This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/108f45-3e70-4dac-9341-f954002f5245/1/vhNThqSAy5954A66ZAELAQvQDDs.roa File: vhNThqSAy5954A66ZAELAQvQDDs.roa (raw, json) Hash identifier: gLwZkYW6p55DWlKg23Na3S6CUGHIHQi2tyQWg7l4acM= Subject key identifier: BE:13:53:86:A4:80:CB:9F:79:E0:0E:BA:64:01:0B:01:0B:D0:0C:3B Certificate issuer: /CN=159366259f9bae7c37337b515fa5bee05f53abce Certificate serial: 019B78A3376BFC487C94F65C495344129D01 Authority key identifier: 15:93:66:25:9F:9B:AE:7C:37:33:7B:51:5F:A5:BE:E0:5F:53:AB:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZNmJZ-brnw3M3tRX6W-4F9Tq84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/108f45-3e70-4dac-9341-f954002f5245/1/vhNThqSAy5954A66ZAELAQvQDDs.roa Signing time: Thu 01 Jan 2026 08:18:41 +0000 ROA not before: Thu 01 Jan 2026 08:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57793 IP address blocks: 212.18.110.0/24 maxlen: 24 2a12:8400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/108f45-3e70-4dac-9341-f954002f5245/1/FZNmJZ-brnw3M3tRX6W-4F9Tq84.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/108f45-3e70-4dac-9341-f954002f5245/1/FZNmJZ-brnw3M3tRX6W-4F9Tq84.mft rsync://rpki.ripe.net/repository/DEFAULT/FZNmJZ-brnw3M3tRX6W-4F9Tq84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:37:6b:fc:48:7c:94:f6:5c:49:53:44:12:9d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159366259f9bae7c37337b515fa5bee05f53abce Validity Not Before: Jan 1 08:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be135386a480cb9f79e00eba64010b010bd00c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:c6:05:e3:48:5d:ce:65:23:26:9b:7e:49: 6d:42:0f:87:d8:07:cd:67:4e:18:86:11:ad:56:a0: 7b:fa:cd:65:92:42:af:fc:a2:b7:be:43:6a:c1:06: 20:69:4b:d8:8f:91:b1:f4:fa:19:aa:99:26:fa:92: 82:f0:18:ac:72:1f:85:a8:51:1b:e9:74:13:c9:24: 2f:2c:d6:c5:a5:1e:f8:86:c2:45:26:04:28:f9:f4: c3:0d:77:ac:cd:c2:6e:78:85:31:de:56:e1:9f:c6: 81:c6:ec:bc:4a:11:c6:a0:f1:37:73:dd:5f:76:79: 9d:1d:3d:b0:15:0d:fe:09:39:67:74:d6:01:c3:25: 6d:95:d5:2a:ff:44:9e:11:8d:d0:7e:fa:d7:2b:b1: 84:42:15:b3:ad:2e:ed:c2:53:06:71:7d:0e:c1:04: 33:32:a2:99:0a:5b:48:59:3c:b4:b7:11:58:7c:d5: 0e:e4:17:46:36:c9:be:bb:be:7a:15:b4:f2:6d:5c: 9b:d7:9e:0b:7d:cf:e6:e0:89:8e:28:14:cc:71:56: fc:93:0b:45:dd:9c:39:87:94:7a:8b:75:50:ad:d9: 6b:8d:04:dc:73:e0:bf:4b:ab:2d:0b:60:bd:52:45: 18:8e:4a:f3:07:fe:3e:6c:9e:d2:5c:1e:ff:b6:8e: 7f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:13:53:86:A4:80:CB:9F:79:E0:0E:BA:64:01:0B:01:0B:D0:0C:3B X509v3 Authority Key Identifier: keyid:15:93:66:25:9F:9B:AE:7C:37:33:7B:51:5F:A5:BE:E0:5F:53:AB:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZNmJZ-brnw3M3tRX6W-4F9Tq84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/108f45-3e70-4dac-9341-f954002f5245/1/vhNThqSAy5954A66ZAELAQvQDDs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/108f45-3e70-4dac-9341-f954002f5245/1/FZNmJZ-brnw3M3tRX6W-4F9Tq84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.18.110.0/24 IPv6: 2a12:8400::/32 Signature Algorithm: sha256WithRSAEncryption 48:61:8e:e6:06:87:c6:51:25:68:eb:b7:1b:38:76:33:60:b7: 83:a2:4b:4c:f5:90:11:43:24:37:00:e3:ff:a8:07:1d:ac:d3: 25:b3:9b:4e:c9:4e:d0:8b:72:91:ec:fd:f9:62:1a:04:67:5a: 27:05:1a:13:6e:24:31:f1:50:56:6a:b7:90:05:4d:bf:1f:71: 95:52:44:f5:43:50:1e:5c:ec:e5:fd:3a:a0:8f:a8:11:3e:29: 67:ab:e6:69:5b:77:14:fb:0f:1e:14:c6:9d:4a:84:ee:7d:da: 25:0b:3c:20:b8:26:ba:b4:99:5e:b7:ba:06:9c:ef:3a:42:c1: 0e:78:25:2e:61:f6:92:36:ec:d4:c5:d2:c5:ac:42:84:80:0e: 15:81:be:c2:ce:a4:3f:fb:75:41:05:4f:06:00:27:17:ec:5e: 4d:98:64:0e:c6:50:98:8d:b1:5e:fa:6b:4f:28:41:a9:ae:ab: 20:65:c1:8c:2c:3c:8c:7e:a5:d3:ed:85:6a:e4:51:53:e3:6a: ac:73:fd:f6:a2:be:cc:67:bb:17:2b:dd:29:77:32:28:14:b2: 47:0d:1e:07:21:af:04:a4:bf:34:9c:5b:6c:5d:7e:17:73:45: e0:54:a9:90:5b:58:11:a7:6f:4e:24:2c:ae:4b:02:d3:ff:76: de:27:b3:31 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4ozdr/Eh8lPZcSVNEEp0BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1OTM2NjI1OWY5YmFlN2MzNzMzN2I1MTVmYTViZWUwNWY1 M2FiY2UwHhcNMjYwMTAxMDgxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTEzNTM4NmE0ODBjYjlmNzllMDBlYmE2NDAxMGIwMTBiZDAwYzNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgDGBeNIXc5lIyabfkltQg+H2AfN Z04YhhGtVqB7+s1lkkKv/KK3vkNqwQYgaUvYj5Gx9PoZqpkm+pKC8Bisch+FqFEb 6XQTySQvLNbFpR74hsJFJgQo+fTDDXeszcJueIUx3lbhn8aBxuy8ShHGoPE3c91f dnmdHT2wFQ3+CTlndNYBwyVtldUq/0SeEY3QfvrXK7GEQhWzrS7twlMGcX0OwQQz MqKZCltIWTy0txFYfNUO5BdGNsm+u756FbTybVyb154Lfc/m4ImOKBTMcVb8kwtF 3Zw5h5R6i3VQrdlrjQTcc+C/S6stC2C9UkUYjkrzB/4+bJ7SXB7/to5/iQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL4TU4akgMufeeAOumQBCwEL0Aw7MB8GA1UdIwQY MBaAFBWTZiWfm658NzN7UV+lvuBfU6vOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlpObUpaLWJybnczTTN0Ulg2Vy00RjlUcTg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8xMDhmNDUtM2U3MC00ZGFjLTkzNDEt Zjk1NDAwMmY1MjQ1LzEvdmhOVGhxU0F5NTk1NEE2NlpBRUxBUXZRRERzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8xMDhmNDUtM2U3MC00ZGFjLTkzNDEtZjk1NDAwMmY1MjQ1 LzEvRlpObUpaLWJybnczTTN0Ulg2Vy00RjlUcTg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA1BJuMA0E AgACMAcDBQAqEoQAMA0GCSqGSIb3DQEBCwUAA4IBAQBIYY7mBofGUSVo67cbOHYz YLeDoktM9ZARQyQ3AOP/qAcdrNMls5tOyU7Qi3KR7P35YhoEZ1onBRoTbiQx8VBW areQBU2/H3GVUkT1Q1AeXOzl/Tqgj6gRPilnq+ZpW3cU+w8eFMadSoTufdolCzwg uCa6tJlet7oGnO86QsEOeCUuYfaSNuzUxdLFrEKEgA4Vgb7CzqQ/+3VBBU8GACcX 7F5NmGQOxlCYjbFe+mtPKEGprqsgZcGMLDyMfqXT7YVq5FFT42qsc/32or7MZ7sX K90pdzIoFLJHDR4HIa8EpL80nFtsXX4Xc0XgVKmQW1gRp29OJCyuSwLT/3beJ7Mx -----END CERTIFICATE-----Generated at Sun Jan 25 09:39:22 2026 by rpki-client