This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/4b8cc4-5fc2-4f26-8045-50ef726a9136/1/vatD6IyOJfXLFso-oQNdkHZ0B5A.roa File: vatD6IyOJfXLFso-oQNdkHZ0B5A.roa (raw, json) Hash identifier: CF8afvvRrtxwksEOb+htGDBoa1bLNCvDnWuii8t0Lrk= Subject key identifier: BD:AB:43:E8:8C:8E:25:F5:CB:16:CA:3E:A1:03:5D:90:76:74:07:90 Certificate issuer: /CN=e9fc6c81663cf6fce92e83e5d6628bc0eb6a94d2 Certificate serial: 019B7F139CEC0ECD1F69BD5CA2C5B7C9DE22 Authority key identifier: E9:FC:6C:81:66:3C:F6:FC:E9:2E:83:E5:D6:62:8B:C0:EB:6A:94:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6fxsgWY89vzpLoPl1mKLwOtqlNI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/4b8cc4-5fc2-4f26-8045-50ef726a9136/1/vatD6IyOJfXLFso-oQNdkHZ0B5A.roa Signing time: Fri 02 Jan 2026 14:19:10 +0000 ROA not before: Fri 02 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57988 IP address blocks: 91.237.54.0/23 maxlen: 23 91.237.54.0/24 maxlen: 24 91.237.55.0/24 maxlen: 24 176.111.248.0/21 maxlen: 21 176.111.248.0/24 maxlen: 24 176.111.249.0/24 maxlen: 24 176.111.250.0/24 maxlen: 24 176.111.251.0/24 maxlen: 24 176.111.252.0/24 maxlen: 24 176.111.253.0/24 maxlen: 24 176.111.254.0/24 maxlen: 24 176.111.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/4b8cc4-5fc2-4f26-8045-50ef726a9136/1/6fxsgWY89vzpLoPl1mKLwOtqlNI.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/4b8cc4-5fc2-4f26-8045-50ef726a9136/1/6fxsgWY89vzpLoPl1mKLwOtqlNI.mft rsync://rpki.ripe.net/repository/DEFAULT/6fxsgWY89vzpLoPl1mKLwOtqlNI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:9c:ec:0e:cd:1f:69:bd:5c:a2:c5:b7:c9:de:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9fc6c81663cf6fce92e83e5d6628bc0eb6a94d2 Validity Not Before: Jan 2 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bdab43e88c8e25f5cb16ca3ea1035d9076740790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:bc:72:14:f7:ed:2a:9b:c8:2d:5e:12:36:65: de:cf:9f:65:ae:0a:b3:84:56:e9:e2:31:8b:6e:13: 42:28:c2:f2:ef:7a:e6:7d:26:3a:62:73:53:b7:28: f6:5b:c2:60:25:da:21:a2:a3:4d:16:b9:f8:f0:08: 1d:18:03:6c:6c:0a:27:8a:5e:84:c0:20:ed:0b:48: bf:0e:e5:8d:43:f3:2b:50:1b:d6:df:6f:56:bf:56: fd:9e:8c:0a:0f:f1:3c:66:82:43:b1:7d:a0:f0:9d: 67:19:4f:d4:0a:09:22:81:b3:a3:9d:bd:8e:b8:6e: 28:67:8d:c5:e5:a6:44:15:48:0e:1c:f4:25:a7:52: 57:87:21:b5:9e:a5:14:7c:8f:c6:d9:3f:29:61:47: 0a:dc:1b:3f:56:b3:5f:ea:30:d0:f2:64:44:29:c8: 29:a2:3c:dc:06:d3:e4:5b:ea:1e:43:97:25:fe:fa: 48:98:66:40:37:85:56:8b:35:33:c7:a6:6e:79:83: 51:61:7f:3f:19:04:06:18:8c:e4:2f:12:4b:30:f7: c8:df:ec:75:a8:6a:40:fa:c8:87:43:51:93:d5:56: 76:7c:ba:1c:3a:b0:6a:8b:af:fe:b2:cf:ee:ab:d2: 18:61:8e:f5:54:d3:51:72:1a:94:f4:d8:37:6d:c4: f2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AB:43:E8:8C:8E:25:F5:CB:16:CA:3E:A1:03:5D:90:76:74:07:90 X509v3 Authority Key Identifier: keyid:E9:FC:6C:81:66:3C:F6:FC:E9:2E:83:E5:D6:62:8B:C0:EB:6A:94:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6fxsgWY89vzpLoPl1mKLwOtqlNI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b8cc4-5fc2-4f26-8045-50ef726a9136/1/vatD6IyOJfXLFso-oQNdkHZ0B5A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b8cc4-5fc2-4f26-8045-50ef726a9136/1/6fxsgWY89vzpLoPl1mKLwOtqlNI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.237.54.0/23 176.111.248.0/21 Signature Algorithm: sha256WithRSAEncryption 46:1e:76:3e:61:57:5b:05:3e:a3:92:c9:d0:75:0c:92:48:ef: c9:c7:66:81:d4:43:9c:4b:43:6e:25:f0:7f:25:3b:c8:6a:1b: cd:6b:9d:d1:d1:55:8e:ab:ad:ed:79:f2:90:22:ed:19:54:18: 90:d3:02:a0:93:1c:69:2e:98:13:ad:29:6a:14:dd:a4:b8:73: de:13:56:07:f6:06:8e:65:58:e0:d3:0f:97:fb:3c:54:62:22: aa:a3:e5:b5:e7:dd:c1:dc:78:c0:7b:c9:34:9d:6e:31:0c:18: 2a:11:22:b5:8b:7d:08:c9:53:7f:0b:7b:bc:fe:89:86:c3:e8: 2f:9f:bd:d0:e7:fb:f5:a0:97:b5:28:29:77:5c:62:93:4f:9e: 0e:33:d2:6d:fc:9e:1c:b5:fd:55:a4:ed:2d:d8:7d:05:2f:18: 1f:e2:54:b2:0d:47:2f:bc:d1:9a:f5:bc:46:16:0c:3d:4b:9b: 4a:62:ed:c1:6f:06:81:f7:4c:2b:d6:e7:8a:32:9d:13:d7:e3: 5c:d3:22:03:37:7a:88:5d:78:85:3d:8a:2f:8c:86:61:60:f4: b3:a9:d4:05:a1:8c:7a:42:40:3e:1b:be:81:87:27:8c:03:d4: e5:7e:a9:3c:de:ee:65:71:22:cc:b6:95:f7:33:93:0d:1a:e5: 4f:25:1d:b9 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/E5zsDs0fab1cosW3yd4iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5ZmM2YzgxNjYzY2Y2ZmNlOTJlODNlNWQ2NjI4YmMwZWI2 YTk0ZDIwHhcNMjYwMTAyMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGFiNDNlODhjOGUyNWY1Y2IxNmNhM2VhMTAzNWQ5MDc2NzQwNzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkLxyFPftKpvILV4SNmXez59lrgqz hFbp4jGLbhNCKMLy73rmfSY6YnNTtyj2W8JgJdohoqNNFrn48AgdGANsbAonil6E wCDtC0i/DuWNQ/MrUBvW329Wv1b9nowKD/E8ZoJDsX2g8J1nGU/UCgkigbOjnb2O uG4oZ43F5aZEFUgOHPQlp1JXhyG1nqUUfI/G2T8pYUcK3Bs/VrNf6jDQ8mREKcgp ojzcBtPkW+oeQ5cl/vpImGZAN4VWizUzx6ZueYNRYX8/GQQGGIzkLxJLMPfI3+x1 qGpA+siHQ1GT1VZ2fLocOrBqi6/+ss/uq9IYYY71VNNRchqU9Ng3bcTygwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFL2rQ+iMjiX1yxbKPqEDXZB2dAeQMB8GA1UdIwQY MBaAFOn8bIFmPPb86S6D5dZii8DrapTSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmZ4c2dXWTg5dnpwTG9QbDFtS0x3T3RxbE5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC80YjhjYzQtNWZjMi00ZjI2LTgwNDUt NTBlZjcyNmE5MTM2LzEvdmF0RDZJeU9KZlhMRnNvLW9RTmRrSFowQjVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC80YjhjYzQtNWZjMi00ZjI2LTgwNDUtNTBlZjcyNmE5MTM2 LzEvNmZ4c2dXWTg5dnpwTG9QbDFtS0x3T3RxbE5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW+02AwQD sG/4MA0GCSqGSIb3DQEBCwUAA4IBAQBGHnY+YVdbBT6jksnQdQySSO/Jx2aB1EOc S0NuJfB/JTvIahvNa53R0VWOq63tefKQIu0ZVBiQ0wKgkxxpLpgTrSlqFN2kuHPe E1YH9gaOZVjg0w+X+zxUYiKqo+W1593B3HjAe8k0nW4xDBgqESK1i30IyVN/C3u8 /omGw+gvn73Q5/v1oJe1KCl3XGKTT54OM9Jt/J4ctf1VpO0t2H0FLxgf4lSyDUcv vNGa9bxGFgw9S5tKYu3BbwaB90wr1ueKMp0T1+Nc0yIDN3qIXXiFPYovjIZhYPSz qdQFoYx6QkA+G76BhyeMA9Tlfqk83u5lcSLMtpX3M5MNGuVPJR25 -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:01 2026 by rpki-client