This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/vDrDWZJdh88PX1OR6HhGTiNMtMw.roa File: vDrDWZJdh88PX1OR6HhGTiNMtMw.roa (raw, json) Hash identifier: 1jCjCOEoEFxDmNwKcN4HvbWpUFZFv3MK10WaatNvB8I= Subject key identifier: BC:3A:C3:59:92:5D:87:CF:0F:5F:53:91:E8:78:46:4E:23:4C:B4:CC Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C74F63EEB3272EDE62967A7D4EF067 Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/vDrDWZJdh88PX1OR6HhGTiNMtMw.roa Signing time: Thu 01 Jan 2026 04:18:29 +0000 ROA not before: Thu 01 Jan 2026 04:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214077 IP address blocks: 194.226.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:4f:63:ee:b3:27:2e:de:62:96:7a:7d:4e:f0:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc3ac359925d87cf0f5f5391e878464e234cb4cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5b:d8:de:65:fc:30:8a:66:62:ec:7e:ed:d8: 01:33:bd:25:38:f7:f9:c1:fc:a0:79:94:0c:a9:89: 28:52:df:dd:27:c7:a3:2e:32:1c:b7:89:4f:08:31: bd:82:3c:ac:65:92:f0:07:0f:f0:67:1f:33:44:da: de:1d:e4:6a:53:53:53:3a:52:8b:78:8b:c0:4c:94: be:63:4d:5f:50:e4:8d:f4:03:57:6b:a9:24:b8:01: 55:43:f4:76:5b:72:f8:92:42:3b:0c:08:9e:1e:92: e2:f6:a5:6a:2b:64:44:cb:4d:2c:cc:8e:3e:5f:96: 8d:15:0b:b7:3d:10:16:e8:85:4f:f4:61:0c:55:81: 26:ac:d1:64:bb:8b:70:71:aa:6c:f9:44:a9:5b:af: e1:66:8c:31:e9:0b:e9:a5:1b:79:d0:95:e1:20:37: d1:c9:65:4b:f4:4e:19:28:e5:06:6e:f3:7f:aa:54: 86:3b:bc:9f:22:87:ef:8a:b0:6a:53:d9:49:fe:5f: 22:0e:eb:08:25:31:80:24:4e:4a:bf:c9:ad:77:95: b4:72:d3:d9:e4:20:72:16:4c:89:4c:a6:99:51:60: 10:94:3c:e6:25:32:36:de:44:06:db:e5:e4:20:d2: dc:45:da:3b:7c:fb:88:36:5c:5c:ee:69:a0:f2:a0: 05:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3A:C3:59:92:5D:87:CF:0F:5F:53:91:E8:78:46:4E:23:4C:B4:CC X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/vDrDWZJdh88PX1OR6HhGTiNMtMw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.226.249.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:c9:13:1a:23:2e:8f:9f:22:94:80:a1:75:73:4b:61:f5:6f: eb:a2:48:53:85:6f:bb:59:c4:3b:e6:29:82:58:c6:7c:9e:e6: 96:3b:a0:d8:c5:cb:ec:40:e1:c3:61:bc:59:12:2a:74:c8:a4: 2d:71:2b:30:67:23:74:f0:cc:71:a5:72:8e:ba:dc:a3:97:41: 14:9c:46:e1:44:93:4b:ff:2c:50:9e:f9:56:01:94:61:59:8c: b5:3d:eb:09:a0:3c:ab:20:06:a0:f5:0b:83:19:e0:a2:1c:4d: 8b:e7:48:92:cc:49:05:7a:1d:b7:f6:f2:f9:7e:00:52:e2:61: 85:29:6f:f7:8c:c5:5a:8d:2a:f1:99:95:56:64:22:c4:09:cb: f2:a3:df:21:49:be:cd:73:0e:58:89:0f:89:eb:90:45:99:80: 49:d8:2d:24:ae:e8:26:54:05:18:b0:fc:85:fa:e2:95:4d:f4: 43:3a:d9:6f:04:9d:01:8f:c5:b6:e9:47:da:e1:10:7d:4b:0c: c7:c5:13:d9:d9:32:b2:7a:62:b0:06:09:35:6e:f8:f8:ad:22: 37:1b:60:fb:93:f4:aa:88:41:c7:8b:04:74:a1:df:7b:ff:56: 60:3a:5e:4b:63:d0:78:af:86:81:39:1f:97:6a:3b:33:13:d6: 81:56:08:af -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x09j7rMnLt5ilnp9TvBnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzNhYzM1OTkyNWQ4N2NmMGY1ZjUzOTFlODc4NDY0ZTIzNGNiNGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41vY3mX8MIpmYux+7dgBM70lOPf5 wfygeZQMqYkoUt/dJ8ejLjIct4lPCDG9gjysZZLwBw/wZx8zRNreHeRqU1NTOlKL eIvATJS+Y01fUOSN9ANXa6kkuAFVQ/R2W3L4kkI7DAieHpLi9qVqK2REy00szI4+ X5aNFQu3PRAW6IVP9GEMVYEmrNFku4twcaps+USpW6/hZowx6QvppRt50JXhIDfR yWVL9E4ZKOUGbvN/qlSGO7yfIofvirBqU9lJ/l8iDusIJTGAJE5Kv8mtd5W0ctPZ 5CByFkyJTKaZUWAQlDzmJTI23kQG2+XkINLcRdo7fPuINlxc7mmg8qAFvQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLw6w1mSXYfPD19Tkeh4Rk4jTLTMMB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEvdkRyRFdaSmRoODhQWDFPUjZIaEdUaU5NdE13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwuL5MA0G CSqGSIb3DQEBCwUAA4IBAQCayRMaIy6PnyKUgKF1c0th9W/rokhThW+7WcQ75imC WMZ8nuaWO6DYxcvsQOHDYbxZEip0yKQtcSswZyN08MxxpXKOutyjl0EUnEbhRJNL /yxQnvlWAZRhWYy1PesJoDyrIAag9QuDGeCiHE2L50iSzEkFeh239vL5fgBS4mGF KW/3jMVajSrxmZVWZCLECcvyo98hSb7Ncw5YiQ+J65BFmYBJ2C0krugmVAUYsPyF +uKVTfRDOtlvBJ0Bj8W26Ufa4RB9SwzHxRPZ2TKyemKwBgk1bvj4rSI3G2D7k/Sq iEHHiwR0od97/1ZgOl5LY9B4r4aBOR+XajszE9aBVgiv -----END CERTIFICATE-----Generated at Sun Jan 25 21:16:11 2026 by rpki-client