This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/VTvixWkQMb81xqq15q9rkLGzQns.roa File: VTvixWkQMb81xqq15q9rkLGzQns.roa (raw, json) Hash identifier: ryhXeNesoIfEURs7jvSEodrx0dn3DmlePOw6kt2lyr8= Subject key identifier: 55:3B:E2:C5:69:10:31:BF:35:C6:AA:B5:E6:AF:6B:90:B1:B3:42:7B Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Certificate serial: 019B7DCA2CB6515E4C337D2D56DF40FB03FB Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/VTvixWkQMb81xqq15q9rkLGzQns.roa Signing time: Fri 02 Jan 2026 08:19:20 +0000 ROA not before: Fri 02 Jan 2026 08:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207710 IP address blocks: 194.28.156.0/24 maxlen: 24 194.28.158.0/24 maxlen: 24 194.104.4.0/24 maxlen: 24 194.104.5.0/24 maxlen: 24 194.104.6.0/24 maxlen: 24 212.69.132.0/24 maxlen: 24 212.69.133.0/24 maxlen: 24 212.69.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.mft rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:2c:b6:51:5e:4c:33:7d:2d:56:df:40:fb:03:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Validity Not Before: Jan 2 08:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=553be2c5691031bf35c6aab5e6af6b90b1b3427b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1c:bf:92:17:07:ba:8c:be:4f:04:03:86:80: 34:66:c4:43:70:d4:13:b6:2c:f9:a3:b3:f4:22:5f: 23:a7:9d:8b:f1:44:f5:ed:1c:88:1a:26:94:60:8d: 2b:ec:09:74:1a:69:7d:76:c2:83:05:18:4f:69:b2: 9a:94:3a:4c:bb:4e:fa:e2:e5:75:ae:22:5c:72:39: 69:ef:74:6b:5f:34:ae:39:01:6b:d1:dc:66:0e:47: 0a:4a:9a:0c:75:7a:5c:27:93:ea:73:4c:64:bb:5e: e2:cf:09:58:76:4f:31:62:66:19:9a:bb:56:8d:74: 5d:41:b7:d9:61:42:73:45:7b:c5:91:4f:27:3a:48: 19:05:8c:e5:8a:83:bd:31:b0:05:86:41:49:a6:90: d7:ac:69:cc:6f:21:a7:db:86:e7:59:28:51:f8:86: e1:43:9c:07:9c:b1:a5:77:a5:95:50:50:d4:27:f5: 47:89:b2:ae:ff:6f:54:81:12:9f:a7:d7:64:ad:68: 35:31:95:fb:63:39:a8:54:75:1c:2f:f5:1c:38:bc: d5:c7:92:5e:f6:10:77:cd:f0:f8:47:56:c8:c5:ca: 01:a2:e4:b5:0f:c2:14:d0:5c:3d:48:81:15:0d:51: d1:03:38:aa:83:c6:07:b1:69:b2:6f:9d:c1:f1:a9: 33:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3B:E2:C5:69:10:31:BF:35:C6:AA:B5:E6:AF:6B:90:B1:B3:42:7B X509v3 Authority Key Identifier: keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/VTvixWkQMb81xqq15q9rkLGzQns.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.28.156.0/24 194.28.158.0/24 194.104.4.0-194.104.6.255 212.69.132.0-212.69.134.255 Signature Algorithm: sha256WithRSAEncryption 6a:be:46:0b:4b:e9:d3:6b:7a:af:de:00:21:0d:f5:96:d3:99: 58:13:1d:fd:bb:3a:0a:b9:89:5e:f4:0d:b6:35:72:be:d8:7e: 41:6e:82:a5:a9:ed:1c:36:b0:3d:e0:f4:9e:86:e2:f6:1c:e6: d1:e7:3b:5f:98:bd:7c:6f:98:33:ec:8f:32:fa:5d:5c:93:94: 36:03:1b:b1:a8:96:c9:0e:11:40:f7:1c:c3:f4:59:eb:15:ed: 6d:16:5a:33:ad:2f:41:32:65:c5:23:f5:8b:a7:21:d4:ee:c9: ba:a7:72:33:57:bb:29:42:e4:25:09:ea:cd:f8:64:29:f7:a3: 68:e2:3f:83:93:76:43:ff:a0:3b:c0:34:6c:71:49:e4:12:91: 09:a6:4e:90:1b:4b:71:56:07:14:8f:2d:54:e4:86:1b:ab:69: 16:32:8d:d8:41:c3:82:f6:d9:ce:7c:98:11:4c:c4:c0:4e:6c: 04:3f:43:88:03:0c:52:b4:0d:0c:f9:2b:6f:50:74:95:bc:2c: cf:b8:ed:65:75:f8:70:cb:30:4e:8c:b6:60:32:2e:d8:06:a1: 68:d7:a3:c8:6d:85:cf:43:21:cd:be:c2:10:b6:06:5f:6d:ff: 8d:a6:23:23:ae:e3:1b:fe:45:fa:10:0c:96:c4:54:c0:6a:fd: d9:c3:a6:38 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt9yiy2UV5MM30tVt9A+wP7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2 OWExZmQwHhcNMjYwMTAyMDgxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTNiZTJjNTY5MTAzMWJmMzVjNmFhYjVlNmFmNmI5MGIxYjM0MjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhy/khcHuoy+TwQDhoA0ZsRDcNQT tiz5o7P0Il8jp52L8UT17RyIGiaUYI0r7Al0Gml9dsKDBRhPabKalDpMu0764uV1 riJccjlp73RrXzSuOQFr0dxmDkcKSpoMdXpcJ5Pqc0xku17izwlYdk8xYmYZmrtW jXRdQbfZYUJzRXvFkU8nOkgZBYzlioO9MbAFhkFJppDXrGnMbyGn24bnWShR+Ibh Q5wHnLGld6WVUFDUJ/VHibKu/29UgRKfp9dkrWg1MZX7YzmoVHUcL/UcOLzVx5Je 9hB3zfD4R1bIxcoBouS1D8IU0Fw9SIEVDVHRAziqg8YHsWmyb53B8akzGQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFFU74sVpEDG/Ncaqteava5Cxs0J7MB8GA1UdIwQY MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et OTk0ODA2ZjA4MWYwLzEvVlR2aXhXa1FNYjgxeHFxMTVxOXJrTEd6UW5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQAwhycAwQA whyeMAwDBALCaAQDBADCaAYwDAMEAtRFhAMEANRFhjANBgkqhkiG9w0BAQsFAAOC AQEAar5GC0vp02t6r94AIQ31ltOZWBMd/bs6CrmJXvQNtjVyvth+QW6CpantHDaw PeD0nobi9hzm0ec7X5i9fG+YM+yPMvpdXJOUNgMbsaiWyQ4RQPccw/RZ6xXtbRZa M60vQTJlxSP1i6ch1O7JuqdyM1e7KULkJQnqzfhkKfejaOI/g5N2Q/+gO8A0bHFJ 5BKRCaZOkBtLcVYHFI8tVOSGG6tpFjKN2EHDgvbZznyYEUzEwE5sBD9DiAMMUrQN DPkrb1B0lbwsz7jtZXX4cMswToy2YDIu2AahaNejyG2Fz0Mhzb7CELYGX23/jaYj I67jG/5F+hAMlsRUwGr92cOmOA== -----END CERTIFICATE-----Generated at Mon Jan 19 21:26:56 2026 by rpki-client