This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/vPgoZptW0KavIK_Hg1kzkfOF1WE.roa File: vPgoZptW0KavIK_Hg1kzkfOF1WE.roa (raw, json) Hash identifier: j7J2y1HSuKj72l6kVGUrAtD78gxcoUd5XdyBbZEybuA= Subject key identifier: BC:F8:28:66:9B:56:D0:A6:AF:20:AF:C7:83:59:33:91:F3:85:D5:61 Certificate issuer: /CN=ad80679b96ca322bfa85500cab206c6d47412edf Certificate serial: 019B78A35FC34819E6BE9EC9693269AD6313 Authority key identifier: AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/vPgoZptW0KavIK_Hg1kzkfOF1WE.roa Signing time: Thu 01 Jan 2026 08:18:51 +0000 ROA not before: Thu 01 Jan 2026 08:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51540 IP address blocks: 195.42.241.0/24 maxlen: 24 195.42.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.crl rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.mft rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:5f:c3:48:19:e6:be:9e:c9:69:32:69:ad:63:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad80679b96ca322bfa85500cab206c6d47412edf Validity Not Before: Jan 1 08:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bcf828669b56d0a6af20afc783593391f385d561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:00:08:1e:7b:81:55:80:ae:f5:01:88:08:01: 43:1d:50:54:dd:39:9e:1b:17:8e:ec:ac:11:a8:7c: ce:16:63:cc:fc:0c:67:23:b7:7d:75:23:d7:93:30: 05:40:d9:9b:fd:10:94:8c:6e:d3:9c:00:85:f5:67: 55:e6:81:d8:cb:df:9f:2c:2d:20:7c:67:e0:0b:c4: 9e:fd:99:d3:3f:8f:7c:89:38:94:43:83:ea:16:f4: e9:00:88:ed:a6:b2:74:81:3a:e7:e2:70:94:c9:d5: 67:1c:74:61:03:91:ee:03:00:6b:60:2c:68:e9:bb: b8:d0:d1:70:ef:bf:6b:ff:54:cd:18:52:ac:70:8d: e4:d2:97:c1:12:b4:3f:7d:67:c0:50:5c:88:f6:ea: 2b:45:80:fa:b4:34:ab:78:54:1a:de:0d:59:6f:fa: 02:04:02:52:79:f2:45:36:17:e1:cd:5b:2d:a4:f2: 27:23:b8:62:55:a4:b1:ee:dd:1d:6e:e9:0f:42:06: f2:cb:eb:0b:e0:48:78:dd:4e:62:85:e3:78:46:b3: 51:45:56:0e:f7:cc:ea:fa:b7:31:e8:31:12:f9:90: 44:54:62:b6:fa:13:f8:a6:50:7f:a3:b7:e7:a7:f5: 81:2d:b8:66:36:84:86:a6:e8:41:fd:37:11:9a:6b: 2d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F8:28:66:9B:56:D0:A6:AF:20:AF:C7:83:59:33:91:F3:85:D5:61 X509v3 Authority Key Identifier: keyid:AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/vPgoZptW0KavIK_Hg1kzkfOF1WE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.42.241.0-195.42.242.255 Signature Algorithm: sha256WithRSAEncryption 99:b9:84:5a:26:d1:7e:ac:5c:48:44:55:18:e5:82:37:96:21: 6d:a5:5a:60:be:7b:f4:35:b6:a8:73:ed:36:2a:b6:3b:b5:2a: fc:4d:16:cb:bc:f7:ed:34:2a:d1:2b:25:7d:f4:21:e0:2b:5b: 33:89:23:59:28:f9:03:c6:5e:65:07:5f:35:44:28:d1:86:dc: 21:e8:33:5c:1a:75:e5:b5:b5:2d:64:db:c4:55:8c:40:8f:7e: 79:46:cf:65:db:ce:30:04:d0:d9:6a:38:6e:33:4f:26:3f:8b: a0:60:49:d2:59:b2:b3:f8:aa:1a:15:31:f8:b1:e0:fc:8e:81: c1:04:22:7c:c5:9d:46:0c:50:e5:4f:3c:df:41:09:ca:1e:73: 0c:04:64:9b:e5:15:ec:57:a4:53:72:ad:6e:63:3d:c1:9b:a8: b9:6f:61:71:2b:cc:c8:f1:bc:01:34:76:f2:b8:45:c3:34:74: 69:d4:40:a0:9d:fb:d9:2d:bf:40:4a:bb:29:2d:30:55:77:82: 1f:bc:cd:8d:2d:3c:5a:7a:36:99:c2:ee:70:c4:62:aa:54:96: aa:a8:5a:4a:ae:4f:9e:e3:f4:27:f9:07:b3:ba:9a:f5:2c:16: 32:bf:94:de:77:1a:eb:2b:6d:68:c1:42:cc:4d:58:40:01:84: 89:2f:84:c2 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt4o1/DSBnmvp7JaTJprWMTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkODA2NzliOTZjYTMyMmJmYTg1NTAwY2FiMjA2YzZkNDc0 MTJlZGYwHhcNMjYwMTAxMDgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiY2Y4Mjg2NjliNTZkMGE2YWYyMGFmYzc4MzU5MzM5MWYzODVkNTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAAIHnuBVYCu9QGICAFDHVBU3Tme GxeO7KwRqHzOFmPM/AxnI7d9dSPXkzAFQNmb/RCUjG7TnACF9WdV5oHYy9+fLC0g fGfgC8Se/ZnTP498iTiUQ4PqFvTpAIjtprJ0gTrn4nCUydVnHHRhA5HuAwBrYCxo 6bu40NFw779r/1TNGFKscI3k0pfBErQ/fWfAUFyI9uorRYD6tDSreFQa3g1Zb/oC BAJSefJFNhfhzVstpPInI7hiVaSx7t0dbukPQgbyy+sL4Eh43U5iheN4RrNRRVYO 98zq+rcx6DES+ZBEVGK2+hP4plB/o7fnp/WBLbhmNoSGpuhB/TcRmmstRQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFLz4KGabVtCmryCvx4NZM5HzhdVhMB8GA1UdIwQY MBaAFK2AZ5uWyjIr+oVQDKsgbG1HQS7fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcllCbm01YktNaXY2aFZBTXF5QnNiVWRCTHQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9hMTM5OWEtZWE2Yi00YTA5LThiNDAt OTBjMGJkZTA5ODY5LzEvdlBnb1pwdFcwS2F2SUtfSGcxa3prZk9GMVdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9hMTM5OWEtZWE2Yi00YTA5LThiNDAtOTBjMGJkZTA5ODY5 LzEvcllCbm01YktNaXY2aFZBTXF5QnNiVWRCTHQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADDKvED BADDKvIwDQYJKoZIhvcNAQELBQADggEBAJm5hFom0X6sXEhEVRjlgjeWIW2lWmC+ e/Q1tqhz7TYqtju1KvxNFsu89+00KtErJX30IeArWzOJI1ko+QPGXmUHXzVEKNGG 3CHoM1wadeW1tS1k28RVjECPfnlGz2XbzjAE0NlqOG4zTyY/i6BgSdJZsrP4qhoV Mfix4PyOgcEEInzFnUYMUOVPPN9BCcoecwwEZJvlFexXpFNyrW5jPcGbqLlvYXEr zMjxvAE0dvK4RcM0dGnUQKCd+9ktv0BKuyktMFV3gh+8zY0tPFp6NpnC7nDEYqpU lqqoWkquT57j9Cf5B7O6mvUsFjK/lN53GusrbWjBQsxNWEABhIkvhMI= -----END CERTIFICATE-----Generated at Sun Jan 25 15:07:48 2026 by rpki-client