This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/VrGbU3QOrHG9m3kuxOwRhUx6Wbg.roa File: VrGbU3QOrHG9m3kuxOwRhUx6Wbg.roa (raw, json) Hash identifier: hDz07lJqNzJNY545cD3FDRksWHSBVWWDKwpbA8KVi0Q= Subject key identifier: 56:B1:9B:53:74:0E:AC:71:BD:9B:79:2E:C4:EC:11:85:4C:7A:59:B8 Certificate issuer: /CN=64f873adb6a1f3e81b3343c74998947526c43dcf Certificate serial: 019B78A33DF351D58662DC9C5032128868EA Authority key identifier: 64:F8:73:AD:B6:A1:F3:E8:1B:33:43:C7:49:98:94:75:26:C4:3D:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPhzrbah8-gbM0PHSZiUdSbEPc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/VrGbU3QOrHG9m3kuxOwRhUx6Wbg.roa Signing time: Thu 01 Jan 2026 08:18:42 +0000 ROA not before: Thu 01 Jan 2026 08:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61234 IP address blocks: 91.198.224.0/24 maxlen: 24 194.145.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/ZPhzrbah8-gbM0PHSZiUdSbEPc8.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/ZPhzrbah8-gbM0PHSZiUdSbEPc8.mft rsync://rpki.ripe.net/repository/DEFAULT/ZPhzrbah8-gbM0PHSZiUdSbEPc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:3d:f3:51:d5:86:62:dc:9c:50:32:12:88:68:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64f873adb6a1f3e81b3343c74998947526c43dcf Validity Not Before: Jan 1 08:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=56b19b53740eac71bd9b792ec4ec11854c7a59b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:34:fa:f3:06:b4:04:63:04:01:2c:db:de:4a: bf:1c:38:e4:9e:e9:49:ff:ec:9f:84:ed:9e:67:69: 5b:e0:78:7a:dc:f6:0f:82:7a:65:5a:55:9b:67:a1: e0:ff:2c:42:7e:24:c9:91:39:59:e2:ee:bd:58:a1: 7b:9d:3a:46:61:7a:bf:5f:34:1f:fb:71:82:7b:e7: 20:02:ea:30:c9:3a:61:1a:e0:ce:5c:9f:b7:71:70: b6:a8:ba:e8:e2:9d:ce:bf:c8:9b:4c:9f:1d:29:30: ae:df:cc:ab:f6:8b:9f:ea:cd:c2:f6:6d:aa:c3:c3: 4b:4c:73:84:15:ff:15:57:af:87:a4:99:7d:b0:f2: 00:82:3a:ea:3a:72:b2:d5:db:db:2f:7f:fe:63:70: c6:61:68:67:45:c6:12:ba:7c:21:a5:97:1d:73:72: 76:61:91:d0:46:f5:22:12:b7:2b:6f:da:a0:2e:81: 85:70:38:ba:55:e2:72:07:2b:fc:b3:21:e8:c8:f8: 8f:5c:23:e1:a0:05:99:44:36:bf:70:a4:c6:d2:d1: 92:b2:cc:25:55:78:4c:38:a7:a3:d7:19:66:8d:ef: dc:ac:2a:3e:85:68:bf:39:11:a3:01:59:42:3e:bd: bf:78:13:f2:3b:e4:e5:1e:59:24:ea:65:59:f1:e5: 27:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B1:9B:53:74:0E:AC:71:BD:9B:79:2E:C4:EC:11:85:4C:7A:59:B8 X509v3 Authority Key Identifier: keyid:64:F8:73:AD:B6:A1:F3:E8:1B:33:43:C7:49:98:94:75:26:C4:3D:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPhzrbah8-gbM0PHSZiUdSbEPc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/VrGbU3QOrHG9m3kuxOwRhUx6Wbg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/ZPhzrbah8-gbM0PHSZiUdSbEPc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.224.0/24 194.145.224.0/24 Signature Algorithm: sha256WithRSAEncryption 45:d6:88:53:3e:c1:60:6d:2a:53:bb:b5:7c:a2:e9:7c:eb:05: 19:73:31:1e:be:fb:fd:95:4b:0a:d6:a5:e9:1b:75:f8:8a:61: 66:22:42:06:3f:0a:3c:1d:6b:0a:c6:93:47:71:9d:b9:e8:c1: 0f:35:55:a4:d4:26:fa:4c:7f:2b:5d:13:59:cc:2f:4f:83:42: c1:03:bd:6b:73:36:1e:33:a7:f4:17:b3:7d:54:3c:e6:be:84: bf:1a:00:c2:f2:cb:19:bd:cd:eb:42:23:c8:03:bc:5e:62:f6: 83:3a:8f:5f:9e:b1:e9:1c:f4:7d:da:8a:0e:6f:10:67:43:2c: 7c:fe:f1:02:2d:5c:eb:d8:ad:06:f0:49:b1:f2:5c:ec:4f:2a: 9d:f9:e4:dc:c6:30:88:e9:97:1b:b8:ff:80:7c:b9:e9:79:10: 4e:1f:25:ee:e2:09:3d:80:e7:91:c8:3b:dd:3d:ec:cb:a4:1f: 4b:10:d6:b7:55:51:d6:3d:66:ff:d4:1e:89:db:a6:45:1b:0f: f4:c5:6f:61:3c:6b:ff:7e:0a:bc:fa:7f:e2:b3:8c:0d:62:b8: 8f:8d:a6:56:d3:70:43:17:4d:af:92:a1:ba:fc:23:4f:81:eb: 95:34:a8:6a:6e:7e:5e:bc:52:9a:fe:f6:e8:7c:b6:b4:55:8e: 95:b0:48:af -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4oz3zUdWGYtycUDISiGjqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0Zjg3M2FkYjZhMWYzZTgxYjMzNDNjNzQ5OTg5NDc1MjZj NDNkY2YwHhcNMjYwMTAxMDgxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NmIxOWI1Mzc0MGVhYzcxYmQ5Yjc5MmVjNGVjMTE4NTRjN2E1OWI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7zT68wa0BGMEASzb3kq/HDjknulJ /+yfhO2eZ2lb4Hh63PYPgnplWlWbZ6Hg/yxCfiTJkTlZ4u69WKF7nTpGYXq/XzQf +3GCe+cgAuowyTphGuDOXJ+3cXC2qLro4p3Ov8ibTJ8dKTCu38yr9ouf6s3C9m2q w8NLTHOEFf8VV6+HpJl9sPIAgjrqOnKy1dvbL3/+Y3DGYWhnRcYSunwhpZcdc3J2 YZHQRvUiErcrb9qgLoGFcDi6VeJyByv8syHoyPiPXCPhoAWZRDa/cKTG0tGSsswl VXhMOKej1xlmje/crCo+hWi/ORGjAVlCPr2/eBPyO+TlHlkk6mVZ8eUnUwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFaxm1N0DqxxvZt5LsTsEYVMelm4MB8GA1UdIwQY MBaAFGT4c622ofPoGzNDx0mYlHUmxD3PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlBoenJiYWg4LWdiTTBQSFNaaVVkU2JFUGM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9iOWU0YzQtYTNkYy00NmU4LWFhM2Ut Mzk3ZjM2YzkxOTgyLzEvVnJHYlUzUU9ySEc5bTNrdXhPd1JoVXg2V2JnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi9iOWU0YzQtYTNkYy00NmU4LWFhM2UtMzk3ZjM2YzkxOTgy LzEvWlBoenJiYWg4LWdiTTBQSFNaaVVkU2JFUGM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW8bgAwQA wpHgMA0GCSqGSIb3DQEBCwUAA4IBAQBF1ohTPsFgbSpTu7V8oul86wUZczEevvv9 lUsK1qXpG3X4imFmIkIGPwo8HWsKxpNHcZ256MEPNVWk1Cb6TH8rXRNZzC9Pg0LB A71rczYeM6f0F7N9VDzmvoS/GgDC8ssZvc3rQiPIA7xeYvaDOo9fnrHpHPR92ooO bxBnQyx8/vECLVzr2K0G8Emx8lzsTyqd+eTcxjCI6ZcbuP+AfLnpeRBOHyXu4gk9 gOeRyDvdPezLpB9LENa3VVHWPWb/1B6J26ZFGw/0xW9hPGv/fgq8+n/is4wNYriP jaZW03BDF02vkqG6/CNPgeuVNKhqbn5evFKa/vbofLa0VY6VsEiv -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:34 2026 by rpki-client