This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/VTBtuhupQkN3XNWCGG-SctrmNSc.roa File: VTBtuhupQkN3XNWCGG-SctrmNSc.roa (raw, json) Hash identifier: MVRP12soTEVvkQMP4sWQe+ZD2ED7nGpPqffJ2oNbKlE= Subject key identifier: 55:30:6D:BA:1B:A9:42:43:77:5C:D5:82:18:6F:92:72:DA:E6:35:27 Certificate issuer: /CN=78ac31635d091be6155743311fe1db7c7af3477b Certificate serial: 019B7EA45D30FB8A387B8F335D1DC1C67E17 Authority key identifier: 78:AC:31:63:5D:09:1B:E6:15:57:43:31:1F:E1:DB:7C:7A:F3:47:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eKwxY10JG-YVV0MxH-HbfHrzR3s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/VTBtuhupQkN3XNWCGG-SctrmNSc.roa Signing time: Fri 02 Jan 2026 12:17:39 +0000 ROA not before: Fri 02 Jan 2026 12:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208901 IP address blocks: 91.198.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/eKwxY10JG-YVV0MxH-HbfHrzR3s.crl rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/eKwxY10JG-YVV0MxH-HbfHrzR3s.mft rsync://rpki.ripe.net/repository/DEFAULT/eKwxY10JG-YVV0MxH-HbfHrzR3s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:5d:30:fb:8a:38:7b:8f:33:5d:1d:c1:c6:7e:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78ac31635d091be6155743311fe1db7c7af3477b Validity Not Before: Jan 2 12:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=55306dba1ba94243775cd582186f9272dae63527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8a:3a:af:93:8c:36:9c:1f:7f:db:f1:eb:25: 2a:5d:30:0c:6e:d5:87:fb:87:58:cc:1d:1a:5b:56: 44:f2:6b:3c:2e:10:a3:c1:cc:07:d4:45:0c:78:19: 5e:2e:94:b3:2b:c9:0b:62:6e:b7:01:ea:1f:f3:7d: cb:7f:bf:06:de:e9:3a:f7:31:f0:90:c3:e2:04:d7: f9:d1:2c:54:b9:0a:e5:4c:70:e6:97:0c:50:11:55: b9:0f:60:18:bb:10:6c:b6:13:cc:d5:7e:37:6c:69: a6:a8:31:26:ba:4f:8a:de:5b:84:e1:b9:a7:4d:48: df:f7:a1:6c:d0:53:d8:69:eb:1f:ad:6a:24:6a:d3: da:3e:4c:c0:7d:7a:03:e0:21:47:3f:cd:be:d7:79: bf:4a:72:25:04:5f:16:25:54:bc:7f:48:82:2f:74: 9b:b2:c9:6b:7d:9e:05:28:95:42:e4:3b:e6:73:b7: f1:b0:21:91:63:c9:30:d2:c9:ad:e8:5e:d5:32:31: 6f:fb:67:1a:83:7f:65:7e:33:7a:cd:db:b6:ea:3f: 03:7e:9f:d0:90:12:3e:77:b9:b1:bc:a8:ed:3c:3e: 76:59:09:e3:c5:e6:f6:b8:00:61:5a:17:c5:4c:3b: 3f:b2:84:75:4a:40:58:79:d7:dc:1c:eb:95:28:62: ea:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:30:6D:BA:1B:A9:42:43:77:5C:D5:82:18:6F:92:72:DA:E6:35:27 X509v3 Authority Key Identifier: keyid:78:AC:31:63:5D:09:1B:E6:15:57:43:31:1F:E1:DB:7C:7A:F3:47:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eKwxY10JG-YVV0MxH-HbfHrzR3s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/VTBtuhupQkN3XNWCGG-SctrmNSc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/eKwxY10JG-YVV0MxH-HbfHrzR3s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.64.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:d4:5f:83:75:c4:7f:86:75:63:b7:da:27:1b:5d:9e:9c:6d: 88:35:d0:d0:b3:d5:b2:c0:4b:00:54:46:22:87:a6:47:65:77: 20:ac:90:28:6e:00:c8:bf:2f:54:63:23:11:c2:53:a6:6e:8d: 53:4d:d4:7c:22:17:3f:22:e7:bd:ac:92:e5:1c:a6:e4:d0:fa: d7:5f:5e:92:13:49:3a:ca:76:7b:86:74:e4:f6:e6:4e:94:af: 37:e7:a1:9f:91:ab:53:b3:f1:c4:32:95:79:9d:0c:9d:e9:e3: e5:82:e8:b0:07:35:37:b5:f6:fa:4e:16:77:e8:c3:5a:12:5d: 5b:8d:68:39:c3:02:93:1b:88:b2:db:6d:bc:5f:25:b9:0a:ef: e8:f0:4e:cc:f2:db:97:db:ee:e2:06:04:ac:7f:af:01:02:dd: 6c:11:7d:c7:e4:15:76:35:70:61:ec:13:ab:9d:a4:58:9e:f8: 53:e6:32:66:c8:da:27:8d:a4:80:8d:9c:62:ea:45:86:b0:f6: ac:49:b2:ea:78:ad:6c:67:27:f1:06:7b:c4:ae:0e:7c:ce:f2: 8e:b2:89:18:99:c3:90:49:ca:45:ff:74:39:02:8d:63:6d:79: eb:1a:c7:3b:05:48:36:ae:dc:e7:2a:f1:56:2e:5b:3f:7d:6a: 62:aa:0b:0c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pF0w+4o4e48zXR3Bxn4XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc4YWMzMTYzNWQwOTFiZTYxNTU3NDMzMTFmZTFkYjdjN2Fm MzQ3N2IwHhcNMjYwMTAyMTIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTMwNmRiYTFiYTk0MjQzNzc1Y2Q1ODIxODZmOTI3MmRhZTYzNTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYo6r5OMNpwff9vx6yUqXTAMbtWH +4dYzB0aW1ZE8ms8LhCjwcwH1EUMeBleLpSzK8kLYm63Aeof833Lf78G3uk69zHw kMPiBNf50SxUuQrlTHDmlwxQEVW5D2AYuxBsthPM1X43bGmmqDEmuk+K3luE4bmn TUjf96Fs0FPYaesfrWokatPaPkzAfXoD4CFHP82+13m/SnIlBF8WJVS8f0iCL3Sb sslrfZ4FKJVC5Dvmc7fxsCGRY8kw0smt6F7VMjFv+2cag39lfjN6zdu26j8Dfp/Q kBI+d7mxvKjtPD52WQnjxeb2uABhWhfFTDs/soR1SkBYedfcHOuVKGLqTwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFUwbbobqUJDd1zVghhvknLa5jUnMB8GA1UdIwQY MBaAFHisMWNdCRvmFVdDMR/h23x680d7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZUt3eFkxMEpHLVlWVjBNeEgtSGJmSHJ6UjNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9mZTIyYzUtZDhlMy00MWYxLTkwOTQt ZjZlOGJiZGJkMzNiLzEvVlRCdHVodXBRa04zWE5XQ0dHLVNjdHJtTlNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9mZTIyYzUtZDhlMy00MWYxLTkwOTQtZjZlOGJiZGJkMzNi LzEvZUt3eFkxMEpHLVlWVjBNeEgtSGJmSHJ6UjNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8ZAMA0G CSqGSIb3DQEBCwUAA4IBAQAf1F+DdcR/hnVjt9onG12enG2INdDQs9WywEsAVEYi h6ZHZXcgrJAobgDIvy9UYyMRwlOmbo1TTdR8Ihc/Iue9rJLlHKbk0PrXX16SE0k6 ynZ7hnTk9uZOlK8356GfkatTs/HEMpV5nQyd6ePlguiwBzU3tfb6ThZ36MNaEl1b jWg5wwKTG4iy2228XyW5Cu/o8E7M8tuX2+7iBgSsf68BAt1sEX3H5BV2NXBh7BOr naRYnvhT5jJmyNonjaSAjZxi6kWGsPasSbLqeK1sZyfxBnvErg58zvKOsokYmcOQ ScpF/3Q5Ao1jbXnrGsc7BUg2rtznKvFWLls/fWpiqgsM -----END CERTIFICATE-----Generated at Wed Jan 21 20:25:35 2026 by rpki-client