This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/eaf974-6efd-4633-b84a-a8aaf886c820/1/VIaUBNL6WlewF92VFkKdJgnVoGY.roa File: VIaUBNL6WlewF92VFkKdJgnVoGY.roa (raw, json) Hash identifier: BUyipvdgIG16YQ2huh7/x7j/eCf65uRrmNCB96nUmSY= Subject key identifier: 54:86:94:04:D2:FA:5A:57:B0:17:DD:95:16:42:9D:26:09:D5:A0:66 Certificate issuer: /CN=d0d852703295ecf8b97201f916310f88f4c08ab7 Certificate serial: 019B7F831291B9CA4A4CED49DD36151094E7 Authority key identifier: D0:D8:52:70:32:95:EC:F8:B9:72:01:F9:16:31:0F:88:F4:C0:8A:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0NhScDKV7Pi5cgH5FjEPiPTAirc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/eaf974-6efd-4633-b84a-a8aaf886c820/1/VIaUBNL6WlewF92VFkKdJgnVoGY.roa Signing time: Fri 02 Jan 2026 16:20:54 +0000 ROA not before: Fri 02 Jan 2026 16:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201079 IP address blocks: 185.85.204.0/22 maxlen: 22 185.85.204.0/24 maxlen: 24 185.85.205.0/24 maxlen: 24 185.85.206.0/24 maxlen: 24 185.85.207.0/24 maxlen: 24 185.250.192.0/22 maxlen: 22 185.250.192.0/24 maxlen: 24 185.250.193.0/24 maxlen: 24 185.250.194.0/24 maxlen: 24 185.250.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/eaf974-6efd-4633-b84a-a8aaf886c820/1/0NhScDKV7Pi5cgH5FjEPiPTAirc.crl rsync://rpki.ripe.net/repository/DEFAULT/75/eaf974-6efd-4633-b84a-a8aaf886c820/1/0NhScDKV7Pi5cgH5FjEPiPTAirc.mft rsync://rpki.ripe.net/repository/DEFAULT/0NhScDKV7Pi5cgH5FjEPiPTAirc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 10:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:12:91:b9:ca:4a:4c:ed:49:dd:36:15:10:94:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0d852703295ecf8b97201f916310f88f4c08ab7 Validity Not Before: Jan 2 16:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=54869404d2fa5a57b017dd9516429d2609d5a066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:fb:2c:6b:4e:28:fb:37:cd:1d:eb:6d:3d:b7: e9:1a:21:5b:c0:35:47:db:e2:71:b7:91:3d:60:a2: 48:20:bc:68:8f:2b:13:cd:b0:af:75:37:f0:84:0a: 7a:df:f3:0f:47:0a:74:4b:32:19:e0:e5:e0:75:71: 5e:d6:9e:be:44:17:16:d7:f1:29:cf:9c:34:c8:c8: 3d:05:7c:bd:78:83:61:e1:9b:3b:db:8f:24:55:50: 52:80:a6:46:f6:57:97:15:03:2c:20:36:76:27:7f: 21:74:6d:12:36:7a:5c:2d:f6:cf:5a:10:9f:78:47: b0:a6:2d:36:44:d0:ae:5a:94:4e:37:3d:3a:63:78: 48:9c:45:a0:64:23:28:c2:78:75:53:82:d5:58:ff: d0:40:b0:a5:b7:c5:9a:81:51:12:14:5c:60:ec:17: 93:bc:3f:42:fb:50:29:40:6b:1d:e8:20:47:ab:36: bf:4a:32:a3:6b:1b:df:e5:d9:e3:d5:5e:8d:30:b2: 87:d6:7c:d9:c9:61:fc:98:dc:3a:6c:d0:cf:1d:36: 2f:a9:ea:5c:31:c7:a5:33:15:0a:49:ec:4f:dd:65: ba:04:4e:10:ef:e9:79:be:7e:b4:7d:de:eb:e7:c3: 06:d2:11:e4:31:3b:e4:d3:9b:e8:da:a3:a2:33:27: 20:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:86:94:04:D2:FA:5A:57:B0:17:DD:95:16:42:9D:26:09:D5:A0:66 X509v3 Authority Key Identifier: keyid:D0:D8:52:70:32:95:EC:F8:B9:72:01:F9:16:31:0F:88:F4:C0:8A:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0NhScDKV7Pi5cgH5FjEPiPTAirc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/eaf974-6efd-4633-b84a-a8aaf886c820/1/VIaUBNL6WlewF92VFkKdJgnVoGY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/eaf974-6efd-4633-b84a-a8aaf886c820/1/0NhScDKV7Pi5cgH5FjEPiPTAirc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.85.204.0/22 185.250.192.0/22 Signature Algorithm: sha256WithRSAEncryption a9:81:d5:f0:31:9f:61:66:4c:ca:82:c7:a6:dc:0c:ba:d2:86: 1f:d9:c4:ba:a0:72:e1:3c:b4:3d:03:fa:cd:c5:95:20:e2:9d: db:c9:69:53:7a:82:80:54:aa:39:92:e2:46:7d:e1:2e:08:50: b8:8a:c4:5b:1e:43:02:3d:9e:35:56:bb:47:e5:65:f4:b6:e6: a7:ad:f7:e4:88:6b:24:1e:44:1c:7f:1a:dc:f0:78:e1:fe:83: fa:dc:94:f8:db:3b:04:a5:4e:77:28:b5:d1:05:ae:ef:1d:79: f5:49:02:b0:0e:bd:ba:bf:ff:ed:86:9e:28:f4:0e:d8:9c:72: a7:8d:42:a5:ea:7a:18:5e:c7:1e:fe:f0:32:d1:4e:cd:07:6e: 59:db:89:ae:6f:18:31:18:db:fc:19:63:d7:6f:58:29:47:a4: 18:ee:51:aa:6f:96:76:fb:8b:26:ae:87:60:c5:e5:21:39:a2: e7:6a:82:f8:8e:a6:91:ad:5a:96:89:66:3b:eb:02:f8:04:5d: 95:e7:f2:c0:da:63:64:34:8d:e3:4e:cd:73:c0:e9:97:31:89: b5:5e:8f:85:7b:9a:00:af:6f:52:24:0d:90:08:b1:b2:67:9a: 98:38:6c:c5:ad:30:44:f4:dc:fe:39:db:e8:0a:a9:7f:43:04: 68:aa:f1:7c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/gxKRucpKTO1J3TYVEJTnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwZDg1MjcwMzI5NWVjZjhiOTcyMDFmOTE2MzEwZjg4ZjRj MDhhYjcwHhcNMjYwMTAyMTYyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NDg2OTQwNGQyZmE1YTU3YjAxN2RkOTUxNjQyOWQyNjA5ZDVhMDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhfssa04o+zfNHettPbfpGiFbwDVH 2+Jxt5E9YKJIILxojysTzbCvdTfwhAp63/MPRwp0SzIZ4OXgdXFe1p6+RBcW1/Ep z5w0yMg9BXy9eINh4Zs7248kVVBSgKZG9leXFQMsIDZ2J38hdG0SNnpcLfbPWhCf eEewpi02RNCuWpRONz06Y3hInEWgZCMownh1U4LVWP/QQLClt8WagVESFFxg7BeT vD9C+1ApQGsd6CBHqza/SjKjaxvf5dnj1V6NMLKH1nzZyWH8mNw6bNDPHTYvqepc McelMxUKSexP3WW6BE4Q7+l5vn60fd7r58MG0hHkMTvk05vo2qOiMycgewIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFSGlATS+lpXsBfdlRZCnSYJ1aBmMB8GA1UdIwQY MBaAFNDYUnAylez4uXIB+RYxD4j0wIq3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvME5oU2NES1Y3UGk1Y2dINUZqRVBpUFRBaXJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9lYWY5NzQtNmVmZC00NjMzLWI4NGEt YThhYWY4ODZjODIwLzEvVklhVUJOTDZXbGV3RjkyVkZrS2RKZ25Wb0dZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9lYWY5NzQtNmVmZC00NjMzLWI4NGEtYThhYWY4ODZjODIw LzEvME5oU2NES1Y3UGk1Y2dINUZqRVBpUFRBaXJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuVXMAwQC ufrAMA0GCSqGSIb3DQEBCwUAA4IBAQCpgdXwMZ9hZkzKgsem3Ay60oYf2cS6oHLh PLQ9A/rNxZUg4p3byWlTeoKAVKo5kuJGfeEuCFC4isRbHkMCPZ41VrtH5WX0tuan rffkiGskHkQcfxrc8Hjh/oP63JT42zsEpU53KLXRBa7vHXn1SQKwDr26v//thp4o 9A7YnHKnjUKl6noYXsce/vAy0U7NB25Z24mubxgxGNv8GWPXb1gpR6QY7lGqb5Z2 +4smrodgxeUhOaLnaoL4jqaRrVqWiWY76wL4BF2V5/LA2mNkNI3jTs1zwOmXMYm1 Xo+Fe5oAr29SJA2QCLGyZ5qYOGzFrTBE9Nz+OdvoCql/QwRoqvF8 -----END CERTIFICATE-----Generated at Wed Jan 21 16:57:13 2026 by rpki-client