This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/vagnBvJ7GZHzOrybHsBa0u1gBGs.roa File: vagnBvJ7GZHzOrybHsBa0u1gBGs.roa (raw, json) Hash identifier: AHj1V+feefzLimbaTSC6tcBNqcISih6luVdAk+cmYzE= Subject key identifier: BD:A8:27:06:F2:7B:19:91:F3:3A:BC:9B:1E:C0:5A:D2:ED:60:04:6B Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba Certificate serial: 019B79ECC1F14053F13C39356F2CCFDD8262 Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/vagnBvJ7GZHzOrybHsBa0u1gBGs.roa Signing time: Thu 01 Jan 2026 14:18:37 +0000 ROA not before: Thu 01 Jan 2026 14:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41966 IP address blocks: 109.206.192.0/19 maxlen: 24 185.20.172.0/22 maxlen: 24 194.11.24.0/24 maxlen: 24 194.153.119.0/24 maxlen: 24 2a00:54c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c1:f1:40:53:f1:3c:39:35:6f:2c:cf:dd:82:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba Validity Not Before: Jan 1 14:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bda82706f27b1991f33abc9b1ec05ad2ed60046b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fe:96:6a:c3:2e:5c:11:43:a2:b4:da:d8:08: 6c:db:af:d8:9a:d2:60:98:74:57:dc:71:33:40:24: e2:75:68:a7:b3:cf:90:aa:05:70:aa:87:a4:a0:e5: 24:f8:75:fb:d1:ae:3e:f1:48:06:b5:21:1d:ff:9d: c7:16:59:49:ec:d6:7c:0e:6e:fd:d9:46:cf:67:e5: b5:e9:e0:3f:55:7a:a1:8c:5c:3f:79:57:44:94:23: 53:e9:77:93:90:4f:fd:5e:84:cd:1b:ea:44:4c:7c: aa:fa:5e:ed:34:27:b0:fe:61:d8:4b:b8:1f:cf:d3: fe:d1:06:95:72:47:20:1a:8b:7a:82:32:b8:2c:71: 29:2e:a4:09:fa:84:24:88:45:00:01:8a:ac:94:63: cc:c7:25:61:55:19:c2:cb:bf:ec:33:fa:73:6b:df: 16:49:ac:d2:89:74:42:f8:ca:65:b0:d4:50:57:59: e3:30:27:8f:29:4e:be:2d:fc:ee:17:52:6f:2c:8c: 6d:2b:f8:53:fb:4c:26:9b:41:86:24:b8:d6:7f:99: 96:ed:8d:cc:aa:48:ee:9d:d2:89:f3:fe:ac:18:5e: 06:46:ab:c3:67:c2:89:e7:bf:28:20:44:a7:e2:65: 1c:db:8d:da:37:60:f6:31:6a:d4:38:69:ac:44:80: c5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A8:27:06:F2:7B:19:91:F3:3A:BC:9B:1E:C0:5A:D2:ED:60:04:6B X509v3 Authority Key Identifier: keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/vagnBvJ7GZHzOrybHsBa0u1gBGs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.206.192.0/19 185.20.172.0/22 194.11.24.0/24 194.153.119.0/24 IPv6: 2a00:54c0::/32 Signature Algorithm: sha256WithRSAEncryption 1a:d2:d3:b3:33:6e:4e:15:ec:af:35:d2:12:1d:24:33:29:f3: 53:b8:51:d1:2d:e3:b5:2d:14:04:e1:38:7b:ea:32:5a:48:02: b2:2a:22:49:61:6b:72:ff:81:e7:85:22:c8:07:be:b0:97:69: 59:f8:a0:1d:93:c4:bc:52:56:fa:fb:64:fe:ca:d1:9b:b9:18: 6b:92:a8:d4:e9:64:11:ae:6f:41:df:57:b8:0d:82:27:14:35: 25:aa:d3:dc:19:cb:4f:c5:5d:f2:08:d8:8c:dc:14:22:f0:f5: 40:8a:fb:58:1c:ec:00:28:1f:fb:ae:2f:2f:aa:fd:8f:2c:53: d8:e0:5e:1b:c4:68:9a:c9:17:07:74:d6:ed:f9:8e:c9:5d:94: 2e:31:ea:a5:ae:a1:94:34:61:41:a8:28:ad:75:85:05:c4:92: 51:0d:c2:a2:25:80:9c:79:60:14:b2:32:85:44:fc:fa:41:5b: c7:41:a0:b0:1b:eb:fb:a9:92:70:b3:a7:ba:0b:db:cd:30:de: 80:61:d0:b4:08:ae:42:bf:f7:0a:95:15:53:49:c3:fe:bc:5c: 41:1d:78:21:82:d8:75:f8:d6:be:62:25:28:f5:b7:db:24:20: 2e:59:56:9e:03:a1:c0:b1:fd:df:e7:5f:bd:d7:f4:46:c2:a2: 3a:29:13:ce -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt57MHxQFPxPDk1byzP3YJiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1ODVlNWUxNWFhMzQyODdjYWU0MzY4Y2I1OGU3MjI3ZmQ4 N2VjYmEwHhcNMjYwMTAxMTQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGE4MjcwNmYyN2IxOTkxZjMzYWJjOWIxZWMwNWFkMmVkNjAwNDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzf6WasMuXBFDorTa2Ahs26/YmtJg mHRX3HEzQCTidWins8+QqgVwqoekoOUk+HX70a4+8UgGtSEd/53HFllJ7NZ8Dm79 2UbPZ+W16eA/VXqhjFw/eVdElCNT6XeTkE/9XoTNG+pETHyq+l7tNCew/mHYS7gf z9P+0QaVckcgGot6gjK4LHEpLqQJ+oQkiEUAAYqslGPMxyVhVRnCy7/sM/pza98W SazSiXRC+MplsNRQV1njMCePKU6+LfzuF1JvLIxtK/hT+0wmm0GGJLjWf5mW7Y3M qkjundKJ8/6sGF4GRqvDZ8KJ578oIESn4mUc243aN2D2MWrUOGmsRIDFYwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFL2oJwbyexmR8zq8mx7AWtLtYARrMB8GA1UdIwQY MBaAFKWF5eFao0KHyuQ2jLWOcif9h+y6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgt YTllN2IzNDNiYzY2LzEvdmFnbkJ2SjdHWkh6T3J5YkhzQmEwdTFnQkdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgtYTllN2IzNDNiYzY2 LzEvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQFbc7AAwQC uRSsAwQAwgsYAwQAwpl3MA0EAgACMAcDBQAqAFTAMA0GCSqGSIb3DQEBCwUAA4IB AQAa0tOzM25OFeyvNdISHSQzKfNTuFHRLeO1LRQE4Th76jJaSAKyKiJJYWty/4Hn hSLIB76wl2lZ+KAdk8S8Ulb6+2T+ytGbuRhrkqjU6WQRrm9B31e4DYInFDUlqtPc GctPxV3yCNiM3BQi8PVAivtYHOwAKB/7ri8vqv2PLFPY4F4bxGiayRcHdNbt+Y7J XZQuMeqlrqGUNGFBqCitdYUFxJJRDcKiJYCceWAUsjKFRPz6QVvHQaCwG+v7qZJw s6e6C9vNMN6AYdC0CK5Cv/cKlRVTScP+vFxBHXghgth1+Na+YiUo9bfbJCAuWVae A6HAsf3f51+91/RGwqI6KRPO -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:16 2026 by rpki-client