This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/VQwa8WayaOb_AWinNExS8QkrwRA.roa File: VQwa8WayaOb_AWinNExS8QkrwRA.roa (raw, json) Hash identifier: EbrpFgP+FNW0l1qw3ww5JsiNKo1wyRf3Y3BVLwLv2D8= Subject key identifier: 55:0C:1A:F1:66:B2:68:E6:FF:01:68:A7:34:4C:52:F1:09:2B:C1:10 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F84ABB0849EE8181FD01987A320C30F Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/VQwa8WayaOb_AWinNExS8QkrwRA.roa Signing time: Fri 02 Jan 2026 16:22:39 +0000 ROA not before: Fri 02 Jan 2026 16:22:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211539 IP address blocks: 31.58.246.0/24 maxlen: 24 217.60.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:ab:b0:84:9e:e8:18:1f:d0:19:87:a3:20:c3:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=550c1af166b268e6ff0168a7344c52f1092bc110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c4:ca:0c:a8:70:ee:51:2c:f2:97:b8:2f:60: b3:c0:14:e4:0c:14:c9:c7:91:53:9e:e6:cc:ee:fe: 92:2c:13:39:b0:62:7a:ec:11:3d:03:5d:95:d4:55: 33:da:da:32:4a:23:3c:fa:97:3d:7f:5c:08:80:04: 06:0a:7c:45:9a:99:7f:96:61:c2:9d:55:27:a8:b1: b1:00:27:48:df:4f:cb:32:3e:df:c5:03:77:46:e5: 05:33:7d:c8:55:e7:7a:65:40:96:f0:4b:b8:4d:df: 2d:f1:ba:7c:4a:29:ab:a0:8e:86:d9:0b:4d:7c:28: 43:56:67:ed:b1:d7:83:75:fa:c1:d0:ed:cd:38:65: 5e:78:64:24:f0:58:cf:f4:87:44:d6:1a:1f:db:80: 0e:1c:66:b6:17:44:d3:bd:b5:44:ad:ab:d7:d5:07: 17:cd:81:8b:c8:48:0d:25:6b:91:01:c9:c9:77:34: f7:d0:32:11:1f:09:3b:74:3a:e9:c8:b8:85:6c:b2: c2:f4:b4:e1:55:43:3c:33:c5:fb:fe:21:ff:d0:72: 20:0e:a1:b4:48:d3:6f:74:8c:26:2c:7d:79:dc:aa: dc:ce:dc:ff:ec:83:06:3a:ce:af:fa:b6:b7:1d:1a: 33:fc:44:6b:a9:51:92:0b:9b:2a:a2:87:4e:ea:6b: b4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0C:1A:F1:66:B2:68:E6:FF:01:68:A7:34:4C:52:F1:09:2B:C1:10 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/VQwa8WayaOb_AWinNExS8QkrwRA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.58.246.0/24 217.60.187.0/24 Signature Algorithm: sha256WithRSAEncryption 04:5c:e7:2e:33:e0:ee:b0:a0:62:6f:9c:57:84:4f:b7:7c:4d: c3:79:a6:dc:ea:fe:f3:45:fb:94:e4:5f:2f:3e:14:0b:5f:68: 9c:d0:37:f0:06:dd:f0:a5:68:b3:59:a9:89:29:38:49:07:55: 7a:ed:c8:05:0e:fc:49:d2:b3:76:df:8e:fa:31:17:3a:a1:bc: 24:07:1c:1a:27:3b:43:b9:7f:93:4f:73:f3:cc:fe:69:f8:d8: 7e:01:81:ed:df:95:2f:c1:1c:fe:bd:09:0a:98:a4:00:2c:3f: fc:1e:23:5c:42:cc:93:9a:29:2b:63:de:d6:4b:7d:64:c3:36: 0a:c1:26:16:93:88:b1:00:7a:f5:12:41:77:e9:5a:3a:dc:31: e3:f8:ca:d2:6b:45:ca:b2:ce:24:56:15:6e:ac:c7:83:c1:63: 94:cc:cb:bd:bc:94:63:6c:e9:0b:a5:7f:22:db:3a:97:a2:a0: 8f:b2:dd:d9:d4:ad:2a:cb:01:5e:a9:fc:1e:b6:9c:bf:af:16: a7:27:fc:12:3e:0d:f9:83:49:6b:73:87:ee:3b:8f:42:63:05: 97:ae:3e:f3:23:8f:62:20:a1:28:93:53:89:4a:b7:95:7f:48: de:dd:15:22:97:f0:89:73:82:34:c6:35:f0:ac:5e:f4:71:b3: 75:c9:d7:c0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hKuwhJ7oGB/QGYejIMMPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTBjMWFmMTY2YjI2OGU2ZmYwMTY4YTczNDRjNTJmMTA5MmJjMTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0cTKDKhw7lEs8pe4L2CzwBTkDBTJ x5FTnubM7v6SLBM5sGJ67BE9A12V1FUz2toySiM8+pc9f1wIgAQGCnxFmpl/lmHC nVUnqLGxACdI30/LMj7fxQN3RuUFM33IVed6ZUCW8Eu4Td8t8bp8SimroI6G2QtN fChDVmftsdeDdfrB0O3NOGVeeGQk8FjP9IdE1hof24AOHGa2F0TTvbVEravX1QcX zYGLyEgNJWuRAcnJdzT30DIRHwk7dDrpyLiFbLLC9LThVUM8M8X7/iH/0HIgDqG0 SNNvdIwmLH153Krcztz/7IMGOs6v+ra3HRoz/ERrqVGSC5sqoodO6mu0BQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFUMGvFmsmjm/wFopzRMUvEJK8EQMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvVlF3YThXYXlhT2JfQVdpbk5FeFM4UWtyd1JBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHzr2AwQA 2Ty7MA0GCSqGSIb3DQEBCwUAA4IBAQAEXOcuM+DusKBib5xXhE+3fE3Deabc6v7z RfuU5F8vPhQLX2ic0DfwBt3wpWizWamJKThJB1V67cgFDvxJ0rN23476MRc6obwk BxwaJztDuX+TT3PzzP5p+Nh+AYHt35UvwRz+vQkKmKQALD/8HiNcQsyTmikrY97W S31kwzYKwSYWk4ixAHr1EkF36Vo63DHj+MrSa0XKss4kVhVurMeDwWOUzMu9vJRj bOkLpX8i2zqXoqCPst3Z1K0qywFeqfwetpy/rxanJ/wSPg35g0lrc4fuO49CYwWX rj7zI49iIKEok1OJSreVf0je3RUil/CJc4I0xjXwrF70cbN1ydfA -----END CERTIFICATE-----Generated at Mon Jan 5 14:35:51 2026 by rpki-client