This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/VzkSF7bgEl_NmJPWbUZpB-EUDe4.roa File: VzkSF7bgEl_NmJPWbUZpB-EUDe4.roa (raw, json) Hash identifier: EnUNWpRNvkvAjAmUGHpkas0UHyHzVNeGZiQl2yGA6v4= Subject key identifier: 57:39:12:17:B6:E0:12:5F:CD:98:93:D6:6D:46:69:07:E1:14:0D:EE Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Certificate serial: 019B79ECF6A098B84E381C29852AA46EC295 Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/VzkSF7bgEl_NmJPWbUZpB-EUDe4.roa Signing time: Thu 01 Jan 2026 14:18:51 +0000 ROA not before: Thu 01 Jan 2026 14:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205404 IP address blocks: 145.14.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.mft rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:f6:a0:98:b8:4e:38:1c:29:85:2a:a4:6e:c2:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Validity Not Before: Jan 1 14:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=57391217b6e0125fcd9893d66d466907e1140dee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:26:8f:93:8b:3b:29:2e:90:48:c5:4e:6c:ff: 02:a6:26:80:e7:be:e3:20:9b:87:4d:3e:fe:1a:2f: 45:7d:de:38:fb:0d:ca:57:17:96:a1:95:73:3d:9d: a6:4c:62:5a:2a:f4:53:92:a6:77:9b:69:ab:68:41: 9b:b5:e2:59:27:eb:c3:17:97:80:c5:5b:a9:05:d6: 6c:c6:7f:b0:5c:5f:5c:f6:77:18:6f:9c:2a:c4:d7: 6b:06:9b:7e:aa:0c:dc:0d:d4:ba:1c:bf:1d:a1:9d: 97:c7:6b:3e:fe:64:9f:f4:6f:96:6a:10:2e:cc:ce: 8c:08:94:61:3f:c9:02:7f:ee:c0:39:7e:48:f8:bc: d7:4d:83:75:e1:07:8d:bc:27:dc:f4:ff:97:b6:a2: 8a:0f:75:9f:d6:29:d1:ad:c4:77:38:aa:c8:02:87: 8d:37:fe:7f:78:7e:fe:50:43:33:e0:db:c4:65:2b: ae:be:6e:44:78:1a:e9:2d:cc:c4:66:7d:12:b9:28: 30:24:65:c9:7f:20:51:bc:81:50:bc:96:21:c9:fb: d8:2a:b2:c2:01:9e:fb:60:86:51:77:b6:37:29:47: 3d:5b:77:f1:89:85:94:3d:cd:4b:07:b1:3c:19:8e: 82:d9:37:21:59:29:11:9a:da:40:ca:4c:b8:6d:7d: 1e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:39:12:17:B6:E0:12:5F:CD:98:93:D6:6D:46:69:07:E1:14:0D:EE X509v3 Authority Key Identifier: keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/VzkSF7bgEl_NmJPWbUZpB-EUDe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.14.5.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:63:92:13:f3:de:dd:df:bd:67:1b:60:96:72:2c:14:02:50: e7:f1:38:b1:ba:bc:6c:36:6b:42:de:f8:c1:59:2b:1f:a2:c1: b3:5d:0b:8b:82:98:3a:58:2f:a6:c3:d8:82:0e:91:28:59:6e: 20:e6:c5:be:c8:60:76:da:fe:19:06:7f:8a:29:f5:89:a7:4f: 63:c9:6b:09:f0:36:10:1b:00:db:a6:ca:c0:43:db:b7:f4:29: 35:7b:9e:01:94:5f:72:61:2c:7a:54:49:ff:2e:fe:50:e2:fc: 6a:62:ca:19:59:3d:30:f4:65:6c:ab:bb:1d:61:b2:00:46:78: 54:08:fb:3c:da:84:96:3b:c9:53:ef:ae:e4:68:29:d2:7f:9a: 53:3a:98:2b:bc:cf:47:5c:a3:b8:ed:2c:21:99:b3:52:6c:3f: 5a:5b:ac:73:d3:d2:97:49:0b:c5:a8:3c:36:41:f0:76:95:6e: 85:f2:ff:78:99:c3:5f:c4:99:89:14:8f:d8:10:2b:96:16:84: 21:9c:0c:1f:0f:7d:9b:45:6f:ee:a5:7b:97:4c:da:95:2c:ee: 26:92:42:c3:eb:59:59:e7:30:a8:09:5a:a5:53:c9:bb:d9:6c: 4a:20:82:68:dd:a2:f6:dc:f1:e6:b4:89:a3:4a:eb:cb:cb:aa: 98:e7:a5:97 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57PagmLhOOBwphSqkbsKVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2IwNmJmNDEzMDBkYzRkMzBmM2QwZTE4MGM5Yjk1ZDJi Y2RkZmYwHhcNMjYwMTAxMTQxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NzM5MTIxN2I2ZTAxMjVmY2Q5ODkzZDY2ZDQ2NjkwN2UxMTQwZGVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SaPk4s7KS6QSMVObP8CpiaA577j IJuHTT7+Gi9Ffd44+w3KVxeWoZVzPZ2mTGJaKvRTkqZ3m2mraEGbteJZJ+vDF5eA xVupBdZsxn+wXF9c9ncYb5wqxNdrBpt+qgzcDdS6HL8doZ2Xx2s+/mSf9G+WahAu zM6MCJRhP8kCf+7AOX5I+LzXTYN14QeNvCfc9P+XtqKKD3Wf1inRrcR3OKrIAoeN N/5/eH7+UEMz4NvEZSuuvm5EeBrpLczEZn0SuSgwJGXJfyBRvIFQvJYhyfvYKrLC AZ77YIZRd7Y3KUc9W3fxiYWUPc1LB7E8GY6C2TchWSkRmtpAyky4bX0eWwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFc5Ehe24BJfzZiT1m1GaQfhFA3uMB8GA1UdIwQY MBaAFBx7Br9BMA3E0w89DhgMm5XSvN3/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAt MjRmZGRjNmQxNDdiLzEvVnprU0Y3YmdFbF9ObUpQV2JVWnBCLUVVRGU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAtMjRmZGRjNmQxNDdi LzEvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkQ4FMA0G CSqGSIb3DQEBCwUAA4IBAQAdY5IT897d371nG2CWciwUAlDn8TixurxsNmtC3vjB WSsfosGzXQuLgpg6WC+mw9iCDpEoWW4g5sW+yGB22v4ZBn+KKfWJp09jyWsJ8DYQ GwDbpsrAQ9u39Ck1e54BlF9yYSx6VEn/Lv5Q4vxqYsoZWT0w9GVsq7sdYbIARnhU CPs82oSWO8lT767kaCnSf5pTOpgrvM9HXKO47SwhmbNSbD9aW6xz09KXSQvFqDw2 QfB2lW6F8v94mcNfxJmJFI/YECuWFoQhnAwfD32bRW/upXuXTNqVLO4mkkLD61lZ 5zCoCVqlU8m72WxKIIJo3aL23PHmtImjSuvLy6qY56WX -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:44 2026 by rpki-client