This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/VT7A3ZfnCnVA5CUbo_qyjH_zEaY.roa File: VT7A3ZfnCnVA5CUbo_qyjH_zEaY.roa (raw, json) Hash identifier: YsIiMw/cULeNGrSktU0lHTzx6mX8SgB4wbEWJJXl574= Subject key identifier: 55:3E:C0:DD:97:E7:0A:75:40:E4:25:1B:A3:FA:B2:8C:7F:F3:11:A6 Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Certificate serial: 019B7B36178A7B5D27500F4C1EAF0CD8B9FB Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/VT7A3ZfnCnVA5CUbo_qyjH_zEaY.roa Signing time: Thu 01 Jan 2026 20:18:21 +0000 ROA not before: Thu 01 Jan 2026 20:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212147 IP address blocks: 193.31.12.0/24 maxlen: 24 194.26.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 04:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:17:8a:7b:5d:27:50:0f:4c:1e:af:0c:d8:b9:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Validity Not Before: Jan 1 20:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=553ec0dd97e70a7540e4251ba3fab28c7ff311a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6b:e0:fb:70:e0:d9:53:b1:44:81:7b:e8:39: b8:04:2c:f4:21:c2:9a:66:e0:aa:55:2a:bd:81:81: c6:7b:dc:55:11:dd:07:b8:dc:b5:aa:d1:71:53:27: 8f:a4:84:64:09:d3:d5:22:07:0b:70:b6:ff:8d:3a: 4e:3a:b8:d4:42:36:43:7b:f8:0b:15:b1:a6:8b:de: 32:fa:aa:77:20:a9:1f:9d:ef:bf:19:50:bf:f3:46: cd:90:07:90:ad:9d:3a:38:e0:ba:2e:b1:fa:a4:b3: b0:8c:71:94:32:a7:68:c1:9d:fc:86:0f:61:61:11: 17:31:34:01:2a:b5:2e:83:e4:a2:db:b0:db:c7:c5: 5a:73:28:79:b7:10:47:65:40:d5:12:9b:5b:fd:e5: 2e:42:45:bc:9d:74:57:2e:2a:d2:70:c0:a5:5e:fe: 2f:97:f8:9b:3f:7a:3b:22:8e:2c:ff:3f:7c:a0:62: 91:54:f8:a6:ca:9d:db:5a:72:e0:14:fd:b0:b7:9d: 3c:10:95:f0:45:03:b9:f3:ff:2c:61:3c:0f:ca:ee: 78:3b:76:0f:04:1d:1f:f7:df:dc:db:97:a3:f5:76: 2c:b8:a6:0e:18:51:0c:d9:1d:06:db:90:b7:67:6d: c3:1a:da:cf:88:99:53:94:a8:e4:43:97:7d:1d:d0: c1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3E:C0:DD:97:E7:0A:75:40:E4:25:1B:A3:FA:B2:8C:7F:F3:11:A6 X509v3 Authority Key Identifier: keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/VT7A3ZfnCnVA5CUbo_qyjH_zEaY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.31.12.0/24 194.26.137.0/24 Signature Algorithm: sha256WithRSAEncryption 81:32:f2:62:2f:aa:c3:fe:9b:51:82:d0:df:e3:d9:ba:9f:e5: 3e:7a:87:aa:d2:a1:46:bf:6e:91:d7:75:08:e2:c1:ad:29:4b: 0a:50:74:1c:2e:be:5b:5f:93:6a:6f:a1:3a:11:24:85:97:6b: 78:f4:bb:8e:62:69:08:4b:f1:57:90:b0:f4:a9:24:fa:af:26: 74:54:fb:94:d6:99:c8:25:59:52:0c:64:5a:8c:aa:e2:a6:ec: ac:07:dc:85:f3:4f:0c:fb:cf:3a:01:8d:c1:1e:3d:ba:22:61: 0f:5f:99:bd:41:2c:76:ac:56:22:8f:ab:a2:f1:b2:e2:5d:72: 83:59:3d:8b:8a:53:09:41:81:3b:17:9c:6c:4f:3e:63:dd:0f: f2:09:fb:5d:36:fc:a0:a2:81:4d:e7:49:a3:f8:a2:2a:13:b2: c1:e8:8f:e6:dd:15:93:6a:17:56:1e:14:28:91:f7:ba:bc:b2: 6e:79:cf:7f:61:2a:65:f6:02:f5:ff:53:63:aa:d7:ce:af:bb: 5f:35:f5:df:03:c6:4e:46:f6:4d:54:6b:7b:21:0e:91:5e:56: f4:d3:dc:31:c5:d4:dd:25:58:fb:eb:f5:ff:ee:ce:32:8c:63: 98:40:16:7d:54:19:4a:05:75:04:90:73:8a:91:21:ba:3d:32: f2:51:af:be -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NheKe10nUA9MHq8M2Ln7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw N2VlNTYwHhcNMjYwMTAxMjAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTNlYzBkZDk3ZTcwYTc1NDBlNDI1MWJhM2ZhYjI4YzdmZjMxMWE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWvg+3Dg2VOxRIF76Dm4BCz0IcKa ZuCqVSq9gYHGe9xVEd0HuNy1qtFxUyePpIRkCdPVIgcLcLb/jTpOOrjUQjZDe/gL FbGmi94y+qp3IKkfne+/GVC/80bNkAeQrZ06OOC6LrH6pLOwjHGUMqdowZ38hg9h YREXMTQBKrUug+Si27Dbx8Vacyh5txBHZUDVEptb/eUuQkW8nXRXLirScMClXv4v l/ibP3o7Io4s/z98oGKRVPimyp3bWnLgFP2wt508EJXwRQO58/8sYTwPyu54O3YP BB0f99/c25ej9XYsuKYOGFEM2R0G25C3Z23DGtrPiJlTlKjkQ5d9HdDBbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFU+wN2X5wp1QOQlG6P6sox/8xGmMB8GA1UdIwQY MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt OGJmYmRkNDVjYjYyLzEvVlQ3QTNaZm5DblZBNUNVYm9fcXlqSF96RWFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwR8MAwQA whqJMA0GCSqGSIb3DQEBCwUAA4IBAQCBMvJiL6rD/ptRgtDf49m6n+U+eoeq0qFG v26R13UI4sGtKUsKUHQcLr5bX5Nqb6E6ESSFl2t49LuOYmkIS/FXkLD0qST6ryZ0 VPuU1pnIJVlSDGRajKripuysB9yF808M+886AY3BHj26ImEPX5m9QSx2rFYij6ui 8bLiXXKDWT2LilMJQYE7F5xsTz5j3Q/yCftdNvygooFN50mj+KIqE7LB6I/m3RWT ahdWHhQokfe6vLJuec9/YSpl9gL1/1NjqtfOr7tfNfXfA8ZORvZNVGt7IQ6RXlb0 09wxxdTdJVj76/X/7s4yjGOYQBZ9VBlKBXUEkHOKkSG6PTLyUa++ -----END CERTIFICATE-----Generated at Thu Jan 15 13:20:14 2026 by rpki-client