This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/8db8d2-6b11-4d19-8e8d-52a10425b136/1/vLei4seWygsDh0oR9_VnFB1q0Xs.roa File: vLei4seWygsDh0oR9_VnFB1q0Xs.roa (raw, json) Hash identifier: ND2KaYB7DGNAB4Oizn0Q8ZdJQ6VlQYlD9dkkKlwD5i0= Subject key identifier: BC:B7:A2:E2:C7:96:CA:0B:03:87:4A:11:F7:F5:67:14:1D:6A:D1:7B Certificate issuer: /CN=34db1bb29a4aea85e19c2892d0c839e2fb945ed0 Certificate serial: 019B79EBD2AA18583A69966834E2BFF0E295 Authority key identifier: 34:DB:1B:B2:9A:4A:EA:85:E1:9C:28:92:D0:C8:39:E2:FB:94:5E:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NNsbsppK6oXhnCiS0Mg54vuUXtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/8db8d2-6b11-4d19-8e8d-52a10425b136/1/vLei4seWygsDh0oR9_VnFB1q0Xs.roa Signing time: Thu 01 Jan 2026 14:17:36 +0000 ROA not before: Thu 01 Jan 2026 14:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21256 IP address blocks: 193.109.144.0/22 maxlen: 22 194.187.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/8db8d2-6b11-4d19-8e8d-52a10425b136/1/NNsbsppK6oXhnCiS0Mg54vuUXtA.crl rsync://rpki.ripe.net/repository/DEFAULT/84/8db8d2-6b11-4d19-8e8d-52a10425b136/1/NNsbsppK6oXhnCiS0Mg54vuUXtA.mft rsync://rpki.ripe.net/repository/DEFAULT/NNsbsppK6oXhnCiS0Mg54vuUXtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:d2:aa:18:58:3a:69:96:68:34:e2:bf:f0:e2:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34db1bb29a4aea85e19c2892d0c839e2fb945ed0 Validity Not Before: Jan 1 14:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bcb7a2e2c796ca0b03874a11f7f567141d6ad17b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:54:a2:95:4c:ff:d1:8b:ee:2d:6c:80:c4: 98:47:aa:5e:f4:c2:aa:3b:dc:22:8a:21:41:34:15: a3:ea:6f:dd:9d:6e:32:50:96:d6:fb:7c:4e:de:ff: 5d:10:7e:ef:67:3b:c3:b1:7c:2c:6e:39:29:bc:f9: 75:2d:81:ce:e7:58:b1:e1:b6:62:e5:fd:b8:c6:5e: 9c:09:72:f2:23:a3:c6:34:78:ce:95:84:0b:fc:87: 45:79:47:f7:d8:2c:fe:b1:45:ca:84:fb:23:08:ca: 63:3f:64:dd:f7:d3:00:df:b3:d7:21:fb:2f:a1:2c: d2:3b:64:49:2d:75:7b:81:63:97:22:53:0c:b8:ea: 8a:fe:2b:ae:65:54:11:a1:0f:fd:ef:af:d4:90:0a: 00:f3:00:30:bc:58:66:c1:39:ec:2c:a7:e5:27:ec: b3:3a:2a:43:9f:fc:78:e8:db:1e:86:25:14:ba:60: 4b:03:35:1c:8b:e0:43:fd:c4:fa:80:43:e7:f2:0e: 39:4d:2a:ce:d8:91:4d:b7:2d:cf:fe:f6:b5:1b:a9: 7a:12:6c:1d:76:f4:d9:ad:ae:fd:63:5a:95:c2:31: 05:a2:de:d0:3f:44:26:eb:84:55:c6:a8:8e:4a:74: 31:80:20:a7:e1:8c:f6:2e:c6:c2:20:0f:eb:42:3a: 8b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B7:A2:E2:C7:96:CA:0B:03:87:4A:11:F7:F5:67:14:1D:6A:D1:7B X509v3 Authority Key Identifier: keyid:34:DB:1B:B2:9A:4A:EA:85:E1:9C:28:92:D0:C8:39:E2:FB:94:5E:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NNsbsppK6oXhnCiS0Mg54vuUXtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8db8d2-6b11-4d19-8e8d-52a10425b136/1/vLei4seWygsDh0oR9_VnFB1q0Xs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8db8d2-6b11-4d19-8e8d-52a10425b136/1/NNsbsppK6oXhnCiS0Mg54vuUXtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.109.144.0/22 194.187.104.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:28:fb:a6:5c:14:76:60:5a:df:dd:aa:42:92:d0:2e:6e:81: 90:ff:27:81:89:86:08:27:bc:48:43:15:58:31:97:c0:3d:87: f3:e6:39:51:01:9c:47:40:03:43:7f:68:08:c5:a7:57:7c:c4: 3a:cb:31:57:f0:0c:fd:47:d6:6d:7f:6c:98:ba:9a:43:c6:37: d7:06:48:ab:6e:02:46:b5:9c:93:1a:81:49:38:af:20:25:8d: b5:26:51:5d:54:4d:b4:67:1e:e9:e5:14:54:92:c2:15:a1:42: fb:8a:13:fa:f2:2a:e2:c7:7b:39:f7:ee:d1:3e:fa:b3:8e:07: df:ce:c7:15:8c:e5:7c:cd:0f:c5:a5:84:52:dd:e9:33:d0:ca: ac:de:10:a4:e9:49:42:2c:24:3f:1a:74:f3:bb:10:74:75:d2: bc:30:78:2d:86:06:b2:19:0d:d9:af:41:6a:b1:89:53:d0:e6: 4c:31:1c:ea:70:6e:86:40:86:69:f8:19:12:92:39:1f:a1:ea: da:f4:2e:ad:a8:32:e3:97:b1:80:f6:2b:9c:fe:3a:e0:48:17: a5:47:53:d7:87:50:e9:cd:79:47:a7:c5:23:77:f0:70:68:46: e8:81:55:98:1d:c9:91:d5:fc:c1:5c:28:df:88:85:42:6f:45: 2a:13:d6:4d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt569KqGFg6aZZoNOK/8OKVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZGIxYmIyOWE0YWVhODVlMTljMjg5MmQwYzgzOWUyZmI5 NDVlZDAwHhcNMjYwMTAxMTQxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiY2I3YTJlMmM3OTZjYTBiMDM4NzRhMTFmN2Y1NjcxNDFkNmFkMTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7BUopVM/9GL7i1sgMSYR6pe9MKq O9wiiiFBNBWj6m/dnW4yUJbW+3xO3v9dEH7vZzvDsXwsbjkpvPl1LYHO51ix4bZi 5f24xl6cCXLyI6PGNHjOlYQL/IdFeUf32Cz+sUXKhPsjCMpjP2Td99MA37PXIfsv oSzSO2RJLXV7gWOXIlMMuOqK/iuuZVQRoQ/976/UkAoA8wAwvFhmwTnsLKflJ+yz OipDn/x46NsehiUUumBLAzUci+BD/cT6gEPn8g45TSrO2JFNty3P/va1G6l6Emwd dvTZra79Y1qVwjEFot7QP0Qm64RVxqiOSnQxgCCn4Yz2LsbCIA/rQjqLkwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLy3ouLHlsoLA4dKEff1ZxQdatF7MB8GA1UdIwQY MBaAFDTbG7KaSuqF4ZwoktDIOeL7lF7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk5zYnNwcEs2b1hobkNpUzBNZzU0dnVVWHRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84ZGI4ZDItNmIxMS00ZDE5LThlOGQt NTJhMTA0MjViMTM2LzEvdkxlaTRzZVd5Z3NEaDBvUjlfVm5GQjFxMFhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC84ZGI4ZDItNmIxMS00ZDE5LThlOGQtNTJhMTA0MjViMTM2 LzEvTk5zYnNwcEs2b1hobkNpUzBNZzU0dnVVWHRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwW2QAwQC wrtoMA0GCSqGSIb3DQEBCwUAA4IBAQAuKPumXBR2YFrf3apCktAuboGQ/yeBiYYI J7xIQxVYMZfAPYfz5jlRAZxHQANDf2gIxadXfMQ6yzFX8Az9R9Ztf2yYuppDxjfX BkirbgJGtZyTGoFJOK8gJY21JlFdVE20Zx7p5RRUksIVoUL7ihP68irix3s59+7R PvqzjgffzscVjOV8zQ/FpYRS3ekz0Mqs3hCk6UlCLCQ/GnTzuxB0ddK8MHgthgay GQ3Zr0FqsYlT0OZMMRzqcG6GQIZp+BkSkjkfoera9C6tqDLjl7GA9iuc/jrgSBel R1PXh1DpzXlHp8Ujd/BwaEbogVWYHcmR1fzBXCjfiIVCb0UqE9ZN -----END CERTIFICATE-----Generated at Tue Feb 3 00:06:13 2026 by rpki-client