This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/vaYIteS5igEIIJAvOFUUxlbL9iw.roa File: vaYIteS5igEIIJAvOFUUxlbL9iw.roa (raw, json) Hash identifier: FZNQU0LvtoOoER0joQEpoEINbntZYjJgCFYakf2fGAY= Subject key identifier: BD:A6:08:B5:E4:B9:8A:01:08:20:90:2F:38:55:14:C6:56:CB:F6:2C Certificate issuer: /CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040 Certificate serial: 019B79EC1ACCC02289DB6047E7644CC58E51 Authority key identifier: 3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/vaYIteS5igEIIJAvOFUUxlbL9iw.roa Signing time: Thu 01 Jan 2026 14:17:55 +0000 ROA not before: Thu 01 Jan 2026 14:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215958 IP address blocks: 2a14:4900:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.crl rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.mft rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:1a:cc:c0:22:89:db:60:47:e7:64:4c:c5:8e:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040 Validity Not Before: Jan 1 14:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bda608b5e4b98a010820902f385514c656cbf62c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d6:84:ce:67:f5:c2:21:30:8e:48:23:bb:e7: 55:b1:5b:0c:7b:ba:43:79:c3:64:1e:d6:f0:c7:d5: ac:c6:aa:29:eb:74:7b:60:eb:6b:36:27:78:31:12: 06:4b:c7:31:97:8b:b6:e2:74:1f:66:1e:df:e2:2c: f9:b3:8b:c8:e6:00:41:43:8d:ed:5f:aa:50:2d:4d: e3:af:c0:20:e3:f7:60:70:7c:6b:7b:20:9c:8c:a5: 01:1f:0e:1b:d2:bc:bb:29:cf:29:cc:a1:45:59:8b: c5:84:0b:e5:75:d1:93:20:a6:eb:77:62:ab:6c:92: b3:09:f7:b2:5a:6d:f4:1b:c5:cd:d2:79:38:fb:2f: b6:01:b2:6d:d4:e2:0c:2b:94:ba:2e:a6:ad:c6:bd: 04:26:e9:16:8b:3e:21:23:df:aa:e2:52:16:1c:04: cb:44:b8:90:02:c8:62:70:75:d3:62:23:93:0e:8b: 4c:56:20:8f:88:f8:0f:02:1b:d8:93:f0:47:15:0f: bd:87:b9:22:31:4b:56:3a:4a:d4:0a:10:a3:1c:11: 99:64:81:95:24:e7:21:81:91:6f:fb:a0:b3:5e:e9: e1:22:d1:f0:f9:75:dd:44:51:47:05:86:0e:df:3d: c4:e9:68:4a:8e:8a:ec:63:fd:f4:3c:97:e5:fe:2d: 64:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A6:08:B5:E4:B9:8A:01:08:20:90:2F:38:55:14:C6:56:CB:F6:2C X509v3 Authority Key Identifier: keyid:3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/vaYIteS5igEIIJAvOFUUxlbL9iw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:4900:5900::/40 Signature Algorithm: sha256WithRSAEncryption a7:39:5c:02:1c:37:5b:2b:cd:8b:ec:6e:cf:ce:9a:c5:aa:91: 11:47:15:b0:85:04:d1:77:1f:2b:07:f8:17:33:ec:59:23:1c: 46:0d:74:8e:9c:6f:bf:e6:60:6e:43:8a:10:5b:5b:72:3f:3f: eb:32:53:6e:c9:7c:99:95:5b:3a:b8:39:1e:81:4a:33:69:1c: 47:6f:15:24:87:35:92:50:28:c4:9a:47:68:9e:6e:6f:e9:c3: 55:63:92:85:1e:c0:5b:80:42:e0:9c:59:2f:23:89:91:4e:f8: c9:e8:10:c6:11:85:c9:bd:17:10:4a:ba:32:73:7b:47:7d:9d: 85:44:ce:59:c7:f0:cf:aa:d0:2e:f9:1a:93:fc:62:1a:dd:f7: d5:69:93:be:42:3f:5a:6f:25:d6:7e:e2:b0:14:1a:2f:9a:f0: 67:a6:42:78:1d:d7:6f:75:26:6a:7d:1d:81:4a:f0:90:80:2d: b0:a6:31:af:07:e2:f7:f9:17:5e:14:4e:ae:a4:40:94:36:8e: cd:11:fa:4f:6b:44:92:35:9f:98:62:1c:7d:e9:17:e3:8c:49: c5:cc:92:55:2a:88:b7:46:4c:d9:02:92:05:3d:f9:fd:4e:26: 1c:83:d0:be:6a:de:7f:bd:17:68:1f:20:97:04:9d:15:ad:e1: 97:8d:09:91 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt57BrMwCKJ22BH52RMxY5RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiMGJmMThkNmJiZGIzM2RhODJmZTYxYTI4NjI0YmE3MmUy MzUwNDAwHhcNMjYwMTAxMTQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGE2MDhiNWU0Yjk4YTAxMDgyMDkwMmYzODU1MTRjNjU2Y2JmNjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntaEzmf1wiEwjkgju+dVsVsMe7pD ecNkHtbwx9Wsxqop63R7YOtrNid4MRIGS8cxl4u24nQfZh7f4iz5s4vI5gBBQ43t X6pQLU3jr8Ag4/dgcHxreyCcjKUBHw4b0ry7Kc8pzKFFWYvFhAvlddGTIKbrd2Kr bJKzCfeyWm30G8XN0nk4+y+2AbJt1OIMK5S6Lqatxr0EJukWiz4hI9+q4lIWHATL RLiQAshicHXTYiOTDotMViCPiPgPAhvYk/BHFQ+9h7kiMUtWOkrUChCjHBGZZIGV JOchgZFv+6CzXunhItHw+XXdRFFHBYYO3z3E6WhKjorsY/30PJfl/i1ksQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFL2mCLXkuYoBCCCQLzhVFMZWy/YsMB8GA1UdIwQY MBaAFDsL8Y1rvbM9qC/mGihiS6cuI1BAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3d2eGpXdTlzejJvTC1ZYUtHSkxweTRqVUVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS81ZGRlZTktYzFjNC00YjU3LWI2Yjgt ZDQ5OTE2YjVmMmI0LzEvdmFZSXRlUzVpZ0VJSUpBdk9GVVV4bGJMOWl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS81ZGRlZTktYzFjNC00YjU3LWI2YjgtZDQ5OTE2YjVmMmI0 LzEvT3d2eGpXdTlzejJvTC1ZYUtHSkxweTRqVUVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhRJAFkw DQYJKoZIhvcNAQELBQADggEBAKc5XAIcN1srzYvsbs/OmsWqkRFHFbCFBNF3HysH +Bcz7FkjHEYNdI6cb7/mYG5DihBbW3I/P+syU27JfJmVWzq4OR6BSjNpHEdvFSSH NZJQKMSaR2iebm/pw1VjkoUewFuAQuCcWS8jiZFO+MnoEMYRhcm9FxBKujJze0d9 nYVEzlnH8M+q0C75GpP8Yhrd99Vpk75CP1pvJdZ+4rAUGi+a8GemQngd1291Jmp9 HYFK8JCALbCmMa8H4vf5F14UTq6kQJQ2js0R+k9rRJI1n5hiHH3pF+OMScXMklUq iLdGTNkCkgU9+f1OJhyD0L5q3n+9F2gfIJcEnRWt4ZeNCZE= -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:10 2026 by rpki-client