This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/VPUxhPPZmQ_t2CIuXRULtvCIntQ.roa File: VPUxhPPZmQ_t2CIuXRULtvCIntQ.roa (raw, json) Hash identifier: JY2qHw8weIuLNMEIKFHTYHWziuYJ8rjpGWgwgLDsJ48= Subject key identifier: 54:F5:31:84:F3:D9:99:0F:ED:D8:22:2E:5D:15:0B:B6:F0:88:9E:D4 Certificate issuer: /CN=9d07041fe55591e4e2236a40f43900ef26ef045e Certificate serial: 019B7FF28F6702E75C962DD6C02E8B374D89 Authority key identifier: 9D:07:04:1F:E5:55:91:E4:E2:23:6A:40:F4:39:00:EF:26:EF:04:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/VPUxhPPZmQ_t2CIuXRULtvCIntQ.roa Signing time: Fri 02 Jan 2026 18:22:41 +0000 ROA not before: Fri 02 Jan 2026 18:22:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31382 IP address blocks: 2001:67c:2248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.mft rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:8f:67:02:e7:5c:96:2d:d6:c0:2e:8b:37:4d:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d07041fe55591e4e2236a40f43900ef26ef045e Validity Not Before: Jan 2 18:22:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=54f53184f3d9990fedd8222e5d150bb6f0889ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:1f:ce:b5:7e:4e:60:60:41:bd:6a:14:0a:8d: d7:80:e3:1d:ec:f1:01:72:14:36:67:b2:d2:95:2c: 0e:8b:a2:cb:37:fe:3f:95:94:f6:61:79:fd:7c:5f: f0:bc:f4:6e:ae:5c:49:59:ef:bb:aa:c6:6c:30:fe: 5e:a6:8d:df:dc:04:bd:c7:38:e6:d5:5b:c4:b5:26: 92:03:ab:c7:e6:92:25:ac:89:b3:68:6b:3f:f0:66: a5:0a:07:ba:90:c9:1a:23:d6:3f:ba:ce:df:b3:5b: d5:11:32:c4:14:85:58:e7:ea:a5:45:4a:76:22:82: b5:b3:14:90:db:6b:a4:78:fb:dc:c2:97:44:a2:9f: fa:d2:d9:b3:b4:89:64:ca:af:1a:26:78:4d:94:a6: 3e:47:f0:38:05:d5:6c:92:2c:e6:7c:d4:ff:9b:f0: 6c:03:69:b1:71:50:9c:da:e3:64:91:95:2d:1a:e5: 5d:6e:bd:cd:b0:23:6a:90:48:d2:99:99:20:ee:32: 50:05:03:cb:c1:71:d2:ac:c2:6e:52:12:27:8c:c5: 25:a4:39:dc:b1:b5:28:1c:fa:b1:02:73:70:1d:ed: 7c:2b:77:33:e6:95:87:25:de:b4:a7:be:67:72:36: d9:1e:18:25:77:37:29:f6:e9:c4:c4:8c:a8:13:6b: df:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F5:31:84:F3:D9:99:0F:ED:D8:22:2E:5D:15:0B:B6:F0:88:9E:D4 X509v3 Authority Key Identifier: keyid:9D:07:04:1F:E5:55:91:E4:E2:23:6A:40:F4:39:00:EF:26:EF:04:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQcEH-VVkeTiI2pA9DkA7ybvBF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/VPUxhPPZmQ_t2CIuXRULtvCIntQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1356a8-891c-4ee1-b6d9-74746989ac92/1/nQcEH-VVkeTiI2pA9DkA7ybvBF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2248::/48 Signature Algorithm: sha256WithRSAEncryption 12:37:2e:d2:ad:86:d6:25:46:90:b5:83:6e:80:2c:97:0f:b2: 10:a5:49:08:04:4a:f7:de:b6:12:84:cc:8c:3c:57:b1:c3:b9: e5:57:b6:ab:cc:21:00:5f:da:bd:f7:d3:9e:71:51:94:53:65: 23:a5:45:ff:0b:84:34:5b:a0:27:1e:c7:00:19:b2:da:92:09: b6:1f:0a:30:19:d4:bf:c3:c8:6b:57:15:2c:23:b2:35:be:ce: 07:bc:4c:0b:17:00:4c:7a:e9:e1:52:c1:2a:75:94:8a:fa:02: 04:c1:ef:38:a2:ed:47:85:0f:be:fc:aa:c7:69:cc:d8:21:7d: 77:d5:cf:41:1b:ed:6b:81:4c:4e:1d:c5:3c:d8:80:fe:a0:39: eb:cb:53:3b:ed:f2:41:4c:13:40:6b:94:cd:34:29:4f:09:6b: d0:05:57:13:53:8f:8e:46:95:73:b8:5f:cf:32:81:3e:cc:90: 2e:32:2c:0c:14:b4:dd:17:a6:3d:d9:e9:bc:ce:84:fd:20:96: 78:2d:54:57:d5:0a:6e:5e:49:ef:b8:db:15:c3:5a:ef:db:96: a7:43:04:cf:4e:f3:e9:e0:47:53:1a:93:e5:21:1d:23:93:ea: f3:fe:c1:89:f7:30:9a:bd:96:50:17:d3:c3:ad:be:a1:1d:fe: d2:6a:33:d1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/8o9nAudcli3WwC6LN02JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMDcwNDFmZTU1NTkxZTRlMjIzNmE0MGY0MzkwMGVmMjZl ZjA0NWUwHhcNMjYwMTAyMTgyMjQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NGY1MzE4NGYzZDk5OTBmZWRkODIyMmU1ZDE1MGJiNmYwODg5ZWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmR/OtX5OYGBBvWoUCo3XgOMd7PEB chQ2Z7LSlSwOi6LLN/4/lZT2YXn9fF/wvPRurlxJWe+7qsZsMP5epo3f3AS9xzjm 1VvEtSaSA6vH5pIlrImzaGs/8GalCge6kMkaI9Y/us7fs1vVETLEFIVY5+qlRUp2 IoK1sxSQ22ukePvcwpdEop/60tmztIlkyq8aJnhNlKY+R/A4BdVskizmfNT/m/Bs A2mxcVCc2uNkkZUtGuVdbr3NsCNqkEjSmZkg7jJQBQPLwXHSrMJuUhInjMUlpDnc sbUoHPqxAnNwHe18K3cz5pWHJd60p75ncjbZHhgldzcp9unExIyoE2vf+wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFT1MYTz2ZkP7dgiLl0VC7bwiJ7UMB8GA1UdIwQY MBaAFJ0HBB/lVZHk4iNqQPQ5AO8m7wReMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8xMzU2YTgtODkxYy00ZWUxLWI2ZDkt NzQ3NDY5ODlhYzkyLzEvVlBVeGhQUFptUV90MkNJdVhSVUx0dkNJbnRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny8xMzU2YTgtODkxYy00ZWUxLWI2ZDktNzQ3NDY5ODlhYzky LzEvblFjRUgtVlZrZVRpSTJwQTlEa0E3eWJ2QkY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCJI MA0GCSqGSIb3DQEBCwUAA4IBAQASNy7SrYbWJUaQtYNugCyXD7IQpUkIBEr33rYS hMyMPFexw7nlV7arzCEAX9q999OecVGUU2UjpUX/C4Q0W6AnHscAGbLakgm2Hwow GdS/w8hrVxUsI7I1vs4HvEwLFwBMeunhUsEqdZSK+gIEwe84ou1HhQ++/KrHaczY IX131c9BG+1rgUxOHcU82ID+oDnry1M77fJBTBNAa5TNNClPCWvQBVcTU4+ORpVz uF/PMoE+zJAuMiwMFLTdF6Y92em8zoT9IJZ4LVRX1QpuXknvuNsVw1rv25anQwTP TvPp4EdTGpPlIR0jk+rz/sGJ9zCavZZQF9PDrb6hHf7SajPR -----END CERTIFICATE-----Generated at Mon Jan 26 21:11:58 2026 by rpki-client