This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/vm0Cb1QlvcUWqTlVtMYvi0tSg50.roa File: vm0Cb1QlvcUWqTlVtMYvi0tSg50.roa (raw, json) Hash identifier: vUmX5+CcNp91eGp6cheOPjkV7E2OfS28ZKb/y8YQp0w= Subject key identifier: BE:6D:02:6F:54:25:BD:C5:16:A9:39:55:B4:C6:2F:8B:4B:52:83:9D Certificate issuer: /CN=aa2a58c697a1449976b0d11d6f126025e14089c6 Certificate serial: 019B7F137ED4AED82DEB6192FA0CF0ACE83B Authority key identifier: AA:2A:58:C6:97:A1:44:99:76:B0:D1:1D:6F:12:60:25:E1:40:89:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qipYxpehRJl2sNEdbxJgJeFAicY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/vm0Cb1QlvcUWqTlVtMYvi0tSg50.roa Signing time: Fri 02 Jan 2026 14:19:02 +0000 ROA not before: Fri 02 Jan 2026 14:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50477 IP address blocks: 178.57.56.0/21 maxlen: 21 194.58.168.0/22 maxlen: 22 194.58.168.0/24 maxlen: 24 194.58.169.0/24 maxlen: 24 194.58.170.0/24 maxlen: 24 194.58.171.0/24 maxlen: 24 194.58.172.0/22 maxlen: 22 194.58.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/qipYxpehRJl2sNEdbxJgJeFAicY.crl rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/qipYxpehRJl2sNEdbxJgJeFAicY.mft rsync://rpki.ripe.net/repository/DEFAULT/qipYxpehRJl2sNEdbxJgJeFAicY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:7e:d4:ae:d8:2d:eb:61:92:fa:0c:f0:ac:e8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa2a58c697a1449976b0d11d6f126025e14089c6 Validity Not Before: Jan 2 14:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be6d026f5425bdc516a93955b4c62f8b4b52839d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d8:23:ed:a7:37:71:d6:7e:5e:6e:26:21:da: f7:c1:e9:44:0a:74:66:32:da:6f:f8:b0:57:50:db: 35:ee:ae:04:e5:61:b2:4d:f8:7a:d2:b8:66:83:b7: a2:a8:2a:37:65:a7:f8:6d:9c:5c:ca:fb:b7:e4:2b: 18:a3:23:d0:48:39:82:a3:f2:2f:fb:c1:fc:86:95: a9:ab:f5:7b:0f:32:3d:24:c9:a2:74:16:33:01:c1: cc:b8:4a:e4:ce:2e:c9:a7:fa:38:c2:1a:df:ac:c2: d0:9e:20:37:6d:d8:97:37:a1:b9:fd:5e:c0:e2:01: d0:98:00:31:94:83:64:4b:cd:e0:3f:7c:fd:85:a7: d8:b9:0f:a9:5b:58:82:30:91:e0:ae:7b:1e:91:61: a9:f3:fd:95:e2:43:06:99:e9:8f:59:52:ca:1b:c3: e1:bc:57:75:9d:d6:3f:d8:41:8c:c9:7a:44:3d:d1: c4:f7:e1:d5:d3:51:c9:65:7c:2f:23:df:55:4e:82: 5d:68:e2:95:00:69:89:2d:f7:3a:5f:16:2f:86:1a: e6:46:58:b0:21:4b:8c:66:bf:2c:92:88:a8:a5:d1: 12:12:0b:4b:f0:44:0f:49:ea:69:a8:9f:7c:cd:39: 9a:3d:b0:3e:3e:77:a7:f1:79:20:0d:68:f6:e8:d8: 21:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6D:02:6F:54:25:BD:C5:16:A9:39:55:B4:C6:2F:8B:4B:52:83:9D X509v3 Authority Key Identifier: keyid:AA:2A:58:C6:97:A1:44:99:76:B0:D1:1D:6F:12:60:25:E1:40:89:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qipYxpehRJl2sNEdbxJgJeFAicY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/vm0Cb1QlvcUWqTlVtMYvi0tSg50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/qipYxpehRJl2sNEdbxJgJeFAicY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.57.56.0/21 194.58.168.0/21 194.58.184.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:4a:81:cb:cf:a2:99:4f:dd:1b:18:6d:6a:45:ee:60:f3:c5: f3:87:9a:42:27:0c:a2:6c:86:78:9e:14:8a:88:1d:ed:59:a8: 48:a1:b4:50:44:d3:aa:e1:82:ee:de:39:88:58:8f:ef:24:df: 46:8c:a1:0f:75:50:24:c8:03:eb:4f:b4:49:47:66:f3:5a:d2: 0d:83:de:bd:df:05:c0:1d:72:a0:c9:16:2a:0c:df:ff:0e:f5: 61:bb:35:be:16:c2:06:07:3c:14:79:c9:6a:af:49:e7:8d:0c: 8c:89:3f:af:48:7c:fa:67:c2:59:44:7b:a8:fb:8e:3d:4a:49: 92:a4:cc:25:76:59:af:d5:c7:85:d9:45:2f:8e:1a:a9:df:27: 1e:6e:da:3a:3b:7e:03:59:d7:76:7b:72:f8:96:28:a5:07:fb: 1f:c9:2f:b2:61:2a:d9:ae:ed:a3:41:5b:21:22:ad:3d:4a:ed: 99:c8:91:80:d4:d9:cc:ca:5a:99:7c:26:3f:ba:6a:17:22:a8: bd:64:65:22:d0:87:fe:e5:73:c5:a2:dd:bb:80:f1:c6:de:09: d3:aa:5c:56:20:83:3b:d7:a3:73:83:4c:d8:cc:e2:5d:9d:e2: de:4b:12:6b:16:62:a7:28:37:78:3b:ac:fb:33:81:d0:8b:df: bc:3f:06:98 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/E37Urtgt62GS+gzwrOg7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhMmE1OGM2OTdhMTQ0OTk3NmIwZDExZDZmMTI2MDI1ZTE0 MDg5YzYwHhcNMjYwMTAyMTQxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTZkMDI2ZjU0MjViZGM1MTZhOTM5NTViNGM2MmY4YjRiNTI4MzlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlNgj7ac3cdZ+Xm4mIdr3welECnRm Mtpv+LBXUNs17q4E5WGyTfh60rhmg7eiqCo3Zaf4bZxcyvu35CsYoyPQSDmCo/Iv +8H8hpWpq/V7DzI9JMmidBYzAcHMuErkzi7Jp/o4whrfrMLQniA3bdiXN6G5/V7A 4gHQmAAxlINkS83gP3z9hafYuQ+pW1iCMJHgrnsekWGp8/2V4kMGmemPWVLKG8Ph vFd1ndY/2EGMyXpEPdHE9+HV01HJZXwvI99VToJdaOKVAGmJLfc6XxYvhhrmRliw IUuMZr8skoiopdESEgtL8EQPSeppqJ98zTmaPbA+Pnen8XkgDWj26NghYwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFL5tAm9UJb3FFqk5VbTGL4tLUoOdMB8GA1UdIwQY MBaAFKoqWMaXoUSZdrDRHW8SYCXhQInGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWlwWXhwZWhSSmwyc05FZGJ4SmdKZUZBaWNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMTQyYTUtZDkyZC00ZDA2LTgyMjgt YmU2MjJjMzEzMmRmLzEvdm0wQ2IxUWx2Y1VXcVRsVnRNWXZpMHRTZzUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8zMTQyYTUtZDkyZC00ZDA2LTgyMjgtYmU2MjJjMzEzMmRm LzEvcWlwWXhwZWhSSmwyc05FZGJ4SmdKZUZBaWNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDsjk4AwQD wjqoAwQDwjq4MA0GCSqGSIb3DQEBCwUAA4IBAQBOSoHLz6KZT90bGG1qRe5g88Xz h5pCJwyibIZ4nhSKiB3tWahIobRQRNOq4YLu3jmIWI/vJN9GjKEPdVAkyAPrT7RJ R2bzWtINg9693wXAHXKgyRYqDN//DvVhuzW+FsIGBzwUeclqr0nnjQyMiT+vSHz6 Z8JZRHuo+449SkmSpMwldlmv1ceF2UUvjhqp3ycebto6O34DWdd2e3L4liilB/sf yS+yYSrZru2jQVshIq09Su2ZyJGA1NnMylqZfCY/umoXIqi9ZGUi0If+5XPFot27 gPHG3gnTqlxWIIM716Nzg0zYzOJdneLeSxJrFmKnKDd4O6z7M4HQi9+8PwaY -----END CERTIFICATE-----Generated at Mon Feb 9 20:10:19 2026 by rpki-client