This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/pVhPz1Lv4Tfe1koijnFU9xHK8TY.roa File: pVhPz1Lv4Tfe1koijnFU9xHK8TY.roa (raw, json) Hash identifier: 9qDr4kEVPSIWiFKaY/CZHN8PT6dMsGvFWVv39pNQi2Y= Subject key identifier: A5:58:4F:CF:52:EF:E1:37:DE:D6:4A:22:8E:71:54:F7:11:CA:F1:36 Certificate issuer: /CN=1ee5efbf65897160d55a52dc3a22c017876cd06c Certificate serial: 019B79106A88938F7BB76DD45C6B86BA23D5 Authority key identifier: 1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/pVhPz1Lv4Tfe1koijnFU9xHK8TY.roa Signing time: Thu 01 Jan 2026 10:17:57 +0000 ROA not before: Thu 01 Jan 2026 10:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205394 IP address blocks: 46.226.72.0/21 maxlen: 24 139.28.100.0/22 maxlen: 22 139.28.100.0/24 maxlen: 24 139.28.101.0/24 maxlen: 24 139.28.103.0/24 maxlen: 24 185.176.124.0/22 maxlen: 24 185.180.172.0/23 maxlen: 24 185.201.164.0/22 maxlen: 24 2a00:5a00::/32 maxlen: 48 2a0a:c840::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.mft rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:6a:88:93:8f:7b:b7:6d:d4:5c:6b:86:ba:23:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ee5efbf65897160d55a52dc3a22c017876cd06c Validity Not Before: Jan 1 10:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a5584fcf52efe137ded64a228e7154f711caf136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:82:25:5c:52:97:de:3c:4c:e0:d8:79:fa:d1: 5f:dd:0b:59:b6:05:fb:b9:3d:a3:20:9c:d0:c3:4d: a7:e6:1e:b4:95:f4:3e:a9:f0:bd:cc:18:f6:6d:d5: bf:aa:2a:10:0f:0c:a0:54:fa:19:6e:08:4c:4b:9c: e9:21:4a:ed:ae:8b:df:ea:17:27:f8:2e:49:97:47: bf:87:70:12:e2:96:65:c0:8e:2b:8a:dc:2a:18:d0: d4:f6:29:fa:b4:22:de:c2:3e:d9:6d:40:1a:d5:2e: d7:83:3e:82:6e:34:93:9b:64:49:be:3f:5b:48:a0: 04:0a:8f:46:21:7f:7d:89:72:2f:56:09:e8:84:38: a5:2f:4e:c7:23:e2:5e:5b:0e:c0:f4:35:3a:6c:1b: ac:a9:ab:e2:92:ad:89:c9:19:e2:f8:97:61:30:ae: 5a:46:b7:0a:9e:76:88:e0:3d:4c:20:c6:f6:44:72: 4e:4d:d0:6f:77:c5:79:ea:b4:77:16:9e:68:fa:11: 30:87:35:27:bc:a2:2b:0d:32:a4:f6:c9:5e:14:4c: 69:6f:f9:4b:a5:15:62:c3:62:df:1c:f8:4e:4e:b7: a6:2c:f6:ca:39:9e:1e:22:f8:c4:93:36:03:11:53: 85:48:37:09:ef:46:a9:ee:7f:61:ca:19:a8:93:2b: 8f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:58:4F:CF:52:EF:E1:37:DE:D6:4A:22:8E:71:54:F7:11:CA:F1:36 X509v3 Authority Key Identifier: keyid:1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/pVhPz1Lv4Tfe1koijnFU9xHK8TY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.226.72.0/21 139.28.100.0/22 185.176.124.0/22 185.180.172.0/23 185.201.164.0/22 IPv6: 2a00:5a00::/32 2a0a:c840::/29 Signature Algorithm: sha256WithRSAEncryption 60:72:b6:4a:35:7b:d4:e6:fe:59:1a:8f:87:06:6d:7c:7b:dc: 73:e0:c0:10:33:da:1b:fd:5f:a1:b5:cc:9e:3d:99:7d:8b:ae: f3:c1:cb:c1:a0:72:98:a0:6b:ef:17:f2:5f:bc:75:d3:d1:6a: 22:0b:81:76:10:61:82:3a:51:2d:f0:b9:f3:9b:da:6c:f6:0a: df:4b:7c:d8:bc:c9:18:7f:e0:ec:de:d6:4a:4e:7d:a7:5a:54: 59:7b:14:58:37:60:41:40:05:87:f3:12:a4:3a:62:7c:92:84: e0:11:e1:53:d9:45:66:38:ae:36:84:4f:0a:02:76:62:9f:94: 80:1f:b6:01:a9:56:8c:9b:2f:1b:52:fe:52:3f:a2:7e:b6:15: c2:0f:d8:bc:f8:4b:d1:76:89:38:37:fc:4e:ce:b7:d5:ab:b5: 53:20:a8:83:f1:59:8f:33:7e:7e:28:ce:0c:f5:3b:8a:6d:85: 13:fa:fa:df:2a:4b:24:2e:17:20:04:9a:1e:3f:3e:b0:f2:50: bd:11:a6:c8:8f:ec:99:cf:9e:11:57:60:c8:6f:a1:74:3e:26: 8e:a0:20:69:0d:1f:c6:fe:ee:3b:4c:25:27:a6:18:37:8c:16: 77:d9:a8:ac:9b:a8:85:8b:2f:a9:00:3b:a3:1f:e7:54:94:f5: b3:4c:44:3a -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt5EGqIk497t23UXGuGuiPVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZTVlZmJmNjU4OTcxNjBkNTVhNTJkYzNhMjJjMDE3ODc2 Y2QwNmMwHhcNMjYwMTAxMTAxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTU4NGZjZjUyZWZlMTM3ZGVkNjRhMjI4ZTcxNTRmNzExY2FmMTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoIlXFKX3jxM4Nh5+tFf3QtZtgX7 uT2jIJzQw02n5h60lfQ+qfC9zBj2bdW/qioQDwygVPoZbghMS5zpIUrtrovf6hcn +C5Jl0e/h3AS4pZlwI4ritwqGNDU9in6tCLewj7ZbUAa1S7Xgz6CbjSTm2RJvj9b SKAECo9GIX99iXIvVgnohDilL07HI+JeWw7A9DU6bBusqavikq2JyRni+JdhMK5a RrcKnnaI4D1MIMb2RHJOTdBvd8V56rR3Fp5o+hEwhzUnvKIrDTKk9sleFExpb/lL pRViw2LfHPhOTremLPbKOZ4eIvjEkzYDEVOFSDcJ70ap7n9hyhmokyuPNQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFKVYT89S7+E33tZKIo5xVPcRyvE2MB8GA1UdIwQY MBaAFB7l779liXFg1VpS3DoiwBeHbNBsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHVYdnYyV0pjV0RWV2xMY09pTEFGNGRzMEd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8zMzI0NzctYzgzYy00ZjgwLWIxYmUt N2MwZGI3YmFlMTM1LzEvcFZoUHoxTHY0VGZlMWtvaWpuRlU5eEhLOFRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8zMzI0NzctYzgzYy00ZjgwLWIxYmUtN2MwZGI3YmFlMTM1 LzEvSHVYdnYyV0pjV0RWV2xMY09pTEFGNGRzMEd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQDLuJIAwQC ixxkAwQCubB8AwQBubSsAwQCucmkMBQEAgACMA4DBQAqAFoAAwUDKgrIQDANBgkq hkiG9w0BAQsFAAOCAQEAYHK2SjV71Ob+WRqPhwZtfHvcc+DAEDPaG/1fobXMnj2Z fYuu88HLwaBymKBr7xfyX7x109FqIguBdhBhgjpRLfC585vabPYK30t82LzJGH/g 7N7WSk59p1pUWXsUWDdgQUAFh/MSpDpifJKE4BHhU9lFZjiuNoRPCgJ2Yp+UgB+2 AalWjJsvG1L+Uj+ifrYVwg/YvPhL0XaJODf8Ts631au1UyCog/FZjzN+fijODPU7 im2FE/r63ypLJC4XIASaHj8+sPJQvRGmyI/smc+eEVdgyG+hdD4mjqAgaQ0fxv7u O0wlJ6YYN4wWd9morJuohYsvqQA7ox/nVJT1s0xEOg== -----END CERTIFICATE-----Generated at Sun Jan 25 18:08:23 2026 by rpki-client