This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/vAtADiVzn1Bh76pWGdcxSENwoAM.roa File: vAtADiVzn1Bh76pWGdcxSENwoAM.roa (raw, json) Hash identifier: QoQZh2KeNuOMLkkI0LNnA2kiP20KbUQKF1Cg2Ja7ZC4= Subject key identifier: BC:0B:40:0E:25:73:9F:50:61:EF:AA:56:19:D7:31:48:43:70:A0:03 Certificate issuer: /CN=e1977859d071f7150837b2acb4353ff33efd831c Certificate serial: 019B791120A025446C25704F6CD8FB755A4B Authority key identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/vAtADiVzn1Bh76pWGdcxSENwoAM.roa Signing time: Thu 01 Jan 2026 10:18:44 +0000 ROA not before: Thu 01 Jan 2026 10:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215219 IP address blocks: 193.221.125.0/24 maxlen: 24 2a10:bd40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.crl rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.mft rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:20:a0:25:44:6c:25:70:4f:6c:d8:fb:75:5a:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1977859d071f7150837b2acb4353ff33efd831c Validity Not Before: Jan 1 10:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc0b400e25739f5061efaa5619d731484370a003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:68:f2:e2:31:16:c6:b3:b7:a2:fc:31:36:05: a0:26:60:77:48:f1:5a:ef:d0:a6:b9:f6:c5:ca:4c: 55:e3:74:be:2e:93:00:9d:3b:ea:9e:46:ee:9e:1f: c6:d6:16:ee:4c:12:20:47:1f:12:90:89:3e:15:21: 00:25:f1:8d:f6:69:6d:76:cb:66:54:01:29:ac:7d: 17:4f:e4:7d:de:cc:7b:d5:4d:21:3f:a3:44:5b:2c: 21:94:59:57:47:9a:29:c7:f4:9b:c1:43:10:4b:a4: 1a:b0:17:ad:30:6e:9d:f0:37:a1:ba:c0:70:ec:af: 81:24:96:a4:14:8f:9d:01:1d:e3:d8:52:3b:79:86: e0:dc:5b:e4:2e:e3:9a:f2:21:3c:cf:10:5e:00:91: 45:a4:cd:42:c6:5b:48:94:a3:0e:aa:59:ae:ca:5b: 16:50:ed:6d:c4:d0:13:62:fa:3f:46:dd:19:91:ed: 6f:c5:6c:e7:f2:fc:7e:35:5a:8f:7d:83:d1:f7:0b: 22:42:78:d4:41:a8:93:c2:90:21:9e:13:29:6c:ad: 79:f4:ea:d1:0e:5f:3d:b9:2f:38:22:1f:93:91:19: 34:9f:3b:2f:f5:22:75:78:ba:c6:8e:9b:86:2d:c2: 90:5b:83:90:b5:c4:fa:e7:dd:18:73:8f:9f:c0:83: 8c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0B:40:0E:25:73:9F:50:61:EF:AA:56:19:D7:31:48:43:70:A0:03 X509v3 Authority Key Identifier: keyid:E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/vAtADiVzn1Bh76pWGdcxSENwoAM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.221.125.0/24 IPv6: 2a10:bd40::/29 Signature Algorithm: sha256WithRSAEncryption 4d:f4:65:d6:c5:21:63:92:6e:e4:90:b0:24:ed:11:9b:6f:ee: 1e:fd:40:46:94:10:a1:02:56:ad:8b:3c:9b:58:c1:77:74:3b: 08:d3:e3:94:52:4b:d7:e6:ef:5a:7b:2c:5b:88:16:3f:b8:ae: c8:d3:6f:8f:ce:37:ea:d4:96:fc:ba:b5:30:bd:81:f2:3c:8b: 94:6f:5d:3f:7d:c1:3e:3d:21:20:0d:4b:06:5b:d1:c3:d7:70: f9:86:4e:cf:5e:48:f5:dd:fb:fc:07:f5:2d:80:05:51:0d:f5: c6:90:44:46:5c:37:a7:ab:a7:dd:7c:fb:e4:4c:af:5e:86:6a: 8a:ec:59:cf:56:68:de:db:b1:45:e2:8f:5c:30:9a:c4:25:8b: e3:ff:f4:f4:a4:37:a4:40:dd:a8:b0:6b:1a:5f:54:e6:c7:df: e7:fa:ae:2e:5d:83:fd:7e:8b:39:cd:1f:58:5b:65:88:2c:69: 1c:80:0b:40:c1:9c:b0:13:97:64:85:31:74:4d:d9:5d:6b:72: 0d:13:dc:04:3c:13:6e:40:e2:19:b0:ae:3c:41:74:98:95:f5: e4:8f:69:f5:e7:ac:63:98:14:47:af:32:63:76:20:97:f6:45: 75:be:fc:1d:d5:cc:ba:a6:87:84:c7:ad:45:0c:af:c0:69:ae: f5:a9:14:3e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5ESCgJURsJXBPbNj7dVpLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxOTc3ODU5ZDA3MWY3MTUwODM3YjJhY2I0MzUzZmYzM2Vm ZDgzMWMwHhcNMjYwMTAxMTAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzBiNDAwZTI1NzM5ZjUwNjFlZmFhNTYxOWQ3MzE0ODQzNzBhMDAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmjy4jEWxrO3ovwxNgWgJmB3SPFa 79CmufbFykxV43S+LpMAnTvqnkbunh/G1hbuTBIgRx8SkIk+FSEAJfGN9mltdstm VAEprH0XT+R93sx71U0hP6NEWywhlFlXR5opx/SbwUMQS6QasBetMG6d8DehusBw 7K+BJJakFI+dAR3j2FI7eYbg3FvkLuOa8iE8zxBeAJFFpM1CxltIlKMOqlmuylsW UO1txNATYvo/Rt0Zke1vxWzn8vx+NVqPfYPR9wsiQnjUQaiTwpAhnhMpbK159OrR Dl89uS84Ih+TkRk0nzsv9SJ1eLrGjpuGLcKQW4OQtcT6590Yc4+fwIOM4wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLwLQA4lc59QYe+qVhnXMUhDcKADMB8GA1UdIwQY MBaAFOGXeFnQcfcVCDeyrLQ1P/M+/YMcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFpkNFdkQng5eFVJTjdLc3REVV84ejc5Z3h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni85ZDdjZDctZWU2My00ODg2LThmZTEt YjVjZTZiNmZkNGQxLzEvdkF0QURpVnpuMUJoNzZwV0dkY3hTRU53b0FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni85ZDdjZDctZWU2My00ODg2LThmZTEtYjVjZTZiNmZkNGQx LzEvNFpkNFdkQng5eFVJTjdLc3REVV84ejc5Z3h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwd19MA0E AgACMAcDBQMqEL1AMA0GCSqGSIb3DQEBCwUAA4IBAQBN9GXWxSFjkm7kkLAk7RGb b+4e/UBGlBChAlatizybWMF3dDsI0+OUUkvX5u9aeyxbiBY/uK7I02+Pzjfq1Jb8 urUwvYHyPIuUb10/fcE+PSEgDUsGW9HD13D5hk7PXkj13fv8B/UtgAVRDfXGkERG XDenq6fdfPvkTK9ehmqK7FnPVmje27FF4o9cMJrEJYvj//T0pDekQN2osGsaX1Tm x9/n+q4uXYP9fos5zR9YW2WILGkcgAtAwZywE5dkhTF0Tdlda3INE9wEPBNuQOIZ sK48QXSYlfXkj2n156xjmBRHrzJjdiCX9kV1vvwd1cy6poeEx61FDK/Aaa71qRQ+ -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:08 2026 by rpki-client