This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/vFIy0amMxxYp6t0XVtNNLn2R_I8.roa File: vFIy0amMxxYp6t0XVtNNLn2R_I8.roa (raw, json) Hash identifier: vax2PUgWucdwxjsswO26V1j+tAN7zRvvsr/R7FSg7S0= Subject key identifier: BC:52:32:D1:A9:8C:C7:16:29:EA:DD:17:56:D3:4D:2E:7D:91:FC:8F Certificate issuer: /CN=509bc63e68c90932b4fc28997fc3bf78de3b3743 Certificate serial: 019B78355F23A82735A9BFA0A61BB9401EFB Authority key identifier: 50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/vFIy0amMxxYp6t0XVtNNLn2R_I8.roa Signing time: Thu 01 Jan 2026 06:18:42 +0000 ROA not before: Thu 01 Jan 2026 06:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34370 IP address blocks: 185.164.77.0/24 maxlen: 24 185.164.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.mft rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:5f:23:a8:27:35:a9:bf:a0:a6:1b:b9:40:1e:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=509bc63e68c90932b4fc28997fc3bf78de3b3743 Validity Not Before: Jan 1 06:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc5232d1a98cc71629eadd1756d34d2e7d91fc8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:b9:fc:1d:19:33:0f:f8:54:3f:25:d3:d2: b6:ba:dc:b2:c2:51:0d:14:3c:53:3d:4a:67:b5:16: 8b:b7:25:70:43:ac:ca:69:55:b2:60:05:c4:54:8b: 4d:05:c1:f0:ab:49:d7:63:53:04:4d:18:5a:1a:04: 09:7c:1b:dc:d8:8f:a6:1f:6c:92:a5:76:c5:2d:cc: 58:87:6c:8d:4b:2d:eb:1f:5c:11:10:f4:14:d5:d8: 6a:7e:30:fc:42:93:0e:fe:62:73:f1:d3:98:a0:55: 3e:8f:35:20:09:71:50:af:fc:f3:a8:d7:b9:1a:90: b9:ef:fd:19:4a:8e:f5:79:d4:af:e3:16:0d:a9:29: 58:c9:8b:4d:ba:85:5b:5c:42:32:9e:56:14:c5:4b: ce:a4:09:7e:1c:2a:8a:70:55:98:1f:81:02:8a:0c: 8c:91:42:19:55:70:e0:a0:1a:15:2b:91:70:5c:ab: 40:af:02:82:4e:28:e3:00:99:0e:a1:66:74:c3:ad: 34:9a:38:5a:c5:c0:cc:45:4a:5a:9b:04:31:8d:d2: 6a:22:da:99:35:5c:28:b4:40:b9:a8:ac:6b:61:0a: bd:e1:93:30:26:53:28:5b:da:02:a3:39:07:c0:9d: c1:d9:91:33:8e:56:db:c3:46:50:a1:42:9d:a3:bf: d8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:52:32:D1:A9:8C:C7:16:29:EA:DD:17:56:D3:4D:2E:7D:91:FC:8F X509v3 Authority Key Identifier: keyid:50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/vFIy0amMxxYp6t0XVtNNLn2R_I8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.164.77.0/24 185.164.79.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:34:5c:41:0e:3f:de:25:c2:6f:33:74:2a:f9:c7:5f:df:b3: 3e:80:d9:a1:ae:0c:e3:9a:ec:45:fb:7e:cc:e4:c7:c1:92:5b: f1:1d:d5:0a:2c:e5:69:32:e8:cb:0e:95:2b:14:ed:e5:93:dd: 73:e5:39:3c:df:b8:c3:e1:6b:8a:37:cc:d8:10:c7:56:b8:29: 1b:de:dc:8f:e2:b0:1d:54:2d:08:6a:d5:48:dd:bf:23:bc:4b: cc:25:f7:a7:61:f8:e5:ab:c5:d3:55:67:2e:00:77:99:aa:bc: d5:ef:50:3c:8b:7a:c0:fd:5e:8a:eb:67:44:71:b4:c3:d9:e7: d6:51:94:0c:e7:5c:2b:e0:ef:4f:f4:54:92:69:24:27:c3:e1: 81:9e:45:ff:e5:ea:27:7e:c1:df:55:5a:3b:e0:bc:46:6b:85: 32:ab:c1:80:16:e1:e7:53:2c:48:be:61:7f:ee:d7:b8:55:e4: e1:0b:d1:10:07:a2:ff:9a:92:c6:5f:da:7e:6f:7e:1a:71:a9: 1f:68:4b:4b:89:10:2b:24:1e:c6:f7:16:d2:d7:48:13:a7:4b: cc:13:23:c3:fc:5c:81:22:1d:74:9e:13:06:6a:56:6c:70:35: 83:c4:a7:31:82:b1:c0:ad:b9:94:70:04:7f:95:1c:97:5d:9e: 6f:17:30:df -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NV8jqCc1qb+gphu5QB77MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwOWJjNjNlNjhjOTA5MzJiNGZjMjg5OTdmYzNiZjc4ZGUz YjM3NDMwHhcNMjYwMTAxMDYxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzUyMzJkMWE5OGNjNzE2MjllYWRkMTc1NmQzNGQyZTdkOTFmYzhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFW5/B0ZMw/4VD8l09K2utyywlEN FDxTPUpntRaLtyVwQ6zKaVWyYAXEVItNBcHwq0nXY1METRhaGgQJfBvc2I+mH2yS pXbFLcxYh2yNSy3rH1wREPQU1dhqfjD8QpMO/mJz8dOYoFU+jzUgCXFQr/zzqNe5 GpC57/0ZSo71edSv4xYNqSlYyYtNuoVbXEIynlYUxUvOpAl+HCqKcFWYH4ECigyM kUIZVXDgoBoVK5FwXKtArwKCTijjAJkOoWZ0w600mjhaxcDMRUpamwQxjdJqItqZ NVwotEC5qKxrYQq94ZMwJlMoW9oCozkHwJ3B2ZEzjlbbw0ZQoUKdo7/YRQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLxSMtGpjMcWKerdF1bTTS59kfyPMB8GA1UdIwQY MBaAFFCbxj5oyQkytPwomX/Dv3jeOzdDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUp2R1BtakpDVEswX0NpWmY4T19lTjQ3TjBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zNGM1YjItYjZlMy00YjIzLWE2MDkt MTZlZDNjZDBjNzJhLzEvdkZJeTBhbU14eFlwNnQwWFZ0Tk5MbjJSX0k4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8zNGM1YjItYjZlMy00YjIzLWE2MDktMTZlZDNjZDBjNzJh LzEvVUp2R1BtakpDVEswX0NpWmY4T19lTjQ3TjBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuaRNAwQA uaRPMA0GCSqGSIb3DQEBCwUAA4IBAQAONFxBDj/eJcJvM3Qq+cdf37M+gNmhrgzj muxF+37M5MfBklvxHdUKLOVpMujLDpUrFO3lk91z5Tk837jD4WuKN8zYEMdWuCkb 3tyP4rAdVC0IatVI3b8jvEvMJfenYfjlq8XTVWcuAHeZqrzV71A8i3rA/V6K62dE cbTD2efWUZQM51wr4O9P9FSSaSQnw+GBnkX/5eonfsHfVVo74LxGa4Uyq8GAFuHn UyxIvmF/7te4VeThC9EQB6L/mpLGX9p+b34acakfaEtLiRArJB7G9xbS10gTp0vM EyPD/FyBIh10nhMGalZscDWDxKcxgrHArbmUcAR/lRyXXZ5vFzDf -----END CERTIFICATE-----Generated at Mon Jan 26 10:53:52 2026 by rpki-client