This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/a2ea51-87a6-4814-9b82-278cbb0b4e73/1/VmznbVd9MfFy-le51-Dat5kq1h8.roa File: VmznbVd9MfFy-le51-Dat5kq1h8.roa (raw, json) Hash identifier: D7NpQBExPzq0VipR/3wFdXRjoX0wngBafprQmxoUvlI= Subject key identifier: 56:6C:E7:6D:57:7D:31:F1:72:FA:57:B9:D7:E0:DA:B7:99:2A:D6:1F Certificate issuer: /CN=7d2ae80cde5cd769c8f144e6c266113bfaedec3e Certificate serial: 019B7D5BE08D4252DC736F218A2109CA3ABB Authority key identifier: 7D:2A:E8:0C:DE:5C:D7:69:C8:F1:44:E6:C2:66:11:3B:FA:ED:EC:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fSroDN5c12nI8UTmwmYRO_rt7D4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/a2ea51-87a6-4814-9b82-278cbb0b4e73/1/VmznbVd9MfFy-le51-Dat5kq1h8.roa Signing time: Fri 02 Jan 2026 06:18:51 +0000 ROA not before: Fri 02 Jan 2026 06:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205668 IP address blocks: 45.148.168.0/22 maxlen: 24 185.44.128.0/22 maxlen: 24 185.129.68.0/22 maxlen: 24 185.129.68.0/24 maxlen: 24 185.129.69.0/24 maxlen: 24 185.129.70.0/24 maxlen: 24 185.129.71.0/24 maxlen: 24 185.200.100.0/24 maxlen: 24 185.200.101.0/24 maxlen: 24 185.200.102.0/24 maxlen: 24 185.200.103.0/24 maxlen: 24 2a01:74e0::/32 maxlen: 32 2a0a:aa40::/32 maxlen: 32 2a0a:aa42::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/a2ea51-87a6-4814-9b82-278cbb0b4e73/1/fSroDN5c12nI8UTmwmYRO_rt7D4.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/a2ea51-87a6-4814-9b82-278cbb0b4e73/1/fSroDN5c12nI8UTmwmYRO_rt7D4.mft rsync://rpki.ripe.net/repository/DEFAULT/fSroDN5c12nI8UTmwmYRO_rt7D4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:e0:8d:42:52:dc:73:6f:21:8a:21:09:ca:3a:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d2ae80cde5cd769c8f144e6c266113bfaedec3e Validity Not Before: Jan 2 06:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=566ce76d577d31f172fa57b9d7e0dab7992ad61f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b9:65:fd:f8:a7:d9:c4:05:3c:19:c7:80:02: 0d:d8:a6:06:18:31:66:b7:ee:ba:52:47:ac:7d:18: 2c:6d:d8:6c:45:cf:b9:9f:ce:a4:c8:43:6e:b9:54: 4d:ee:12:1a:e9:ae:57:29:f7:d8:29:15:06:95:7e: d2:0a:b6:2e:20:e3:30:f1:02:5c:9b:04:03:f1:47: c4:df:17:39:0f:b4:a5:e2:db:c7:33:5e:b9:33:7d: 1f:24:ec:2f:bb:c5:da:65:0b:dc:2b:1d:b3:67:ff: af:2b:fe:90:49:11:8a:d3:0c:b3:e5:09:22:80:73: b9:0a:b7:08:24:b2:07:62:84:5c:7e:4d:7d:02:3b: 06:4c:b7:31:c3:ee:ca:b4:71:22:e3:ef:f8:00:9f: 6f:68:6c:03:43:d3:dd:2c:27:d6:eb:6e:6e:6d:3c: 4f:d2:e4:b9:ed:32:b3:b3:b1:7d:90:86:a1:22:bc: 0e:58:ea:06:8e:c7:85:08:cf:7e:46:8f:eb:d1:a8: 37:f2:8f:f0:94:57:f1:45:8f:cb:7d:7c:e5:d9:c8: fc:63:18:c1:10:ff:1a:dc:c6:69:17:db:f8:79:a2: 58:90:b1:b2:9e:fb:36:e0:58:14:4e:2c:68:8e:b2: 1c:54:6e:b3:f6:eb:1d:48:e6:9b:e7:8e:a8:ac:f6: e9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:6C:E7:6D:57:7D:31:F1:72:FA:57:B9:D7:E0:DA:B7:99:2A:D6:1F X509v3 Authority Key Identifier: keyid:7D:2A:E8:0C:DE:5C:D7:69:C8:F1:44:E6:C2:66:11:3B:FA:ED:EC:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fSroDN5c12nI8UTmwmYRO_rt7D4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a2ea51-87a6-4814-9b82-278cbb0b4e73/1/VmznbVd9MfFy-le51-Dat5kq1h8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a2ea51-87a6-4814-9b82-278cbb0b4e73/1/fSroDN5c12nI8UTmwmYRO_rt7D4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.148.168.0/22 185.44.128.0/22 185.129.68.0/22 185.200.100.0/22 IPv6: 2a01:74e0::/32 2a0a:aa40::/32 2a0a:aa42::/32 Signature Algorithm: sha256WithRSAEncryption a5:f2:37:b1:81:c9:b8:46:66:56:b0:a8:3e:33:38:0d:9d:24: ec:eb:ce:ab:4c:7f:0a:d2:49:ec:82:d9:77:a8:1a:26:b9:79: 55:72:e9:bf:40:98:0a:30:e4:1a:64:63:e4:ce:47:47:f8:c9: 01:6c:5e:54:a2:c7:ac:9b:3b:45:1f:70:00:52:86:a6:57:48: a4:13:dd:97:39:37:13:96:f2:5f:47:d3:4b:11:33:df:f2:74: 3d:46:3e:02:a6:95:56:7e:5c:7a:96:c0:4e:67:6e:67:c7:e1: 2d:78:6e:37:60:f5:cf:4f:31:49:30:c5:96:0e:87:3b:5f:52: 67:e1:12:5a:c7:d4:0a:7d:d0:e7:a8:28:be:af:3e:98:c6:68: c7:cb:4d:49:78:f6:bc:01:f0:c3:2d:14:79:a9:1b:a5:5b:7c: 33:95:2a:34:a8:22:13:45:a0:ce:3e:dd:dc:e0:b2:b7:56:19: 8a:3a:2c:80:9a:ea:74:17:49:67:04:1e:b9:06:ef:63:2e:b0: 35:de:35:13:f8:13:d6:a7:f3:9c:d0:51:f7:ab:ea:e1:78:6c: b1:56:29:4f:5d:e6:9b:de:6e:d3:7f:4a:1d:63:ba:36:bd:c4: a7:ed:87:99:e5:5c:aa:a8:3e:1e:78:85:de:75:4b:f2:bd:ce: ec:bf:c7:1e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZt9W+CNQlLcc28hiiEJyjq7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkMmFlODBjZGU1Y2Q3NjljOGYxNDRlNmMyNjYxMTNiZmFl ZGVjM2UwHhcNMjYwMTAyMDYxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NjZjZTc2ZDU3N2QzMWYxNzJmYTU3YjlkN2UwZGFiNzk5MmFkNjFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7ll/fin2cQFPBnHgAIN2KYGGDFm t+66UkesfRgsbdhsRc+5n86kyENuuVRN7hIa6a5XKffYKRUGlX7SCrYuIOMw8QJc mwQD8UfE3xc5D7Sl4tvHM165M30fJOwvu8XaZQvcKx2zZ/+vK/6QSRGK0wyz5Qki gHO5CrcIJLIHYoRcfk19AjsGTLcxw+7KtHEi4+/4AJ9vaGwDQ9PdLCfW625ubTxP 0uS57TKzs7F9kIahIrwOWOoGjseFCM9+Ro/r0ag38o/wlFfxRY/LfXzl2cj8YxjB EP8a3MZpF9v4eaJYkLGynvs24FgUTixojrIcVG6z9usdSOab546orPbpDwIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFFZs521XfTHxcvpXudfg2reZKtYfMB8GA1UdIwQY MBaAFH0q6AzeXNdpyPFE5sJmETv67ew+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlNyb0RONWMxMm5JOFVUbXdtWVJPX3J0N0Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9hMmVhNTEtODdhNi00ODE0LTliODIt Mjc4Y2JiMGI0ZTczLzEvVm16bmJWZDlNZkZ5LWxlNTEtRGF0NWtxMWg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9hMmVhNTEtODdhNi00ODE0LTliODItMjc4Y2JiMGI0ZTcz LzEvZlNyb0RONWMxMm5JOFVUbXdtWVJPX3J0N0Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAeBAIAATAYAwQCLZSoAwQC uSyAAwQCuYFEAwQCuchkMBsEAgACMBUDBQAqAXTgAwUAKgqqQAMFACoKqkIwDQYJ KoZIhvcNAQELBQADggEBAKXyN7GBybhGZlawqD4zOA2dJOzrzqtMfwrSSeyC2Xeo Gia5eVVy6b9AmAow5BpkY+TOR0f4yQFsXlSix6ybO0UfcABShqZXSKQT3Zc5NxOW 8l9H00sRM9/ydD1GPgKmlVZ+XHqWwE5nbmfH4S14bjdg9c9PMUkwxZYOhztfUmfh ElrH1Ap90OeoKL6vPpjGaMfLTUl49rwB8MMtFHmpG6VbfDOVKjSoIhNFoM4+3dzg srdWGYo6LICa6nQXSWcEHrkG72MusDXeNRP4E9an85zQUfer6uF4bLFWKU9d5pve btN/Sh1juja9xKfth5nlXKqoPh54hd51S/K9zuy/xx4= -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:41 2026 by rpki-client