This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/vcKGcg7yfm5OJBRmK9UMG7YPxlE.roa File: vcKGcg7yfm5OJBRmK9UMG7YPxlE.roa (raw, json) Hash identifier: lC2nvLTapMxLzuBLLcR7m2BlyD8SVIXqzMfLdXwZD5U= Subject key identifier: BD:C2:86:72:0E:F2:7E:6E:4E:24:14:66:2B:D5:0C:1B:B6:0F:C6:51 Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Certificate serial: 019B7D5D190B5D7D4E581691CD895CE0CC21 Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/vcKGcg7yfm5OJBRmK9UMG7YPxlE.roa Signing time: Fri 02 Jan 2026 06:20:11 +0000 ROA not before: Fri 02 Jan 2026 06:20:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 26548 IP address blocks: 146.19.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.mft rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:19:0b:5d:7d:4e:58:16:91:cd:89:5c:e0:cc:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Validity Not Before: Jan 2 06:20:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bdc286720ef27e6e4e2414662bd50c1bb60fc651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3c:f4:cf:69:d9:c7:e2:47:60:35:2e:61:f6: 89:4b:28:3e:4c:76:7c:00:26:09:19:e9:3a:01:8f: f0:af:c6:55:1c:f7:c8:9c:1e:a7:74:74:60:4b:47: ce:48:53:c9:14:09:68:61:ca:c7:7e:a8:8f:67:dd: 3c:c5:17:8b:67:a0:91:08:45:08:b5:63:a1:51:2f: 6c:74:c9:85:ab:48:35:53:ca:ad:64:bd:bf:ee:f9: b5:e2:1d:a0:56:63:d5:07:68:16:e5:32:6f:46:a9: 81:35:7a:c8:1b:68:0d:da:3c:4c:34:e7:c1:7e:1e: 16:78:19:b6:9a:c4:d6:ae:70:f1:6e:38:29:93:24: ab:a8:19:ae:95:f9:38:d6:90:a2:55:31:17:cd:0a: 70:bf:39:b2:d3:aa:45:ab:28:35:3c:32:cc:cf:61: 8c:fe:fd:01:72:22:c2:bf:ee:a1:16:fb:68:82:49: 6b:7e:92:a1:a0:9a:f7:71:07:9c:3a:5e:40:08:36: f8:e3:65:27:e9:75:35:08:fa:a9:04:f0:89:29:71: bc:76:83:ef:29:b4:58:51:a2:e6:08:16:0d:67:ec: cc:95:c1:17:e2:7f:ce:cc:0f:05:32:70:d8:83:00: 34:c9:99:e9:77:da:5b:a3:c1:21:b2:d7:28:a9:ab: 29:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C2:86:72:0E:F2:7E:6E:4E:24:14:66:2B:D5:0C:1B:B6:0F:C6:51 X509v3 Authority Key Identifier: keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/vcKGcg7yfm5OJBRmK9UMG7YPxlE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.19.78.0/24 Signature Algorithm: sha256WithRSAEncryption ae:ff:f6:58:74:6e:28:63:f4:51:54:05:04:e0:b2:1d:24:b9: 02:61:35:6c:f4:a1:98:f8:be:dd:5f:27:a5:7d:5d:6e:49:b1: 5c:aa:bc:80:66:95:bd:09:c3:c0:1c:88:51:82:3b:e6:e1:74: a4:96:7a:73:36:e0:f0:28:06:9e:e5:0e:9f:8d:9c:c5:ab:2b: 8b:f9:12:dd:d6:15:f5:ad:09:b6:14:97:64:81:bc:05:e2:58: 48:2d:fb:81:4b:24:4b:6a:fe:5a:91:f9:ec:95:ee:10:af:ee: 33:6f:fd:38:0f:3a:47:29:31:f6:43:9d:76:7d:e1:a0:d9:49: 5c:48:7d:94:6d:ef:24:a8:ec:27:24:3e:99:09:1d:af:7e:54: 48:f9:fc:97:e8:5f:6d:95:f7:f0:ca:63:cd:6d:b5:13:a0:4b: 55:a4:ca:b3:e6:59:52:51:f2:b5:eb:94:89:d3:51:4a:32:2d: c2:8c:ca:ba:00:8b:2a:4c:1d:93:70:9b:ee:5a:b9:cc:73:c1: a7:07:2d:5b:bf:b2:c6:69:a3:a0:8f:37:4c:40:ab:ee:d1:af: aa:59:8e:bb:eb:20:4d:13:e3:b5:90:cf:a8:4a:92:b2:e2:7e: c5:52:43:b4:51:cb:76:d5:85:3b:18:ed:c5:b5:cc:b2:39:54: fb:4e:92:88 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XRkLXX1OWBaRzYlc4MwhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm MWM3ZTgwHhcNMjYwMTAyMDYyMDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGMyODY3MjBlZjI3ZTZlNGUyNDE0NjYyYmQ1MGMxYmI2MGZjNjUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jz0z2nZx+JHYDUuYfaJSyg+THZ8 ACYJGek6AY/wr8ZVHPfInB6ndHRgS0fOSFPJFAloYcrHfqiPZ908xReLZ6CRCEUI tWOhUS9sdMmFq0g1U8qtZL2/7vm14h2gVmPVB2gW5TJvRqmBNXrIG2gN2jxMNOfB fh4WeBm2msTWrnDxbjgpkySrqBmulfk41pCiVTEXzQpwvzmy06pFqyg1PDLMz2GM /v0BciLCv+6hFvtogklrfpKhoJr3cQecOl5ACDb442Un6XU1CPqpBPCJKXG8doPv KbRYUaLmCBYNZ+zMlcEX4n/OzA8FMnDYgwA0yZnpd9pbo8EhstcoqaspOwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL3ChnIO8n5uTiQUZivVDBu2D8ZRMB8GA1UdIwQY MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt ZWU3NDY1NzU0ZmY2LzEvdmNLR2NnN3lmbTVPSkJSbUs5VU1HN1lQeGxFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2 LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNOMA0G CSqGSIb3DQEBCwUAA4IBAQCu//ZYdG4oY/RRVAUE4LIdJLkCYTVs9KGY+L7dXyel fV1uSbFcqryAZpW9CcPAHIhRgjvm4XSklnpzNuDwKAae5Q6fjZzFqyuL+RLd1hX1 rQm2FJdkgbwF4lhILfuBSyRLav5akfnsle4Qr+4zb/04DzpHKTH2Q512feGg2Ulc SH2Ube8kqOwnJD6ZCR2vflRI+fyX6F9tlffwymPNbbUToEtVpMqz5llSUfK165SJ 01FKMi3CjMq6AIsqTB2TcJvuWrnMc8GnBy1bv7LGaaOgjzdMQKvu0a+qWY676yBN E+O1kM+oSpKy4n7FUkO0Uct21YU7GO3FtcyyOVT7TpKI -----END CERTIFICATE-----Generated at Tue Jan 20 00:06:24 2026 by rpki-client