This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/912152-7df8-4ebf-b1d3-4776c7093a29/1/vXDjFBq71vr1IHmRZPDL7wXcmG0.roa File: vXDjFBq71vr1IHmRZPDL7wXcmG0.roa (raw, json) Hash identifier: NqguKijKf4+Gz8cTHroyn7BkPdAYo3NsoAn4kS9xt0Y= Subject key identifier: BD:70:E3:14:1A:BB:D6:FA:F5:20:79:91:64:F0:CB:EF:05:DC:98:6D Certificate issuer: /CN=23a611f4daa1d49acfb2db22a780cce7b09bdfe9 Certificate serial: 019B7F14D6D000757417EEE8978391327490 Authority key identifier: 23:A6:11:F4:DA:A1:D4:9A:CF:B2:DB:22:A7:80:CC:E7:B0:9B:DF:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6YR9Nqh1JrPstsip4DM57Cb3-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/912152-7df8-4ebf-b1d3-4776c7093a29/1/vXDjFBq71vr1IHmRZPDL7wXcmG0.roa Signing time: Fri 02 Jan 2026 14:20:30 +0000 ROA not before: Fri 02 Jan 2026 14:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202067 IP address blocks: 185.225.156.0/24 maxlen: 24 185.225.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/912152-7df8-4ebf-b1d3-4776c7093a29/1/I6YR9Nqh1JrPstsip4DM57Cb3-k.crl rsync://rpki.ripe.net/repository/DEFAULT/97/912152-7df8-4ebf-b1d3-4776c7093a29/1/I6YR9Nqh1JrPstsip4DM57Cb3-k.mft rsync://rpki.ripe.net/repository/DEFAULT/I6YR9Nqh1JrPstsip4DM57Cb3-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:d6:d0:00:75:74:17:ee:e8:97:83:91:32:74:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23a611f4daa1d49acfb2db22a780cce7b09bdfe9 Validity Not Before: Jan 2 14:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd70e3141abbd6faf520799164f0cbef05dc986d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c7:4d:d2:5b:2d:d2:99:26:9e:a5:8d:9b:88: ec:7a:a3:ff:9c:6c:fc:de:b9:0a:20:9d:d0:ed:56: c4:2d:e9:cf:15:77:77:f6:3d:53:d9:c4:e5:4a:f6: 45:c3:c2:bb:0e:f7:0b:4a:9c:59:43:fb:98:e2:1a: 4f:ff:c7:85:dc:3e:f9:fa:21:5d:41:a8:f3:2a:fc: 55:df:80:74:2d:0f:47:0b:9b:b8:3a:2e:86:51:a3: aa:a2:97:a7:fd:f1:41:06:84:66:70:0c:56:ed:5d: 6d:76:d5:f6:a7:af:70:ac:34:dc:b2:d8:2c:a1:58: b5:b6:76:58:2b:57:33:21:e3:a1:74:ff:63:9a:d4: ca:45:a4:45:c9:3b:6a:88:2b:8d:53:2c:3e:0a:7e: 71:11:7b:63:c4:00:a3:8c:7f:55:da:5e:5d:2f:57: bc:56:10:ce:a5:31:c4:32:ce:19:ca:55:32:f0:d3: 6c:e7:12:bb:20:45:64:8d:32:3b:7b:13:69:b2:03: 62:b1:ca:ce:74:e7:c0:ed:9b:f1:c4:37:49:cd:44: 05:70:77:e1:88:3c:2f:07:6f:1c:79:53:08:ad:90: b7:c9:52:be:35:e3:e3:7b:1c:80:c8:a6:41:09:c3: 8b:0c:25:4b:eb:37:02:e1:09:6f:29:4e:b6:15:a1: 8a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:70:E3:14:1A:BB:D6:FA:F5:20:79:91:64:F0:CB:EF:05:DC:98:6D X509v3 Authority Key Identifier: keyid:23:A6:11:F4:DA:A1:D4:9A:CF:B2:DB:22:A7:80:CC:E7:B0:9B:DF:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6YR9Nqh1JrPstsip4DM57Cb3-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/912152-7df8-4ebf-b1d3-4776c7093a29/1/vXDjFBq71vr1IHmRZPDL7wXcmG0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/912152-7df8-4ebf-b1d3-4776c7093a29/1/I6YR9Nqh1JrPstsip4DM57Cb3-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.225.156.0/23 Signature Algorithm: sha256WithRSAEncryption a3:a1:34:ad:88:39:a1:54:bb:10:cd:5e:54:c4:d3:54:1d:95: f1:a8:e2:8c:82:bc:d0:8e:00:6b:8b:92:81:46:74:5e:cd:c4: 3f:1f:87:2a:2c:c7:27:06:6b:fa:ac:8c:97:29:47:db:37:cd: 35:4c:93:84:d3:e4:e1:cd:42:bd:4f:1b:ea:dd:84:0b:89:47: 51:dc:9f:75:ff:5d:a4:4a:cc:43:4e:d5:92:6b:a5:bb:9d:72: 3c:a2:29:ef:50:9e:9b:b4:90:c7:bd:1b:39:41:79:39:36:d2: b7:54:ed:5c:be:96:63:7c:65:99:79:a1:59:a4:12:f9:ce:7e: d2:71:b5:7f:e7:f5:23:20:2e:aa:04:a2:19:15:d7:21:ca:48: 17:09:6e:04:29:e1:bb:54:6c:91:92:a6:32:1b:3c:91:1e:d3: 49:86:4b:19:f4:92:ac:98:2d:ca:87:dd:63:5f:c5:21:17:ed: 20:d5:1d:6e:92:49:69:e3:64:e1:f3:8c:f6:13:83:f2:2f:6c: 06:4f:dc:51:02:cf:fd:e6:c0:b2:bf:38:df:1d:5c:4b:5a:25: b1:00:24:33:40:7e:cd:64:82:a2:ec:8d:2d:ab:15:9b:eb:a9: ed:4d:f8:b7:8a:94:81:17:c6:d4:c4:d7:20:6e:b0:5d:da:c9: de:2d:0b:91 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FNbQAHV0F+7ol4ORMnSQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYTYxMWY0ZGFhMWQ0OWFjZmIyZGIyMmE3ODBjY2U3YjA5 YmRmZTkwHhcNMjYwMTAyMTQyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDcwZTMxNDFhYmJkNmZhZjUyMDc5OTE2NGYwY2JlZjA1ZGM5ODZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMdN0lst0pkmnqWNm4jseqP/nGz8 3rkKIJ3Q7VbELenPFXd39j1T2cTlSvZFw8K7DvcLSpxZQ/uY4hpP/8eF3D75+iFd QajzKvxV34B0LQ9HC5u4Oi6GUaOqopen/fFBBoRmcAxW7V1tdtX2p69wrDTcstgs oVi1tnZYK1czIeOhdP9jmtTKRaRFyTtqiCuNUyw+Cn5xEXtjxACjjH9V2l5dL1e8 VhDOpTHEMs4ZylUy8NNs5xK7IEVkjTI7exNpsgNiscrOdOfA7ZvxxDdJzUQFcHfh iDwvB28ceVMIrZC3yVK+NePjexyAyKZBCcOLDCVL6zcC4QlvKU62FaGKuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL1w4xQau9b69SB5kWTwy+8F3JhtMB8GA1UdIwQY MBaAFCOmEfTaodSaz7LbIqeAzOewm9/pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTZZUjlOcWgxSnJQc3RzaXA0RE01N0NiMy1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny85MTIxNTItN2RmOC00ZWJmLWIxZDMt NDc3NmM3MDkzYTI5LzEvdlhEakZCcTcxdnIxSUhtUlpQREw3d1hjbUcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny85MTIxNTItN2RmOC00ZWJmLWIxZDMtNDc3NmM3MDkzYTI5 LzEvSTZZUjlOcWgxSnJQc3RzaXA0RE01N0NiMy1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBueGcMA0G CSqGSIb3DQEBCwUAA4IBAQCjoTStiDmhVLsQzV5UxNNUHZXxqOKMgrzQjgBri5KB RnRezcQ/H4cqLMcnBmv6rIyXKUfbN801TJOE0+ThzUK9Txvq3YQLiUdR3J91/12k SsxDTtWSa6W7nXI8oinvUJ6btJDHvRs5QXk5NtK3VO1cvpZjfGWZeaFZpBL5zn7S cbV/5/UjIC6qBKIZFdchykgXCW4EKeG7VGyRkqYyGzyRHtNJhksZ9JKsmC3Kh91j X8UhF+0g1R1ukklp42Th84z2E4PyL2wGT9xRAs/95sCyvzjfHVxLWiWxACQzQH7N ZIKi7I0tqxWb66ntTfi3ipSBF8bUxNcgbrBd2sneLQuR -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:35 2026 by rpki-client