This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/vt0ElRQTTQDbtawurQTq5naKklI.roa File: vt0ElRQTTQDbtawurQTq5naKklI.roa (raw, json) Hash identifier: sTZaSlh1WeFZN4xDhr5tgce7SkNVNhyZN7/S1+Uq2OY= Subject key identifier: BE:DD:04:95:14:13:4D:00:DB:B5:AC:2E:AD:04:EA:E6:76:8A:92:52 Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339 Certificate serial: 019B76EB14B785B5AC21547BB7FDC4B2A325 Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/vt0ElRQTTQDbtawurQTq5naKklI.roa Signing time: Thu 01 Jan 2026 00:17:56 +0000 ROA not before: Thu 01 Jan 2026 00:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 174 IP address blocks: 91.108.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.mft rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 00:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:14:b7:85:b5:ac:21:54:7b:b7:fd:c4:b2:a3:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339 Validity Not Before: Jan 1 00:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bedd049514134d00dbb5ac2ead04eae6768a9252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:32:1f:8b:fb:fd:0c:e7:c4:ed:fb:4b:a5:91: ec:50:f8:f5:0f:53:e9:e9:81:49:de:f1:a4:af:db: 0c:53:60:71:5e:33:c5:a6:78:a0:0e:32:6c:90:2b: 87:9a:12:63:38:3c:b2:58:d6:30:92:7e:63:b1:80: 76:f2:1b:0b:9f:7f:f1:5b:8b:bf:da:5b:b6:24:0c: c4:62:7f:6a:c0:7e:6b:7d:df:2b:0b:61:34:d2:ca: 2e:93:dc:03:5a:df:7c:d2:d6:1b:60:f6:54:89:af: 4f:47:6e:9d:12:8f:b6:4f:5c:53:7b:08:90:cd:4d: 1f:f1:26:25:80:87:b3:18:2d:e8:c0:8c:13:2d:4b: 66:e3:67:6d:10:18:db:58:7f:d5:cb:87:97:33:1a: 6f:fb:6f:80:c7:df:ab:b1:2a:8e:1c:29:04:79:c4: 93:f9:0f:df:6c:09:07:4c:bb:ea:55:cf:56:98:03: 95:19:22:d0:85:20:ad:51:ae:de:df:ef:a2:5f:e1: bb:09:2e:d2:9e:f7:f3:93:cd:4a:c8:27:52:47:ef: 9d:e9:d7:f6:57:08:e5:f3:c5:c3:08:dd:95:19:92: 53:7d:6c:28:73:43:5d:d5:bd:a3:b1:0b:49:28:28: aa:d3:e3:ec:d7:a0:a8:e3:02:a6:8e:7f:34:73:95: b4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DD:04:95:14:13:4D:00:DB:B5:AC:2E:AD:04:EA:E6:76:8A:92:52 X509v3 Authority Key Identifier: keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/vt0ElRQTTQDbtawurQTq5naKklI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.108.242.0/24 Signature Algorithm: sha256WithRSAEncryption 52:96:c8:b0:e5:44:77:ca:b6:66:9e:f4:dc:52:71:6a:73:41: 74:8f:28:c6:92:6c:07:4a:52:2d:33:38:cd:b2:12:e4:e1:95: 6d:2a:b1:44:5c:e0:17:d3:c5:7c:97:dc:ec:87:98:4d:7d:d2: fa:1e:64:b1:a5:fb:4c:72:7a:68:c4:93:8d:e9:1a:94:fc:05: 36:07:f0:41:e7:47:8c:cb:8a:d4:2b:60:c8:48:79:c0:a3:02: 23:6b:b8:8f:4b:cd:e3:4b:0c:ca:11:de:95:81:03:62:b6:ce: 90:e4:2a:50:00:41:ce:da:f4:72:8b:45:26:14:80:d4:ab:31: b5:71:7b:2f:f6:5f:c2:20:3d:87:84:68:b2:20:16:34:c3:c9: 61:64:12:04:aa:a6:18:f8:ae:4e:c1:43:0a:96:a5:52:38:89: 7b:1f:de:db:b4:23:53:3a:1c:15:1c:55:7d:9e:d4:f9:a5:2d: d6:6e:f2:d1:2b:ff:aa:07:a1:2b:32:21:0c:1e:b1:ae:a8:0d: c4:fd:38:44:9d:7b:43:ac:07:be:85:fe:35:22:2c:e0:a8:25: 39:eb:27:2c:12:ef:05:53:8d:1c:20:09:2e:49:fc:04:80:c9: 4e:c4:39:ea:f7:4c:2c:9b:bf:af:71:1a:11:58:d8:00:59:77: cb:ca:68:a6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26xS3hbWsIVR7t/3EsqMlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZWU0NTQyNmUxMmU1MGZlMzBlOGZmYzM5ZTA0NDg1ZDhm NzMzMzkwHhcNMjYwMTAxMDAxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWRkMDQ5NTE0MTM0ZDAwZGJiNWFjMmVhZDA0ZWFlNjc2OGE5MjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjIfi/v9DOfE7ftLpZHsUPj1D1Pp 6YFJ3vGkr9sMU2BxXjPFpnigDjJskCuHmhJjODyyWNYwkn5jsYB28hsLn3/xW4u/ 2lu2JAzEYn9qwH5rfd8rC2E00souk9wDWt980tYbYPZUia9PR26dEo+2T1xTewiQ zU0f8SYlgIezGC3owIwTLUtm42dtEBjbWH/Vy4eXMxpv+2+Ax9+rsSqOHCkEecST +Q/fbAkHTLvqVc9WmAOVGSLQhSCtUa7e3++iX+G7CS7Snvfzk81KyCdSR++d6df2 Vwjl88XDCN2VGZJTfWwoc0Nd1b2jsQtJKCiq0+Ps16Co4wKmjn80c5W0lwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL7dBJUUE00A27WsLq0E6uZ2ipJSMB8GA1UdIwQY MBaAFMLuRUJuEuUP4w6P/DngRIXY9zM5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUt ZGE3NTQzMGIxNmY2LzEvdnQwRWxSUVRUUURidGF3dXJRVHE1bmFLa2xJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUtZGE3NTQzMGIxNmY2 LzEvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW2zyMA0G CSqGSIb3DQEBCwUAA4IBAQBSlsiw5UR3yrZmnvTcUnFqc0F0jyjGkmwHSlItMzjN shLk4ZVtKrFEXOAX08V8l9zsh5hNfdL6HmSxpftMcnpoxJON6RqU/AU2B/BB50eM y4rUK2DISHnAowIja7iPS83jSwzKEd6VgQNits6Q5CpQAEHO2vRyi0UmFIDUqzG1 cXsv9l/CID2HhGiyIBY0w8lhZBIEqqYY+K5OwUMKlqVSOIl7H97btCNTOhwVHFV9 ntT5pS3WbvLRK/+qB6ErMiEMHrGuqA3E/ThEnXtDrAe+hf41IizgqCU56ycsEu8F U40cIAkuSfwEgMlOxDnq90wsm7+vcRoRWNgAWXfLymim -----END CERTIFICATE-----Generated at Thu Jan 1 07:05:45 2026 by rpki-client