This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/3c8da5-a8e9-4a4f-8168-3ce611cb6799/1/vAr22Hux-HUQ7hHfWUCqXP3N41A.roa File: vAr22Hux-HUQ7hHfWUCqXP3N41A.roa (raw, json) Hash identifier: QnhPhCSBsgOeJ1YHgFSoi0+/IdCT3hRUONTf3oiVAf8= Subject key identifier: BC:0A:F6:D8:7B:B1:F8:75:10:EE:11:DF:59:40:AA:5C:FD:CD:E3:50 Certificate issuer: /CN=4f030205fa365e9f49ff4ea7506df912d5ed8360 Certificate serial: 019B7D5CCFCC9878EDC787A331D82AC9B895 Authority key identifier: 4F:03:02:05:FA:36:5E:9F:49:FF:4E:A7:50:6D:F9:12:D5:ED:83:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TwMCBfo2Xp9J_06nUG35EtXtg2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/3c8da5-a8e9-4a4f-8168-3ce611cb6799/1/vAr22Hux-HUQ7hHfWUCqXP3N41A.roa Signing time: Fri 02 Jan 2026 06:19:53 +0000 ROA not before: Fri 02 Jan 2026 06:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35667 IP address blocks: 94.143.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/3c8da5-a8e9-4a4f-8168-3ce611cb6799/1/TwMCBfo2Xp9J_06nUG35EtXtg2A.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/3c8da5-a8e9-4a4f-8168-3ce611cb6799/1/TwMCBfo2Xp9J_06nUG35EtXtg2A.mft rsync://rpki.ripe.net/repository/DEFAULT/TwMCBfo2Xp9J_06nUG35EtXtg2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:cf:cc:98:78:ed:c7:87:a3:31:d8:2a:c9:b8:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f030205fa365e9f49ff4ea7506df912d5ed8360 Validity Not Before: Jan 2 06:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc0af6d87bb1f87510ee11df5940aa5cfdcde350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2b:03:df:d5:f0:fa:4d:cb:20:1a:6c:ed:7b: 99:f0:33:48:89:71:d1:20:d9:f5:6c:41:c1:5a:bd: b2:d0:ce:44:b1:55:c7:3a:2c:7f:8f:1d:83:4f:e7: 86:46:0e:dc:86:9e:71:64:86:a8:f9:e1:2b:3d:80: e3:67:d9:36:7c:2a:30:a8:b4:39:a9:7d:87:1a:99: af:44:2e:4a:8b:7a:81:a2:cf:58:b0:b1:03:95:73: 53:fa:2e:4c:5e:96:e8:69:74:f6:eb:cb:41:1c:f7: d8:3a:1e:70:2a:68:9d:bb:f0:3a:7b:35:c3:a6:35: ae:6a:15:27:16:fa:34:e5:19:58:b6:d7:22:3d:af: bb:95:6e:da:26:82:ed:3f:3a:d4:bf:d7:aa:48:6d: 6b:4c:55:52:1b:2a:ba:1b:d5:b7:6c:2f:4f:56:16: 2c:7a:4b:69:63:1e:a4:95:4c:a2:b3:c3:11:52:80: 56:66:55:48:be:5e:bf:3f:b1:59:57:1c:c8:17:cd: 7e:fa:1d:f0:92:de:42:ce:4b:ef:68:85:26:fc:55: a4:7e:c6:4d:fc:e4:de:8a:75:37:6e:2e:b4:4b:cf: 4d:71:ef:1d:e9:b6:55:84:12:7b:1e:b1:4a:20:be: 51:b7:a7:de:84:b6:50:83:3d:66:8e:ff:e0:ad:e4: f3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0A:F6:D8:7B:B1:F8:75:10:EE:11:DF:59:40:AA:5C:FD:CD:E3:50 X509v3 Authority Key Identifier: keyid:4F:03:02:05:FA:36:5E:9F:49:FF:4E:A7:50:6D:F9:12:D5:ED:83:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TwMCBfo2Xp9J_06nUG35EtXtg2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3c8da5-a8e9-4a4f-8168-3ce611cb6799/1/vAr22Hux-HUQ7hHfWUCqXP3N41A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3c8da5-a8e9-4a4f-8168-3ce611cb6799/1/TwMCBfo2Xp9J_06nUG35EtXtg2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.143.216.0/21 Signature Algorithm: sha256WithRSAEncryption 39:32:fb:da:95:25:be:d2:e8:d2:db:0b:91:3e:87:1c:d6:de: aa:9a:9e:79:a6:50:57:1c:78:f7:2c:6c:fe:97:84:7a:ab:c9: 3f:46:b0:23:57:1d:9d:2b:10:9e:0d:fe:f8:32:98:02:58:81: 2a:fd:bb:9c:ea:80:6f:49:11:12:e4:f9:ca:1e:e4:fc:1d:8e: 95:90:27:83:bf:5b:ff:e6:18:64:aa:4c:e3:b3:70:db:da:2b: ec:e1:e7:76:31:00:99:ce:7c:2f:78:73:93:c3:c1:74:4e:01: f5:3e:d9:7d:89:20:9f:a3:a3:74:61:a0:e9:6f:02:c5:17:39: 80:f0:c9:ed:bc:3b:81:b7:85:37:bf:14:9d:48:9e:42:ef:ba: b9:d0:4c:51:83:59:27:35:e7:7d:64:11:2a:ee:7a:c9:85:f6: c4:9e:b5:89:f6:96:8b:d1:03:95:7c:c5:77:8b:2f:e8:b0:34: c4:73:5a:16:5f:1d:ac:38:d5:21:e6:32:70:2d:4b:10:64:df: c1:7a:a2:a3:2c:77:45:c1:f1:78:37:4b:ca:75:0e:e2:a8:65: 81:37:45:2a:2e:dc:47:01:57:ef:09:de:54:72:5a:a0:d7:eb: be:a3:c8:26:c8:a4:dd:8b:0f:3a:48:c9:05:54:e0:0c:55:a4: ae:89:c6:21 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XM/MmHjtx4ejMdgqybiVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMDMwMjA1ZmEzNjVlOWY0OWZmNGVhNzUwNmRmOTEyZDVl ZDgzNjAwHhcNMjYwMTAyMDYxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzBhZjZkODdiYjFmODc1MTBlZTExZGY1OTQwYWE1Y2ZkY2RlMzUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CsD39Xw+k3LIBps7XuZ8DNIiXHR INn1bEHBWr2y0M5EsVXHOix/jx2DT+eGRg7chp5xZIao+eErPYDjZ9k2fCowqLQ5 qX2HGpmvRC5Ki3qBos9YsLEDlXNT+i5MXpboaXT268tBHPfYOh5wKmidu/A6ezXD pjWuahUnFvo05RlYttciPa+7lW7aJoLtPzrUv9eqSG1rTFVSGyq6G9W3bC9PVhYs ektpYx6klUyis8MRUoBWZlVIvl6/P7FZVxzIF81++h3wkt5CzkvvaIUm/FWkfsZN /OTeinU3bi60S89Nce8d6bZVhBJ7HrFKIL5Rt6fehLZQgz1mjv/greTzqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLwK9th7sfh1EO4R31lAqlz9zeNQMB8GA1UdIwQY MBaAFE8DAgX6Nl6fSf9Op1Bt+RLV7YNgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHdNQ0JmbzJYcDlKXzA2blVHMzVFdFh0ZzJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8zYzhkYTUtYThlOS00YTRmLTgxNjgt M2NlNjExY2I2Nzk5LzEvdkFyMjJIdXgtSFVRN2hIZldVQ3FYUDNONDFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8zYzhkYTUtYThlOS00YTRmLTgxNjgtM2NlNjExY2I2Nzk5 LzEvVHdNQ0JmbzJYcDlKXzA2blVHMzVFdFh0ZzJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXo/YMA0G CSqGSIb3DQEBCwUAA4IBAQA5MvvalSW+0ujS2wuRPocc1t6qmp55plBXHHj3LGz+ l4R6q8k/RrAjVx2dKxCeDf74MpgCWIEq/buc6oBvSRES5PnKHuT8HY6VkCeDv1v/ 5hhkqkzjs3Db2ivs4ed2MQCZznwveHOTw8F0TgH1Ptl9iSCfo6N0YaDpbwLFFzmA 8MntvDuBt4U3vxSdSJ5C77q50ExRg1knNed9ZBEq7nrJhfbEnrWJ9paL0QOVfMV3 iy/osDTEc1oWXx2sONUh5jJwLUsQZN/BeqKjLHdFwfF4N0vKdQ7iqGWBN0UqLtxH AVfvCd5Uclqg1+u+o8gmyKTdiw86SMkFVOAMVaSuicYh -----END CERTIFICATE-----Generated at Tue Feb 10 02:30:04 2026 by rpki-client