This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/VrDM2BI1C9s6fCkIiFpui_FFW6w.roa File: VrDM2BI1C9s6fCkIiFpui_FFW6w.roa (raw, json) Hash identifier: 5AAv/0r1p/MRwxYoUn7GMVA3VwM7GMZ0us3ja+wlUCs= Subject key identifier: 56:B0:CC:D8:12:35:0B:DB:3A:7C:29:08:88:5A:6E:8B:F1:45:5B:AC Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5 Certificate serial: 019B7C80255337D582C4DD0F741A465E95DC Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/VrDM2BI1C9s6fCkIiFpui_FFW6w.roa Signing time: Fri 02 Jan 2026 02:18:51 +0000 ROA not before: Fri 02 Jan 2026 02:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202888 IP address blocks: 2a0f:7800::/31 maxlen: 48 2a0f:7804::/31 maxlen: 48 2a0f:7806::/31 maxlen: 48 2a0f:7806:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.mft rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:25:53:37:d5:82:c4:dd:0f:74:1a:46:5e:95:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfcead390625edba1408108df57cea47160d70e5 Validity Not Before: Jan 2 02:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=56b0ccd812350bdb3a7c2908885a6e8bf1455bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e2:29:d1:d7:df:ce:e3:46:aa:6f:e5:15:32: 56:a1:7d:f1:8a:97:e5:1f:a3:7b:dc:3a:52:ae:6b: cc:d4:79:9c:9f:0d:03:68:5d:0a:a8:a5:6d:9e:70: ca:7f:6a:fa:7b:95:4e:86:74:09:0a:8a:59:0e:38: 7d:76:f4:9d:cb:7f:26:ab:e1:4a:cb:67:c4:ce:83: 6f:ea:75:78:15:a3:5b:db:7f:d8:d4:de:0e:45:c0: d4:1f:14:f9:58:2c:32:c8:73:36:e3:c4:84:51:bb: 91:10:de:a0:b1:ca:03:c6:61:e5:62:1a:b3:6e:3f: 91:b8:fd:af:98:21:37:e0:ca:99:ea:c0:09:3d:f7: 43:3e:24:b8:d8:4d:c8:28:b0:a4:d1:59:75:13:c3: 6f:b1:79:98:04:94:b9:98:68:56:ee:1c:76:31:07: 9f:f9:02:eb:f4:04:cf:dd:19:81:6f:77:0f:ea:ff: 33:9c:ea:df:6b:a3:c3:eb:e0:cb:7d:c7:dc:7a:e2: c5:ae:55:f4:0c:fe:f7:c9:63:58:f6:05:36:77:df: 20:29:91:37:80:ed:9b:c7:5a:f9:95:cb:05:65:4e: c1:df:db:ea:cd:0f:2a:a2:82:28:fc:e2:92:41:63: df:ae:58:2f:da:25:da:56:4b:4b:7a:0f:c7:f7:66: 1a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B0:CC:D8:12:35:0B:DB:3A:7C:29:08:88:5A:6E:8B:F1:45:5B:AC X509v3 Authority Key Identifier: keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/VrDM2BI1C9s6fCkIiFpui_FFW6w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:7800::/31 2a0f:7804::/30 Signature Algorithm: sha256WithRSAEncryption 6b:a5:b3:7a:70:e4:09:35:9b:c1:bb:aa:31:99:67:7b:56:86: f4:61:43:b7:61:21:b0:be:0d:69:48:80:3c:a8:38:39:2f:c6: a5:62:b8:64:5e:21:a3:c5:22:9a:d8:50:5e:9e:c9:9f:87:05: 8a:c3:46:32:bd:60:ee:83:4b:0d:bd:85:1f:09:5d:95:81:e6: 68:10:f0:50:29:3d:93:17:eb:bc:bd:0a:50:37:40:26:8b:d7: 48:5d:a8:dc:19:c5:4c:60:ab:24:b7:89:18:51:e7:ce:9e:81: 74:13:14:48:dd:35:cd:78:cb:d7:ed:7f:1d:4a:ee:34:5b:f9: 23:26:d9:ce:7f:53:50:b6:79:0c:a7:a8:9d:38:52:63:bf:24: a8:c7:05:3f:54:54:2d:c3:52:15:00:87:87:c8:b2:2e:f6:c9: ec:24:e7:86:97:c7:33:ae:bf:26:94:f5:ff:6e:02:95:03:7d: 7b:4d:d0:cd:d6:5a:0f:77:6e:92:0b:61:6c:cb:0c:86:03:05: 2f:fe:c1:67:59:ca:54:03:7f:42:08:ad:5b:4d:3d:68:d4:2c: 21:73:bb:d9:6e:bd:93:2b:4c:1c:a1:31:e1:a9:0b:83:46:1f: 5a:fa:ca:b0:ac:58:7d:1c:35:c3:a1:fd:b9:1d:30:bd:77:91: 59:c5:c3:b9 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt8gCVTN9WCxN0PdBpGXpXcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmY2VhZDM5MDYyNWVkYmExNDA4MTA4ZGY1N2NlYTQ3MTYw ZDcwZTUwHhcNMjYwMTAyMDIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NmIwY2NkODEyMzUwYmRiM2E3YzI5MDg4ODVhNmU4YmYxNDU1YmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+Ip0dffzuNGqm/lFTJWoX3xipfl H6N73DpSrmvM1Hmcnw0DaF0KqKVtnnDKf2r6e5VOhnQJCopZDjh9dvSdy38mq+FK y2fEzoNv6nV4FaNb23/Y1N4ORcDUHxT5WCwyyHM248SEUbuREN6gscoDxmHlYhqz bj+RuP2vmCE34MqZ6sAJPfdDPiS42E3IKLCk0Vl1E8NvsXmYBJS5mGhW7hx2MQef +QLr9ATP3RmBb3cP6v8znOrfa6PD6+DLfcfceuLFrlX0DP73yWNY9gU2d98gKZE3 gO2bx1r5lcsFZU7B39vqzQ8qooIo/OKSQWPfrlgv2iXaVktLeg/H92YagwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFFawzNgSNQvbOnwpCIhabovxRVusMB8GA1UdIwQY MBaAFM/OrTkGJe26FAgQjfV86kcWDXDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYt ZjViNmE3MThmNGI1LzEvVnJETTJCSTFDOXM2ZkNrSWlGcHVpX0ZGVzZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYtZjViNmE3MThmNGI1 LzEvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUBKg94AAMF AioPeAQwDQYJKoZIhvcNAQELBQADggEBAGuls3pw5Ak1m8G7qjGZZ3tWhvRhQ7dh IbC+DWlIgDyoODkvxqViuGReIaPFIprYUF6eyZ+HBYrDRjK9YO6DSw29hR8JXZWB 5mgQ8FApPZMX67y9ClA3QCaL10hdqNwZxUxgqyS3iRhR586egXQTFEjdNc14y9ft fx1K7jRb+SMm2c5/U1C2eQynqJ04UmO/JKjHBT9UVC3DUhUAh4fIsi72yewk54aX xzOuvyaU9f9uApUDfXtN0M3WWg93bpILYWzLDIYDBS/+wWdZylQDf0IIrVtNPWjU LCFzu9luvZMrTByhMeGpC4NGH1r6yrCsWH0cNcOh/bkdML13kVnFw7k= -----END CERTIFICATE-----Generated at Wed Jan 21 16:59:07 2026 by rpki-client