This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/VYZ5Fgld7RXGEOrVqR8rQ1goxUQ.roa File: VYZ5Fgld7RXGEOrVqR8rQ1goxUQ.roa (raw, json) Hash identifier: cLhaanJStsJrz0IULm7aO3Ok7sBDzVaf9JM7x28CLYM= Subject key identifier: 55:86:79:16:09:5D:ED:15:C6:10:EA:D5:A9:1F:2B:43:58:28:C5:44 Certificate issuer: /CN=fd89381307ae5e3b1ba8658cda7ee2ada4141447 Certificate serial: 019B7D5C1D1E31C7004A791FA4EED1F02D81 Authority key identifier: FD:89:38:13:07:AE:5E:3B:1B:A8:65:8C:DA:7E:E2:AD:A4:14:14:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Yk4EweuXjsbqGWM2n7iraQUFEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/VYZ5Fgld7RXGEOrVqR8rQ1goxUQ.roa Signing time: Fri 02 Jan 2026 06:19:07 +0000 ROA not before: Fri 02 Jan 2026 06:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58349 IP address blocks: 193.42.23.0/24 maxlen: 24 2a10:e5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/_Yk4EweuXjsbqGWM2n7iraQUFEc.crl rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/_Yk4EweuXjsbqGWM2n7iraQUFEc.mft rsync://rpki.ripe.net/repository/DEFAULT/_Yk4EweuXjsbqGWM2n7iraQUFEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:1d:1e:31:c7:00:4a:79:1f:a4:ee:d1:f0:2d:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd89381307ae5e3b1ba8658cda7ee2ada4141447 Validity Not Before: Jan 2 06:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=55867916095ded15c610ead5a91f2b435828c544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d5:ff:19:ed:82:06:99:81:a1:70:49:17:bc: 55:2d:d3:ec:25:81:00:ad:9e:fd:f7:c2:b6:70:c0: ea:e0:ae:9d:20:d8:b6:08:25:09:4c:86:de:6f:48: 27:1f:2e:1c:f5:88:ea:12:c2:4e:c3:52:51:80:88: 5d:9e:ad:07:af:7d:c8:90:47:f0:8b:70:0e:d6:49: 15:9d:a8:ac:f2:14:a5:c7:13:a8:bb:46:7d:c5:3e: b9:0e:af:18:07:d0:5c:e9:00:0b:05:8b:7a:c1:de: f7:fd:83:7c:28:29:42:63:6b:bc:bf:16:68:de:4f: 48:00:1c:b3:78:e6:35:fd:9d:0d:3c:ba:fe:cb:a8: 24:ca:08:f7:2c:ef:5b:7b:1e:27:40:4b:d9:ff:3f: 1a:5f:d3:0f:9f:14:4f:e2:05:bd:8a:79:02:39:4a: cc:52:57:9d:41:01:91:1a:89:be:42:7c:cb:7e:f8: f7:62:08:74:24:42:e9:b2:19:a1:2f:53:c6:f2:7d: 39:93:08:45:1c:14:2b:44:3d:a4:a9:2a:69:37:a0: 95:55:1c:f8:60:79:12:f3:ae:b0:59:0b:b6:c9:2c: b8:93:31:f0:78:5b:0f:64:33:e4:2a:b8:1a:67:b0: 90:4d:a7:c4:75:41:65:86:53:c1:f1:d1:2e:32:7d: f3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:86:79:16:09:5D:ED:15:C6:10:EA:D5:A9:1F:2B:43:58:28:C5:44 X509v3 Authority Key Identifier: keyid:FD:89:38:13:07:AE:5E:3B:1B:A8:65:8C:DA:7E:E2:AD:A4:14:14:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Yk4EweuXjsbqGWM2n7iraQUFEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/VYZ5Fgld7RXGEOrVqR8rQ1goxUQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/_Yk4EweuXjsbqGWM2n7iraQUFEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.42.23.0/24 IPv6: 2a10:e5c0::/48 Signature Algorithm: sha256WithRSAEncryption 2a:70:46:47:a1:99:bf:6d:c3:6e:28:2d:3e:bc:58:00:fe:32: c2:dc:20:0b:2f:2e:5e:da:89:34:7f:02:e4:6e:2d:3c:92:c1: 45:5a:40:a3:be:aa:03:42:1f:dc:f8:72:13:5f:14:20:48:09: f5:d4:62:7c:5a:ba:0c:fe:7e:f0:aa:a1:31:bb:57:df:ca:3b: 46:5d:4a:6f:6f:8e:4d:e0:08:fb:ef:4c:8c:83:f9:8e:eb:b0: 50:c4:2e:d8:03:64:ae:a6:14:70:67:31:0f:71:df:9b:af:d1: a0:63:3e:bc:81:84:96:46:ed:69:62:c1:96:1a:0c:15:bc:29: 79:fb:87:74:82:a8:63:09:e7:1b:03:11:54:46:e8:53:d2:cc: 2d:d0:50:be:ab:f9:9a:0a:6f:1e:57:a8:c8:58:e0:6b:f9:db: cb:40:07:ef:c4:14:21:30:a5:1e:0d:0c:1f:2a:d4:1b:8a:0f: 67:5b:2b:26:e7:aa:d9:a2:5e:99:b9:d5:27:4c:c0:32:34:91: 7e:c9:b9:b2:5d:68:5b:9f:5a:f6:58:bc:54:0b:bd:05:f8:66: 33:12:30:a7:9b:35:6e:b2:fa:d9:46:b4:6a:72:10:0b:b3:fa: 4b:80:bc:cf:51:f0:ba:f7:4a:bb:93:58:37:34:e5:51:83:a1: 77:0a:69:e9 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9XB0eMccASnkfpO7R8C2BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkODkzODEzMDdhZTVlM2IxYmE4NjU4Y2RhN2VlMmFkYTQx NDE0NDcwHhcNMjYwMTAyMDYxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTg2NzkxNjA5NWRlZDE1YzYxMGVhZDVhOTFmMmI0MzU4MjhjNTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9X/Ge2CBpmBoXBJF7xVLdPsJYEA rZ7998K2cMDq4K6dINi2CCUJTIbeb0gnHy4c9YjqEsJOw1JRgIhdnq0Hr33IkEfw i3AO1kkVnais8hSlxxOou0Z9xT65Dq8YB9Bc6QALBYt6wd73/YN8KClCY2u8vxZo 3k9IAByzeOY1/Z0NPLr+y6gkygj3LO9bex4nQEvZ/z8aX9MPnxRP4gW9inkCOUrM UledQQGRGom+QnzLfvj3Ygh0JELpshmhL1PG8n05kwhFHBQrRD2kqSppN6CVVRz4 YHkS866wWQu2ySy4kzHweFsPZDPkKrgaZ7CQTafEdUFlhlPB8dEuMn3z4QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFFWGeRYJXe0VxhDq1akfK0NYKMVEMB8GA1UdIwQY MBaAFP2JOBMHrl47G6hljNp+4q2kFBRHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1lrNEV3ZXVYanNicUdXTTJuN2lyYVFVRkVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9kY2Y5YjctNmQ3Mi00NzVhLWJhYTct NjQ2ZWU2ZGZhNmI2LzEvVllaNUZnbGQ3UlhHRU9yVnFSOHJRMWdveFVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9kY2Y5YjctNmQ3Mi00NzVhLWJhYTctNjQ2ZWU2ZGZhNmI2 LzEvX1lrNEV3ZXVYanNicUdXTTJuN2lyYVFVRkVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwSoXMA8E AgACMAkDBwAqEOXAAAAwDQYJKoZIhvcNAQELBQADggEBACpwRkehmb9tw24oLT68 WAD+MsLcIAsvLl7aiTR/AuRuLTySwUVaQKO+qgNCH9z4chNfFCBICfXUYnxaugz+ fvCqoTG7V9/KO0ZdSm9vjk3gCPvvTIyD+Y7rsFDELtgDZK6mFHBnMQ9x35uv0aBj PryBhJZG7WliwZYaDBW8KXn7h3SCqGMJ5xsDEVRG6FPSzC3QUL6r+ZoKbx5XqMhY 4Gv528tAB+/EFCEwpR4NDB8q1BuKD2dbKybnqtmiXpm51SdMwDI0kX7JubJdaFuf WvZYvFQLvQX4ZjMSMKebNW6y+tlGtGpyEAuz+kuAvM9R8Lr3SruTWDc05VGDoXcK aek= -----END CERTIFICATE-----Generated at Mon Jan 26 00:39:29 2026 by rpki-client