This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/VKUDHCvlmcIYzEGkxwedlbEe9nQ.roa File: VKUDHCvlmcIYzEGkxwedlbEe9nQ.roa (raw, json) Hash identifier: tFw/0Vxd694kI0nU/bUko3Cq/RqaULhTbo0IINuIfKk= Subject key identifier: 54:A5:03:1C:2B:E5:99:C2:18:CC:41:A4:C7:07:9D:95:B1:1E:F6:74 Certificate issuer: /CN=3ee770f47fd903925d80ac58e05e076f3baa110b Certificate serial: 019B79105F6D35863A47661A5F035E14ADC4 Authority key identifier: 3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/VKUDHCvlmcIYzEGkxwedlbEe9nQ.roa Signing time: Thu 01 Jan 2026 10:17:54 +0000 ROA not before: Thu 01 Jan 2026 10:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 2a00:fbe0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.mft rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:5f:6d:35:86:3a:47:66:1a:5f:03:5e:14:ad:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee770f47fd903925d80ac58e05e076f3baa110b Validity Not Before: Jan 1 10:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=54a5031c2be599c218cc41a4c7079d95b11ef674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:26:94:29:df:92:5a:f4:ba:ec:9f:41:9e:95: 20:f3:3e:03:84:6d:5e:02:6a:81:cd:f2:02:59:eb: f8:e3:d9:f3:6d:cb:87:a5:e2:c9:61:de:30:07:82: 34:72:db:bf:a9:60:03:10:aa:e7:be:b4:66:6c:66: 38:c6:0c:2e:96:6f:ca:62:a6:e7:2d:06:7d:7c:cd: 21:a3:5d:0f:0c:c9:1e:4a:99:95:f1:fc:64:4b:cb: 9e:61:dd:8d:2c:ee:2a:8c:a8:f1:53:73:67:c4:a1: 5d:11:ed:17:d9:4a:1f:e0:a9:1c:86:83:af:9e:a7: e8:d4:b5:bb:6c:f1:b3:57:ed:1f:6f:16:70:2b:c6: 51:2c:8b:91:ea:de:b3:02:55:10:c3:b4:ce:9f:d8: 58:7c:8d:4d:a9:20:d5:d2:a3:ac:f1:2b:86:fc:a5: 48:dc:5c:ae:b0:a1:e3:aa:55:de:ac:52:dd:a7:db: e6:3d:1e:a5:cf:46:2d:9e:d2:31:99:e0:05:ef:4a: 59:b8:ca:c8:d8:e2:d2:13:ae:f6:63:d4:08:af:d5: b6:fb:f6:c1:a0:32:93:a9:a2:6d:9e:47:10:e7:46: da:c4:ce:38:e3:24:6e:04:5e:25:79:e5:67:05:11: b7:ff:03:73:e4:6b:93:7c:cc:16:34:75:91:d3:ec: 33:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A5:03:1C:2B:E5:99:C2:18:CC:41:A4:C7:07:9D:95:B1:1E:F6:74 X509v3 Authority Key Identifier: keyid:3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/VKUDHCvlmcIYzEGkxwedlbEe9nQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:fbe0::/29 Signature Algorithm: sha256WithRSAEncryption 42:69:e1:56:e4:c9:28:6d:7a:51:45:c2:61:fa:6c:04:c7:68: 70:53:75:95:4e:db:4c:b6:ad:ab:5a:98:35:aa:98:1d:2f:ff: a4:80:ca:83:77:fc:8d:a7:8f:54:a5:49:69:5f:6b:34:8d:c5: d7:ca:96:c0:d0:93:0c:65:7c:bc:02:91:02:ca:f1:68:eb:a5: 81:95:ec:8b:3c:5d:77:3b:ac:70:05:9e:60:e4:0b:b9:e5:1f: 8c:fe:a2:91:42:4e:d4:35:3c:45:fa:55:f6:91:8b:e4:cb:01: ef:7d:7c:9f:a5:be:b3:c3:24:c5:a8:3e:94:2d:b5:72:a1:03: 94:ce:0f:dc:24:f3:36:86:89:45:a8:a0:1d:f2:97:11:6b:b6: 16:c2:04:4e:85:36:74:a7:4d:fa:08:86:25:41:7e:6a:3d:a0: 33:7e:96:40:a7:6d:56:20:75:e2:56:6a:cf:c5:c8:3e:c7:29: 00:0c:81:83:a6:7a:1e:a9:9b:0a:c3:ab:e9:d9:49:40:e8:c1: b1:6e:ee:dc:f0:e1:ad:79:b3:97:6b:06:d9:0f:bb:d6:55:b5: e6:fe:a7:a9:33:51:38:68:78:f9:d2:c6:d7:84:e8:10:8c:19: 9d:18:8e:c0:bb:81:a2:6c:b4:a2:f7:a0:06:04:bb:22:3b:8d: f4:82:97:35 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5EF9tNYY6R2YaXwNeFK3EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTc3MGY0N2ZkOTAzOTI1ZDgwYWM1OGUwNWUwNzZmM2Jh YTExMGIwHhcNMjYwMTAxMTAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NGE1MDMxYzJiZTU5OWMyMThjYzQxYTRjNzA3OWQ5NWIxMWVmNjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCaUKd+SWvS67J9BnpUg8z4DhG1e AmqBzfICWev449nzbcuHpeLJYd4wB4I0ctu/qWADEKrnvrRmbGY4xgwulm/KYqbn LQZ9fM0ho10PDMkeSpmV8fxkS8ueYd2NLO4qjKjxU3NnxKFdEe0X2Uof4KkchoOv nqfo1LW7bPGzV+0fbxZwK8ZRLIuR6t6zAlUQw7TOn9hYfI1NqSDV0qOs8SuG/KVI 3FyusKHjqlXerFLdp9vmPR6lz0YtntIxmeAF70pZuMrI2OLSE672Y9QIr9W2+/bB oDKTqaJtnkcQ50baxM444yRuBF4leeVnBRG3/wNz5GuTfMwWNHWR0+wz6wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFFSlAxwr5ZnCGMxBpMcHnZWxHvZ0MB8GA1UdIwQY MBaAFD7ncPR/2QOSXYCsWOBeB287qhELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTIt NjI0ZjgzNjgyMTY5LzEvVktVREhDdmxtY0lZekVHa3h3ZWRsYkVlOW5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTItNjI0ZjgzNjgyMTY5 LzEvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgD74DAN BgkqhkiG9w0BAQsFAAOCAQEAQmnhVuTJKG16UUXCYfpsBMdocFN1lU7bTLatq1qY NaqYHS//pIDKg3f8jaePVKVJaV9rNI3F18qWwNCTDGV8vAKRAsrxaOulgZXsizxd dzuscAWeYOQLueUfjP6ikUJO1DU8RfpV9pGL5MsB7318n6W+s8Mkxag+lC21cqED lM4P3CTzNoaJRaigHfKXEWu2FsIEToU2dKdN+giGJUF+aj2gM36WQKdtViB14lZq z8XIPscpAAyBg6Z6HqmbCsOr6dlJQOjBsW7u3PDhrXmzl2sG2Q+71lW15v6nqTNR OGh4+dLG14ToEIwZnRiOwLuBomy0ovegBgS7IjuN9IKXNQ== -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:00 2026 by rpki-client