This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/VgpKn3563QumQ3vI6T65CdTXJRY.roa File: VgpKn3563QumQ3vI6T65CdTXJRY.roa (raw, json) Hash identifier: 0Sh5H5DPaJwxDGKT1SX9t1w/AoLxVT76G3RbjGUJn18= Subject key identifier: 56:0A:4A:9F:7E:7A:DD:0B:A6:43:7B:C8:E9:3E:B9:09:D4:D7:25:16 Certificate issuer: /CN=be6c497ff4d4a8bb5a24bdd2051575b49a083c75 Certificate serial: 019B78350AEE7342CAEA43DA68C1A4B8DECE Authority key identifier: BE:6C:49:7F:F4:D4:A8:BB:5A:24:BD:D2:05:15:75:B4:9A:08:3C:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmxJf_TUqLtaJL3SBRV1tJoIPHU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/VgpKn3563QumQ3vI6T65CdTXJRY.roa Signing time: Thu 01 Jan 2026 06:18:20 +0000 ROA not before: Thu 01 Jan 2026 06:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8220 IP address blocks: 185.194.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/vmxJf_TUqLtaJL3SBRV1tJoIPHU.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/vmxJf_TUqLtaJL3SBRV1tJoIPHU.mft rsync://rpki.ripe.net/repository/DEFAULT/vmxJf_TUqLtaJL3SBRV1tJoIPHU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 03:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:0a:ee:73:42:ca:ea:43:da:68:c1:a4:b8:de:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be6c497ff4d4a8bb5a24bdd2051575b49a083c75 Validity Not Before: Jan 1 06:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=560a4a9f7e7add0ba6437bc8e93eb909d4d72516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b7:e8:92:db:13:2f:8f:2b:8e:0d:d0:21:d5: 95:90:4f:a4:ef:5a:7a:04:17:ae:19:e4:cb:11:35: ca:ec:5d:6d:92:ae:fe:1c:e5:02:2f:65:c9:42:9e: 61:ff:fd:2e:67:f6:8a:09:6d:14:b5:86:67:f3:e9: 3a:0a:f3:59:8c:95:d2:34:46:ba:b3:67:b0:ba:cb: 6a:07:bc:75:a5:83:81:ec:1f:7d:e5:1b:20:2f:ff: 68:4e:03:67:51:40:ed:7a:71:65:de:09:3f:04:cb: ee:53:0b:8f:43:51:a5:d5:95:02:70:e1:18:35:93: 5e:d8:78:ee:25:cc:89:df:d8:99:cb:f1:09:76:f2: b9:c3:80:3b:56:50:df:94:1b:ca:15:7f:6b:8f:83: d2:9c:b3:5a:3e:1c:74:92:d8:f0:7b:a3:d5:84:4e: 27:1e:d2:be:00:a2:43:4f:4f:82:5a:1f:e2:8f:b8: 0e:8e:da:d5:db:a6:35:e5:c6:ec:77:11:3a:5d:d5: e2:f3:2e:ce:ed:23:40:81:42:de:c5:fc:81:c7:d2: e1:6a:1c:60:6d:db:a5:20:e8:49:68:d6:63:d8:4f: 62:c3:d6:b1:15:83:f7:2f:f9:e7:9b:ad:54:77:a1: 77:6e:40:02:a4:d8:9b:1e:d7:b7:da:fc:d7:54:1e: df:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:0A:4A:9F:7E:7A:DD:0B:A6:43:7B:C8:E9:3E:B9:09:D4:D7:25:16 X509v3 Authority Key Identifier: keyid:BE:6C:49:7F:F4:D4:A8:BB:5A:24:BD:D2:05:15:75:B4:9A:08:3C:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmxJf_TUqLtaJL3SBRV1tJoIPHU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/VgpKn3563QumQ3vI6T65CdTXJRY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/vmxJf_TUqLtaJL3SBRV1tJoIPHU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.194.232.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:06:ee:76:08:86:cf:f0:e3:68:7b:df:16:90:6c:63:ff:e5: fb:58:c1:5e:7a:ae:bf:e8:9d:ed:90:a9:81:ea:a2:d7:db:3e: f7:7c:7d:f2:8f:52:c4:ca:de:57:26:72:d2:53:1d:f8:06:bc: 93:e2:81:f0:ab:9e:a3:38:99:4e:17:e9:ad:81:2c:18:3d:aa: 2e:97:65:da:d4:aa:55:a7:15:f4:65:5f:3d:53:da:3f:72:87: 33:2c:a4:e2:fc:7c:3c:02:71:cd:42:58:67:46:0c:ff:df:03: 46:14:fa:ee:0d:24:cf:23:de:51:28:32:02:a0:13:b6:20:25: 2f:7f:76:f9:92:eb:a3:25:dc:04:2d:e0:84:25:37:5d:1b:7e: 2e:de:ef:dd:0a:76:3e:3e:51:af:59:67:5a:06:c7:19:f6:82: ee:53:6a:27:87:cc:fe:1e:5c:6b:ff:35:b7:b7:d7:fd:8a:6f: 9d:52:d7:55:0e:64:8e:b2:90:42:e9:c1:fd:bd:4b:dc:96:fa: 86:da:32:1b:42:2f:bb:34:6f:b3:11:3e:6d:08:39:35:12:a2: 0c:f0:a2:19:9d:e6:a6:58:73:9d:ac:3f:11:ba:99:61:ef:41: 5d:2c:2f:b6:89:6c:0c:c3:f1:8e:2c:ba:83:f4:52:48:69:79: 4b:b1:b3:c6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NQruc0LK6kPaaMGkuN7OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNmM0OTdmZjRkNGE4YmI1YTI0YmRkMjA1MTU3NWI0OWEw ODNjNzUwHhcNMjYwMTAxMDYxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NjBhNGE5ZjdlN2FkZDBiYTY0MzdiYzhlOTNlYjkwOWQ0ZDcyNTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7LfoktsTL48rjg3QIdWVkE+k71p6 BBeuGeTLETXK7F1tkq7+HOUCL2XJQp5h//0uZ/aKCW0UtYZn8+k6CvNZjJXSNEa6 s2ewustqB7x1pYOB7B995RsgL/9oTgNnUUDtenFl3gk/BMvuUwuPQ1Gl1ZUCcOEY NZNe2HjuJcyJ39iZy/EJdvK5w4A7VlDflBvKFX9rj4PSnLNaPhx0ktjwe6PVhE4n HtK+AKJDT0+CWh/ij7gOjtrV26Y15cbsdxE6XdXi8y7O7SNAgULexfyBx9Lhahxg bdulIOhJaNZj2E9iw9axFYP3L/nnm61Ud6F3bkACpNibHte32vzXVB7f6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFYKSp9+et0LpkN7yOk+uQnU1yUWMB8GA1UdIwQY MBaAFL5sSX/01Ki7WiS90gUVdbSaCDx1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdm14SmZfVFVxTHRhSkwzU0JSVjF0Sm9JUEhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81ZGI4ZWItY2NjYy00OThhLTgxY2It NjVhZTU4YTliZWU4LzEvVmdwS24zNTYzUXVtUTN2STZUNjVDZFRYSlJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi81ZGI4ZWItY2NjYy00OThhLTgxY2ItNjVhZTU4YTliZWU4 LzEvdm14SmZfVFVxTHRhSkwzU0JSVjF0Sm9JUEhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBucLoMA0G CSqGSIb3DQEBCwUAA4IBAQAPBu52CIbP8ONoe98WkGxj/+X7WMFeeq6/6J3tkKmB 6qLX2z73fH3yj1LEyt5XJnLSUx34BryT4oHwq56jOJlOF+mtgSwYPaoul2Xa1KpV pxX0ZV89U9o/coczLKTi/Hw8AnHNQlhnRgz/3wNGFPruDSTPI95RKDICoBO2ICUv f3b5kuujJdwELeCEJTddG34u3u/dCnY+PlGvWWdaBscZ9oLuU2onh8z+Hlxr/zW3 t9f9im+dUtdVDmSOspBC6cH9vUvclvqG2jIbQi+7NG+zET5tCDk1EqIM8KIZneam WHOdrD8Ruplh70FdLC+2iWwMw/GOLLqD9FJIaXlLsbPG -----END CERTIFICATE-----Generated at Wed Jan 21 12:20:15 2026 by rpki-client