This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/vuIHlCo4UFDYBSAD5tytHEhhhAY.roa File: vuIHlCo4UFDYBSAD5tytHEhhhAY.roa (raw, json) Hash identifier: hMc0m1Zi/iK2n4XsoGvD9oSD37NqfaVTNmYIxARhpew= Subject key identifier: BE:E2:07:94:2A:38:50:50:D8:05:20:03:E6:DC:AD:1C:48:61:84:06 Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2 Certificate serial: 019B797E012B947CFBC30C5196481B93BFBE Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/vuIHlCo4UFDYBSAD5tytHEhhhAY.roa Signing time: Thu 01 Jan 2026 12:17:39 +0000 ROA not before: Thu 01 Jan 2026 12:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38916 IP address blocks: 185.237.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:01:2b:94:7c:fb:c3:0c:51:96:48:1b:93:bf:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2 Validity Not Before: Jan 1 12:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bee207942a385050d8052003e6dcad1c48618406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8d:7f:9c:ef:b8:e5:af:3c:ff:6a:83:61:ea: 00:60:b0:3b:da:0b:91:ae:53:74:78:3d:9f:0e:7a: 2f:91:ab:db:d5:5e:77:88:ad:59:eb:7f:a7:a6:3c: 35:00:84:f2:c1:ba:56:98:24:06:22:7c:3a:83:b4: 80:92:47:2d:47:25:0a:1c:d3:2d:6b:2d:3e:c9:8b: 4e:1a:93:29:93:f7:7c:81:aa:ca:12:f6:2d:81:40: b5:91:ca:71:cd:6b:91:7d:a1:69:62:9f:6f:1d:14: d0:d7:15:08:56:60:32:9f:53:b3:22:fe:4c:14:41: 08:2c:ad:f6:29:fa:8e:cd:5b:eb:73:aa:8b:5f:74: 60:48:7e:df:29:09:4a:d9:04:3a:6c:f6:4e:44:7f: 96:e4:7a:d9:18:c6:af:bc:e4:06:51:b5:5b:8c:05: 48:c5:1e:6a:ae:2c:6d:1b:d2:8b:5a:a8:ad:ed:35: 4a:84:f8:e2:3b:5b:2a:41:30:3f:f1:97:d1:8d:53: 75:2e:3a:b4:6f:00:5a:c2:9f:49:f7:df:5e:fd:93: 5f:c2:aa:cb:4f:bc:99:6a:ff:1f:8d:62:1e:32:c2: 75:d3:49:28:49:4a:69:af:4b:1c:c2:0f:ee:11:01: ee:3f:4f:b3:c5:e1:bf:21:86:54:70:1b:c3:b9:33: 65:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E2:07:94:2A:38:50:50:D8:05:20:03:E6:DC:AD:1C:48:61:84:06 X509v3 Authority Key Identifier: keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/vuIHlCo4UFDYBSAD5tytHEhhhAY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.237.18.0/23 Signature Algorithm: sha256WithRSAEncryption 15:23:03:30:ee:d3:70:e1:ba:f4:bc:ac:ee:62:be:a8:a6:0d: ef:3c:f2:a4:ac:68:58:dd:8d:32:2e:05:cf:8f:96:b5:2f:04: 16:c1:6e:0e:c1:d2:b1:64:a1:2c:71:86:f6:6d:05:1b:88:ec: 21:cf:53:ed:b3:35:8b:c9:3b:cf:0e:0c:e8:12:56:2e:bf:e0: ec:87:0b:77:74:c3:45:00:83:d9:bb:9f:d3:60:a1:c0:87:88: d6:ac:0e:d6:9f:cd:b2:3b:86:86:61:9b:99:9e:93:25:4d:be: de:c5:a8:4e:2f:8d:f5:0d:55:61:61:62:65:3a:0e:77:0f:2a: 78:c2:91:ea:c0:f6:81:4b:69:4c:cd:98:f2:dd:c3:e6:53:6c: 8c:44:41:5c:b4:97:ff:23:a9:79:5a:c1:00:e9:bf:87:ef:17: c4:e8:1a:2a:f9:8c:75:ca:e7:c1:d2:86:1b:18:b1:f3:4f:bd: e3:4e:d1:86:23:b5:07:4e:45:64:6e:01:9b:f4:77:9e:ff:cb: 06:e4:9b:dd:5e:74:1e:fb:d4:bb:67:8c:2c:4e:fa:15:79:8f: 4f:68:f2:77:20:71:d9:26:ee:ec:a9:92:e1:36:34:31:be:d7: 16:13:55:c3:e2:ef:ac:d4:41:87:7f:20:02:9c:36:29:99:f6: 61:3a:60:a5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fgErlHz7wwxRlkgbk7++MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMTQwODhjNzdiZDEyNjg3ZmQ0YmE5ZmUzMTU5ZWE4MDU4 ODhlZDIwHhcNMjYwMTAxMTIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWUyMDc5NDJhMzg1MDUwZDgwNTIwMDNlNmRjYWQxYzQ4NjE4NDA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoI1/nO+45a88/2qDYeoAYLA72guR rlN0eD2fDnovkavb1V53iK1Z63+npjw1AITywbpWmCQGInw6g7SAkkctRyUKHNMt ay0+yYtOGpMpk/d8garKEvYtgUC1kcpxzWuRfaFpYp9vHRTQ1xUIVmAyn1OzIv5M FEEILK32KfqOzVvrc6qLX3RgSH7fKQlK2QQ6bPZORH+W5HrZGMavvOQGUbVbjAVI xR5qrixtG9KLWqit7TVKhPjiO1sqQTA/8ZfRjVN1Ljq0bwBawp9J999e/ZNfwqrL T7yZav8fjWIeMsJ100koSUppr0scwg/uEQHuP0+zxeG/IYZUcBvDuTNlJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL7iB5QqOFBQ2AUgA+bcrRxIYYQGMB8GA1UdIwQY MBaAFEIUCIx3vRJof9S6n+MVnqgFiI7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAt N2UyMWRiNWEyZWY5LzEvdnVJSGxDbzRVRkRZQlNBRDV0eXRIRWhoaEFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAtN2UyMWRiNWEyZWY5 LzEvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBue0SMA0G CSqGSIb3DQEBCwUAA4IBAQAVIwMw7tNw4br0vKzuYr6opg3vPPKkrGhY3Y0yLgXP j5a1LwQWwW4OwdKxZKEscYb2bQUbiOwhz1PtszWLyTvPDgzoElYuv+Dshwt3dMNF AIPZu5/TYKHAh4jWrA7Wn82yO4aGYZuZnpMlTb7exahOL431DVVhYWJlOg53Dyp4 wpHqwPaBS2lMzZjy3cPmU2yMREFctJf/I6l5WsEA6b+H7xfE6Boq+Yx1yufB0oYb GLHzT73jTtGGI7UHTkVkbgGb9Hee/8sG5JvdXnQe+9S7Z4wsTvoVeY9PaPJ3IHHZ Ju7sqZLhNjQxvtcWE1XD4u+s1EGHfyACnDYpmfZhOmCl -----END CERTIFICATE-----Generated at Mon Jan 26 19:39:06 2026 by rpki-client