This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/vGXTEVlZEvvy_OO65LppPnLWzds.roa File: vGXTEVlZEvvy_OO65LppPnLWzds.roa (raw, json) Hash identifier: qVUACJdOYqZMXJXhZVtMk9bckrNCEf6pmzMIUiKZwR4= Subject key identifier: BC:65:D3:11:59:59:12:FB:F2:FC:E3:BA:E4:BA:69:3E:72:D6:CD:DB Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b Certificate serial: 019B79ED44C704A6462812249188D61EEDBE Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/vGXTEVlZEvvy_OO65LppPnLWzds.roa Signing time: Thu 01 Jan 2026 14:19:11 +0000 ROA not before: Thu 01 Jan 2026 14:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206938 IP address blocks: 2a07:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.mft rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 23:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:44:c7:04:a6:46:28:12:24:91:88:d6:1e:ed:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b Validity Not Before: Jan 1 14:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc65d311595912fbf2fce3bae4ba693e72d6cddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:92:fd:6e:b1:12:ae:e8:9c:22:9d:2a:cb:27: 56:d1:c6:8e:76:f8:88:a0:6a:ed:12:98:3d:fe:f7: 88:cf:24:08:b7:7b:f7:f2:35:e5:0e:65:58:4d:eb: 45:6b:cc:d4:60:e2:0f:30:3f:c2:fe:41:f5:90:e5: ee:b8:c5:57:6d:1f:ac:74:f9:db:c9:56:e1:4e:85: ca:c5:36:57:1f:f5:b5:ae:2e:82:cc:7e:37:08:59: 28:7e:b3:7e:85:ea:50:02:8b:02:6e:2f:79:2f:3c: 18:26:64:28:24:64:c5:29:ce:88:2c:8c:d9:c4:b7: 9c:2d:5e:d4:8e:49:42:52:45:a3:74:68:09:47:56: af:38:a9:cc:cb:16:8f:b5:57:1d:a9:98:95:fc:fe: 3b:db:3d:8d:a7:4b:66:d6:ea:3f:d6:c4:3d:90:e4: 08:d9:a7:33:2f:5c:14:19:7d:28:cc:0b:fd:cb:94: e0:74:f2:c7:8d:36:a1:c7:d8:b4:b3:88:e8:aa:27: 98:0e:01:7c:dd:d9:7b:ed:f8:53:c9:68:73:25:bc: 7a:2c:13:02:23:22:15:c4:de:a7:63:4e:5d:aa:77: 5e:5c:32:c9:e4:96:31:d3:05:48:ca:15:9c:e9:1e: 36:07:2f:80:f6:73:2b:6e:0e:dd:a8:f0:2a:03:33: 58:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:65:D3:11:59:59:12:FB:F2:FC:E3:BA:E4:BA:69:3E:72:D6:CD:DB X509v3 Authority Key Identifier: keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/vGXTEVlZEvvy_OO65LppPnLWzds.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:4a00::/32 Signature Algorithm: sha256WithRSAEncryption a0:69:d3:9b:0f:76:e3:24:42:1f:6e:a5:7d:c3:af:22:02:30: 63:b6:92:bd:09:67:b1:6b:3a:ea:96:8a:5d:a6:4a:0b:1d:3a: 88:1a:df:f0:74:09:90:5e:63:8a:b3:a5:93:78:a1:4b:ed:ba: 92:c4:51:48:a0:6c:0e:5a:4d:43:54:fb:d7:bd:80:15:d7:18: 6b:97:47:a8:00:b5:45:81:03:a6:b6:f5:70:08:77:63:30:b9: b0:36:bd:9a:c0:2e:b7:fa:d0:76:c7:0c:99:11:3d:85:99:c4: f4:f8:bc:19:c9:73:42:34:79:7a:59:fc:f2:2b:b7:79:d4:23: 28:a9:97:b7:20:07:8a:29:28:81:66:58:08:fd:67:2f:fd:59: ff:99:91:66:f8:7f:23:cf:29:30:89:91:1f:77:b3:98:fe:e7: 4f:e7:6f:ce:47:0a:38:49:56:e0:c0:1b:ea:46:84:af:7d:02: 99:d3:1b:21:e8:c9:1a:9a:12:05:d7:1c:79:39:20:5f:f0:7d: 09:20:15:6a:12:26:d9:e0:c4:18:1e:20:42:57:b2:6d:5e:8b: 2b:55:36:9b:92:d9:69:76:ff:bc:0f:96:e6:6e:ca:77:32:2f: df:a2:6c:17:92:cf:e9:e5:d3:f6:9b:a8:a0:f4:d2:27:5a:d3: e2:f9:68:17 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt57UTHBKZGKBIkkYjWHu2+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNTU5Y2U4ODlhZTQyNDExMjFmZTBhMTY1M2U0Yjk1NWYz ZWRmNGIwHhcNMjYwMTAxMTQxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzY1ZDMxMTU5NTkxMmZiZjJmY2UzYmFlNGJhNjkzZTcyZDZjZGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ZL9brESruicIp0qyydW0caOdviI oGrtEpg9/veIzyQIt3v38jXlDmVYTetFa8zUYOIPMD/C/kH1kOXuuMVXbR+sdPnb yVbhToXKxTZXH/W1ri6CzH43CFkofrN+hepQAosCbi95LzwYJmQoJGTFKc6ILIzZ xLecLV7UjklCUkWjdGgJR1avOKnMyxaPtVcdqZiV/P472z2Np0tm1uo/1sQ9kOQI 2aczL1wUGX0ozAv9y5TgdPLHjTahx9i0s4joqieYDgF83dl77fhTyWhzJbx6LBMC IyIVxN6nY05dqndeXDLJ5JYx0wVIyhWc6R42By+A9nMrbg7dqPAqAzNYaQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLxl0xFZWRL78vzjuuS6aT5y1s3bMB8GA1UdIwQY MBaAFOBVnOiJrkJBEh/goWU+S5VfPt9LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYt OTQ0OTk1N2ZkNWE1LzEvdkdYVEVWbFpFdnZ5X09PNjVMcHBQbkxXemRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYtOTQ0OTk1N2ZkNWE1 LzEvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgdKADAN BgkqhkiG9w0BAQsFAAOCAQEAoGnTmw924yRCH26lfcOvIgIwY7aSvQlnsWs66paK XaZKCx06iBrf8HQJkF5jirOlk3ihS+26ksRRSKBsDlpNQ1T7172AFdcYa5dHqAC1 RYEDprb1cAh3YzC5sDa9msAut/rQdscMmRE9hZnE9Pi8GclzQjR5eln88iu3edQj KKmXtyAHiikogWZYCP1nL/1Z/5mRZvh/I88pMImRH3ezmP7nT+dvzkcKOElW4MAb 6kaEr30CmdMbIejJGpoSBdcceTkgX/B9CSAVahIm2eDEGB4gQleybV6LK1U2m5LZ aXb/vA+W5m7KdzIv36JsF5LP6eXT9puooPTSJ1rT4vloFw== -----END CERTIFICATE-----Generated at Mon Jan 26 08:38:28 2026 by rpki-client