This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/pVK-BRQ98HDM69ZQ63Bm0uZRCXs.roa File: pVK-BRQ98HDM69ZQ63Bm0uZRCXs.roa (raw, json) Hash identifier: jvRqREvNlJK1CxR23zptuMNPkMy0b8MVlSlIgEiP7u0= Subject key identifier: A5:52:BE:05:14:3D:F0:70:CC:EB:D6:50:EB:70:66:D2:E6:51:09:7B Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019B77C6B0769745FA03CF0DB4BB0A169328 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/pVK-BRQ98HDM69ZQ63Bm0uZRCXs.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204916 IP address blocks: 2a14:a403::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b0:76:97:45:fa:03:cf:0d:b4:bb:0a:16:93:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a552be05143df070ccebd650eb7066d2e651097b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:84:e2:49:3d:fc:c3:50:1a:ac:de:41:a8:f7: 01:b2:42:06:fb:ab:6a:4a:7b:72:93:52:c3:dc:31: 0d:d5:06:57:57:63:f0:3a:a4:e9:c0:cd:52:53:3f: 88:73:eb:c5:ce:7e:b4:63:fa:d4:55:a6:15:d3:7e: 6d:ab:32:f3:79:e2:19:53:a6:75:b1:28:7c:93:b6: 56:a8:e8:d8:f5:b2:6c:89:3a:c8:74:ab:76:c5:23: ed:f0:71:b9:62:fb:ec:0a:6d:4f:52:66:01:24:be: 7b:6b:1b:ce:c2:11:d5:57:dc:69:d4:c3:4b:d9:11: fd:d2:4b:00:a0:12:32:70:88:ac:d2:e0:fd:c5:2f: 70:b5:35:1e:03:ac:f1:fc:02:19:8f:8d:49:0c:c4: a8:e3:2d:3e:a5:35:46:ea:91:86:6c:96:8b:4e:29: 27:20:a5:d5:b3:90:b9:2f:73:08:2f:36:33:7c:cf: 23:f8:7f:27:bf:9e:6c:1d:00:e3:db:55:ab:aa:a9: 27:c8:3b:30:7e:cc:d5:bb:b5:4b:ff:40:4d:be:7c: 43:65:46:1f:c7:ad:b1:b4:58:6b:1b:5f:ef:f1:38: 93:71:d8:31:0a:0f:d7:cc:0a:fe:5a:f0:30:c4:90: 8d:48:db:48:0e:be:8e:31:e2:98:28:4f:c7:87:2f: 0b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:52:BE:05:14:3D:F0:70:CC:EB:D6:50:EB:70:66:D2:E6:51:09:7B X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/pVK-BRQ98HDM69ZQ63Bm0uZRCXs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:a403::/32 Signature Algorithm: sha256WithRSAEncryption a9:e5:e0:c6:c1:6a:b4:a2:ee:35:95:6f:1a:94:f8:8a:2f:0d: 67:ad:9b:e8:c2:03:4c:34:6d:91:74:73:47:4c:a6:18:b2:30: 03:a1:11:01:f2:32:71:51:4c:a2:3f:0e:08:90:26:00:6d:6c: 29:a1:3c:79:51:62:db:07:f9:69:30:f8:1b:b6:f1:1a:90:ca: a1:0d:03:4a:6a:d6:58:e4:59:37:d5:76:3b:b3:91:4f:37:65: a0:54:55:ce:c0:ff:a4:33:80:be:1d:40:31:08:e2:4e:70:36: 90:ec:58:8a:2f:eb:6f:3c:d1:d9:eb:0d:9c:0b:dd:1d:f9:35: 58:a5:45:82:a5:6c:41:22:d8:51:db:64:c8:3a:31:08:f1:6a: 24:3e:4c:f7:0b:2c:32:4a:58:fb:ec:33:2e:b5:eb:68:23:d3: f8:16:bd:d7:59:0b:d8:96:af:48:62:0f:bd:63:10:61:52:87: 06:83:be:18:ce:58:7f:a0:9a:87:75:4f:de:f1:fc:a3:a5:6e: da:81:1e:78:04:e8:bc:f0:25:70:f9:7e:71:bf:5f:88:db:9f: aa:84:f9:22:d7:cd:7d:26:93:b2:a4:82:39:7b:f6:67:a3:12: 6b:72:9c:71:a0:7d:51:7b:28:0b:b0:73:41:c1:6b:0b:31:0a: 6f:81:ef:51 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3xrB2l0X6A88NtLsKFpMoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTUyYmUwNTE0M2RmMDcwY2NlYmQ2NTBlYjcwNjZkMmU2NTEwOTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6YTiST38w1AarN5BqPcBskIG+6tq Sntyk1LD3DEN1QZXV2PwOqTpwM1SUz+Ic+vFzn60Y/rUVaYV035tqzLzeeIZU6Z1 sSh8k7ZWqOjY9bJsiTrIdKt2xSPt8HG5YvvsCm1PUmYBJL57axvOwhHVV9xp1MNL 2RH90ksAoBIycIis0uD9xS9wtTUeA6zx/AIZj41JDMSo4y0+pTVG6pGGbJaLTikn IKXVs5C5L3MILzYzfM8j+H8nv55sHQDj21WrqqknyDswfszVu7VL/0BNvnxDZUYf x62xtFhrG1/v8TiTcdgxCg/XzAr+WvAwxJCNSNtIDr6OMeKYKE/Hhy8LTwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFKVSvgUUPfBwzOvWUOtwZtLmUQl7MB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvcFZLLUJSUTk4SERNNjlaUTYzQm0wdVpSQ1hzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhSkAzAN BgkqhkiG9w0BAQsFAAOCAQEAqeXgxsFqtKLuNZVvGpT4ii8NZ62b6MIDTDRtkXRz R0ymGLIwA6ERAfIycVFMoj8OCJAmAG1sKaE8eVFi2wf5aTD4G7bxGpDKoQ0DSmrW WORZN9V2O7ORTzdloFRVzsD/pDOAvh1AMQjiTnA2kOxYii/rbzzR2esNnAvdHfk1 WKVFgqVsQSLYUdtkyDoxCPFqJD5M9wssMkpY++wzLrXraCPT+Ba911kL2JavSGIP vWMQYVKHBoO+GM5Yf6Cah3VP3vH8o6Vu2oEeeATovPAlcPl+cb9fiNufqoT5ItfN fSaTsqSCOXv2Z6MSa3KccaB9UXsoC7BzQcFrCzEKb4HvUQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:27 2026 by rpki-client