9:98:EE:80:D9:03:F9:7E:5B:6F:C8:08:87:9F:6C Certificate issuer: /CN=bda96d02a822f46253c2aee680441d5ac27c3df5 Certificate serial: 019B7FF08CDEAE2C0A20BCE6BD67E4FC2A89 Authority key identifier: BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/vyQaTgnZmO6A2QP5fltvyAiHn2w.roa Signing time: Fri 02 Jan 2026 18:20:29 +0000 ROA not before: Fri 02 Jan 2026 18:20:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25369 IP address blocks: 141.138.225.0/24 maxlen: 24 2a00:10e8:101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.mft rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f0:8c:de:ae:2c:0a:20:bc:e6:bd:67:e4:fc:2a:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bda96d02a822f46253c2aee680441d5ac27c3df5 Validity Not Before: Jan 2 18:20:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf241a4e09d998ee80d903f97e5b6fc808879f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f8:5e:c8:eb:c5:ad:d7:07:bd:18:97:a9:fb: bd:d7:d4:5b:c6:8b:68:c8:07:3d:dd:e6:98:02:fc: a6:01:2e:37:d7:1e:10:92:78:83:e1:b6:82:5f:91: 67:e2:a5:53:a1:d8:a1:16:de:ca:9a:0c:68:c4:cd: e7:e4:d4:d1:89:9e:d4:39:5a:20:ff:41:4e:ed:8c: 52:9c:e4:71:de:83:b1:af:fc:b0:22:95:c9:d4:d3: ca:ec:c1:2b:20:99:20:88:9f:fe:2b:ff:eb:78:51: 03:50:e5:95:56:1f:5c:3d:a0:27:a7:45:71:25:ec: a1:b2:4b:e9:a1:de:66:f6:4c:fd:a6:87:12:d2:00: 4f:32:26:b7:6a:c1:cb:6a:b2:49:ec:7a:32:12:3c: 45:00:ad:ef:ee:06:eb:f0:05:ed:2d:f5:03:c0:d4: ac:39:47:55:c2:bd:02:0c:be:ae:07:e5:83:40:cc: b7:18:02:58:61:f4:00:37:f1:93:96:3a:af:8d:ad: 06:cd:57:ff:9f:72:7e:dd:44:09:e1:9e:3b:8b:45: 0a:3b:23:bc:9f:1c:79:69:0c:d9:f9:26:6a:6d:ea: c9:9f:f6:85:0b:30:7d:bd:4e:11:28:c4:db:79:d5: 1f:b9:54:40:f1:cb:74:35:c9:6e:78:ff:b0:9b:43: 07:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:24:1A:4E:09:D9:98:EE:80:D9:03:F9:7E:5B:6F:C8:08:87:9F:6C X509v3 Authority Key Identifier: keyid:BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/vyQaTgnZmO6A2QP5fltvyAiHn2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.138.225.0/24 IPv6: 2a00:10e8:101::/48 Signature Algorithm: sha256WithRSAEncryption 79:2c:6f:46:d1:b5:0f:07:5f:38:b3:40:8f:92:49:5b:9a:1d: e0:ba:e9:52:e5:bf:9b:d8:b7:94:8a:49:c6:dd:c4:de:72:6c: 17:3c:e5:2d:a8:1a:37:b6:6c:2f:ac:5a:2e:ba:49:cf:82:fa: 0d:8e:cf:8d:b2:f7:46:24:96:50:1e:31:fa:59:87:d6:49:36: b0:0f:a5:10:ff:ca:70:b8:57:65:6d:04:56:ae:b6:92:7e:50: bd:24:0d:f1:53:35:9d:b4:d3:77:ab:93:17:b5:30:81:83:2c: 8f:e3:15:31:80:34:f6:f1:df:72:c7:5a:fe:cf:c0:fc:c1:7c: 30:04:f7:80:a1:62:ab:f3:60:3b:1d:42:fa:7d:e0:49:96:7a: 36:50:ea:de:99:6f:9c:50:31:cd:ee:f2:28:1f:ad:79:03:04: bf:a6:3c:48:27:01:e4:46:2c:81:cc:6d:f5:61:c2:32:05:31: 00:c5:24:50:eb:f4:6e:8a:c1:e3:89:89:6d:fc:aa:6e:0c:73: 1e:f6:19:3c:31:d4:5f:45:05:1d:da:bb:85:32:34:f6:c9:10: 67:17:0b:eb:bc:46:56:84:43:cd:53:f6:0c:5c:9d:fb:d7:f1: da:4e:d8:77:09:ed:fc:1a:f8:04:47:67:ab:56:50:b8:ee:43: b1:92:e8:41 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/8IzeriwKILzmvWfk/CqJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkYTk2ZDAyYTgyMmY0NjI1M2MyYWVlNjgwNDQxZDVhYzI3 YzNkZjUwHhcNMjYwMTAyMTgyMDI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjI0MWE0ZTA5ZDk5OGVlODBkOTAzZjk3ZTViNmZjODA4ODc5ZjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fheyOvFrdcHvRiXqfu919Rbxoto yAc93eaYAvymAS431x4QkniD4baCX5Fn4qVTodihFt7KmgxoxM3n5NTRiZ7UOVog /0FO7YxSnORx3oOxr/ywIpXJ1NPK7MErIJkgiJ/+K//reFEDUOWVVh9cPaAnp0Vx Jeyhskvpod5m9kz9pocS0gBPMia3asHLarJJ7HoyEjxFAK3v7gbr8AXtLfUDwNSs OUdVwr0CDL6uB+WDQMy3GAJYYfQAN/GTljqvja0GzVf/n3J+3UQJ4Z47i0UKOyO8 nxx5aQzZ+SZqberJn/aFCzB9vU4RKMTbedUfuVRA8ct0NclueP+wm0MHfQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFL8kGk4J2ZjugNkD+X5bb8gIh59sMB8GA1UdIwQY MBaAFL2pbQKoIvRiU8Ku5oBEHVrCfD31MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmFsdEFxZ2k5R0pUd3E3bWdFUWRXc0o4UGZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hMjdiMzktODAxMS00MTQyLTg2YzIt Y2Y4M2Q2ZTQwNTU4LzEvdnlRYVRnblptTzZBMlFQNWZsdHZ5QWlIbjJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9hMjdiMzktODAxMS00MTQyLTg2YzItY2Y4M2Q2ZTQwNTU4 LzEvdmFsdEFxZ2k5R0pUd3E3bWdFUWRXc0o4UGZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAjYrhMA8E AgACMAkDBwAqABDoAQEwDQYJKoZIhvcNAQELBQADggEBAHksb0bRtQ8HXzizQI+S SVuaHeC66VLlv5vYt5SKScbdxN5ybBc85S2oGje2bC+sWi66Sc+C+g2Oz42y90Yk llAeMfpZh9ZJNrAPpRD/ynC4V2VtBFautpJ+UL0kDfFTNZ2003erkxe1MIGDLI/j FTGANPbx33LHWv7PwPzBfDAE94ChYqvzYDsdQvp94EmWejZQ6t6Zb5xQMc3u8igf rXkDBL+mPEgnAeRGLIHMbfVhwjIFMQDFJFDr9G6KweOJiW38qm4Mcx72GTwx1F9F BR3au4UyNPbJEGcXC+u8RlaEQ81T9gxcnfvX8dpO2HcJ7fwa+ARHZ6tWULjuQ7GS 6EE= -----END CERTIFICATE-----Generated at Mon Jan 19 17:05:59 2026 by rpki-client