This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/vhCKx6YE6UZfYQ_y2if0T0sJx9A.roa File: vhCKx6YE6UZfYQ_y2if0T0sJx9A.roa (raw, json) Hash identifier: 4GxEPZps/hQabeBQl+bTu8j92zD3sd9eABLT3Mr/M3g= Subject key identifier: BE:10:8A:C7:A6:04:E9:46:5F:61:0F:F2:DA:27:F4:4F:4B:09:C7:D0 Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea Certificate serial: 019B7C129D91CB0548A6FDB7535F04F4AFD4 Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/vhCKx6YE6UZfYQ_y2if0T0sJx9A.roa Signing time: Fri 02 Jan 2026 00:19:13 +0000 ROA not before: Fri 02 Jan 2026 00:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24984 IP address blocks: 194.176.60.0/24 maxlen: 24 195.12.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.mft rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:9d:91:cb:05:48:a6:fd:b7:53:5f:04:f4:af:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea Validity Not Before: Jan 2 00:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be108ac7a604e9465f610ff2da27f44f4b09c7d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0b:62:46:4a:1e:a2:01:13:fd:ab:d8:05:31: 9b:2e:24:d4:42:bc:7d:2a:46:02:00:da:be:41:a3: 60:49:56:c2:73:08:94:e9:05:9a:eb:e3:2a:83:12: f1:c3:e2:c5:03:94:0a:2f:5b:21:b4:67:da:24:d9: 3b:11:98:66:c1:6a:ac:cb:bc:56:34:15:42:36:1d: ad:55:be:1b:89:a2:82:a8:e2:27:e0:d3:73:e2:72: 65:4a:4b:fc:b8:80:6f:68:fd:68:db:40:4c:7c:2a: af:b2:14:43:c5:9b:c7:54:97:68:60:6d:a4:a4:1c: bf:48:c6:f5:bf:78:18:85:c7:24:ab:f9:52:9e:bc: ba:89:81:7c:2c:31:19:69:4f:ac:39:82:ef:4d:c9: 38:f1:ea:96:b0:dd:f9:c1:b7:5e:13:4e:84:62:df: 37:4f:84:d0:20:d5:99:e1:09:01:36:26:71:a3:e3: 9e:5f:bf:de:f5:41:fe:b6:92:46:67:c3:50:08:7e: 45:0a:db:c6:39:76:9d:9e:f6:7b:24:77:18:2e:14: bd:93:31:34:f6:c0:b5:19:9c:c7:2b:6c:3f:4e:15: 03:f9:3d:d7:8a:18:b8:4d:a2:0c:6f:cf:2c:f8:77: d5:77:22:a8:87:cc:e6:83:99:1a:68:73:2d:8f:5a: 6b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:10:8A:C7:A6:04:E9:46:5F:61:0F:F2:DA:27:F4:4F:4B:09:C7:D0 X509v3 Authority Key Identifier: keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/vhCKx6YE6UZfYQ_y2if0T0sJx9A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.176.60.0/24 195.12.178.0/24 Signature Algorithm: sha256WithRSAEncryption 69:2e:79:a6:db:ad:23:44:94:b2:68:e8:b3:49:fe:3a:11:27: ec:2b:81:7d:20:c7:3b:e0:b7:cd:8b:40:95:7c:2e:d7:32:e8: cc:59:f4:bd:96:94:e6:9d:77:62:4b:c5:dd:42:cd:e2:bd:a9: 79:85:bc:a8:7e:64:01:e8:01:83:a7:20:9f:83:ef:b0:0b:70: 23:34:86:a6:ef:b7:a3:5a:ca:d6:1b:b0:e6:f6:2f:8d:f5:5f: 6c:12:98:c9:c2:b0:fc:7d:d5:61:de:19:eb:79:fe:2a:87:78: b4:66:6d:97:c0:83:25:b5:49:27:cc:c1:9a:52:69:ed:ce:0c: e4:7a:18:d5:7f:7b:8a:cc:20:54:6f:64:5d:0e:66:34:71:03: 74:45:3f:a9:40:d9:17:a3:5f:c0:d3:4b:be:de:e9:a6:2a:bc: 5b:0c:ac:cf:08:d9:f4:d7:50:93:d1:c2:f4:85:f3:d2:d5:1b: ec:8b:0e:2e:8a:e3:61:f9:44:15:be:0f:7e:35:fe:e4:c5:83: 10:58:79:b9:b7:ed:72:5e:0c:b6:0d:13:09:dc:54:7e:73:4e: d7:5f:14:96:82:11:1c:d3:d7:96:5d:6d:e3:11:6f:14:5b:a0: 9e:2b:80:51:f6:f2:cb:99:4e:bf:8d:f1:eb:ef:79:b6:18:5a: 3f:bd:fc:48 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt8Ep2RywVIpv23U18E9K/UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiOTg3MjQ0NjExYjUyMzA1MzY3NDRiNmE4OWYwNDRmMzJm NDYyZWEwHhcNMjYwMTAyMDAxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTEwOGFjN2E2MDRlOTQ2NWY2MTBmZjJkYTI3ZjQ0ZjRiMDljN2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gtiRkoeogET/avYBTGbLiTUQrx9 KkYCANq+QaNgSVbCcwiU6QWa6+MqgxLxw+LFA5QKL1shtGfaJNk7EZhmwWqsy7xW NBVCNh2tVb4biaKCqOIn4NNz4nJlSkv8uIBvaP1o20BMfCqvshRDxZvHVJdoYG2k pBy/SMb1v3gYhcckq/lSnry6iYF8LDEZaU+sOYLvTck48eqWsN35wbdeE06EYt83 T4TQINWZ4QkBNiZxo+OeX7/e9UH+tpJGZ8NQCH5FCtvGOXadnvZ7JHcYLhS9kzE0 9sC1GZzHK2w/ThUD+T3Xihi4TaIMb88s+HfVdyKoh8zmg5kaaHMtj1prtwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFL4QisemBOlGX2EP8ton9E9LCcfQMB8GA1UdIwQY MBaAFPuYckRhG1IwU2dEtqifBE8y9GLqMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS01aHlSR0ViVWpCVFowUzJxSjhFVHpMMFl1by5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvMzE5ZDdjLTdlNzYtNDMwOC1iYzAw LWJlNTgzMmQ1ZjdhYS8xL3ZoQ0t4NllFNlVaZllRX3kyaWYwVDBzSng5QS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNDQvMzE5ZDdjLTdlNzYtNDMwOC1iYzAwLWJlNTgzMmQ1Zjdh YS8xLzEtNWh5UkdFYlVqQlRaMFMycUo4RVR6TDBZdW8uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBADCsDwD BADDDLIwDQYJKoZIhvcNAQELBQADggEBAGkueabbrSNElLJo6LNJ/joRJ+wrgX0g xzvgt82LQJV8Ltcy6MxZ9L2WlOadd2JLxd1CzeK9qXmFvKh+ZAHoAYOnIJ+D77AL cCM0hqbvt6NaytYbsOb2L431X2wSmMnCsPx91WHeGet5/iqHeLRmbZfAgyW1SSfM wZpSae3ODOR6GNV/e4rMIFRvZF0OZjRxA3RFP6lA2RejX8DTS77e6aYqvFsMrM8I 2fTXUJPRwvSF89LVG+yLDi6K42H5RBW+D341/uTFgxBYebm37XJeDLYNEwncVH5z TtdfFJaCERzT15ZdbeMRbxRboJ4rgFH28suZTr+N8evvebYYWj+9/Eg= -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:16 2026 by rpki-client