This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/_-VMMWYaeo07YKHzWu-1bqfrOS0.roa File: _-VMMWYaeo07YKHzWu-1bqfrOS0.roa (raw, json) Hash identifier: 4JW8wTv0W2bU/4j+IIYdqq0FUqCW2hEFNRS9teO6rL0= Subject key identifier: FF:E5:4C:31:66:1A:7A:8D:3B:60:A1:F3:5A:EF:B5:6E:A7:EB:39:2D Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029 Certificate serial: 019B78A254FD578E84086A7EF73650F14CBF Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/_-VMMWYaeo07YKHzWu-1bqfrOS0.roa Signing time: Thu 01 Jan 2026 08:17:43 +0000 ROA not before: Thu 01 Jan 2026 08:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 134351 IP address blocks: 195.40.5.0/24 maxlen: 24 195.40.12.0/24 maxlen: 24 195.40.70.0/23 maxlen: 23 195.40.120.0/23 maxlen: 23 195.40.122.0/23 maxlen: 23 195.40.160.0/23 maxlen: 23 195.172.150.0/24 maxlen: 24 195.172.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:54:fd:57:8e:84:08:6a:7e:f7:36:50:f1:4c:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e20b034e2c497b1884488def106972704765029 Validity Not Before: Jan 1 08:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ffe54c31661a7a8d3b60a1f35aefb56ea7eb392d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1c:5c:43:90:df:fa:5e:5e:91:e4:d0:27:52: 08:5c:72:2e:45:f1:37:30:48:a0:52:4d:2c:18:54: 59:50:81:a4:ab:4c:b8:5b:97:a5:b2:66:67:04:4b: 81:08:af:6b:9c:50:f4:e9:87:81:11:58:c5:29:ac: 1b:17:e9:d7:a3:2d:cc:55:97:63:54:a1:7d:da:1a: a4:ee:78:37:73:70:20:c8:c9:50:94:1e:0f:99:ba: b3:b1:ac:87:1c:11:32:35:21:76:6c:65:62:a1:d8: 76:4d:c3:bb:70:98:a3:f8:5e:6a:a5:b5:fd:ef:1b: 60:2a:2c:23:16:72:83:d9:10:9b:0a:e1:2d:47:03: b3:d3:d5:9a:89:26:bb:78:27:6f:c7:55:f0:67:3b: 9c:44:ae:91:52:3e:f4:f5:31:f6:9e:5b:6e:13:26: 1e:55:5d:fc:73:91:17:0f:55:c9:6e:05:54:cc:f7: 12:30:ab:12:ea:07:a9:41:17:fb:42:32:a5:59:39: 7a:64:38:e0:ef:de:71:06:e2:57:51:73:85:48:7e: ee:bc:6b:9b:59:26:56:72:9f:97:e9:0f:d1:27:89: 43:62:c3:1a:52:76:3a:9d:3a:1a:a2:b0:5a:c7:2b: 0e:86:e0:dc:25:5f:64:5b:a6:88:51:32:8d:a5:a6: 94:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E5:4C:31:66:1A:7A:8D:3B:60:A1:F3:5A:EF:B5:6E:A7:EB:39:2D X509v3 Authority Key Identifier: keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/_-VMMWYaeo07YKHzWu-1bqfrOS0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.40.5.0/24 195.40.12.0/24 195.40.70.0/23 195.40.120.0/22 195.40.160.0/23 195.172.150.0/24 195.172.211.0/24 Signature Algorithm: sha256WithRSAEncryption d3:c3:16:8d:40:eb:e9:e1:dd:e7:38:bf:71:d5:d2:ae:23:f0: 00:21:b4:42:d4:64:e4:54:6e:b1:23:dc:4b:27:87:7d:da:6e: fc:5c:a8:5f:b2:8d:15:93:1e:b0:99:74:ff:26:31:3d:db:77: 15:5d:26:f1:04:a4:1e:ff:a8:aa:80:38:43:b8:4d:92:08:9e: e7:01:54:09:de:5f:8b:ca:45:69:8b:70:70:89:25:12:7d:6e: 00:10:aa:9c:73:a9:cd:c6:bc:f3:b6:b1:0c:4f:39:c9:d1:aa: d4:0d:59:ba:3f:6d:4e:16:2f:c3:d7:64:b5:5a:d3:77:a5:c5: 15:fe:59:da:8f:db:66:54:d6:cd:8b:b8:8f:fa:01:82:81:6e: 56:5f:ce:bc:26:14:ad:ed:29:15:a5:cf:98:67:3e:1b:8c:c3: 11:30:c4:8d:c1:59:96:f3:dd:1b:44:74:07:93:c3:c6:60:12: 0a:a6:05:c9:e0:a8:5e:f8:08:a4:75:81:31:6c:00:5c:3a:dd: 6b:f7:7e:a5:cc:35:bd:45:86:3e:4f:f3:30:ce:49:8e:dc:fd: 7c:a8:39:20:ed:d4:5f:3e:7b:9f:70:1f:c5:a5:c4:c3:b2:f9: e1:5e:a5:ea:f3:b7:3c:5c:54:54:6e:c2:df:b0:25:c3:9b:2d: 29:67:12:65 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt4olT9V46ECGp+9zZQ8Uy/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3 NjUwMjkwHhcNMjYwMTAxMDgxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZmU1NGMzMTY2MWE3YThkM2I2MGExZjM1YWVmYjU2ZWE3ZWIzOTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhxcQ5Df+l5ekeTQJ1IIXHIuRfE3 MEigUk0sGFRZUIGkq0y4W5elsmZnBEuBCK9rnFD06YeBEVjFKawbF+nXoy3MVZdj VKF92hqk7ng3c3AgyMlQlB4PmbqzsayHHBEyNSF2bGViodh2TcO7cJij+F5qpbX9 7xtgKiwjFnKD2RCbCuEtRwOz09WaiSa7eCdvx1XwZzucRK6RUj709TH2nltuEyYe VV38c5EXD1XJbgVUzPcSMKsS6gepQRf7QjKlWTl6ZDjg795xBuJXUXOFSH7uvGub WSZWcp+X6Q/RJ4lDYsMaUnY6nToaorBaxysOhuDcJV9kW6aIUTKNpaaURQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFP/lTDFmGnqNO2Ch81rvtW6n6zktMB8GA1UdIwQY MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt MDM1ZDk3N2Y0MjE2LzEvXy1WTU1XWWFlbzA3WUtIeld1LTFicWZyT1MwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2 LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAwygFAwQA wygMAwQBwyhGAwQCwyh4AwQBwyigAwQAw6yWAwQAw6zTMA0GCSqGSIb3DQEBCwUA A4IBAQDTwxaNQOvp4d3nOL9x1dKuI/AAIbRC1GTkVG6xI9xLJ4d92m78XKhfso0V kx6wmXT/JjE923cVXSbxBKQe/6iqgDhDuE2SCJ7nAVQJ3l+LykVpi3BwiSUSfW4A EKqcc6nNxrzztrEMTznJ0arUDVm6P21OFi/D12S1WtN3pcUV/lnaj9tmVNbNi7iP +gGCgW5WX868JhSt7SkVpc+YZz4bjMMRMMSNwVmW890bRHQHk8PGYBIKpgXJ4Khe +AikdYExbABcOt1r936lzDW9RYY+T/MwzkmO3P18qDkg7dRfPnufcB/FpcTDsvnh XqXq87c8XFRUbsLfsCXDmy0pZxJl -----END CERTIFICATE-----Generated at Mon Jan 19 08:14:49 2026 by rpki-client