This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/VQMozEw5e5cFbAbax7TNnFtChpk.roa File: VQMozEw5e5cFbAbax7TNnFtChpk.roa (raw, json) Hash identifier: kcI4JK6ZQqSjrwXa7nCut12JkcTP0x/T3dN3B6kDSUw= Subject key identifier: 55:03:28:CC:4C:39:7B:97:05:6C:06:DA:C7:B4:CD:9C:5B:42:86:99 Certificate issuer: /CN=aae89bc3097768acd67c2dd747d3be1adb72e997 Certificate serial: 019B7C804CF642C37E6B15315F1FE4E49755 Authority key identifier: AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/VQMozEw5e5cFbAbax7TNnFtChpk.roa Signing time: Fri 02 Jan 2026 02:19:01 +0000 ROA not before: Fri 02 Jan 2026 02:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41656 IP address blocks: 91.200.73.0/24 maxlen: 24 194.145.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.mft rsync://rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:4c:f6:42:c3:7e:6b:15:31:5f:1f:e4:e4:97:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aae89bc3097768acd67c2dd747d3be1adb72e997 Validity Not Before: Jan 2 02:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=550328cc4c397b97056c06dac7b4cd9c5b428699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:55:5d:f6:ea:c6:da:fe:36:3b:57:ef:94:a1: 4e:02:6e:61:1d:07:ef:ec:54:d4:ba:21:cd:83:b1: 1e:bc:03:78:82:f5:50:12:09:0e:95:90:48:fa:e6: 1c:3f:27:63:a4:83:ab:ec:aa:ce:09:b3:ac:4c:82: 7e:cd:8a:dc:cd:65:39:f7:66:77:e9:09:d1:f5:be: 47:d9:f8:17:8c:58:15:fe:9a:48:f3:30:37:be:4e: 71:82:03:5c:84:26:2e:de:61:37:b1:ee:94:ad:3c: 0c:98:f5:f8:40:24:03:2c:3a:2d:32:e9:f9:2d:d9: 5d:b4:2d:4c:20:9e:dd:c4:ba:23:cc:f8:a4:28:44: 33:03:20:d0:45:90:d2:cb:2a:57:ae:91:ac:d0:40: 9d:40:a6:42:3c:97:9f:10:a7:33:eb:13:3e:79:d8: a4:39:62:e5:29:83:50:6e:a4:21:d1:7a:c7:07:74: 0b:f3:b8:27:35:4e:29:76:7a:10:e2:0d:b9:d2:5f: 09:ca:22:29:d6:5d:38:fb:52:5e:61:d2:8d:70:f7: 6a:28:b1:c6:f9:df:57:a0:be:c7:7a:08:33:61:0b: 16:5b:f9:ae:e5:74:de:7a:45:75:68:54:7d:29:b9: 59:e3:8f:21:95:8f:95:7d:ba:b4:fa:8e:bb:bb:a2: 9d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:03:28:CC:4C:39:7B:97:05:6C:06:DA:C7:B4:CD:9C:5B:42:86:99 X509v3 Authority Key Identifier: keyid:AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/VQMozEw5e5cFbAbax7TNnFtChpk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.200.73.0/24 194.145.203.0/24 Signature Algorithm: sha256WithRSAEncryption 19:6a:e0:a8:63:a6:98:37:ae:39:02:fd:c6:6f:25:0b:27:1a: f9:96:df:ee:3b:94:46:de:75:0c:1f:f7:a9:95:96:44:5d:ce: 21:6a:66:54:0f:a9:15:09:10:fb:26:7a:70:ec:7c:ed:0d:9f: dc:3f:ed:4d:d8:f0:32:a7:a8:3c:7a:0d:e1:c7:34:cb:16:b3: 76:68:b2:42:b5:3f:73:2e:78:cd:5b:4f:30:1d:29:49:60:69: b4:c9:8b:0e:04:b1:8d:4d:ce:5e:bb:ef:40:4f:f0:fa:73:5b: c6:19:d5:03:4f:0b:a8:45:2a:f0:1e:13:97:41:11:cf:aa:55: dd:ef:e3:57:78:7b:cf:86:f0:4f:21:f4:aa:cb:3c:36:f2:a9: 30:4c:9b:a2:16:16:58:dd:d5:13:ad:4a:b4:58:2a:c9:52:b9: 90:28:66:a3:d6:f3:a5:a9:88:96:1b:8d:5a:bf:ca:29:1c:f9: 50:eb:e7:77:dd:dd:01:be:42:26:12:fd:da:6c:bf:ed:3a:13: 22:a7:2a:8b:dd:69:63:3a:54:6a:d2:83:ab:20:2a:58:f2:77: e7:85:7b:6a:c3:68:a5:45:ea:68:5f:13:19:3a:d2:ec:a4:14: 03:14:94:67:6b:da:83:7c:94:2b:02:c2:a5:54:5c:de:21:1c: 79:62:b4:35 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gEz2QsN+axUxXx/k5JdVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhZTg5YmMzMDk3NzY4YWNkNjdjMmRkNzQ3ZDNiZTFhZGI3 MmU5OTcwHhcNMjYwMTAyMDIxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTAzMjhjYzRjMzk3Yjk3MDU2YzA2ZGFjN2I0Y2Q5YzViNDI4Njk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1Vd9urG2v42O1fvlKFOAm5hHQfv 7FTUuiHNg7EevAN4gvVQEgkOlZBI+uYcPydjpIOr7KrOCbOsTIJ+zYrczWU592Z3 6QnR9b5H2fgXjFgV/ppI8zA3vk5xggNchCYu3mE3se6UrTwMmPX4QCQDLDotMun5 LdldtC1MIJ7dxLojzPikKEQzAyDQRZDSyypXrpGs0ECdQKZCPJefEKcz6xM+edik OWLlKYNQbqQh0XrHB3QL87gnNU4pdnoQ4g250l8JyiIp1l04+1JeYdKNcPdqKLHG +d9XoL7HeggzYQsWW/mu5XTeekV1aFR9KblZ448hlY+Vfbq0+o67u6Kd4wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFUDKMxMOXuXBWwG2se0zZxbQoaZMB8GA1UdIwQY MBaAFKrom8MJd2is1nwt10fTvhrbcumXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXVpYnd3bDNhS3pXZkMzWFI5Ty1HdHR5NlpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zMmU2NTAtMGNlYy00MjYyLWJjOTMt ZTNkZDc3NjQ4OWExLzEvVlFNb3pFdzVlNWNGYkFiYXg3VE5uRnRDaHBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zMmU2NTAtMGNlYy00MjYyLWJjOTMtZTNkZDc3NjQ4OWEx LzEvcXVpYnd3bDNhS3pXZkMzWFI5Ty1HdHR5NlpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW8hJAwQA wpHLMA0GCSqGSIb3DQEBCwUAA4IBAQAZauCoY6aYN645Av3GbyULJxr5lt/uO5RG 3nUMH/eplZZEXc4hamZUD6kVCRD7Jnpw7HztDZ/cP+1N2PAyp6g8eg3hxzTLFrN2 aLJCtT9zLnjNW08wHSlJYGm0yYsOBLGNTc5eu+9AT/D6c1vGGdUDTwuoRSrwHhOX QRHPqlXd7+NXeHvPhvBPIfSqyzw28qkwTJuiFhZY3dUTrUq0WCrJUrmQKGaj1vOl qYiWG41av8opHPlQ6+d33d0BvkImEv3abL/tOhMipyqL3WljOlRq0oOrICpY8nfn hXtqw2ilRepoXxMZOtLspBQDFJRna9qDfJQrAsKlVFzeIRx5YrQ1 -----END CERTIFICATE-----Generated at Mon Jan 26 10:23:07 2026 by rpki-client