This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/a9206e-c1e1-4c15-9533-ace3d675d3cd/1/vwVgz0AlWqP316EcZY-4ylK0yIA.roa File: vwVgz0AlWqP316EcZY-4ylK0yIA.roa (raw, json) Hash identifier: FuDRoo1XnKDsM6Yjjqt7YCB9VBp4VwF44kzWhYXP7o4= Subject key identifier: BF:05:60:CF:40:25:5A:A3:F7:D7:A1:1C:65:8F:B8:CA:52:B4:C8:80 Certificate issuer: /CN=f98a02d20c6b7de357125f38b1735ca1b91f87b3 Certificate serial: 019B78A251EB84531D509DE11100895D77AC Authority key identifier: F9:8A:02:D2:0C:6B:7D:E3:57:12:5F:38:B1:73:5C:A1:B9:1F:87:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YoC0gxrfeNXEl84sXNcobkfh7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/a9206e-c1e1-4c15-9533-ace3d675d3cd/1/vwVgz0AlWqP316EcZY-4ylK0yIA.roa Signing time: Thu 01 Jan 2026 08:17:42 +0000 ROA not before: Thu 01 Jan 2026 08:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212330 IP address blocks: 185.21.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/a9206e-c1e1-4c15-9533-ace3d675d3cd/1/1-YoC0gxrfeNXEl84sXNcobkfh7M.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/a9206e-c1e1-4c15-9533-ace3d675d3cd/1/1-YoC0gxrfeNXEl84sXNcobkfh7M.mft rsync://rpki.ripe.net/repository/DEFAULT/1-YoC0gxrfeNXEl84sXNcobkfh7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:51:eb:84:53:1d:50:9d:e1:11:00:89:5d:77:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f98a02d20c6b7de357125f38b1735ca1b91f87b3 Validity Not Before: Jan 1 08:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf0560cf40255aa3f7d7a11c658fb8ca52b4c880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9d:37:ed:d7:22:0e:68:0f:71:a5:5a:7a:6f: 36:75:ff:4b:f4:19:34:b5:27:91:f0:86:46:6e:68: 0f:f4:95:da:b5:5f:5c:b4:d4:74:4d:15:c7:a0:31: 2f:39:54:36:be:46:a1:2d:83:2a:c4:b9:b6:91:15: ea:fb:a6:37:d1:fc:62:0d:63:80:7f:c8:db:b8:23: dc:4a:40:19:59:bf:ef:6d:a6:e9:36:11:9a:ca:1b: 56:ce:e0:73:86:b4:93:6e:7a:f7:fe:ec:ad:5c:df: b9:43:1a:e4:98:b6:c5:b7:30:97:0e:8f:95:7e:45: 57:cc:36:42:42:18:6b:16:8c:1a:2a:04:73:36:5a: 52:df:bd:9a:bb:16:e3:68:86:c8:72:e4:9e:76:c9: 1e:ae:62:d4:99:97:38:42:7c:90:9d:3a:ae:25:c5: f6:a2:4e:43:4d:ea:f5:8c:dc:54:1c:fc:78:8e:0e: 90:6f:db:a6:8d:83:2b:af:fe:8a:84:29:46:89:fa: e3:0f:d4:64:c2:97:30:79:e7:ec:76:cd:a3:41:8d: 4e:2f:74:2f:55:b8:40:93:15:fb:68:3c:31:c2:b3: 1b:68:63:d3:6a:e8:66:d6:91:ea:8b:17:ae:18:be: 96:b6:43:d7:ad:56:06:89:69:06:b3:d5:0a:1b:51: 71:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:05:60:CF:40:25:5A:A3:F7:D7:A1:1C:65:8F:B8:CA:52:B4:C8:80 X509v3 Authority Key Identifier: keyid:F9:8A:02:D2:0C:6B:7D:E3:57:12:5F:38:B1:73:5C:A1:B9:1F:87:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YoC0gxrfeNXEl84sXNcobkfh7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/a9206e-c1e1-4c15-9533-ace3d675d3cd/1/vwVgz0AlWqP316EcZY-4ylK0yIA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/a9206e-c1e1-4c15-9533-ace3d675d3cd/1/1-YoC0gxrfeNXEl84sXNcobkfh7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.21.139.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:95:d1:33:2c:5f:61:dd:52:af:f9:bc:3b:87:cc:9c:07:34: 55:5b:ba:ac:a3:5f:8f:34:24:93:e1:10:4e:39:da:f5:4f:4e: ce:e1:82:0a:68:78:b0:2e:80:eb:25:d8:ec:c7:4b:f0:09:5c: e1:a7:92:2e:54:4a:1f:f9:d1:02:b3:14:42:6e:cf:dd:10:37: ca:ba:e9:91:ae:4e:fd:95:aa:fd:83:49:19:7a:84:e3:16:11: 6c:e0:ab:c8:79:cd:22:29:8b:0f:18:f0:6a:3a:83:b9:69:97: 49:c4:9e:07:9c:2d:9d:97:c8:69:08:9e:f2:ee:fd:46:e3:a5: b5:b8:75:aa:20:33:31:0d:ef:f8:3a:07:3c:eb:6e:10:ee:c7: 30:c9:9c:33:98:e0:55:2e:13:de:85:49:8f:f9:0a:6a:f3:3b: a4:ea:d8:1d:af:5b:77:90:37:99:6b:a9:8f:bc:ae:2d:4a:18: 3f:55:6e:24:bd:2f:c9:15:16:8b:be:69:b2:90:7c:9e:72:b0: 8e:5d:da:1c:fa:96:dd:56:d6:22:5e:2e:59:7d:86:11:18:bb: 97:8f:ae:6e:2f:65:47:ae:d6:4b:8c:dc:4a:31:59:2c:62:78: 68:e0:b7:b0:bd:c9:a8:fc:b9:fc:ef:f0:b3:67:f0:bf:7a:f3: 5d:45:3c:5b -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt4olHrhFMdUJ3hEQCJXXesMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5OGEwMmQyMGM2YjdkZTM1NzEyNWYzOGIxNzM1Y2ExYjkx Zjg3YjMwHhcNMjYwMTAxMDgxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjA1NjBjZjQwMjU1YWEzZjdkN2ExMWM2NThmYjhjYTUyYjRjODgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZ037dciDmgPcaVaem82df9L9Bk0 tSeR8IZGbmgP9JXatV9ctNR0TRXHoDEvOVQ2vkahLYMqxLm2kRXq+6Y30fxiDWOA f8jbuCPcSkAZWb/vbabpNhGayhtWzuBzhrSTbnr3/uytXN+5QxrkmLbFtzCXDo+V fkVXzDZCQhhrFowaKgRzNlpS372auxbjaIbIcuSedskermLUmZc4QnyQnTquJcX2 ok5DTer1jNxUHPx4jg6Qb9umjYMrr/6KhClGifrjD9Rkwpcweefsds2jQY1OL3Qv VbhAkxX7aDwxwrMbaGPTauhm1pHqixeuGL6WtkPXrVYGiWkGs9UKG1FxXQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFL8FYM9AJVqj99ehHGWPuMpStMiAMB8GA1UdIwQY MBaAFPmKAtIMa33jVxJfOLFzXKG5H4ezMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1Zb0MwZ3hyZmVOWEVsODRzWE5jb2JrZmg3TS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2IvYTkyMDZlLWMxZTEtNGMxNS05NTMz LWFjZTNkNjc1ZDNjZC8xL3Z3Vmd6MEFsV3FQMzE2RWNaWS00eWxLMHlJQS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvN2IvYTkyMDZlLWMxZTEtNGMxNS05NTMzLWFjZTNkNjc1ZDNj ZC8xLzEtWW9DMGd4cmZlTlhFbDg0c1hOY29ia2ZoN00uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5FYsw DQYJKoZIhvcNAQELBQADggEBAAyV0TMsX2HdUq/5vDuHzJwHNFVbuqyjX480JJPh EE452vVPTs7hggpoeLAugOsl2OzHS/AJXOGnki5USh/50QKzFEJuz90QN8q66ZGu Tv2Vqv2DSRl6hOMWEWzgq8h5zSIpiw8Y8Go6g7lpl0nEngecLZ2XyGkInvLu/Ubj pbW4daogMzEN7/g6BzzrbhDuxzDJnDOY4FUuE96FSY/5CmrzO6Tq2B2vW3eQN5lr qY+8ri1KGD9VbiS9L8kVFou+abKQfJ5ysI5d2hz6lt1W1iJeLll9hhEYu5ePrm4v ZUeu1kuM3EoxWSxieGjgt7C9yaj8ufzv8LNn8L96811FPFs= -----END CERTIFICATE-----Generated at Sun Jan 25 08:00:22 2026 by rpki-client