This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/VTDoK_HiASPo0rKQEESAmloV1uI.roa File: VTDoK_HiASPo0rKQEESAmloV1uI.roa (raw, json) Hash identifier: j/Uqiho+zYJi7PaZZVvRcMCOVoIn337nTlvuR4KCJ5s= Subject key identifier: 55:30:E8:2B:F1:E2:01:23:E8:D2:B2:90:10:44:80:9A:5A:15:D6:E2 Certificate issuer: /CN=3e2742496400d810be5b4096fdedec30a231f9ab Certificate serial: 019B7A5A9ABAC93C0B9DE003D9486F4537A1 Authority key identifier: 3E:27:42:49:64:00:D8:10:BE:5B:40:96:FD:ED:EC:30:A2:31:F9:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidCSWQA2BC-W0CW_e3sMKIx-as.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/VTDoK_HiASPo0rKQEESAmloV1uI.roa Signing time: Thu 01 Jan 2026 16:18:36 +0000 ROA not before: Thu 01 Jan 2026 16:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200368 IP address blocks: 2001:67c:b44::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/PidCSWQA2BC-W0CW_e3sMKIx-as.crl rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/PidCSWQA2BC-W0CW_e3sMKIx-as.mft rsync://rpki.ripe.net/repository/DEFAULT/PidCSWQA2BC-W0CW_e3sMKIx-as.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:9a:ba:c9:3c:0b:9d:e0:03:d9:48:6f:45:37:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e2742496400d810be5b4096fdedec30a231f9ab Validity Not Before: Jan 1 16:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5530e82bf1e20123e8d2b2901044809a5a15d6e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8b:46:7c:3e:4a:f0:6d:32:85:2d:93:0f:15: 1c:9b:c2:16:9e:92:92:ab:c5:f4:d9:0e:4e:55:0b: 3e:93:df:84:d9:3b:c7:5b:4d:89:77:bb:39:53:04: 33:7d:5c:f5:ae:48:e3:86:d1:7d:af:4c:30:5a:2a: e7:12:72:38:c3:37:a4:bb:77:ed:a7:65:03:ef:94: 7d:d0:5d:78:57:73:90:0b:aa:c6:3b:b2:10:40:51: 38:28:4b:f5:f6:f4:d2:cf:c0:b0:94:96:32:d0:2d: 90:b5:f2:5e:3b:66:9a:bf:24:b8:46:36:f9:26:18: 0f:94:b6:f9:12:c7:d8:f5:7c:e6:54:00:ef:17:8c: 9a:ac:06:5d:a4:a3:8e:ae:fe:62:ad:1f:84:70:a2: d8:b8:0c:f4:f9:17:7a:f3:f0:76:e1:b0:b2:ba:94: 34:d8:1a:cd:61:55:19:3c:7e:f5:25:f3:3b:2a:e5: 43:b7:5e:52:fe:eb:47:26:f9:17:5a:36:96:8a:59: a1:4e:bc:4e:a9:f5:53:a0:65:7b:f0:be:94:47:2c: 80:3c:6c:72:67:8c:65:8c:37:27:40:e7:a5:61:2e: 90:04:33:17:26:c9:6d:5e:c6:5c:57:5c:53:a8:90: 28:09:e8:e9:07:1a:48:8a:fa:3d:7e:61:a3:b7:6b: 5a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:30:E8:2B:F1:E2:01:23:E8:D2:B2:90:10:44:80:9A:5A:15:D6:E2 X509v3 Authority Key Identifier: keyid:3E:27:42:49:64:00:D8:10:BE:5B:40:96:FD:ED:EC:30:A2:31:F9:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidCSWQA2BC-W0CW_e3sMKIx-as.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/VTDoK_HiASPo0rKQEESAmloV1uI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/PidCSWQA2BC-W0CW_e3sMKIx-as.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:b44::/48 Signature Algorithm: sha256WithRSAEncryption 0a:85:aa:3f:db:46:a2:36:0b:ec:2f:e7:6b:b2:06:a9:14:54: 9d:4c:d1:4c:a1:18:b7:02:63:49:54:22:1e:e2:77:a5:59:55: ce:a7:8d:bf:de:bc:27:8b:2a:c7:7e:08:a3:b6:df:01:f9:9c: d8:41:06:b8:6f:02:d1:74:3c:89:92:4d:9a:9c:73:26:e5:c8: 44:dd:21:96:9b:46:ee:cd:db:7e:e5:a2:b8:f2:7d:96:18:3b: a8:6b:d4:cb:d6:b7:35:be:3f:29:fe:59:9c:a5:6f:8b:5a:dd: 48:14:97:2c:3d:ce:1f:33:1a:73:57:1e:b9:91:ba:4d:9c:7f: dd:71:93:16:eb:ea:fb:82:4b:e9:64:b8:b5:05:18:eb:2b:d8: 06:a9:53:51:48:76:21:97:a3:00:eb:57:ba:8b:b5:2b:06:31: db:8c:da:a4:5f:21:0d:c6:89:4b:c4:c6:94:e8:58:02:27:6d: ba:06:b5:76:95:89:d2:2c:91:da:32:87:85:06:63:11:d2:d3: 27:8a:9b:6a:50:98:08:53:96:1a:f8:7f:a0:bf:38:cb:2b:56: af:bb:01:d4:ca:12:51:06:c4:b7:8b:92:0f:91:fc:7d:53:ea: 8d:b8:2f:d3:bc:a6:1f:4f:f0:33:07:b4:88:fb:e8:ba:fc:95: 36:7e:73:e7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6Wpq6yTwLneAD2UhvRTehMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMjc0MjQ5NjQwMGQ4MTBiZTViNDA5NmZkZWRlYzMwYTIz MWY5YWIwHhcNMjYwMTAxMTYxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTMwZTgyYmYxZTIwMTIzZThkMmIyOTAxMDQ0ODA5YTVhMTVkNmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnItGfD5K8G0yhS2TDxUcm8IWnpKS q8X02Q5OVQs+k9+E2TvHW02Jd7s5UwQzfVz1rkjjhtF9r0wwWirnEnI4wzeku3ft p2UD75R90F14V3OQC6rGO7IQQFE4KEv19vTSz8CwlJYy0C2QtfJeO2aavyS4Rjb5 JhgPlLb5EsfY9XzmVADvF4yarAZdpKOOrv5irR+EcKLYuAz0+Rd68/B24bCyupQ0 2BrNYVUZPH71JfM7KuVDt15S/utHJvkXWjaWilmhTrxOqfVToGV78L6URyyAPGxy Z4xljDcnQOelYS6QBDMXJsltXsZcV1xTqJAoCejpBxpIivo9fmGjt2ta9QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFUw6Cvx4gEj6NKykBBEgJpaFdbiMB8GA1UdIwQY MBaAFD4nQklkANgQvltAlv3t7DCiMfmrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGlkQ1NXUUEyQkMtVzBDV19lM3NNS0l4LWFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85MjJmNmQtN2E3NC00ZmE4LTk0OTUt MTg0ZGZmMjkyYTMwLzEvVlREb0tfSGlBU1BvMHJLUUVFU0FtbG9WMXVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85MjJmNmQtN2E3NC00ZmE4LTk0OTUtMTg0ZGZmMjkyYTMw LzEvUGlkQ1NXUUEyQkMtVzBDV19lM3NNS0l4LWFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAtE MA0GCSqGSIb3DQEBCwUAA4IBAQAKhao/20aiNgvsL+drsgapFFSdTNFMoRi3AmNJ VCIe4nelWVXOp42/3rwniyrHfgijtt8B+ZzYQQa4bwLRdDyJkk2anHMm5chE3SGW m0buzdt+5aK48n2WGDuoa9TL1rc1vj8p/lmcpW+LWt1IFJcsPc4fMxpzVx65kbpN nH/dcZMW6+r7gkvpZLi1BRjrK9gGqVNRSHYhl6MA61e6i7UrBjHbjNqkXyENxolL xMaU6FgCJ226BrV2lYnSLJHaMoeFBmMR0tMniptqUJgIU5Ya+H+gvzjLK1avuwHU yhJRBsS3i5IPkfx9U+qNuC/TvKYfT/AzB7SI++i6/JU2fnPn -----END CERTIFICATE-----Generated at Tue Feb 10 06:04:00 2026 by rpki-client