This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/VUWyLZ0rJ2KWNFwxw_bl1XOWT5Y.roa File: VUWyLZ0rJ2KWNFwxw_bl1XOWT5Y.roa (raw, json) Hash identifier: h6fu2o5gEs54ynuGXWVxljJh43rB4bmU8/bT0YsjVoE= Subject key identifier: 55:45:B2:2D:9D:2B:27:62:96:34:5C:31:C3:F6:E5:D5:73:96:4F:96 Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3 Certificate serial: 019B7F152001E10AC19E8B993F884E701CB5 Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/VUWyLZ0rJ2KWNFwxw_bl1XOWT5Y.roa Signing time: Fri 02 Jan 2026 14:20:49 +0000 ROA not before: Fri 02 Jan 2026 14:20:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211476 IP address blocks: 185.182.70.0/24 maxlen: 24 185.182.71.0/24 maxlen: 24 2a0f:3680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:20:01:e1:0a:c1:9e:8b:99:3f:88:4e:70:1c:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3 Validity Not Before: Jan 2 14:20:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5545b22d9d2b276296345c31c3f6e5d573964f96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:40:66:37:20:67:0e:71:24:68:a6:b6:6c:d5: ff:85:b9:e2:c9:03:93:90:5f:0a:be:e1:61:fb:c9: 08:98:3f:b5:48:a8:c6:93:5e:49:15:9e:6e:18:8a: fe:b8:5d:b3:c4:e6:95:98:65:0b:f3:05:48:6c:2c: d7:90:94:9f:2c:ad:fe:9c:27:32:34:35:68:53:d3: 06:38:9e:52:0b:aa:a3:7b:14:04:7d:e2:22:bf:78: 67:ee:92:e9:42:b7:c6:1f:51:67:f0:c8:34:a3:fb: 34:b1:00:ce:d4:c7:46:bd:5e:75:77:cf:18:f6:d8: 3b:aa:e2:69:70:81:f6:1f:85:c6:7e:1b:3e:73:34: 45:23:f4:32:66:df:c2:e3:bf:1e:ec:93:53:25:96: 88:e8:d5:6c:79:b2:ec:96:19:ad:2e:fe:83:82:b0: 16:42:37:2b:eb:0d:a5:9e:2c:52:d4:3e:87:b8:39: c2:e6:a4:1b:00:c1:71:c8:3e:af:d1:6a:3c:8d:01: 59:ae:73:1d:22:7c:af:af:69:ff:7d:81:d8:22:c6: ae:e0:d1:1f:71:b8:15:50:60:65:9e:45:65:f3:7e: 49:26:e9:4a:b3:2c:00:93:7d:3c:38:fc:21:7b:93: 9b:06:04:1d:78:d9:17:aa:b7:2e:57:6a:ac:ab:2a: 15:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:45:B2:2D:9D:2B:27:62:96:34:5C:31:C3:F6:E5:D5:73:96:4F:96 X509v3 Authority Key Identifier: keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/VUWyLZ0rJ2KWNFwxw_bl1XOWT5Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.182.70.0/23 IPv6: 2a0f:3680::/32 Signature Algorithm: sha256WithRSAEncryption 8f:53:f1:71:9b:73:c9:71:9c:f8:a1:e3:6b:cd:ff:ed:5c:18: 48:d8:77:fe:86:15:46:63:44:c6:cd:3c:03:b2:e6:7d:25:f8: 45:5f:15:90:2b:68:64:0f:f3:e8:8a:ac:5b:a7:24:c1:ef:6c: 7b:ce:d6:2a:9a:19:be:2e:13:cc:2f:67:f2:3b:20:99:f8:88: 53:29:26:2e:8d:d3:34:0b:2b:11:d8:2e:57:41:71:00:a3:e7: 96:a1:56:f7:bc:66:95:9c:51:e4:65:ef:bb:f9:51:29:86:bd: e4:59:e4:c1:65:88:14:04:15:c4:0d:f4:e6:54:a2:2b:cd:c7: f1:95:4d:c3:42:49:50:27:0f:49:cb:0f:20:d6:d6:f8:a6:d2: d5:6e:9a:b6:8a:44:62:1d:2d:e4:6d:38:2a:b5:fd:61:82:f2: 64:c5:59:b2:33:e7:cf:a5:7a:ea:01:ea:44:c2:ae:9b:d6:be: 37:29:a8:1f:8f:80:7e:b0:ec:ae:cc:21:5c:2d:2b:8d:49:ab: a8:17:4a:b4:4c:6e:65:3a:1e:e1:de:a1:50:30:94:4e:e9:78: 9a:32:3d:df:e8:43:4b:ae:f5:56:9a:fd:c1:a4:87:ae:c0:e4: cf:69:d0:a9:4c:2e:fd:12:73:e3:19:63:10:4b:8e:b8:a0:d2: 0b:b1:6c:05 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FSAB4QrBnouZP4hOcBy1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MDM4ZDRjYWNiZDQxOTE5OTUyZWIzNzA5YzE2NTMzODM4 OTAwZTMwHhcNMjYwMTAyMTQyMDQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTQ1YjIyZDlkMmIyNzYyOTYzNDVjMzFjM2Y2ZTVkNTczOTY0Zjk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA60BmNyBnDnEkaKa2bNX/hbniyQOT kF8KvuFh+8kImD+1SKjGk15JFZ5uGIr+uF2zxOaVmGUL8wVIbCzXkJSfLK3+nCcy NDVoU9MGOJ5SC6qjexQEfeIiv3hn7pLpQrfGH1Fn8Mg0o/s0sQDO1MdGvV51d88Y 9tg7quJpcIH2H4XGfhs+czRFI/QyZt/C478e7JNTJZaI6NVsebLslhmtLv6DgrAW Qjcr6w2lnixS1D6HuDnC5qQbAMFxyD6v0Wo8jQFZrnMdInyvr2n/fYHYIsau4NEf cbgVUGBlnkVl835JJulKsywAk308OPwhe5ObBgQdeNkXqrcuV2qsqyoVZQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFVFsi2dKydiljRcMcP25dVzlk+WMB8GA1UdIwQY MBaAFGgDjUysvUGRmVLrNwnBZTODiQDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgt MmY1MGVhMjcyMTNjLzEvVlVXeUxaMHJKMktXTkZ3eHdfYmwxWE9XVDVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgtMmY1MGVhMjcyMTNj LzEvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBubZGMA0E AgACMAcDBQAqDzaAMA0GCSqGSIb3DQEBCwUAA4IBAQCPU/Fxm3PJcZz4oeNrzf/t XBhI2Hf+hhVGY0TGzTwDsuZ9JfhFXxWQK2hkD/PoiqxbpyTB72x7ztYqmhm+LhPM L2fyOyCZ+IhTKSYujdM0CysR2C5XQXEAo+eWoVb3vGaVnFHkZe+7+VEphr3kWeTB ZYgUBBXEDfTmVKIrzcfxlU3DQklQJw9Jyw8g1tb4ptLVbpq2ikRiHS3kbTgqtf1h gvJkxVmyM+fPpXrqAepEwq6b1r43Kagfj4B+sOyuzCFcLSuNSauoF0q0TG5lOh7h 3qFQMJRO6XiaMj3f6ENLrvVWmv3BpIeuwOTPadCpTC79EnPjGWMQS464oNILsWwF -----END CERTIFICATE-----Generated at Tue Feb 10 04:50:23 2026 by rpki-client