This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/RVPSSQ_STAwnjwbhc0ZtFnWXlME.roa File: RVPSSQ_STAwnjwbhc0ZtFnWXlME.roa (raw, json) Hash identifier: RI/5deS9UCE1pvE5zocvnVN9prAAZK7M1PVQemjzz0o= Subject key identifier: 45:53:D2:49:0F:D2:4C:0C:27:8F:06:E1:73:46:6D:16:75:97:94:C1 Certificate issuer: /CN=64f47c98440f103825c8ea5074298b18cc113e20 Certificate serial: 019B7D5D0AFA21D852038DEB5FFDBDE5A587 Authority key identifier: 64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/RVPSSQ_STAwnjwbhc0ZtFnWXlME.roa Signing time: Fri 02 Jan 2026 06:20:08 +0000 ROA not before: Fri 02 Jan 2026 06:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204241 IP address blocks: 185.3.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.mft rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:0a:fa:21:d8:52:03:8d:eb:5f:fd:bd:e5:a5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64f47c98440f103825c8ea5074298b18cc113e20 Validity Not Before: Jan 2 06:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4553d2490fd24c0c278f06e173466d16759794c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a9:d8:3c:e9:fa:f3:e3:2a:94:cf:50:ea:4e: 4a:e4:b8:06:4e:84:43:ec:ea:09:c4:c5:02:37:91: d4:0b:5e:fd:a9:c0:c6:bc:bf:c2:87:e1:7c:8d:b6: 13:c5:1c:62:f0:fb:15:d5:0a:e4:c3:d1:bc:de:5e: da:1d:5f:4e:a9:5c:f2:65:56:5f:66:5a:86:d6:10: a7:34:0e:fd:46:28:c8:4c:40:95:d0:cd:94:cc:e4: ea:81:ff:e5:5d:0e:8a:e0:04:4f:4f:a8:78:49:46: e3:2a:50:fa:1f:94:3f:83:c2:ea:b2:32:ff:33:f5: bf:8c:bc:a2:59:65:2c:0e:fb:cf:f2:6e:ad:e0:6f: aa:18:6a:a6:ab:ad:e2:f2:d7:d3:37:7a:1b:5b:a5: a1:8e:99:b5:25:09:ad:12:74:0b:ee:1e:75:c3:3d: 4a:00:63:fd:59:27:04:d5:ec:b5:ec:4d:79:fd:c4: ed:d0:33:f4:b0:55:d0:3f:d8:63:9b:24:76:4c:32: 44:0e:4d:1e:d1:e6:5f:ce:2d:53:98:50:34:11:ba: 15:c7:3b:e3:81:78:82:ad:df:9e:e0:d0:0f:ac:07: 51:43:c9:f0:f9:f4:d7:94:6d:c9:f0:a7:1a:f0:eb: 71:6f:6e:bf:a2:43:56:6b:e7:c2:ab:09:e5:5c:71: 00:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:53:D2:49:0F:D2:4C:0C:27:8F:06:E1:73:46:6D:16:75:97:94:C1 X509v3 Authority Key Identifier: keyid:64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/RVPSSQ_STAwnjwbhc0ZtFnWXlME.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.3.190.0/24 Signature Algorithm: sha256WithRSAEncryption a1:13:69:2c:9e:99:7c:b9:8e:a1:9c:6b:0b:b8:58:f3:22:36: 3f:8f:8e:01:15:05:6a:97:72:23:61:c1:e4:25:6b:b2:f8:09: d9:8e:0d:8f:eb:56:ca:6b:af:ac:bf:0b:f7:c3:da:c8:d1:d9: 93:41:4b:44:7b:a8:1c:e1:1f:0e:09:08:69:8d:e5:2f:56:f7: cc:cf:4c:f3:05:80:a1:f8:81:33:dc:e6:61:45:c7:62:bc:60: 45:6a:d7:36:e4:ce:27:62:20:27:33:6c:35:d2:1b:c3:75:8b: fa:bf:aa:56:87:fd:8f:29:4e:29:b1:79:e3:94:5e:d8:80:ff: 03:f6:a6:d1:55:1a:82:99:63:c4:5d:94:7e:ce:df:5c:3c:98: 7d:81:b8:7c:ae:88:ef:72:e2:72:b4:ff:51:60:76:63:e8:91: 24:32:0e:d9:2e:1f:ad:7f:3b:f2:f9:81:4a:0e:f3:10:00:89: 8d:15:8a:5e:2f:c7:9d:60:5f:bf:17:c3:67:f4:e0:12:6f:7b: 59:29:78:e8:35:c6:b6:62:91:57:30:71:5f:6a:e0:da:f1:fb: aa:29:90:34:02:31:11:65:08:60:4a:cd:19:68:37:3c:5f:34: 6f:e9:ba:94:fb:2d:33:c0:02:97:05:5a:b7:d0:66:88:11:fc: be:41:c4:55 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQr6IdhSA43rX/295aWHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZjQ3Yzk4NDQwZjEwMzgyNWM4ZWE1MDc0Mjk4YjE4Y2Mx MTNlMjAwHhcNMjYwMTAyMDYyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTUzZDI0OTBmZDI0YzBjMjc4ZjA2ZTE3MzQ2NmQxNjc1OTc5NGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvanYPOn68+MqlM9Q6k5K5LgGToRD 7OoJxMUCN5HUC179qcDGvL/Ch+F8jbYTxRxi8PsV1Qrkw9G83l7aHV9OqVzyZVZf ZlqG1hCnNA79RijITECV0M2UzOTqgf/lXQ6K4ARPT6h4SUbjKlD6H5Q/g8LqsjL/ M/W/jLyiWWUsDvvP8m6t4G+qGGqmq63i8tfTN3obW6Whjpm1JQmtEnQL7h51wz1K AGP9WScE1ey17E15/cTt0DP0sFXQP9hjmyR2TDJEDk0e0eZfzi1TmFA0EboVxzvj gXiCrd+e4NAPrAdRQ8nw+fTXlG3J8Kca8Otxb26/okNWa+fCqwnlXHEAnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEVT0kkP0kwMJ48G4XNGbRZ1l5TBMB8GA1UdIwQY MBaAFGT0fJhEDxA4JcjqUHQpixjMET4gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlBSOG1FUVBFRGdseU9wUWRDbUxHTXdSUGlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTlhZWItYzcxMy00MmY4LTkxZDYt Mzg0NDc4NTVkNjY5LzEvUlZQU1NRX1NUQXduandiaGMwWnRGbldYbE1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTlhZWItYzcxMy00MmY4LTkxZDYtMzg0NDc4NTVkNjY5 LzEvWlBSOG1FUVBFRGdseU9wUWRDbUxHTXdSUGlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQO+MA0G CSqGSIb3DQEBCwUAA4IBAQChE2ksnpl8uY6hnGsLuFjzIjY/j44BFQVql3IjYcHk JWuy+AnZjg2P61bKa6+svwv3w9rI0dmTQUtEe6gc4R8OCQhpjeUvVvfMz0zzBYCh +IEz3OZhRcdivGBFatc25M4nYiAnM2w10hvDdYv6v6pWh/2PKU4psXnjlF7YgP8D 9qbRVRqCmWPEXZR+zt9cPJh9gbh8rojvcuJytP9RYHZj6JEkMg7ZLh+tfzvy+YFK DvMQAImNFYpeL8edYF+/F8Nn9OASb3tZKXjoNca2YpFXMHFfauDa8fuqKZA0AjER ZQhgSs0ZaDc8XzRv6bqU+y0zwAKXBVq30GaIEfy+QcRV -----END CERTIFICATE-----Generated at Mon Jan 26 04:22:14 2026 by rpki-client