This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fba28c-6b17-4626-963c-058cc953e803/1/Vy7BMpJqoZuVvWR4mEN_bNvm9dM.roa File: Vy7BMpJqoZuVvWR4mEN_bNvm9dM.roa (raw, json) Hash identifier: rY6uJJwF9xIMyt0dN926zSvzL2uJcZ2tadxHonT2i4g= Subject key identifier: 57:2E:C1:32:92:6A:A1:9B:95:BD:64:78:98:43:7F:6C:DB:E6:F5:D3 Certificate issuer: /CN=34e83f41e5d24254c90a86e3b2bb7a80af039721 Certificate serial: 019B7AC8394BE5CF44C13B8237A1F565090E Authority key identifier: 34:E8:3F:41:E5:D2:42:54:C9:0A:86:E3:B2:BB:7A:80:AF:03:97:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOg_QeXSQlTJCobjsrt6gK8DlyE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fba28c-6b17-4626-963c-058cc953e803/1/Vy7BMpJqoZuVvWR4mEN_bNvm9dM.roa Signing time: Thu 01 Jan 2026 18:18:20 +0000 ROA not before: Thu 01 Jan 2026 18:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13249 IP address blocks: 193.109.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/fba28c-6b17-4626-963c-058cc953e803/1/NOg_QeXSQlTJCobjsrt6gK8DlyE.crl rsync://rpki.ripe.net/repository/DEFAULT/81/fba28c-6b17-4626-963c-058cc953e803/1/NOg_QeXSQlTJCobjsrt6gK8DlyE.mft rsync://rpki.ripe.net/repository/DEFAULT/NOg_QeXSQlTJCobjsrt6gK8DlyE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:39:4b:e5:cf:44:c1:3b:82:37:a1:f5:65:09:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34e83f41e5d24254c90a86e3b2bb7a80af039721 Validity Not Before: Jan 1 18:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=572ec132926aa19b95bd647898437f6cdbe6f5d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b2:66:6d:c3:f7:01:fd:d2:1e:c1:78:8b:c6: 36:25:61:9d:b6:9b:1e:93:ed:eb:9d:7e:ab:1d:fd: 67:e2:0d:75:c0:67:35:9e:dc:1f:2d:3d:7d:c7:e2: cb:5f:82:01:8c:f9:3f:36:bb:9f:f6:f3:95:72:6f: 0a:04:00:4c:a7:b2:f3:65:82:f8:78:bb:66:e3:11: db:be:d4:e1:34:d4:9d:b4:99:bf:5c:8b:fb:08:df: 2f:1e:e1:b9:32:fb:7b:dc:0c:58:5f:2a:da:12:11: cd:92:25:cb:82:2c:e3:e2:a0:08:56:f9:d3:20:11: 2e:44:1a:9c:17:0f:68:9a:85:e0:eb:3a:ce:f3:03: 0f:7b:3b:63:4f:e9:dc:f4:67:30:e0:38:d5:48:ed: ab:be:fc:dc:d5:7f:81:70:79:ec:40:ff:03:fc:d9: 57:72:5e:d3:63:e0:c1:ef:3a:42:e6:30:3e:0c:c8: 5a:f6:2f:1e:82:45:28:ef:7d:51:59:b5:8d:df:ec: fe:fe:a0:65:0c:7f:66:d9:25:fc:ac:74:17:cf:10: 64:0f:e1:56:7f:ab:21:61:9b:ed:7d:2e:d3:61:82: 5d:33:0a:aa:d7:a4:ee:6e:e6:b7:9e:53:39:07:97: 50:16:d6:0c:de:38:2d:7b:40:21:0d:13:21:f4:06: 30:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2E:C1:32:92:6A:A1:9B:95:BD:64:78:98:43:7F:6C:DB:E6:F5:D3 X509v3 Authority Key Identifier: keyid:34:E8:3F:41:E5:D2:42:54:C9:0A:86:E3:B2:BB:7A:80:AF:03:97:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOg_QeXSQlTJCobjsrt6gK8DlyE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fba28c-6b17-4626-963c-058cc953e803/1/Vy7BMpJqoZuVvWR4mEN_bNvm9dM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fba28c-6b17-4626-963c-058cc953e803/1/NOg_QeXSQlTJCobjsrt6gK8DlyE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.109.241.0/24 Signature Algorithm: sha256WithRSAEncryption 70:fc:55:af:57:36:38:b2:fe:f0:35:20:6d:7a:15:94:15:b1: 60:ff:cf:d3:fb:50:18:bc:54:f3:72:df:71:73:d3:f4:e9:bd: 7e:40:49:e1:50:84:6c:5e:a9:c1:56:8e:4e:46:9d:52:5a:1d: b4:5d:95:ac:45:66:3f:d3:b5:0d:1a:1b:50:cc:ec:0a:36:06: d5:4b:d7:3b:67:a8:d3:03:dd:ac:11:df:40:03:fe:0d:75:36: bd:fb:0f:a3:f9:52:83:34:aa:4e:cf:56:b6:ed:58:41:45:78: 11:f0:78:1f:cc:53:0d:4b:13:ca:cd:68:83:0f:bf:cc:33:3e: 58:eb:1f:f8:c5:1d:9a:ea:15:5f:1b:c2:d8:6b:10:6d:62:87: 04:27:1b:b8:98:bf:96:84:17:e9:fe:4c:f0:c9:cb:bd:6f:ce: 55:4b:3d:c1:b6:8a:e3:60:ee:d0:21:bc:7e:1f:9f:7b:ab:f0: 9e:07:3e:fd:88:72:12:8a:e1:8f:eb:14:61:2d:15:81:8c:d3: 4b:ed:c3:d4:54:f6:01:79:3d:4c:aa:03:5c:43:17:a1:98:59: 65:fd:db:3f:ac:f7:72:32:ae:c4:52:39:d0:cc:aa:47:6a:f8: a5:f7:b6:eb:5e:cb:70:3c:38:bf:ba:4d:bd:39:3b:00:c7:d7: 24:40:0d:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yDlL5c9EwTuCN6H1ZQkOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZTgzZjQxZTVkMjQyNTRjOTBhODZlM2IyYmI3YTgwYWYw Mzk3MjEwHhcNMjYwMTAxMTgxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NzJlYzEzMjkyNmFhMTliOTViZDY0Nzg5ODQzN2Y2Y2RiZTZmNWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubJmbcP3Af3SHsF4i8Y2JWGdtpse k+3rnX6rHf1n4g11wGc1ntwfLT19x+LLX4IBjPk/Nruf9vOVcm8KBABMp7LzZYL4 eLtm4xHbvtThNNSdtJm/XIv7CN8vHuG5Mvt73AxYXyraEhHNkiXLgizj4qAIVvnT IBEuRBqcFw9omoXg6zrO8wMPeztjT+nc9Gcw4DjVSO2rvvzc1X+BcHnsQP8D/NlX cl7TY+DB7zpC5jA+DMha9i8egkUo731RWbWN3+z+/qBlDH9m2SX8rHQXzxBkD+FW f6shYZvtfS7TYYJdMwqq16Tubua3nlM5B5dQFtYM3jgte0AhDRMh9AYw/wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFcuwTKSaqGblb1keJhDf2zb5vXTMB8GA1UdIwQY MBaAFDToP0Hl0kJUyQqG47K7eoCvA5chMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk9nX1FlWFNRbFRKQ29ianNydDZnSzhEbHlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9mYmEyOGMtNmIxNy00NjI2LTk2M2Mt MDU4Y2M5NTNlODAzLzEvVnk3Qk1wSnFvWnVWdldSNG1FTl9iTnZtOWRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9mYmEyOGMtNmIxNy00NjI2LTk2M2MtMDU4Y2M5NTNlODAz LzEvTk9nX1FlWFNRbFRKQ29ianNydDZnSzhEbHlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW3xMA0G CSqGSIb3DQEBCwUAA4IBAQBw/FWvVzY4sv7wNSBtehWUFbFg/8/T+1AYvFTzct9x c9P06b1+QEnhUIRsXqnBVo5ORp1SWh20XZWsRWY/07UNGhtQzOwKNgbVS9c7Z6jT A92sEd9AA/4NdTa9+w+j+VKDNKpOz1a27VhBRXgR8HgfzFMNSxPKzWiDD7/MMz5Y 6x/4xR2a6hVfG8LYaxBtYocEJxu4mL+WhBfp/kzwycu9b85VSz3BtorjYO7QIbx+ H597q/CeBz79iHISiuGP6xRhLRWBjNNL7cPUVPYBeT1MqgNcQxehmFll/ds/rPdy Mq7EUjnQzKpHavil97brXstwPDi/uk29OTsAx9ckQA2y -----END CERTIFICATE-----Generated at Mon Jan 19 09:50:50 2026 by rpki-client