This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/rpVmcRWK9Zhy_VaIn_bvOzXSQ6k.roa File: rpVmcRWK9Zhy_VaIn_bvOzXSQ6k.roa (raw, json) Hash identifier: ZuY1ZDdDENsieUHmA5f7BeysqfqkQXy2jQwGzKSjHsE= Subject key identifier: AE:95:66:71:15:8A:F5:98:72:FD:56:88:9F:F6:EF:3B:35:D2:43:A9 Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Certificate serial: 019B7C12BD9FDD34C0226056109EE69B0720 Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/rpVmcRWK9Zhy_VaIn_bvOzXSQ6k.roa Signing time: Fri 02 Jan 2026 00:19:21 +0000 ROA not before: Fri 02 Jan 2026 00:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215379 IP address blocks: 2a0a:280:3500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:bd:9f:dd:34:c0:22:60:56:10:9e:e6:9b:07:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Validity Not Before: Jan 2 00:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae956671158af59872fd56889ff6ef3b35d243a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3b:2e:b8:cc:11:16:77:5a:b4:1f:5b:6e:64: aa:3b:20:c0:f8:3c:df:c2:6e:7e:9b:d7:c8:ca:45: e3:3f:72:81:06:a3:4a:cc:51:6d:4d:19:ce:4b:40: ee:86:51:5e:47:c1:22:c9:93:cc:fa:09:1f:6c:23: ce:76:77:b4:a5:fd:23:7a:9d:95:3a:fc:71:ad:36: 23:f7:e3:5b:ee:0e:ca:6c:c9:2f:75:7f:23:51:70: bc:b8:57:67:0b:7e:40:8a:28:a1:e4:7b:12:66:25: b6:6e:a7:11:de:b3:a5:08:cd:62:9c:83:fb:49:f4: de:cf:33:7d:8b:91:9c:55:bb:77:d4:c4:76:c7:4a: 45:58:d2:4a:b8:03:36:89:fb:e5:76:54:c9:1b:f9: a6:a9:d0:83:42:fa:39:8a:41:53:4d:25:c0:1d:e7: a1:14:58:a6:af:48:bd:ff:4b:9c:09:1f:ee:d3:39: 57:f2:34:95:78:ae:dc:b3:d8:b8:59:9b:7c:72:1a: ef:fd:f9:49:4d:dc:ec:9b:34:04:8b:17:4c:ec:a7: 27:ce:4c:c2:08:42:50:88:3c:ba:32:20:52:48:02: f5:72:87:cd:ca:99:28:8b:a8:1d:77:08:1e:d2:d3: 79:3c:1b:2f:63:07:2c:27:b1:a7:b2:f7:0d:2c:7f: 6f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:95:66:71:15:8A:F5:98:72:FD:56:88:9F:F6:EF:3B:35:D2:43:A9 X509v3 Authority Key Identifier: keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/rpVmcRWK9Zhy_VaIn_bvOzXSQ6k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:280:3500::/40 Signature Algorithm: sha256WithRSAEncryption ab:57:cf:74:4b:05:8e:9e:3e:7b:18:d3:e4:77:a2:17:b9:c7: 0e:2a:01:79:6c:22:4d:ec:b1:1e:05:11:46:f5:3a:ef:2d:da: 42:5c:6b:12:41:84:be:dd:25:ad:d7:a5:50:17:05:ae:b5:f2: cf:c5:87:84:ef:29:ca:e1:19:ca:8a:89:7f:38:ba:cc:b6:4f: 1d:e9:8c:d3:b1:5a:4f:64:91:09:92:71:f9:98:02:b0:20:be: ee:a0:2e:95:89:33:d1:a7:52:e4:78:3d:bb:a7:c7:60:7b:02: 96:a5:6a:f5:bf:85:51:c1:1e:68:8d:cd:03:68:48:84:8a:6c: 63:49:5f:02:c0:09:86:e3:8a:48:e7:7d:35:5c:a7:ba:b0:4f: 5a:a4:f8:55:b6:56:e2:a3:12:4f:a6:49:87:73:c8:d2:16:5a: a6:f0:e7:e9:34:14:c6:a3:7e:8c:f5:66:1a:ab:a2:04:71:12: c4:80:2f:94:11:ba:1f:0f:09:7d:a1:87:4d:85:d5:3d:fd:a7: c9:19:7c:90:10:ed:17:ed:4a:30:ea:4e:07:7a:b0:fd:b1:d6: c0:6a:f4:d9:77:58:66:ab:7a:a3:59:db:ed:f8:ed:cc:0b:20: c9:cc:ca:ad:c1:13:2c:b7:f7:79:34:3e:f7:5a:81:22:c7:7c: ac:e4:e9:be -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt8Er2f3TTAImBWEJ7mmwcgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi MzM2OWYwHhcNMjYwMTAyMDAxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTk1NjY3MTE1OGFmNTk4NzJmZDU2ODg5ZmY2ZWYzYjM1ZDI0M2E5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzzsuuMwRFndatB9bbmSqOyDA+Dzf wm5+m9fIykXjP3KBBqNKzFFtTRnOS0DuhlFeR8EiyZPM+gkfbCPOdne0pf0jep2V OvxxrTYj9+Nb7g7KbMkvdX8jUXC8uFdnC35Aiiih5HsSZiW2bqcR3rOlCM1inIP7 SfTezzN9i5GcVbt31MR2x0pFWNJKuAM2ifvldlTJG/mmqdCDQvo5ikFTTSXAHeeh FFimr0i9/0ucCR/u0zlX8jSVeK7cs9i4WZt8chrv/flJTdzsmzQEixdM7KcnzkzC CEJQiDy6MiBSSAL1cofNypkoi6gddwge0tN5PBsvYwcsJ7GnsvcNLH9v6QIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFK6VZnEVivWYcv1WiJ/27zs10kOpMB8GA1UdIwQY MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt ZjUxYzVmYjNkZjlhLzEvcnBWbWNSV0s5Wmh5X1ZhSW5fYnZPelhTUTZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgoCgDUw DQYJKoZIhvcNAQELBQADggEBAKtXz3RLBY6ePnsY0+R3ohe5xw4qAXlsIk3ssR4F EUb1Ou8t2kJcaxJBhL7dJa3XpVAXBa618s/Fh4TvKcrhGcqKiX84usy2Tx3pjNOx Wk9kkQmScfmYArAgvu6gLpWJM9GnUuR4Pbunx2B7ApalavW/hVHBHmiNzQNoSISK bGNJXwLACYbjikjnfTVcp7qwT1qk+FW2VuKjEk+mSYdzyNIWWqbw5+k0FMajfoz1 ZhqrogRxEsSAL5QRuh8PCX2hh02F1T39p8kZfJAQ7RftSjDqTgd6sP2x1sBq9Nl3 WGareqNZ2+347cwLIMnMyq3BEyy393k0PvdagSLHfKzk6b4= -----END CERTIFICATE-----Generated at Wed Jan 21 17:33:42 2026 by rpki-client