This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/vrpkaL0U3jMOO-KVqiy6oc1DpeY.roa File: vrpkaL0U3jMOO-KVqiy6oc1DpeY.roa (raw, json) Hash identifier: 1otko+I+GMmAYVo9i25VRg3S321FcTSnDSSA4SjQNEg= Subject key identifier: BE:BA:64:68:BD:14:DE:33:0E:3B:E2:95:AA:2C:BA:A1:CD:43:A5:E6 Certificate issuer: /CN=339cbb1e439a3a71eb8796692f622bf838f8488c Certificate serial: 019B797EF07B29E45B696FC28EC7E66270EF Authority key identifier: 33:9C:BB:1E:43:9A:3A:71:EB:87:96:69:2F:62:2B:F8:38:F8:48:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/vrpkaL0U3jMOO-KVqiy6oc1DpeY.roa Signing time: Thu 01 Jan 2026 12:18:40 +0000 ROA not before: Thu 01 Jan 2026 12:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204534 IP address blocks: 193.151.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.crl rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.mft rsync://rpki.ripe.net/repository/DEFAULT/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:f0:7b:29:e4:5b:69:6f:c2:8e:c7:e6:62:70:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=339cbb1e439a3a71eb8796692f622bf838f8488c Validity Not Before: Jan 1 12:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=beba6468bd14de330e3be295aa2cbaa1cd43a5e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:25:74:77:66:bf:9c:1a:36:60:bd:5f:49: 59:14:98:e0:cd:f0:27:76:36:d8:90:0f:b4:94:eb: 00:94:46:d8:e8:f8:24:c2:dc:df:43:11:85:bb:4a: f1:08:42:25:1b:d1:db:23:4d:f9:53:47:47:3f:c3: 8d:b6:38:5c:2a:0e:86:ee:e2:04:15:6c:1e:4a:f7: d6:73:b1:cc:26:ad:a7:d8:bf:3e:11:a8:b4:1f:64: 6e:a8:87:26:31:8b:06:ac:a6:71:63:77:97:f5:06: 64:82:23:13:bb:2f:83:d9:75:db:39:03:bf:a9:bd: ca:48:74:61:46:79:6e:56:2e:ce:b1:96:22:0a:06: b4:31:69:61:a1:58:20:4c:5c:6c:0c:7d:25:d0:23: c0:13:56:0b:d2:3b:4e:24:e3:09:71:29:0a:0d:8a: 82:05:9e:e8:13:0b:52:97:81:87:d4:2d:aa:10:85: 04:d2:5f:e7:57:9a:44:18:f5:3b:35:c1:6b:ab:62: 2f:d3:4b:48:cf:64:22:44:98:95:28:bc:a1:60:04: b7:da:38:bf:01:8a:c2:52:4d:0a:da:02:1d:f5:3b: 62:56:cf:16:3f:18:4a:64:70:a2:7a:35:63:33:69: dd:8d:68:bf:c6:86:2c:ee:7e:83:b0:44:cb:79:95: 1c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BA:64:68:BD:14:DE:33:0E:3B:E2:95:AA:2C:BA:A1:CD:43:A5:E6 X509v3 Authority Key Identifier: keyid:33:9C:BB:1E:43:9A:3A:71:EB:87:96:69:2F:62:2B:F8:38:F8:48:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/vrpkaL0U3jMOO-KVqiy6oc1DpeY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.151.39.0/24 Signature Algorithm: sha256WithRSAEncryption 51:7c:8e:af:db:84:63:9e:21:50:9d:7a:b2:4b:59:64:a9:0a: 60:ac:f4:34:a8:f0:be:7b:30:7c:ce:90:b0:22:17:21:2e:26: da:b5:e6:ee:73:cf:41:9d:e6:bb:7d:4b:c4:10:48:c0:a8:ae: ea:31:3b:f6:0f:1f:60:ff:f4:ef:52:a3:6e:28:00:e8:b1:03: 4e:65:12:ce:0e:6e:08:74:41:c1:e0:1e:76:e5:23:71:54:3d: 31:c7:16:e7:10:8a:a7:9b:4a:9d:5f:98:df:52:a0:53:d8:df: fa:07:cb:cb:04:8f:af:60:a3:ad:db:43:b4:f5:57:ce:75:2d: 18:99:aa:13:7c:e9:df:0f:43:4e:5e:2d:58:df:8a:dc:c7:ca: da:88:1c:c5:8c:38:45:75:55:4c:f9:bc:36:f5:ce:2e:5c:d7: 5e:9d:d5:e7:40:f4:78:db:59:05:6d:c6:f0:e3:61:20:d2:19: 61:8c:9a:47:f3:d4:38:ec:f0:8a:d0:36:bf:26:f9:3b:60:e1: c1:86:5e:1d:b0:a2:27:cf:e4:ad:af:4f:83:8b:33:41:e3:9a: 0a:c0:0c:d1:7d:e9:95:c9:9b:01:2b:53:63:51:21:47:b1:4a: b5:80:b3:b9:ce:53:04:ff:52:61:d9:ab:87:04:7e:38:4e:ec: e1:18:24:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fvB7KeRbaW/CjsfmYnDvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzOWNiYjFlNDM5YTNhNzFlYjg3OTY2OTJmNjIyYmY4Mzhm ODQ4OGMwHhcNMjYwMTAxMTIxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWJhNjQ2OGJkMTRkZTMzMGUzYmUyOTVhYTJjYmFhMWNkNDNhNWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNgldHdmv5waNmC9X0lZFJjgzfAn djbYkA+0lOsAlEbY6PgkwtzfQxGFu0rxCEIlG9HbI035U0dHP8ONtjhcKg6G7uIE FWweSvfWc7HMJq2n2L8+Eai0H2RuqIcmMYsGrKZxY3eX9QZkgiMTuy+D2XXbOQO/ qb3KSHRhRnluVi7OsZYiCga0MWlhoVggTFxsDH0l0CPAE1YL0jtOJOMJcSkKDYqC BZ7oEwtSl4GH1C2qEIUE0l/nV5pEGPU7NcFrq2Iv00tIz2QiRJiVKLyhYAS32ji/ AYrCUk0K2gId9TtiVs8WPxhKZHCiejVjM2ndjWi/xoYs7n6DsETLeZUcuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL66ZGi9FN4zDjvilaosuqHNQ6XmMB8GA1UdIwQY MBaAFDOcux5Dmjpx64eWaS9iK/g4+EiMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTV5N0hrT2FPbkhyaDVacEwySXItRGo0U0l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS83ZTUwMGQtNTU1Mi00YjgyLWEzYmQt YWEwMDcxYjdiZjg0LzEvdnJwa2FMMFUzak1PTy1LVnFpeTZvYzFEcGVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS83ZTUwMGQtNTU1Mi00YjgyLWEzYmQtYWEwMDcxYjdiZjg0 LzEvTTV5N0hrT2FPbkhyaDVacEwySXItRGo0U0l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwZcnMA0G CSqGSIb3DQEBCwUAA4IBAQBRfI6v24RjniFQnXqyS1lkqQpgrPQ0qPC+ezB8zpCw IhchLibatebuc89Bnea7fUvEEEjAqK7qMTv2Dx9g//TvUqNuKADosQNOZRLODm4I dEHB4B525SNxVD0xxxbnEIqnm0qdX5jfUqBT2N/6B8vLBI+vYKOt20O09VfOdS0Y maoTfOnfD0NOXi1Y34rcx8raiBzFjDhFdVVM+bw29c4uXNdendXnQPR421kFbcbw 42Eg0hlhjJpH89Q47PCK0Da/Jvk7YOHBhl4dsKInz+Str0+DizNB45oKwAzRfemV yZsBK1NjUSFHsUq1gLO5zlME/1Jh2auHBH44TuzhGCSy -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:55 2026 by rpki-client