This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/vs9qa_eW2Cldpu5SYtJB_2StoHA.roa File: vs9qa_eW2Cldpu5SYtJB_2StoHA.roa (raw, json) Hash identifier: sQEg+HGHtbznkdfcmi0Loy8MM366S1BHj7BDrGmut4M= Subject key identifier: BE:CF:6A:6B:F7:96:D8:29:5D:A6:EE:52:62:D2:41:FF:64:AD:A0:70 Certificate issuer: /CN=76f311ef1581a00e437cd704b6281ac8621afc56 Certificate serial: 019B7F8223A0C2AEF1E5C645152308670A9D Authority key identifier: 76:F3:11:EF:15:81:A0:0E:43:7C:D7:04:B6:28:1A:C8:62:1A:FC:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dvMR7xWBoA5DfNcEtigayGIa_FY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/vs9qa_eW2Cldpu5SYtJB_2StoHA.roa Signing time: Fri 02 Jan 2026 16:19:53 +0000 ROA not before: Fri 02 Jan 2026 16:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49544 IP address blocks: 185.38.20.0/22 maxlen: 24 194.2.155.0/24 maxlen: 24 194.169.249.0/24 maxlen: 24 195.22.144.0/23 maxlen: 24 212.104.206.0/23 maxlen: 24 2a04:7141::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/dvMR7xWBoA5DfNcEtigayGIa_FY.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/dvMR7xWBoA5DfNcEtigayGIa_FY.mft rsync://rpki.ripe.net/repository/DEFAULT/dvMR7xWBoA5DfNcEtigayGIa_FY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:23:a0:c2:ae:f1:e5:c6:45:15:23:08:67:0a:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76f311ef1581a00e437cd704b6281ac8621afc56 Validity Not Before: Jan 2 16:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=becf6a6bf796d8295da6ee5262d241ff64ada070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c4:45:2d:72:a6:bb:c9:ff:3d:5d:c4:13:5b: 8f:9d:bd:16:13:3b:b3:0c:08:90:ce:94:18:ec:e0: c5:65:49:78:97:26:40:19:d3:e2:3f:3a:ab:e7:d2: 56:b8:91:20:8d:f7:ca:f5:f2:3f:a6:c1:b9:00:48: 5a:07:b5:e1:40:06:43:b4:42:2e:fa:c2:2b:0b:f3: 86:7a:2b:33:f3:2d:82:17:94:2b:18:eb:1e:d8:72: d4:5a:d8:62:bc:7e:5c:0a:37:a4:69:a7:5a:70:5b: 4d:d3:e9:35:07:a0:d8:9f:60:98:a3:34:e9:d5:79: 59:bd:7a:92:f7:27:dc:c0:29:05:fd:4f:d8:5c:5a: ad:6d:b3:4e:d2:c6:4f:a6:86:bb:d1:ff:b6:75:1e: 73:ea:53:d9:1f:2b:94:b9:88:ea:55:83:1a:e0:e6: 56:a6:c2:d5:2c:b8:58:1a:a3:00:2c:3b:01:3b:be: d5:6e:45:7e:97:94:6a:b7:22:c3:2c:ec:70:ec:94: 0c:33:79:02:a6:54:e9:05:63:0b:14:9f:5e:76:29: 7a:0e:67:2e:f2:58:c3:d9:2b:24:61:8d:61:50:7b: e2:1f:07:5e:5e:65:22:e3:69:5b:c1:b1:6e:73:1c: 26:67:cc:8b:80:d8:dd:b7:5a:2d:31:a4:fc:36:95: a9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CF:6A:6B:F7:96:D8:29:5D:A6:EE:52:62:D2:41:FF:64:AD:A0:70 X509v3 Authority Key Identifier: keyid:76:F3:11:EF:15:81:A0:0E:43:7C:D7:04:B6:28:1A:C8:62:1A:FC:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dvMR7xWBoA5DfNcEtigayGIa_FY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/vs9qa_eW2Cldpu5SYtJB_2StoHA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/dvMR7xWBoA5DfNcEtigayGIa_FY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.20.0/22 194.2.155.0/24 194.169.249.0/24 195.22.144.0/23 212.104.206.0/23 IPv6: 2a04:7141::/36 Signature Algorithm: sha256WithRSAEncryption 82:47:3d:0a:ee:b8:fd:06:cc:49:ea:0a:b8:df:70:fb:62:e7: f8:11:83:f5:24:f2:80:dc:6b:46:49:06:e2:7b:23:97:b6:56: 51:b9:49:ca:0b:4f:53:65:fd:7c:c5:51:07:21:b8:b7:f5:c6: 44:4e:81:63:b3:07:ea:c5:dc:68:94:2f:e8:51:86:a8:4b:08: 70:75:c2:b1:1b:c3:cb:42:a3:c5:17:95:b4:94:d7:ca:6a:d9: 2b:fe:02:b2:ad:fc:d9:fc:b9:40:6d:87:51:74:ab:59:98:99: a4:ef:c8:d5:8b:37:84:a1:e3:b3:32:53:23:04:68:55:8b:fc: 2b:45:01:0c:2b:a0:72:8d:79:a5:29:bd:4f:65:3b:89:9a:02: 59:dc:8d:df:bf:b2:8d:14:af:22:e7:43:e6:56:e0:3e:70:2d: e3:54:7f:b1:63:e2:85:52:39:de:75:20:45:6b:b4:60:f6:1d: 7f:1f:12:b3:69:a4:ac:01:98:21:92:a9:69:9f:b0:01:6b:82: 4a:d6:ae:f0:4f:09:d8:d1:db:48:fc:c7:72:3d:77:ce:34:44: 91:7a:c5:94:ed:e0:db:5a:e1:d7:2b:8c:5a:07:57:cc:f5:ee: 55:93:60:61:0a:e3:a8:bc:eb:18:6c:27:c3:45:f0:73:b5:d0: 52:ae:f8:fe -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt/giOgwq7x5cZFFSMIZwqdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ZjMxMWVmMTU4MWEwMGU0MzdjZDcwNGI2MjgxYWM4NjIx YWZjNTYwHhcNMjYwMTAyMTYxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWNmNmE2YmY3OTZkODI5NWRhNmVlNTI2MmQyNDFmZjY0YWRhMDcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscRFLXKmu8n/PV3EE1uPnb0WEzuz DAiQzpQY7ODFZUl4lyZAGdPiPzqr59JWuJEgjffK9fI/psG5AEhaB7XhQAZDtEIu +sIrC/OGeisz8y2CF5QrGOse2HLUWthivH5cCjekaadacFtN0+k1B6DYn2CYozTp 1XlZvXqS9yfcwCkF/U/YXFqtbbNO0sZPpoa70f+2dR5z6lPZHyuUuYjqVYMa4OZW psLVLLhYGqMALDsBO77VbkV+l5RqtyLDLOxw7JQMM3kCplTpBWMLFJ9edil6Dmcu 8ljD2SskYY1hUHviHwdeXmUi42lbwbFucxwmZ8yLgNjdt1otMaT8NpWpnQIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFL7Pamv3ltgpXabuUmLSQf9kraBwMB8GA1UdIwQY MBaAFHbzEe8VgaAOQ3zXBLYoGshiGvxWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHZNUjd4V0JvQTVEZk5jRXRpZ2F5R0lhX0ZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS81MjUyMjQtNzhlYS00OWU0LTk3NDkt MTY5NDMxMjk2YzU5LzEvdnM5cWFfZVcyQ2xkcHU1U1l0SkJfMlN0b0hBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS81MjUyMjQtNzhlYS00OWU0LTk3NDktMTY5NDMxMjk2YzU5 LzEvZHZNUjd4V0JvQTVEZk5jRXRpZ2F5R0lhX0ZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAkBAIAATAeAwQCuSYUAwQA wgKbAwQAwqn5AwQBwxaQAwQB1GjOMA4EAgACMAgDBgQqBHFBADANBgkqhkiG9w0B AQsFAAOCAQEAgkc9Cu64/QbMSeoKuN9w+2Ln+BGD9STygNxrRkkG4nsjl7ZWUblJ ygtPU2X9fMVRByG4t/XGRE6BY7MH6sXcaJQv6FGGqEsIcHXCsRvDy0KjxReVtJTX ymrZK/4Csq382fy5QG2HUXSrWZiZpO/I1Ys3hKHjszJTIwRoVYv8K0UBDCugco15 pSm9T2U7iZoCWdyN37+yjRSvIudD5lbgPnAt41R/sWPihVI53nUgRWu0YPYdfx8S s2mkrAGYIZKpaZ+wAWuCStau8E8J2NHbSPzHcj13zjREkXrFlO3g21rh1yuMWgdX zPXuVZNgYQrjqLzrGGwnw0Xwc7XQUq74/g== -----END CERTIFICATE-----Generated at Tue Jan 20 01:19:51 2026 by rpki-client