This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/VYfYsefgXDO7eUw9ySDhTc84Ons.roa File: VYfYsefgXDO7eUw9ySDhTc84Ons.roa (raw, json) Hash identifier: IbZAK9+oWQJYCtr9Z6PaHIRVgGhay0uSjwUzMuklcYE= Subject key identifier: 55:87:D8:B1:E7:E0:5C:33:BB:79:4C:3D:C9:20:E1:4D:CF:38:3A:7B Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E318250ECD9D0629C06ACD35E564A Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/VYfYsefgXDO7eUw9ySDhTc84Ons.roa Signing time: Thu 01 Jan 2026 12:17:51 +0000 ROA not before: Thu 01 Jan 2026 12:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64289 IP address blocks: 185.144.102.0/24 maxlen: 32 193.201.208.0/24 maxlen: 32 193.201.209.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:31:82:50:ec:d9:d0:62:9c:06:ac:d3:5e:56:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5587d8b1e7e05c33bb794c3dc920e14dcf383a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ad:45:e7:a3:a6:49:8c:a5:4b:f4:15:3c:76: 56:52:b3:de:d2:0e:fb:54:ae:b6:5a:1a:65:43:5b: 75:8f:50:70:c9:9b:28:b7:65:e5:b8:98:b4:8f:32: 8d:0c:ea:58:2e:e6:30:e0:23:ec:52:1b:39:30:15: ec:7c:ce:2d:0b:f2:af:92:0e:d1:4e:d0:eb:97:63: e1:ba:05:3a:55:ef:ae:c1:fb:00:eb:e6:3e:13:4a: b7:d5:d3:e2:11:f3:d2:ec:36:ef:86:94:d0:d9:eb: 6b:e0:87:9c:65:8c:95:9a:bf:8c:51:53:38:92:d0: 25:0e:95:36:c4:5f:31:94:21:12:73:6c:ba:94:75: 92:9d:61:10:47:3e:63:65:b7:4d:93:08:5b:9a:d2: d7:cc:a1:80:20:f6:c4:7a:ef:0f:28:b9:15:7d:73: 19:a2:38:94:09:d0:73:f0:60:74:7e:42:fa:7f:35: 1a:72:c2:1a:b0:6c:33:68:8c:f6:1c:97:bc:7d:3a: 96:49:51:b7:ed:ea:07:16:00:9f:01:74:73:22:d9: 76:cb:05:83:da:05:eb:21:1e:8e:b7:4e:f7:bc:07: 08:8b:9c:53:28:3b:9e:b1:8d:4f:0b:62:28:a6:2b: f3:ee:07:7b:1c:eb:81:4b:94:a8:52:6e:55:05:37: ca:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:87:D8:B1:E7:E0:5C:33:BB:79:4C:3D:C9:20:E1:4D:CF:38:3A:7B X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/VYfYsefgXDO7eUw9ySDhTc84Ons.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.144.102.0/24 193.201.208.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:be:29:25:00:41:38:27:2a:25:ff:25:bb:14:e8:b2:06:97: b4:40:9d:1b:2d:cc:30:e5:e8:d9:69:e3:1c:9a:f8:9e:fa:9d: a0:e9:b6:69:21:5a:65:9d:42:81:87:94:9a:06:82:c8:b0:1c: 09:17:78:6a:f6:0a:e8:a7:3d:12:32:fe:1f:09:73:fd:97:85: 32:99:89:2e:ef:d3:59:70:d0:fd:6a:31:de:58:e2:33:7b:7c: 80:8b:0f:d8:3a:7a:43:19:a3:09:95:7d:61:94:2f:34:90:ed: c6:28:45:a8:36:fb:1d:ca:7e:23:06:36:fa:f2:d0:56:e7:59: 7f:88:3f:fa:ef:c3:92:40:54:a6:e2:1c:e6:01:81:53:18:10: d4:09:d2:45:48:7c:f4:d3:1b:b1:e3:6d:ca:a4:de:a6:6f:8e: f2:8b:bf:52:e2:e6:8b:aa:f0:0f:f4:97:de:b6:bc:36:99:b9: bf:a2:f9:0a:df:b8:5e:3e:e2:29:68:4a:1d:c6:e1:5c:a6:fd: 34:8b:e3:38:4e:67:2d:f9:a0:03:72:81:9e:6f:8c:43:ce:de: 66:50:3b:58:56:f3:d1:25:ad:21:5e:39:88:87:04:56:43:e8: bf:90:fc:1f:50:19:c6:fc:e0:44:3f:95:7a:6d:33:14:6d:18: 8e:c2:4d:e5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fjGCUOzZ0GKcBqzTXlZKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTg3ZDhiMWU3ZTA1YzMzYmI3OTRjM2RjOTIwZTE0ZGNmMzgzYTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwa1F56OmSYylS/QVPHZWUrPe0g77 VK62WhplQ1t1j1BwyZsot2XluJi0jzKNDOpYLuYw4CPsUhs5MBXsfM4tC/Kvkg7R TtDrl2PhugU6Ve+uwfsA6+Y+E0q31dPiEfPS7DbvhpTQ2etr4IecZYyVmr+MUVM4 ktAlDpU2xF8xlCESc2y6lHWSnWEQRz5jZbdNkwhbmtLXzKGAIPbEeu8PKLkVfXMZ ojiUCdBz8GB0fkL6fzUacsIasGwzaIz2HJe8fTqWSVG37eoHFgCfAXRzItl2ywWD 2gXrIR6Ot073vAcIi5xTKDuesY1PC2Iopivz7gd7HOuBS5SoUm5VBTfKTQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFWH2LHn4Fwzu3lMPckg4U3PODp7MB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvVllmWXNlZmdYRE83ZVV3OXlTRGhUYzg0T25zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuZBmAwQB wcnQMA0GCSqGSIb3DQEBCwUAA4IBAQB7viklAEE4Jyol/yW7FOiyBpe0QJ0bLcww 5ejZaeMcmvie+p2g6bZpIVplnUKBh5SaBoLIsBwJF3hq9gropz0SMv4fCXP9l4Uy mYku79NZcND9ajHeWOIze3yAiw/YOnpDGaMJlX1hlC80kO3GKEWoNvsdyn4jBjb6 8tBW51l/iD/678OSQFSm4hzmAYFTGBDUCdJFSHz00xux423KpN6mb47yi79S4uaL qvAP9Jfetrw2mbm/ovkK37hePuIpaEodxuFcpv00i+M4Tmct+aADcoGeb4xDzt5m UDtYVvPRJa0hXjmIhwRWQ+i/kPwfUBnG/OBEP5V6bTMUbRiOwk3l -----END CERTIFICATE-----Generated at Mon Jan 19 20:23:00 2026 by rpki-client