This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/vb3QD26tEd1TlCghSHHycKsF2cw.roa File: vb3QD26tEd1TlCghSHHycKsF2cw.roa (raw, json) Hash identifier: L79N7aeYgfX90hxlWWa8IhaSDbOK1vOcJxkeNpYMTIE= Subject key identifier: BD:BD:D0:0F:6E:AD:11:DD:53:94:28:21:48:71:F2:70:AB:05:D9:CC Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA54D0570FF5A868844517994820943 Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/vb3QD26tEd1TlCghSHHycKsF2cw.roa Signing time: Thu 01 Jan 2026 22:19:49 +0000 ROA not before: Thu 01 Jan 2026 22:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206523 IP address blocks: 95.43.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:4d:05:70:ff:5a:86:88:44:51:79:94:82:09:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bdbdd00f6ead11dd539428214871f270ab05d9cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:75:38:0d:58:40:c4:55:45:c8:f9:24:69:cf: 9c:7a:73:67:f1:ed:39:48:52:91:25:ed:15:59:a6: 21:29:94:da:f9:c9:9b:50:17:ef:85:24:8a:83:f3: 3d:a9:ee:78:aa:f7:26:c6:08:f2:7d:5e:eb:79:e7: a3:bb:ec:a1:2f:eb:a5:74:44:b8:39:c4:8f:c1:4f: ac:6f:fb:6b:5e:88:8f:d8:e1:87:30:8a:6c:1b:8a: 6b:62:53:12:01:e6:f2:8b:3d:bc:18:54:fc:14:a1: ca:47:f3:04:5e:6d:ca:35:0f:5c:fc:da:b4:b8:bb: ef:e5:c1:4d:b4:54:e5:e9:b8:46:b4:14:dc:bc:58: 58:41:b3:73:77:31:9a:66:9d:5e:06:9e:3f:28:da: d7:6b:ce:57:cf:b4:20:45:cb:c1:9e:bb:f1:f4:bc: 20:53:6d:dd:60:2c:b0:9e:e3:8a:f1:48:b9:96:58: 46:70:94:e8:4c:3e:bd:27:a2:58:24:f3:19:4c:b7: a7:e6:75:e6:90:72:2e:52:82:86:1a:29:a9:1a:79: b7:f5:b0:b7:59:72:e9:a9:58:18:bc:f7:bd:42:cc: 83:a3:c4:85:13:f1:01:99:54:0f:17:95:70:13:aa: a6:7b:32:17:07:8b:8c:89:23:48:07:1b:2d:ec:5a: 85:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BD:D0:0F:6E:AD:11:DD:53:94:28:21:48:71:F2:70:AB:05:D9:CC X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/vb3QD26tEd1TlCghSHHycKsF2cw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.43.216.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:ca:44:8a:07:3d:59:f9:1b:10:1c:f1:59:01:4c:af:12:2c: 5a:be:f9:d1:e3:dd:a3:2a:82:82:ef:2b:8e:15:e1:95:df:e1: 08:7a:9f:21:18:4f:a9:58:77:e4:ea:64:9a:bc:4c:b8:34:c7: ad:9e:96:02:d1:08:5a:d1:50:24:2b:07:75:8a:d4:17:5b:e1: b9:97:88:22:9b:3a:c4:c9:db:13:c4:bc:0a:ac:c8:05:e1:50: e7:2c:4d:a6:ff:24:3b:2e:d5:88:ae:f5:c9:2e:13:41:d2:72: 8e:96:93:32:d7:70:fd:6f:a1:57:a4:9c:00:94:b7:e7:6a:28: d8:f5:35:78:fc:36:e2:ec:3b:df:de:61:75:8b:84:cd:5a:4c: 38:b0:f9:84:6b:d2:ee:a9:de:7f:1d:98:2a:77:f4:60:55:df: 71:22:5c:a1:48:5e:5c:65:c1:27:fd:4f:c7:cf:98:2a:a0:1c: 77:e4:3e:ac:14:4e:48:f8:0c:0b:46:c1:43:2b:5e:fd:3a:4e: 97:f0:1e:8d:18:2a:56:92:0c:94:4c:0c:7f:72:f6:18:a4:da: bd:4a:69:1e:2f:63:1b:4f:13:74:e0:e0:98:ea:e9:77:72:99: b4:d5:e8:cd:b5:21:9d:16:6f:7d:6d:4e:91:51:97:33:fe:cb: b3:cd:1f:67 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pU0FcP9ahohEUXmUgglDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGJkZDAwZjZlYWQxMWRkNTM5NDI4MjE0ODcxZjI3MGFiMDVkOWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnU4DVhAxFVFyPkkac+cenNn8e05 SFKRJe0VWaYhKZTa+cmbUBfvhSSKg/M9qe54qvcmxgjyfV7reeeju+yhL+uldES4 OcSPwU+sb/trXoiP2OGHMIpsG4prYlMSAebyiz28GFT8FKHKR/MEXm3KNQ9c/Nq0 uLvv5cFNtFTl6bhGtBTcvFhYQbNzdzGaZp1eBp4/KNrXa85Xz7QgRcvBnrvx9Lwg U23dYCywnuOK8Ui5llhGcJToTD69J6JYJPMZTLen5nXmkHIuUoKGGimpGnm39bC3 WXLpqVgYvPe9QsyDo8SFE/EBmVQPF5VwE6qmezIXB4uMiSNIBxst7FqFhwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL290A9urRHdU5QoIUhx8nCrBdnMMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvdmIzUUQyNnRFZDFUbENnaFNISHljS3NGMmN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXyvYMA0G CSqGSIb3DQEBCwUAA4IBAQAuykSKBz1Z+RsQHPFZAUyvEixavvnR492jKoKC7yuO FeGV3+EIep8hGE+pWHfk6mSavEy4NMetnpYC0Qha0VAkKwd1itQXW+G5l4gimzrE ydsTxLwKrMgF4VDnLE2m/yQ7LtWIrvXJLhNB0nKOlpMy13D9b6FXpJwAlLfnaijY 9TV4/Dbi7Dvf3mF1i4TNWkw4sPmEa9Luqd5/HZgqd/RgVd9xIlyhSF5cZcEn/U/H z5gqoBx35D6sFE5I+AwLRsFDK179Ok6X8B6NGCpWkgyUTAx/cvYYpNq9SmkeL2Mb TxN04OCY6ul3cpm01ejNtSGdFm99bU6RUZcz/suzzR9n -----END CERTIFICATE-----Generated at Mon Jan 26 11:43:42 2026 by rpki-client