This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/VGhk2cDF1jTB8yf6DPPbRT2NsSU.roa File: VGhk2cDF1jTB8yf6DPPbRT2NsSU.roa (raw, json) Hash identifier: P3BuUVRGKsw3eiebCq9ip9oGlC6+nCgvMNwUPBdCFVA= Subject key identifier: 54:68:64:D9:C0:C5:D6:34:C1:F3:27:FA:0C:F3:DB:45:3D:8D:B1:25 Certificate issuer: /CN=d484e0cee575c619053f8ee2b1004cc442fd2ced Certificate serial: 019B7BA331246FD5B5D1A286A90AE4512026 Authority key identifier: D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/VGhk2cDF1jTB8yf6DPPbRT2NsSU.roa Signing time: Thu 01 Jan 2026 22:17:30 +0000 ROA not before: Thu 01 Jan 2026 22:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31027 IP address blocks: 193.163.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:31:24:6f:d5:b5:d1:a2:86:a9:0a:e4:51:20:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d484e0cee575c619053f8ee2b1004cc442fd2ced Validity Not Before: Jan 1 22:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=546864d9c0c5d634c1f327fa0cf3db453d8db125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:b5:3b:c2:08:f6:0c:79:da:3e:a3:45:1c: 79:20:50:e4:b3:d6:41:87:af:05:d5:20:2b:f7:b7: ab:3e:72:55:2b:b2:d5:7e:79:50:29:cb:bd:de:04: 1a:f5:be:5e:3f:c9:ac:00:f9:e8:97:27:32:fe:bc: 0a:7c:0d:c8:a9:c1:29:3e:7d:57:e4:d9:df:84:2c: 7c:19:b0:d3:ea:b8:bd:dd:af:89:a5:5b:e7:b2:e6: 47:61:a4:75:98:cb:36:f7:2b:6c:03:54:a4:38:47: dc:cd:ce:4d:3e:73:53:5d:ff:8a:69:68:b0:73:d2: cd:aa:a4:bb:1a:ac:6b:f7:73:98:1c:de:89:d6:b9: 7e:98:54:59:cb:a0:d6:a3:59:8f:2f:a9:4a:42:aa: 87:74:22:aa:0d:81:14:d6:0a:c5:fb:c0:92:84:17: d7:f4:e5:2a:ba:86:1d:99:40:df:7f:f3:c3:b9:2f: 76:c6:fb:4b:7f:95:42:f5:6b:62:93:c3:b0:53:4c: e7:b6:60:db:92:b7:67:c9:ed:de:0a:e8:22:73:4a: 78:b1:fd:ee:19:6d:04:1c:2a:00:ec:d2:7a:d0:b7: 95:16:65:83:a3:69:c8:4e:93:d5:14:1b:5e:4e:a9: 16:b8:43:df:7b:a7:9f:b4:7e:ae:aa:68:b0:ea:66: ef:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:68:64:D9:C0:C5:D6:34:C1:F3:27:FA:0C:F3:DB:45:3D:8D:B1:25 X509v3 Authority Key Identifier: keyid:D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/VGhk2cDF1jTB8yf6DPPbRT2NsSU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.163.222.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:96:e7:d5:c6:13:e4:7a:8b:8a:3d:6d:88:a2:48:b5:bc:fe: c3:d4:2c:df:b9:30:4e:7d:cd:6c:f8:86:db:d8:11:c6:0d:f1: 53:a5:7a:a1:20:73:ed:c5:fc:55:c9:4d:e2:ee:0b:95:b5:97: 81:af:d0:d3:46:83:89:a8:ca:ea:b8:37:a2:ed:51:0c:ab:d1: ed:76:09:8a:61:d3:f4:65:e9:92:ba:52:07:65:8f:e0:00:c4: 86:b3:32:31:35:01:c8:7a:35:f7:63:76:67:24:e2:9d:1d:00: 7e:d9:08:bd:39:49:e5:6f:ee:d6:3b:4e:40:6c:cc:61:a8:0a: 38:09:1e:30:67:3c:c1:5e:e2:13:4f:f8:15:04:ef:3e:6c:3f: ea:19:9e:80:c3:f0:5e:fa:f3:5a:09:8c:1f:f6:e8:dd:51:ae: 53:ac:bd:a1:0e:7f:dc:15:58:58:77:2c:07:bf:13:d6:db:7b: 67:0f:93:ce:36:51:71:ee:22:83:fd:88:e3:b8:88:fe:de:3b: 61:b5:85:4f:ba:e6:a2:7c:0e:b4:1d:d9:d4:58:a4:b7:5c:ed: f6:fd:eb:28:05:b7:bf:24:b3:e8:5e:91:fb:62:35:b9:94:b4: 66:0b:6a:5c:c4:d7:ba:6a:ac:5e:a3:aa:d4:aa:e2:23:fd:f1: 93:79:6a:0a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7ozEkb9W10aKGqQrkUSAmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ODRlMGNlZTU3NWM2MTkwNTNmOGVlMmIxMDA0Y2M0NDJm ZDJjZWQwHhcNMjYwMTAxMjIxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NDY4NjRkOWMwYzVkNjM0YzFmMzI3ZmEwY2YzZGI0NTNkOGRiMTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsne1O8II9gx52j6jRRx5IFDks9ZB h68F1SAr97erPnJVK7LVfnlQKcu93gQa9b5eP8msAPnolycy/rwKfA3IqcEpPn1X 5NnfhCx8GbDT6ri93a+JpVvnsuZHYaR1mMs29ytsA1SkOEfczc5NPnNTXf+KaWiw c9LNqqS7Gqxr93OYHN6J1rl+mFRZy6DWo1mPL6lKQqqHdCKqDYEU1grF+8CShBfX 9OUquoYdmUDff/PDuS92xvtLf5VC9Wtik8OwU0zntmDbkrdnye3eCugic0p4sf3u GW0EHCoA7NJ60LeVFmWDo2nITpPVFBteTqkWuEPfe6eftH6uqmiw6mbvqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFRoZNnAxdY0wfMn+gzz20U9jbElMB8GA1UdIwQY MBaAFNSE4M7ldcYZBT+O4rEATMRC/SztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEt ZWMwMjYyYWIzM2YxLzEvVkdoazJjREYxalRCOHlmNkRQUGJSVDJOc1NVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEtZWMwMjYyYWIzM2Yx LzEvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaPeMA0G CSqGSIb3DQEBCwUAA4IBAQCelufVxhPkeouKPW2Ioki1vP7D1CzfuTBOfc1s+Ibb 2BHGDfFTpXqhIHPtxfxVyU3i7guVtZeBr9DTRoOJqMrquDei7VEMq9HtdgmKYdP0 ZemSulIHZY/gAMSGszIxNQHIejX3Y3ZnJOKdHQB+2Qi9OUnlb+7WO05AbMxhqAo4 CR4wZzzBXuITT/gVBO8+bD/qGZ6Aw/Be+vNaCYwf9ujdUa5TrL2hDn/cFVhYdywH vxPW23tnD5PONlFx7iKD/YjjuIj+3jthtYVPuuaifA60HdnUWKS3XO32/esoBbe/ JLPoXpH7YjW5lLRmC2pcxNe6aqxeo6rUquIj/fGTeWoK -----END CERTIFICATE-----Generated at Mon Jan 26 00:24:24 2026 by rpki-client