This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/vsgPZ-Llb619u55qgh7b3-lyZ9o.roa File: vsgPZ-Llb619u55qgh7b3-lyZ9o.roa (raw, json) Hash identifier: ckYR9IaAHgRNaAoZgvMmYQJZEYI6bJQHq2LQFvbQNcI= Subject key identifier: BE:C8:0F:67:E2:E5:6F:AD:7D:BB:9E:6A:82:1E:DB:DF:E9:72:67:DA Certificate issuer: /CN=b9df156ee18b6958d4306b6311b4a086763eff62 Certificate serial: 019B7F15B4087DC08887AD63D5B695525335 Authority key identifier: B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/vsgPZ-Llb619u55qgh7b3-lyZ9o.roa Signing time: Fri 02 Jan 2026 14:21:27 +0000 ROA not before: Fri 02 Jan 2026 14:21:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60798 IP address blocks: 37.156.244.0/24 maxlen: 24 89.45.228.0/24 maxlen: 24 185.116.60.0/24 maxlen: 24 193.164.143.0/24 maxlen: 24 195.64.116.0/24 maxlen: 24 2a0c:79c0:1::/48 maxlen: 48 2a0c:79c0:3::/48 maxlen: 48 2a0c:79c0:5::/48 maxlen: 48 2a0c:79c0:6::/48 maxlen: 48 2a0c:79c0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/ud8VbuGLaVjUMGtjEbSghnY-_2I.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/ud8VbuGLaVjUMGtjEbSghnY-_2I.mft rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b4:08:7d:c0:88:87:ad:63:d5:b6:95:52:53:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9df156ee18b6958d4306b6311b4a086763eff62 Validity Not Before: Jan 2 14:21:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bec80f67e2e56fad7dbb9e6a821edbdfe97267da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d9:32:87:fa:65:8c:65:ba:fd:a0:8e:72:48: 67:e8:64:c8:10:5b:4c:66:f8:18:b6:eb:9c:a0:5c: 25:af:d5:e1:28:08:a6:ce:c8:62:a1:ef:39:e3:45: 95:a6:e2:86:c6:3a:95:41:6f:58:be:03:30:af:31: 42:8d:47:fb:d6:3d:b0:26:72:c8:fa:23:e2:78:3f: 0e:fd:20:89:9c:ce:72:15:ad:9f:dd:d5:02:f3:4f: 00:f8:7c:43:94:a0:e4:0e:a9:55:12:34:58:95:91: 08:00:f0:ed:b9:22:37:32:7f:4e:e7:53:49:87:d0: e7:72:dd:44:de:2e:e4:89:79:d4:f5:8a:c8:2d:43: 55:a5:44:50:80:09:cf:c0:02:16:0e:76:b5:1b:b6: cf:49:4d:e2:73:68:c6:33:f5:dc:70:e9:16:7d:7a: 06:cd:53:99:62:aa:21:54:be:70:3e:26:15:df:0d: 66:b3:9d:15:e8:77:55:63:35:ff:8e:3d:0a:10:ff: c8:d0:cf:6f:51:91:53:ad:6f:5f:69:30:b4:7b:74: 56:77:5c:67:c2:74:fd:f2:78:e0:85:8e:a5:10:59: 66:98:57:29:02:55:79:b3:37:39:c3:c9:96:bc:fc: 39:7e:e2:ad:bb:e4:2a:69:52:40:a8:65:21:5d:cc: d3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C8:0F:67:E2:E5:6F:AD:7D:BB:9E:6A:82:1E:DB:DF:E9:72:67:DA X509v3 Authority Key Identifier: keyid:B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/vsgPZ-Llb619u55qgh7b3-lyZ9o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/ud8VbuGLaVjUMGtjEbSghnY-_2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.156.244.0/24 89.45.228.0/24 185.116.60.0/24 193.164.143.0/24 195.64.116.0/24 IPv6: 2a0c:79c0:1::/48 2a0c:79c0:3::/48 2a0c:79c0:5::-2a0c:79c0:6:ffff:ffff:ffff:ffff:ffff 2a0c:79c0:8::/48 Signature Algorithm: sha256WithRSAEncryption 33:5f:a1:ee:12:ee:05:3b:ff:4a:cc:2a:c2:e9:d9:21:53:55: 66:df:8d:d1:de:8e:61:cb:4f:b6:93:27:0c:84:30:af:40:4a: 09:7c:47:b5:a2:fc:e3:b4:5b:28:9d:e7:6a:3d:11:24:be:8a: 6d:f9:44:ff:a8:71:ef:b7:dd:3b:f6:b3:91:78:10:ec:4f:3d: 53:bb:c2:37:fe:08:b4:3b:25:ec:09:18:62:7a:38:52:6f:61: 95:d4:38:4c:fb:68:e5:7e:f4:60:55:4c:0a:54:47:68:0d:7f: 16:ad:17:1b:88:a7:fa:17:55:34:4d:2e:78:cf:7d:3d:ee:3d: 1a:08:74:bd:b7:93:2b:0c:9b:72:4c:69:0a:d8:cc:8a:ee:9c: 8c:d8:53:f5:e3:2e:15:1c:60:80:99:2a:fb:79:c6:9c:b9:df: c8:3c:d0:7a:15:6e:c5:85:57:79:74:90:22:68:04:70:ca:dd: a4:2b:f3:fd:29:e2:32:a9:97:7d:8b:77:26:4f:3b:1c:3f:5d: bf:d6:88:82:2f:1e:76:72:2a:66:cf:3e:8c:52:60:09:46:b0: 73:99:f2:a2:eb:2f:12:d7:49:f3:be:b9:ed:52:5c:cb:32:4d: bd:22:de:9f:0d:80:c5:ab:97:01:5b:00:a3:0c:75:6b:ba:3d: b0:f4:15:e6 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgISAZt/FbQIfcCIh61j1baVUlM1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5ZGYxNTZlZTE4YjY5NThkNDMwNmI2MzExYjRhMDg2NzYz ZWZmNjIwHhcNMjYwMTAyMTQyMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWM4MGY2N2UyZTU2ZmFkN2RiYjllNmE4MjFlZGJkZmU5NzI2N2RhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA59kyh/pljGW6/aCOckhn6GTIEFtM ZvgYtuucoFwlr9XhKAimzshioe8540WVpuKGxjqVQW9YvgMwrzFCjUf71j2wJnLI +iPieD8O/SCJnM5yFa2f3dUC808A+HxDlKDkDqlVEjRYlZEIAPDtuSI3Mn9O51NJ h9Dnct1E3i7kiXnU9YrILUNVpURQgAnPwAIWDna1G7bPSU3ic2jGM/XccOkWfXoG zVOZYqohVL5wPiYV3w1ms50V6HdVYzX/jj0KEP/I0M9vUZFTrW9faTC0e3RWd1xn wnT98njghY6lEFlmmFcpAlV5szc5w8mWvPw5fuKtu+QqaVJAqGUhXczTewIDAQAB o4ICWDCCAlQwHQYDVR0OBBYEFL7ID2fi5W+tfbueaoIe29/pcmfaMB8GA1UdIwQY MBaAFLnfFW7hi2lY1DBrYxG0oIZ2Pv9iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWQ4VmJ1R0xhVmpVTUd0akViU2doblktXzJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9kNjQ2MWYtMTdlMy00OTg2LWE1ZjYt NzJhNGIzYTliYjQ0LzEvdnNnUFotTGxiNjE5dTU1cWdoN2IzLWx5WjlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9kNjQ2MWYtMTdlMy00OTg2LWE1ZjYtNzJhNGIzYTliYjQ0 LzEvdWQ4VmJ1R0xhVmpVTUd0akViU2doblktXzJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG4GCCsGAQUFBwEHAQH/BF8wXTAkBAIAATAeAwQAJZz0AwQA WS3kAwQAuXQ8AwQAwaSPAwQAw0B0MDUEAgACMC8DBwAqDHnAAAEDBwAqDHnAAAMw EgMHACoMecAABQMHACoMecAABgMHACoMecAACDANBgkqhkiG9w0BAQsFAAOCAQEA M1+h7hLuBTv/SswqwunZIVNVZt+N0d6OYctPtpMnDIQwr0BKCXxHtaL847RbKJ3n aj0RJL6KbflE/6hx77fdO/azkXgQ7E89U7vCN/4ItDsl7AkYYno4Um9hldQ4TPto 5X70YFVMClRHaA1/Fq0XG4in+hdVNE0ueM99Pe49Ggh0vbeTKwybckxpCtjMiu6c jNhT9eMuFRxggJkq+3nGnLnfyDzQehVuxYVXeXSQImgEcMrdpCvz/SniMqmXfYt3 Jk87HD9dv9aIgi8ednIqZs8+jFJgCUawc5nyousvEtdJ87657VJcyzJNvSLenw2A xauXAVsAowx1a7o9sPQV5g== -----END CERTIFICATE-----Generated at Mon Jan 26 19:34:53 2026 by rpki-client