This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9c5404-5ea4-4776-8cec-aedbbf468028/1/vbqC7dnIYforI52OCrB0B1B9v_E.roa File: vbqC7dnIYforI52OCrB0B1B9v_E.roa (raw, json) Hash identifier: l+1hvAkiSw6p++rx/Ga348Dp115kPP0Bh0QVsqmz+I0= Subject key identifier: BD:BA:82:ED:D9:C8:61:FA:2B:23:9D:8E:0A:B0:74:07:50:7D:BF:F1 Certificate issuer: /CN=1ec0434a5c3cf2374ca360331926ae7d24ac345b Certificate serial: 019B76EBA37DC4F96E2DE0C3662E054C1A32 Authority key identifier: 1E:C0:43:4A:5C:3C:F2:37:4C:A3:60:33:19:26:AE:7D:24:AC:34:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HsBDSlw88jdMo2AzGSaufSSsNFs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/9c5404-5ea4-4776-8cec-aedbbf468028/1/vbqC7dnIYforI52OCrB0B1B9v_E.roa Signing time: Thu 01 Jan 2026 00:18:32 +0000 ROA not before: Thu 01 Jan 2026 00:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.201.20.0/22 maxlen: 22 2a0a:be40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/9c5404-5ea4-4776-8cec-aedbbf468028/1/HsBDSlw88jdMo2AzGSaufSSsNFs.crl rsync://rpki.ripe.net/repository/DEFAULT/40/9c5404-5ea4-4776-8cec-aedbbf468028/1/HsBDSlw88jdMo2AzGSaufSSsNFs.mft rsync://rpki.ripe.net/repository/DEFAULT/HsBDSlw88jdMo2AzGSaufSSsNFs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:a3:7d:c4:f9:6e:2d:e0:c3:66:2e:05:4c:1a:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ec0434a5c3cf2374ca360331926ae7d24ac345b Validity Not Before: Jan 1 00:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bdba82edd9c861fa2b239d8e0ab07407507dbff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b8:75:50:56:7e:20:80:3a:b6:60:db:b6:3a: 84:a9:6b:f1:8e:08:ce:70:71:65:c0:15:34:2c:b8: 0b:79:0a:99:93:1e:be:e4:02:42:aa:d0:be:d2:c7: 47:2b:14:fe:46:f6:8d:01:0c:fa:00:5d:f9:07:3a: 85:c9:b8:d3:c9:ce:85:a7:b1:d6:c3:1d:d4:9c:1e: 83:f3:ff:f6:7f:b5:2a:11:ea:cb:75:dd:4c:94:30: f2:2a:4e:20:58:65:ae:fa:40:00:9a:56:7f:e9:f3: e0:d4:9b:82:3d:cf:72:a3:3a:76:e3:38:b2:bc:3e: 5b:03:e6:38:d1:0c:6a:6a:25:02:1e:c4:7f:d7:a0: 04:ff:de:46:b3:d0:f4:45:69:f3:e0:2b:b3:83:c5: 03:27:a9:ae:02:48:7a:98:9c:14:ee:65:79:1b:f6: 88:71:df:5f:75:fd:71:2c:e6:e2:9b:a3:61:54:e6: e4:d1:a1:65:33:85:d8:09:21:e0:37:74:f1:38:a8: eb:31:50:0b:a5:f1:d4:fc:1c:1a:a7:9d:02:3a:b9: 00:00:f0:3d:16:30:0d:2b:a0:fd:69:94:1b:f1:d2: 33:ba:3f:32:92:e2:dd:93:9a:17:52:6e:80:ce:33: cf:30:0b:62:02:bf:85:c1:b2:ba:d4:ab:a6:d6:db: f5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BA:82:ED:D9:C8:61:FA:2B:23:9D:8E:0A:B0:74:07:50:7D:BF:F1 X509v3 Authority Key Identifier: keyid:1E:C0:43:4A:5C:3C:F2:37:4C:A3:60:33:19:26:AE:7D:24:AC:34:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HsBDSlw88jdMo2AzGSaufSSsNFs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c5404-5ea4-4776-8cec-aedbbf468028/1/vbqC7dnIYforI52OCrB0B1B9v_E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c5404-5ea4-4776-8cec-aedbbf468028/1/HsBDSlw88jdMo2AzGSaufSSsNFs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.201.20.0/22 IPv6: 2a0a:be40::/29 Signature Algorithm: sha256WithRSAEncryption b9:6d:59:69:38:34:0c:17:f9:ae:49:fa:33:47:5d:36:00:4b: 74:97:5c:89:ea:1c:a8:f0:c7:78:77:22:5f:3a:6f:de:99:24: a7:be:a7:10:ce:68:0a:cd:fe:22:e7:72:bd:7f:08:27:e7:50: 21:ca:cd:1c:d8:40:6d:05:3b:8b:0c:b5:04:d9:fe:0b:c4:7d: 2f:bd:29:53:8a:a5:c1:c1:98:fc:ff:3b:6a:f2:a1:72:be:b2: c6:86:84:34:72:b0:6e:17:14:07:84:9b:f7:83:23:55:3d:5b: 2f:c1:b1:cd:1b:18:e3:4c:9a:d7:bb:58:ad:38:8e:ad:d0:b9: 18:a8:5d:5c:37:23:8a:63:f1:49:e7:ae:fa:27:97:02:bc:70: 81:63:8a:97:03:01:ab:73:8d:37:0d:6a:11:6c:5b:78:e7:3f: 5a:c5:a2:97:41:df:35:b6:0f:00:9e:a7:a1:fe:cc:3d:cb:cf: b5:ca:2f:78:14:e6:56:00:b2:94:fe:a2:04:bd:1b:63:e0:7c: c7:84:36:10:7d:bd:7f:97:d1:42:47:02:79:84:ba:36:b7:a9: dd:31:dc:b6:e8:4f:f3:69:b4:38:fe:b5:8f:6e:73:94:7d:a8: fc:e8:80:71:2f:02:7e:5f:db:80:68:24:26:3f:08:fb:27:26: 18:e6:87:a1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt266N9xPluLeDDZi4FTBoyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYzA0MzRhNWMzY2YyMzc0Y2EzNjAzMzE5MjZhZTdkMjRh YzM0NWIwHhcNMjYwMTAxMDAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGJhODJlZGQ5Yzg2MWZhMmIyMzlkOGUwYWIwNzQwNzUwN2RiZmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLh1UFZ+IIA6tmDbtjqEqWvxjgjO cHFlwBU0LLgLeQqZkx6+5AJCqtC+0sdHKxT+RvaNAQz6AF35BzqFybjTyc6Fp7HW wx3UnB6D8//2f7UqEerLdd1MlDDyKk4gWGWu+kAAmlZ/6fPg1JuCPc9yozp24ziy vD5bA+Y40QxqaiUCHsR/16AE/95Gs9D0RWnz4Cuzg8UDJ6muAkh6mJwU7mV5G/aI cd9fdf1xLObim6NhVObk0aFlM4XYCSHgN3TxOKjrMVALpfHU/Bwap50COrkAAPA9 FjANK6D9aZQb8dIzuj8ykuLdk5oXUm6AzjPPMAtiAr+FwbK61Kum1tv1xwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL26gu3ZyGH6KyOdjgqwdAdQfb/xMB8GA1UdIwQY MBaAFB7AQ0pcPPI3TKNgMxkmrn0krDRbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHNCRFNsdzg4amRNbzJBekdTYXVmU1NzTkZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85YzU0MDQtNWVhNC00Nzc2LThjZWMt YWVkYmJmNDY4MDI4LzEvdmJxQzdkbklZZm9ySTUyT0NyQjBCMUI5dl9FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC85YzU0MDQtNWVhNC00Nzc2LThjZWMtYWVkYmJmNDY4MDI4 LzEvSHNCRFNsdzg4amRNbzJBekdTYXVmU1NzTkZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuckUMA0E AgACMAcDBQMqCr5AMA0GCSqGSIb3DQEBCwUAA4IBAQC5bVlpODQMF/muSfozR102 AEt0l1yJ6hyo8Md4dyJfOm/emSSnvqcQzmgKzf4i53K9fwgn51Ahys0c2EBtBTuL DLUE2f4LxH0vvSlTiqXBwZj8/ztq8qFyvrLGhoQ0crBuFxQHhJv3gyNVPVsvwbHN GxjjTJrXu1itOI6t0LkYqF1cNyOKY/FJ5676J5cCvHCBY4qXAwGrc403DWoRbFt4 5z9axaKXQd81tg8Anqeh/sw9y8+1yi94FOZWALKU/qIEvRtj4HzHhDYQfb1/l9FC RwJ5hLo2t6ndMdy26E/zabQ4/rWPbnOUfaj86IBxLwJ+X9uAaCQmPwj7JyYY5oeh -----END CERTIFICATE-----Generated at Fri Jan 9 00:56:56 2026 by rpki-client