This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/vdlRGBUxKdk1J59T9yk33Tc6VXs.roa File: vdlRGBUxKdk1J59T9yk33Tc6VXs.roa (raw, json) Hash identifier: psrrFdXSYr4Fiv+zDVJQMMF62M2YJ/7GZn06Znz7wu4= Subject key identifier: BD:D9:51:18:15:31:29:D9:35:27:9F:53:F7:29:37:DD:37:3A:55:7B Certificate issuer: /CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e Certificate serial: 019B7F15FF20ED150C58845B5D7DC9371FE2 Authority key identifier: 40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/vdlRGBUxKdk1J59T9yk33Tc6VXs.roa Signing time: Fri 02 Jan 2026 14:21:46 +0000 ROA not before: Fri 02 Jan 2026 14:21:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56514 IP address blocks: 109.95.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.crl rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.mft rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:ff:20:ed:15:0c:58:84:5b:5d:7d:c9:37:1f:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e Validity Not Before: Jan 2 14:21:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bdd95118153129d935279f53f72937dd373a557b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ef:4d:85:8e:37:a3:a2:01:00:28:39:88:b1: 7e:61:28:c0:63:09:d1:39:be:e0:05:44:84:b7:61: f7:7f:b5:9a:93:df:98:d8:fd:3e:8f:35:44:09:3c: 58:07:ce:a0:f9:86:6c:6e:97:60:82:3d:9c:8f:a8: bb:86:fe:1f:bf:b3:cd:94:72:f7:ff:d5:01:4d:12: 0d:8a:c3:db:ba:4e:a3:21:67:be:9c:1e:bf:86:ee: fd:b6:45:eb:7b:58:c5:f6:11:f4:64:aa:b0:6f:7c: e7:bd:9c:f4:47:4c:f6:40:9b:ed:9b:46:69:fb:66: f2:ec:61:fc:79:9a:36:4f:47:7b:d6:f0:7a:df:dd: 05:a0:bc:10:f9:12:bd:ce:f1:b9:05:66:4f:da:6a: 53:85:eb:82:22:a5:f8:e3:9b:ba:d1:7c:94:e8:d1: 48:eb:a0:19:da:c4:7f:4a:70:9f:ab:e1:4c:08:15: 2d:82:c9:f6:72:c5:1f:0b:d0:ec:ea:55:69:f2:e6: ca:e2:a0:37:2b:58:63:9d:b3:3b:f3:ae:63:50:46: 40:6a:25:98:cf:1c:7e:44:53:59:1e:32:52:68:5f: 43:52:cc:29:ea:4f:db:93:9d:23:61:b0:c4:b7:2f: 4e:15:45:0b:06:b9:19:da:cd:73:3f:33:ea:e9:e1: 69:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D9:51:18:15:31:29:D9:35:27:9F:53:F7:29:37:DD:37:3A:55:7B X509v3 Authority Key Identifier: keyid:40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/vdlRGBUxKdk1J59T9yk33Tc6VXs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.95.15.0/24 Signature Algorithm: sha256WithRSAEncryption a4:7e:12:41:c6:b5:97:3b:6a:9e:52:64:c3:91:7e:f7:15:05: 6e:17:a0:b6:08:5b:1e:5a:fe:53:18:78:57:11:53:1f:b4:c3: 2f:44:e5:86:b2:6b:6d:47:68:cf:8b:bc:40:99:30:52:4a:29: f8:14:44:d9:ad:30:06:55:cc:49:79:f4:aa:9c:1a:96:46:d0: 61:31:95:df:93:0a:ec:95:7a:a1:81:4a:b7:88:86:6b:20:ef: 7b:a1:73:3a:dd:66:e7:63:3b:4d:9f:c3:47:2d:fd:e8:fa:2e: 73:28:78:60:e3:a6:f0:2a:4d:47:86:96:38:9c:b0:e5:d9:b4: e4:0f:7f:47:07:76:97:da:bc:7f:c9:69:94:32:61:a3:7a:bd: 34:57:b9:26:50:a0:e5:35:0e:a1:10:87:3a:2a:74:4c:72:a9: 58:fd:51:62:29:a3:dc:a2:d8:4e:b1:e3:a2:a3:cd:bf:46:ea: cf:82:18:07:94:f6:44:e4:50:f7:2a:71:2b:44:5f:7a:d3:30: 9f:95:92:8a:be:57:5c:53:a2:61:9d:24:06:9c:75:bd:76:a1: f4:01:a3:40:83:f8:e7:13:70:57:20:f6:98:b7:37:74:6f:9d: 11:c1:e6:4d:c6:1e:77:a2:24:df:ca:e1:50:3a:50:8b:19:b4: 39:ea:71:27 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/Ff8g7RUMWIRbXX3JNx/iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwOGFmNDg1YjRmZDBmMDM3MTdjZDRhNzA5ZWYxMWM2MWQz ZWY0NmUwHhcNMjYwMTAyMTQyMTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGQ5NTExODE1MzEyOWQ5MzUyNzlmNTNmNzI5MzdkZDM3M2E1NTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+9NhY43o6IBACg5iLF+YSjAYwnR Ob7gBUSEt2H3f7Wak9+Y2P0+jzVECTxYB86g+YZsbpdggj2cj6i7hv4fv7PNlHL3 /9UBTRINisPbuk6jIWe+nB6/hu79tkXre1jF9hH0ZKqwb3znvZz0R0z2QJvtm0Zp +2by7GH8eZo2T0d71vB6390FoLwQ+RK9zvG5BWZP2mpTheuCIqX445u60XyU6NFI 66AZ2sR/SnCfq+FMCBUtgsn2csUfC9Ds6lVp8ubK4qA3K1hjnbM7865jUEZAaiWY zxx+RFNZHjJSaF9DUswp6k/bk50jYbDEty9OFUULBrkZ2s1zPzPq6eFpewIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL3ZURgVMSnZNSefU/cpN903OlV7MB8GA1UdIwQY MBaAFECK9IW0/Q8DcXzUpwnvEcYdPvRuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUlyMGhiVDlEd054Zk5TbkNlOFJ4aDAtOUc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9lMTE3MWMtNTI3MC00OWNkLTkzNzkt Yjk1YjA4YTIzYWUxLzEvdmRsUkdCVXhLZGsxSjU5VDl5azMzVGM2VlhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9lMTE3MWMtNTI3MC00OWNkLTkzNzktYjk1YjA4YTIzYWUx LzEvUUlyMGhiVDlEd054Zk5TbkNlOFJ4aDAtOUc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbV8PMA0G CSqGSIb3DQEBCwUAA4IBAQCkfhJBxrWXO2qeUmTDkX73FQVuF6C2CFseWv5TGHhX EVMftMMvROWGsmttR2jPi7xAmTBSSin4FETZrTAGVcxJefSqnBqWRtBhMZXfkwrs lXqhgUq3iIZrIO97oXM63WbnYztNn8NHLf3o+i5zKHhg46bwKk1HhpY4nLDl2bTk D39HB3aX2rx/yWmUMmGjer00V7kmUKDlNQ6hEIc6KnRMcqlY/VFiKaPcothOseOi o82/RurPghgHlPZE5FD3KnErRF960zCflZKKvldcU6JhnSQGnHW9dqH0AaNAg/jn E3BXIPaYtzd0b50RweZNxh53oiTfyuFQOlCLGbQ56nEn -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:19 2026 by rpki-client