This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/vQfybJN1vj3HPY9kWRsovScXZXI.roa File: vQfybJN1vj3HPY9kWRsovScXZXI.roa (raw, json) Hash identifier: ll+3viF1WTZimDNWVnvJ31MIidphJFjh34BpRL2uHLk= Subject key identifier: BD:07:F2:6C:93:75:BE:3D:C7:3D:8F:64:59:1B:28:BD:27:17:65:72 Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019B7E392993AB4800CD7EB33AF6F6621FF6 Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/vQfybJN1vj3HPY9kWRsovScXZXI.roa Signing time: Fri 02 Jan 2026 10:20:34 +0000 ROA not before: Fri 02 Jan 2026 10:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 393886 IP address blocks: 152.163.0.0/22 maxlen: 22 152.163.12.0/22 maxlen: 22 152.163.64.0/22 maxlen: 22 152.163.100.0/22 maxlen: 22 152.163.112.0/22 maxlen: 22 152.163.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:29:93:ab:48:00:cd:7e:b3:3a:f6:f6:62:1f:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Jan 2 10:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd07f26c9375be3dc73d8f64591b28bd27176572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8b:9a:51:4d:4a:9a:4d:8f:31:a8:81:56:60: 6d:79:33:b0:62:30:fa:37:f8:38:a2:b5:9e:ae:75: d4:a2:c6:4d:53:1a:79:3c:fe:0b:88:3a:d5:6e:b2: 33:57:fc:02:c3:6a:f4:31:ab:17:b5:ae:9c:39:ee: 72:fd:1b:08:43:d9:df:41:ca:8a:7b:30:9e:50:9c: 78:9f:b1:f2:fb:bd:2b:5b:66:d8:5e:5e:c6:d9:e5: 82:4a:2c:60:1e:64:fa:ad:75:cd:10:c1:f7:67:6c: 2e:cb:26:e6:49:05:9f:36:57:2f:6d:de:03:8a:f5: 1d:39:a3:91:e6:03:e9:0c:d4:88:f9:8a:a4:2a:82: be:85:d9:60:f0:7f:85:9a:c3:76:af:e3:60:12:3a: ff:b1:3e:84:17:35:c0:06:56:f7:1a:c4:22:d3:bd: 9e:5c:8f:8a:ea:aa:3b:8c:60:d8:b7:1c:3c:ed:bd: 45:d6:ef:18:97:48:15:96:76:e0:0a:be:f1:9a:79: cc:94:86:b1:f0:f4:35:05:93:d7:d3:5d:1f:33:60: 27:c9:78:96:7a:2a:bf:1a:00:78:95:8b:c5:29:ab: 5a:5c:01:66:07:cd:9a:a4:d7:33:d8:0b:f9:1d:9b: 5e:b3:61:a8:85:81:7b:e1:5a:1e:97:a0:d7:4c:2d: 8d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:07:F2:6C:93:75:BE:3D:C7:3D:8F:64:59:1B:28:BD:27:17:65:72 X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/vQfybJN1vj3HPY9kWRsovScXZXI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.163.0.0/22 152.163.12.0/22 152.163.64.0/22 152.163.100.0/22 152.163.112.0/22 152.163.120.0/22 Signature Algorithm: sha256WithRSAEncryption a2:aa:3b:f0:a8:71:f4:f4:18:2c:85:ef:d3:b4:50:a2:50:e4: 6c:81:ec:a5:22:97:f1:48:14:9e:57:cf:b8:c9:1b:44:75:12: ab:ae:f1:32:c2:4f:75:fc:10:4b:80:41:cf:d7:f4:72:9a:40: 37:6b:63:db:8e:47:eb:56:a9:68:4e:c2:b7:ad:f8:38:3e:75: ec:cf:7c:58:52:7c:ff:b7:b3:6b:9e:e5:51:ed:bd:68:92:b6: b5:d5:8e:10:21:b9:e8:a8:55:14:9f:04:9f:4b:23:5d:fe:58: 5d:01:bf:9e:7b:cd:3e:60:57:98:a5:6b:2d:65:35:4c:a8:b8: cf:1f:62:fd:7c:cf:e1:d6:5c:cd:69:c1:b1:a8:56:3f:fd:18: 5d:6f:d2:f4:42:ae:df:a0:b7:57:ec:28:ce:65:c7:31:b7:c0: 8c:eb:5a:27:30:82:de:e3:43:1d:99:ac:4b:23:62:b6:cb:a8: 73:d4:01:7c:1b:bb:3b:40:d6:5d:55:92:36:19:8e:fd:5e:fb: ac:bf:53:cd:93:cc:cd:03:16:4e:92:06:87:f8:ba:32:cf:e0: 39:d3:24:ea:9b:c7:77:cd:53:8f:5c:b8:06:e9:48:0a:5e:3d: a0:77:56:83:ca:96:6d:1c:40:2a:f9:9a:19:ce:c4:bf:67:d2: be:68:df:98 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt+OSmTq0gAzX6zOvb2Yh/2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjYwMTAyMTAyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDA3ZjI2YzkzNzViZTNkYzczZDhmNjQ1OTFiMjhiZDI3MTc2NTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArouaUU1Kmk2PMaiBVmBteTOwYjD6 N/g4orWernXUosZNUxp5PP4LiDrVbrIzV/wCw2r0MasXta6cOe5y/RsIQ9nfQcqK ezCeUJx4n7Hy+70rW2bYXl7G2eWCSixgHmT6rXXNEMH3Z2wuyybmSQWfNlcvbd4D ivUdOaOR5gPpDNSI+YqkKoK+hdlg8H+FmsN2r+NgEjr/sT6EFzXABlb3GsQi072e XI+K6qo7jGDYtxw87b1F1u8Yl0gVlnbgCr7xmnnMlIax8PQ1BZPX010fM2AnyXiW eiq/GgB4lYvFKataXAFmB82apNcz2Av5HZtes2GohYF74Voel6DXTC2N3wIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFL0H8myTdb49xz2PZFkbKL0nF2VyMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvdlFmeWJKTjF2ajNIUFk5a1dSc292U2NYWlhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCmKMAAwQC mKMMAwQCmKNAAwQCmKNkAwQCmKNwAwQCmKN4MA0GCSqGSIb3DQEBCwUAA4IBAQCi qjvwqHH09Bgshe/TtFCiUORsgeylIpfxSBSeV8+4yRtEdRKrrvEywk91/BBLgEHP 1/RymkA3a2PbjkfrVqloTsK3rfg4PnXsz3xYUnz/t7NrnuVR7b1okra11Y4QIbno qFUUnwSfSyNd/lhdAb+ee80+YFeYpWstZTVMqLjPH2L9fM/h1lzNacGxqFY//Rhd b9L0Qq7foLdX7CjOZccxt8CM61onMILe40MdmaxLI2K2y6hz1AF8G7s7QNZdVZI2 GY79Xvusv1PNk8zNAxZOkgaH+Loyz+A50yTqm8d3zVOPXLgG6UgKXj2gd1aDypZt HEAq+ZoZzsS/Z9K+aN+Y -----END CERTIFICATE-----Generated at Sun Jan 25 17:39:21 2026 by rpki-client