This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f51d2e-d174-4ef5-80c1-97f91bc97a42/1/vMZqgMzqEK5HgHT5CixfO5oYHPk.roa File: vMZqgMzqEK5HgHT5CixfO5oYHPk.roa (raw, json) Hash identifier: gyk7SL3iZafTIM/ILifXHzHIX/W4W0WvsljG33BR5D4= Subject key identifier: BC:C6:6A:80:CC:EA:10:AE:47:80:74:F9:0A:2C:5F:3B:9A:18:1C:F9 Certificate issuer: /CN=58a681c71beb464e01d5b68e19ca566da9930e23 Certificate serial: 019BA41BA6FB0A1278EBBA872CEF26A3C18C Authority key identifier: 58:A6:81:C7:1B:EB:46:4E:01:D5:B6:8E:19:CA:56:6D:A9:93:0E:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKaBxxvrRk4B1baOGcpWbamTDiM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f51d2e-d174-4ef5-80c1-97f91bc97a42/1/vMZqgMzqEK5HgHT5CixfO5oYHPk.roa Signing time: Fri 09 Jan 2026 18:53:54 +0000 ROA not before: Fri 09 Jan 2026 18:53:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397373 IP address blocks: 2a14:dc81:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/f51d2e-d174-4ef5-80c1-97f91bc97a42/1/WKaBxxvrRk4B1baOGcpWbamTDiM.crl rsync://rpki.ripe.net/repository/DEFAULT/92/f51d2e-d174-4ef5-80c1-97f91bc97a42/1/WKaBxxvrRk4B1baOGcpWbamTDiM.mft rsync://rpki.ripe.net/repository/DEFAULT/WKaBxxvrRk4B1baOGcpWbamTDiM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a4:1b:a6:fb:0a:12:78:eb:ba:87:2c:ef:26:a3:c1:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58a681c71beb464e01d5b68e19ca566da9930e23 Validity Not Before: Jan 9 18:53:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bcc66a80ccea10ae478074f90a2c5f3b9a181cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:c6:06:ed:d5:26:6d:47:f9:e6:bd:ad:d4:f8: a0:da:52:1d:ac:5e:07:c6:9e:ce:cb:40:34:91:b3: df:4a:57:d0:6c:7a:af:02:c8:47:f6:85:5c:10:c3: fe:b9:6a:4a:f9:a2:67:8e:d5:e8:a6:db:f7:03:6d: a7:ac:61:1d:ce:dc:80:81:c2:1f:d7:b4:4f:24:0e: 33:e5:ef:84:f2:7c:16:37:45:1d:b9:b0:6e:cb:b0: 72:63:71:be:02:b4:f5:3a:a6:c7:95:77:dd:18:31: 31:3a:23:c0:1c:5a:85:65:7d:9f:69:94:d1:24:92: 0b:a0:d4:91:a7:64:24:9b:6b:db:b8:e9:43:7f:81: 77:1c:ce:66:8e:04:58:20:67:5a:ad:66:73:09:6b: c2:07:d9:06:b0:13:e5:87:39:47:a2:dd:0b:b4:67: 49:37:4a:02:db:11:7f:60:60:a6:b0:94:c3:2b:b4: 44:81:39:d5:7e:ca:ec:ca:3c:81:43:a1:e1:da:8d: b6:a1:e3:96:e9:f7:64:ce:5d:d3:3a:d4:c5:1c:aa: 54:a7:90:7b:32:27:c3:a7:a2:3a:ba:b0:32:d6:b2: 94:14:4c:ad:1c:4e:4d:f3:8b:58:23:b5:47:a8:ef: 9b:8e:ae:85:29:f7:55:d0:f0:bd:79:dc:6c:d5:49: 2e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C6:6A:80:CC:EA:10:AE:47:80:74:F9:0A:2C:5F:3B:9A:18:1C:F9 X509v3 Authority Key Identifier: keyid:58:A6:81:C7:1B:EB:46:4E:01:D5:B6:8E:19:CA:56:6D:A9:93:0E:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKaBxxvrRk4B1baOGcpWbamTDiM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f51d2e-d174-4ef5-80c1-97f91bc97a42/1/vMZqgMzqEK5HgHT5CixfO5oYHPk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f51d2e-d174-4ef5-80c1-97f91bc97a42/1/WKaBxxvrRk4B1baOGcpWbamTDiM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:dc81:3000::/36 Signature Algorithm: sha256WithRSAEncryption a0:d9:27:b9:f5:97:a5:60:c7:70:a6:dd:df:71:ec:80:3d:1d: 51:04:29:2b:47:52:4e:0e:d7:bd:07:6c:a6:ba:9c:73:bc:ad: 1a:29:f0:85:8e:d9:c2:bb:df:8e:94:33:30:73:be:eb:67:26: 1d:22:51:36:13:79:5b:02:e1:42:51:b3:8d:3a:36:1a:c9:fb: 87:5e:35:d3:86:c5:3e:e6:96:b7:88:74:2e:d9:26:eb:9e:fe: d4:26:36:c0:b9:40:89:f2:f4:dd:1d:ae:c5:60:42:10:f2:cd: 46:52:26:17:3c:83:85:41:24:30:7c:91:c6:55:9f:99:af:23: aa:33:72:5d:d5:c7:5f:e8:5d:7e:a7:21:3d:d6:47:96:50:5e: 65:08:32:4d:bc:9e:62:ee:cf:7e:ba:bf:b4:70:26:d3:05:19: 08:6d:b8:f1:b5:f4:1f:40:c5:40:d5:62:3b:7e:8a:b1:47:91: 4d:10:c2:07:00:e7:c5:82:1b:29:42:a7:ec:06:55:53:a4:cf: 5a:fd:79:2a:b5:c3:f5:d4:a0:c2:35:e0:10:11:e1:eb:f8:18: 7f:fc:58:8c:03:e0:92:81:4c:e1:89:5b:33:76:49:0b:9b:97: 77:9a:d4:3a:b2:e1:d4:f1:c0:00:7b:4f:22:75:24:82:3f:e8: 07:e3:0a:45 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZukG6b7ChJ467qHLO8mo8GMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YTY4MWM3MWJlYjQ2NGUwMWQ1YjY4ZTE5Y2E1NjZkYTk5 MzBlMjMwHhcNMjYwMTA5MTg1MzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiY2M2NmE4MGNjZWExMGFlNDc4MDc0ZjkwYTJjNWYzYjlhMTgxY2Y5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8YG7dUmbUf55r2t1Pig2lIdrF4H xp7Oy0A0kbPfSlfQbHqvAshH9oVcEMP+uWpK+aJnjtXoptv3A22nrGEdztyAgcIf 17RPJA4z5e+E8nwWN0UdubBuy7ByY3G+ArT1OqbHlXfdGDExOiPAHFqFZX2faZTR JJILoNSRp2Qkm2vbuOlDf4F3HM5mjgRYIGdarWZzCWvCB9kGsBPlhzlHot0LtGdJ N0oC2xF/YGCmsJTDK7REgTnVfsrsyjyBQ6Hh2o22oeOW6fdkzl3TOtTFHKpUp5B7 MifDp6I6urAy1rKUFEytHE5N84tYI7VHqO+bjq6FKfdV0PC9edxs1UkueQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFLzGaoDM6hCuR4B0+QosXzuaGBz5MB8GA1UdIwQY MBaAFFimgccb60ZOAdW2jhnKVm2pkw4jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0thQnh4dnJSazRCMWJhT0djcFdiYW1URGlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9mNTFkMmUtZDE3NC00ZWY1LTgwYzEt OTdmOTFiYzk3YTQyLzEvdk1acWdNenFFSzVIZ0hUNUNpeGZPNW9ZSFBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi9mNTFkMmUtZDE3NC00ZWY1LTgwYzEtOTdmOTFiYzk3YTQy LzEvV0thQnh4dnJSazRCMWJhT0djcFdiYW1URGlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhTcgTAw DQYJKoZIhvcNAQELBQADggEBAKDZJ7n1l6Vgx3Cm3d9x7IA9HVEEKStHUk4O170H bKa6nHO8rRop8IWO2cK7346UMzBzvutnJh0iUTYTeVsC4UJRs406NhrJ+4deNdOG xT7mlreIdC7ZJuue/tQmNsC5QIny9N0drsVgQhDyzUZSJhc8g4VBJDB8kcZVn5mv I6ozcl3Vx1/oXX6nIT3WR5ZQXmUIMk28nmLuz366v7RwJtMFGQhtuPG19B9AxUDV Yjt+irFHkU0QwgcA58WCGylCp+wGVVOkz1r9eSq1w/XUoMI14BAR4ev4GH/8WIwD 4JKBTOGJWzN2SQubl3ea1Dqy4dTxwAB7TyJ1JII/6AfjCkU= -----END CERTIFICATE-----Generated at Mon Jan 19 23:22:03 2026 by rpki-client