This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vkHHuRJoPB8x9Ac0OaK-N5lPR14.roa File: vkHHuRJoPB8x9Ac0OaK-N5lPR14.roa (raw, json) Hash identifier: gh1hG73bA9vLTe3IksXs8X9vAwCyX1a3lMbLzwA+aqQ= Subject key identifier: BE:41:C7:B9:12:68:3C:1F:31:F4:07:34:39:A2:BE:37:99:4F:47:5E Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84DECC81CD962F7D26A2AD93FD36F4 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vkHHuRJoPB8x9Ac0OaK-N5lPR14.roa Signing time: Fri 02 Jan 2026 16:22:52 +0000 ROA not before: Fri 02 Jan 2026 16:22:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61277 IP address blocks: 93.171.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:de:cc:81:cd:96:2f:7d:26:a2:ad:93:fd:36:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be41c7b912683c1f31f4073439a2be37994f475e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:76:92:c6:9e:6d:50:8c:de:70:f0:6f:38:0f: 9c:61:ca:d4:7d:42:5f:52:c4:f4:74:0c:88:40:70: 7e:0f:c4:97:ca:9f:98:ae:6a:04:23:50:fc:95:23: 1e:54:d8:41:93:97:1c:28:01:01:16:8b:a1:c9:4d: a0:d5:3b:b4:b1:49:64:a0:2c:6d:f8:14:c7:ab:d9: f8:c1:87:f3:d0:ac:e4:9d:a1:23:a0:55:8f:9d:26: 7e:80:e5:27:b9:50:f3:00:f5:2e:82:da:71:04:98: 77:81:6a:07:23:a2:85:10:8d:18:09:06:32:b7:87: 5a:f2:69:63:c2:db:13:a7:15:0c:09:53:4d:14:70: 3e:ee:92:97:76:9a:7c:af:9b:c1:f3:89:77:f7:27: c8:35:44:19:26:1e:26:4a:f7:23:d6:38:db:ba:0a: 6e:29:22:58:22:35:fb:0d:5a:e5:0b:c3:71:d4:6c: 66:43:73:2a:2e:ae:61:75:7a:f7:85:7e:9c:f5:2b: 1d:3e:78:6e:59:9e:7d:c3:22:88:28:c5:fa:6e:78: 0c:d1:0d:f9:16:37:37:63:ae:87:c2:11:0c:d3:b3: e6:f9:7a:f4:d1:32:bd:1f:33:5f:9b:13:a9:2c:73: 97:ac:e7:e5:f4:4b:e4:66:dd:35:9d:ab:ae:14:3a: 3d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:41:C7:B9:12:68:3C:1F:31:F4:07:34:39:A2:BE:37:99:4F:47:5E X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vkHHuRJoPB8x9Ac0OaK-N5lPR14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.171.207.0/24 Signature Algorithm: sha256WithRSAEncryption 69:47:42:d9:23:a9:f2:7d:4f:6e:b0:d6:9d:1c:aa:d7:d4:45: 37:59:6d:7e:4b:b5:54:d9:22:a8:8b:55:ba:fe:6d:60:4e:fd: aa:c6:54:e6:33:a7:db:8c:3d:d6:75:bf:c7:e5:5a:98:22:6b: 40:ce:ab:3c:2e:2e:56:05:ea:c5:38:bb:05:da:f7:63:e5:d4: ae:e2:99:b3:21:52:ec:32:ff:56:db:fb:b8:83:8c:b4:3f:b1: f3:69:c0:d9:d1:dd:71:e4:25:c1:c7:c3:34:49:d8:ca:67:46: 17:f3:15:41:f9:f2:9c:cd:1c:35:36:69:80:5a:00:8d:45:34: 65:ee:f6:23:2b:d8:45:98:cb:6c:5d:79:9b:bf:9b:bc:bf:75: 24:80:b0:54:29:89:51:48:51:60:82:b1:ef:a8:64:d2:fb:1d: fc:87:08:9a:53:c2:70:5e:81:e7:8e:bc:99:e4:47:d1:bc:eb: 54:ec:dd:11:15:17:34:b7:29:39:4d:82:6b:50:ed:67:1f:21: a4:7b:e0:d9:c6:f3:96:d9:22:3e:0f:ed:e9:ce:60:56:55:2f: 43:70:5a:d5:ed:bd:a9:5b:36:5a:a1:00:2f:3f:f2:99:b3:1f: 8b:5c:d1:22:32:dd:0c:5f:ed:29:2f:dd:ab:e4:1b:0d:05:fb: 7d:e4:bb:00 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hN7Mgc2WL30moq2T/Tb0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTQxYzdiOTEyNjgzYzFmMzFmNDA3MzQzOWEyYmUzNzk5NGY0NzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3aSxp5tUIzecPBvOA+cYcrUfUJf UsT0dAyIQHB+D8SXyp+YrmoEI1D8lSMeVNhBk5ccKAEBFouhyU2g1Tu0sUlkoCxt +BTHq9n4wYfz0KzknaEjoFWPnSZ+gOUnuVDzAPUugtpxBJh3gWoHI6KFEI0YCQYy t4da8mljwtsTpxUMCVNNFHA+7pKXdpp8r5vB84l39yfINUQZJh4mSvcj1jjbugpu KSJYIjX7DVrlC8Nx1GxmQ3MqLq5hdXr3hX6c9SsdPnhuWZ59wyKIKMX6bngM0Q35 Fjc3Y66HwhEM07Pm+Xr00TK9HzNfmxOpLHOXrOfl9EvkZt01nauuFDo94wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL5Bx7kSaDwfMfQHNDmivjeZT0deMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvdmtISHVSSm9QQjh4OUFjME9hSy1ONWxQUjE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXavPMA0G CSqGSIb3DQEBCwUAA4IBAQBpR0LZI6nyfU9usNadHKrX1EU3WW1+S7VU2SKoi1W6 /m1gTv2qxlTmM6fbjD3Wdb/H5VqYImtAzqs8Li5WBerFOLsF2vdj5dSu4pmzIVLs Mv9W2/u4g4y0P7HzacDZ0d1x5CXBx8M0SdjKZ0YX8xVB+fKczRw1NmmAWgCNRTRl 7vYjK9hFmMtsXXmbv5u8v3UkgLBUKYlRSFFggrHvqGTS+x38hwiaU8JwXoHnjryZ 5EfRvOtU7N0RFRc0tyk5TYJrUO1nHyGke+DZxvOW2SI+D+3pzmBWVS9DcFrV7b2p WzZaoQAvP/KZsx+LXNEiMt0MX+0pL92r5BsNBft95LsA -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:39 2026 by rpki-client