This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/VIJwQfnhHs3GHlmC403kclYI19k.roa File: VIJwQfnhHs3GHlmC403kclYI19k.roa (raw, json) Hash identifier: pBGpIGY8oZecekT32agQOuUVvcZzYj8n135ZMBKxfjM= Subject key identifier: 54:82:70:41:F9:E1:1E:CD:C6:1E:59:82:E3:4D:E4:72:56:08:D7:D9 Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651 Certificate serial: 019B79100105E29088946819B15A35010E60 Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/VIJwQfnhHs3GHlmC403kclYI19k.roa Signing time: Thu 01 Jan 2026 10:17:30 +0000 ROA not before: Thu 01 Jan 2026 10:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200549 IP address blocks: 2a00:5ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.mft rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 22:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:01:05:e2:90:88:94:68:19:b1:5a:35:01:0e:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651 Validity Not Before: Jan 1 10:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=54827041f9e11ecdc61e5982e34de4725608d7d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ef:ab:ed:32:d9:39:39:2b:d9:c9:86:c6:34: 5e:05:a2:f9:56:40:81:ec:6b:b2:49:50:2f:62:9a: b5:6a:d3:eb:75:30:fd:0a:60:e2:ee:a5:13:b4:4b: 48:17:4a:09:f7:d5:d7:b0:f6:ef:7f:3c:fd:2b:5d: 3f:2e:50:9f:74:23:a9:42:cb:1b:21:89:1b:fb:84: 8b:94:d7:68:cd:8f:14:53:eb:5b:3f:ee:ba:f7:02: 14:76:d1:1d:5d:cd:b9:20:24:7a:1f:ef:ff:9f:07: cc:d6:58:6f:2a:12:c0:80:0d:f4:d9:e8:e7:93:76: 47:de:46:c3:f4:3e:ef:eb:71:cf:21:a5:d7:04:6c: 91:b9:13:68:3e:48:21:f8:eb:40:da:b3:12:cf:b8: ca:e5:e6:2f:4c:ea:94:cb:e9:46:82:64:79:81:2a: 60:7e:68:a3:11:5a:c5:31:9b:79:39:a8:c2:71:51: 58:e8:73:88:d5:ba:84:71:bd:7d:66:02:16:0f:b2: 78:e6:b4:14:90:f3:81:da:c6:ee:42:fe:9b:02:38: b6:dd:d6:89:62:e1:7a:88:05:77:4f:6d:19:c9:50: eb:70:3d:14:be:e0:86:0a:7c:8e:b4:66:b9:ab:58: 1d:a1:98:33:1a:7b:98:b4:33:42:92:48:67:6c:23: 99:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:82:70:41:F9:E1:1E:CD:C6:1E:59:82:E3:4D:E4:72:56:08:D7:D9 X509v3 Authority Key Identifier: keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/VIJwQfnhHs3GHlmC403kclYI19k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:5ac0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:f5:c9:b3:58:63:24:b3:ef:1a:a2:6a:55:7d:77:3a:0e:ab: 7d:44:25:4f:24:01:c8:6a:a3:32:57:37:85:09:b3:c4:7f:0a: 03:0a:84:76:81:fb:83:08:16:51:9c:78:bc:db:a1:05:4b:57: af:55:31:f0:3a:36:8d:b0:89:1c:2c:fe:13:61:c9:96:dd:32: 6c:2b:3e:b2:1c:12:aa:b2:11:02:8f:22:50:91:bb:a2:0a:3b: db:9a:b6:1b:31:72:1d:3f:0e:82:26:f2:f4:c5:eb:cc:f1:2e: a4:8e:99:f8:43:89:24:43:df:b2:ce:be:fb:be:19:44:a1:6e: 6c:ca:72:ec:10:48:d2:65:2c:c1:88:27:72:06:a8:2c:e5:37: f8:b1:a0:5c:6a:54:bc:33:d5:09:51:5d:92:3f:2d:cd:92:bb: 71:8a:df:b0:fc:ba:66:7e:4c:77:fa:34:f4:84:9a:f4:22:a5: df:b0:38:17:ee:53:ad:9f:27:e1:e9:3a:22:77:cc:89:21:67: 8c:6b:c7:54:f0:a4:ad:54:da:01:f0:75:31:0f:87:b6:da:da: 35:0c:8e:1b:ec:47:41:ae:18:7c:4d:61:29:8e:17:b5:1e:4b: a8:a1:4e:8f:be:4d:fc:6c:48:7c:f8:ec:cb:47:d7:9b:84:aa: eb:83:11:27 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EAEF4pCIlGgZsVo1AQ5gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZDJhMjM0ZTIyNGJmODc5OTZmMmYwZGY1NTllYWQ4ODJm OWU2NTEwHhcNMjYwMTAxMTAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NDgyNzA0MWY5ZTExZWNkYzYxZTU5ODJlMzRkZTQ3MjU2MDhkN2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr++r7TLZOTkr2cmGxjReBaL5VkCB 7GuySVAvYpq1atPrdTD9CmDi7qUTtEtIF0oJ99XXsPbvfzz9K10/LlCfdCOpQssb IYkb+4SLlNdozY8UU+tbP+669wIUdtEdXc25ICR6H+//nwfM1lhvKhLAgA302ejn k3ZH3kbD9D7v63HPIaXXBGyRuRNoPkgh+OtA2rMSz7jK5eYvTOqUy+lGgmR5gSpg fmijEVrFMZt5OajCcVFY6HOI1bqEcb19ZgIWD7J45rQUkPOB2sbuQv6bAji23daJ YuF6iAV3T20ZyVDrcD0UvuCGCnyOtGa5q1gdoZgzGnuYtDNCkkhnbCOZIwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFSCcEH54R7Nxh5ZguNN5HJWCNfZMB8GA1UdIwQY MBaAFMLSojTiJL+HmW8vDfVZ6tiC+eZRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3RLaU5PSWt2NGVaYnk4TjlWbnEySUw1NWxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kMWVlNGItZTg4YS00ZTQxLWE2MTYt NGIyNDhkYTZjOTZjLzEvVklKd1FmbmhIczNHSGxtQzQwM2tjbFlJMTlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9kMWVlNGItZTg4YS00ZTQxLWE2MTYtNGIyNDhkYTZjOTZj LzEvd3RLaU5PSWt2NGVaYnk4TjlWbnEySUw1NWxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgBawAAA MA0GCSqGSIb3DQEBCwUAA4IBAQAe9cmzWGMks+8aompVfXc6Dqt9RCVPJAHIaqMy VzeFCbPEfwoDCoR2gfuDCBZRnHi826EFS1evVTHwOjaNsIkcLP4TYcmW3TJsKz6y HBKqshECjyJQkbuiCjvbmrYbMXIdPw6CJvL0xevM8S6kjpn4Q4kkQ9+yzr77vhlE oW5synLsEEjSZSzBiCdyBqgs5Tf4saBcalS8M9UJUV2SPy3Nkrtxit+w/Lpmfkx3 +jT0hJr0IqXfsDgX7lOtnyfh6Toid8yJIWeMa8dU8KStVNoB8HUxD4e22to1DI4b 7EdBrhh8TWEpjhe1HkuooU6Pvk38bEh8+OzLR9ebhKrrgxEn -----END CERTIFICATE-----Generated at Tue Jan 27 07:43:46 2026 by rpki-client