This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/VUXL1YAHh0QaMk94A5GiwSVStWg.roa File: VUXL1YAHh0QaMk94A5GiwSVStWg.roa (raw, json) Hash identifier: E8Gi7M7a5aNnzjDA6tR/s1u1Ihh59M38ri5h3GdsQvU= Subject key identifier: 55:45:CB:D5:80:07:87:44:1A:32:4F:78:03:91:A2:C1:25:52:B5:68 Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b Certificate serial: 019B7A5B0B6D62FECC4B462CD2D19875A269 Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/VUXL1YAHh0QaMk94A5GiwSVStWg.roa Signing time: Thu 01 Jan 2026 16:19:05 +0000 ROA not before: Thu 01 Jan 2026 16:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201691 IP address blocks: 45.159.151.0/24 maxlen: 24 193.35.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.mft rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:0b:6d:62:fe:cc:4b:46:2c:d2:d1:98:75:a2:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b Validity Not Before: Jan 1 16:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5545cbd5800787441a324f780391a2c12552b568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2d:24:64:3a:58:14:7d:71:9e:4e:be:ba:38: 37:e6:77:b0:66:37:0b:13:ee:90:d3:0c:a3:c3:d3: 57:99:e4:68:3d:3f:1e:cc:e7:90:65:d4:bc:a8:28: 66:31:20:18:9d:c3:79:f4:97:63:00:e8:a3:4c:8f: 9e:cf:1f:b0:2a:d4:7c:5a:57:f4:76:47:dc:6c:6b: 2a:bc:49:8a:17:23:8b:ba:60:ee:e5:c9:f8:11:be: 35:c6:53:c5:07:6b:7b:4b:69:33:65:bd:8d:bd:0a: b9:90:8e:85:a6:3b:48:b7:11:a9:aa:be:66:2b:25: a9:43:ee:a4:48:a5:d3:cf:02:68:4b:a9:84:ed:c6: fd:9d:60:0a:7d:ed:14:61:d1:64:29:83:fe:30:80: ff:a7:cf:97:51:21:b2:8e:b7:9d:44:07:73:e9:cb: 31:21:b4:cb:5a:b6:52:52:9d:b0:fb:68:71:06:3a: 97:2d:af:c8:5e:3f:6a:6a:97:86:ca:ed:7b:60:46: 7d:e6:1e:15:49:17:30:ef:d8:ad:92:c3:8e:6a:67: c6:7c:54:0b:6b:39:8c:58:9b:1f:bc:11:fd:79:11: a1:2a:b1:6b:81:30:f7:1b:16:a1:63:9b:9f:68:44: ae:62:16:76:ca:78:0f:12:78:6b:91:30:e6:17:7d: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:45:CB:D5:80:07:87:44:1A:32:4F:78:03:91:A2:C1:25:52:B5:68 X509v3 Authority Key Identifier: keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/VUXL1YAHh0QaMk94A5GiwSVStWg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.159.151.0/24 193.35.230.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:b5:b6:46:72:f0:d9:e0:a2:f4:93:08:b8:15:10:a4:3a:bb: 5d:cc:f4:e0:fc:6e:47:00:b4:bb:10:51:5d:05:4a:8a:f0:d7: 9f:a7:7c:3b:e6:66:e6:19:7c:7a:9f:38:d1:2f:1f:8d:5d:32: 6a:74:c5:5b:0b:b8:a3:72:81:9f:d8:c6:97:3f:c6:bc:4d:9f: 2c:a6:55:cb:4c:4c:9d:f3:c0:bf:b5:47:5b:a4:64:24:66:13: 52:d6:23:d3:82:ff:16:69:31:40:d0:39:d1:fa:d9:1e:5d:63: 42:65:39:e7:e5:fc:74:e5:d2:68:e3:c9:29:8c:90:b8:b8:1d: 16:14:81:a8:ac:cb:4a:f6:81:dc:a4:57:ac:40:53:70:ee:d6: e3:9f:d1:a4:4b:fc:86:ba:6c:51:2e:23:8a:a4:12:63:9e:53: 6e:c4:cf:0b:91:10:69:27:f2:59:1b:e9:1f:a2:b8:a3:4d:21: 58:0d:45:96:5d:a4:87:e7:33:65:70:42:24:35:37:ca:52:ff: 6a:ab:70:52:fc:47:6a:a5:c5:99:ee:df:67:52:36:15:48:55: 75:e2:b3:e9:24:d8:ea:ae:de:dd:6a:0b:ab:3d:f5:60:9a:8e: ce:c6:97:c3:6e:0c:6d:94:e6:36:d6:0f:db:58:55:ac:85:72: 3f:45:8f:e2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WwttYv7MS0Ys0tGYdaJpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjM2QwMjJhMjQwY2U3MWUwYTZlMWU5YWFlMDExMmRhODQw Y2MzNGIwHhcNMjYwMTAxMTYxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTQ1Y2JkNTgwMDc4NzQ0MWEzMjRmNzgwMzkxYTJjMTI1NTJiNTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAui0kZDpYFH1xnk6+ujg35newZjcL E+6Q0wyjw9NXmeRoPT8ezOeQZdS8qChmMSAYncN59JdjAOijTI+ezx+wKtR8Wlf0 dkfcbGsqvEmKFyOLumDu5cn4Eb41xlPFB2t7S2kzZb2NvQq5kI6FpjtItxGpqr5m KyWpQ+6kSKXTzwJoS6mE7cb9nWAKfe0UYdFkKYP+MID/p8+XUSGyjredRAdz6csx IbTLWrZSUp2w+2hxBjqXLa/IXj9qapeGyu17YEZ95h4VSRcw79itksOOamfGfFQL azmMWJsfvBH9eRGhKrFrgTD3GxahY5ufaESuYhZ2yngPEnhrkTDmF33yJQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFVFy9WAB4dEGjJPeAORosElUrVoMB8GA1UdIwQY MBaAFHw9AiokDOceCm4emq4BEtqEDMNLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYt MDk0ODk4OWU2ZDU1LzEvVlVYTDFZQUhoMFFhTWs5NEE1R2l3U1ZTdFdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYtMDk0ODk4OWU2ZDU1 LzEvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZ+XAwQA wSPmMA0GCSqGSIb3DQEBCwUAA4IBAQAOtbZGcvDZ4KL0kwi4FRCkOrtdzPTg/G5H ALS7EFFdBUqK8Nefp3w75mbmGXx6nzjRLx+NXTJqdMVbC7ijcoGf2MaXP8a8TZ8s plXLTEyd88C/tUdbpGQkZhNS1iPTgv8WaTFA0DnR+tkeXWNCZTnn5fx05dJo48kp jJC4uB0WFIGorMtK9oHcpFesQFNw7tbjn9GkS/yGumxRLiOKpBJjnlNuxM8LkRBp J/JZG+kforijTSFYDUWWXaSH5zNlcEIkNTfKUv9qq3BS/EdqpcWZ7t9nUjYVSFV1 4rPpJNjqrt7dagurPfVgmo7OxpfDbgxtlOY21g/bWFWshXI/RY/i -----END CERTIFICATE-----Generated at Mon Jan 5 13:06:16 2026 by rpki-client