This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/vnsB4kAOFnGsHN9CBVoZnqSF5lo.roa File: vnsB4kAOFnGsHN9CBVoZnqSF5lo.roa (raw, json) Hash identifier: WojFRS0zJ8gYXjOIS9R3kP7lD+l+nHPXLrf3+5L0IXQ= Subject key identifier: BE:7B:01:E2:40:0E:16:71:AC:1C:DF:42:05:5A:19:9E:A4:85:E6:5A Certificate issuer: /CN=61b866e323382caea961e7d2423e53cab5099131 Certificate serial: 019B7758927B47E1BA314D4FD6D022C1A230 Authority key identifier: 61:B8:66:E3:23:38:2C:AE:A9:61:E7:D2:42:3E:53:CA:B5:09:91:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/vnsB4kAOFnGsHN9CBVoZnqSF5lo.roa Signing time: Thu 01 Jan 2026 02:17:31 +0000 ROA not before: Thu 01 Jan 2026 02:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25540 IP address blocks: 185.33.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/Ybhm4yM4LK6pYefSQj5TyrUJkTE.crl rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/Ybhm4yM4LK6pYefSQj5TyrUJkTE.mft rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:92:7b:47:e1:ba:31:4d:4f:d6:d0:22:c1:a2:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b866e323382caea961e7d2423e53cab5099131 Validity Not Before: Jan 1 02:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be7b01e2400e1671ac1cdf42055a199ea485e65a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e7:79:73:80:36:94:0c:e9:27:4e:c2:44:f9: c9:fb:24:28:a0:ec:03:97:cb:be:f9:08:b0:69:ea: 29:20:e1:08:07:82:b9:53:b5:2e:13:e5:ed:e7:46: ae:a5:a1:96:a7:65:17:e2:f2:a1:86:ce:19:11:90: c6:77:1e:39:96:6a:9f:62:16:43:97:0d:97:4a:84: ef:b4:d6:e7:68:26:17:53:42:fa:23:0e:e7:19:11: 0d:c1:57:30:65:f8:cc:2e:6b:d6:28:62:13:86:ae: 81:2d:ba:f7:ea:19:2f:b9:d8:12:2d:06:04:c4:4d: c5:fc:03:b9:fa:18:56:be:0b:81:07:7e:07:92:71: 74:f9:9f:67:fb:62:82:64:10:43:be:de:de:0f:94: 78:99:15:c5:9a:e8:46:f5:d1:15:a5:c2:1f:90:69: e6:cd:ff:2b:74:65:f7:06:71:c3:f4:60:9a:d5:27: 3b:ea:1e:06:fa:41:e0:8d:99:11:e8:f1:a3:24:8e: cb:67:b2:e0:bf:8a:d4:a3:86:21:05:d0:23:cf:e8: 8f:4e:24:a8:f0:25:ba:af:63:5a:68:43:59:70:54: b2:34:85:1c:f5:2d:8b:be:5a:2f:ba:00:65:8e:88: 16:36:20:38:7d:b5:f4:fc:72:e8:81:bd:ba:ff:b5: b0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:7B:01:E2:40:0E:16:71:AC:1C:DF:42:05:5A:19:9E:A4:85:E6:5A X509v3 Authority Key Identifier: keyid:61:B8:66:E3:23:38:2C:AE:A9:61:E7:D2:42:3E:53:CA:B5:09:91:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/vnsB4kAOFnGsHN9CBVoZnqSF5lo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/Ybhm4yM4LK6pYefSQj5TyrUJkTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.33.12.0/24 Signature Algorithm: sha256WithRSAEncryption 95:d1:66:5f:72:a8:29:55:02:64:22:26:82:ec:7f:76:de:44: 9b:e3:1e:54:b5:17:4c:19:f0:f3:99:37:8c:6f:3e:f7:15:52: 24:c7:98:8b:18:fe:59:1b:ce:e7:ec:3e:73:76:7f:f0:a4:53: 9b:05:e0:69:e9:f4:6d:01:36:3b:7b:54:39:d0:f0:94:b4:4e: d3:d3:32:94:72:bf:9a:33:fb:2e:ff:43:e3:5f:91:77:f3:d1: f5:35:0a:6b:37:66:e3:cc:9d:c4:20:2d:8c:11:ac:3c:71:cc: 27:db:47:d5:92:49:8c:39:77:e4:2a:a9:11:24:06:63:7e:a7: 3d:b9:db:67:53:7d:a8:00:52:67:29:f6:e9:d6:0b:a7:81:77: 3a:71:3e:93:73:64:b8:bc:7f:d4:4d:ba:45:a1:9d:08:08:30: c0:33:8c:d4:a7:df:37:0f:c0:b5:66:a1:85:db:3c:ea:6e:3b: fb:95:9d:6d:0e:c4:7e:ea:01:a1:65:12:de:b6:ce:ff:96:ee: f1:16:fc:e3:14:7f:cf:ac:01:27:0a:e9:2f:be:c9:ab:c5:08: 1b:7a:37:9e:1e:2c:a2:fa:a1:cc:e6:54:84:7d:93:db:92:78: 27:a3:02:5c:fb:ea:d4:50:33:17:f9:0a:e3:0d:9a:4e:3c:c9: b2:5b:a4:86 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WJJ7R+G6MU1P1tAiwaIwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYjg2NmUzMjMzODJjYWVhOTYxZTdkMjQyM2U1M2NhYjUw OTkxMzEwHhcNMjYwMTAxMDIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTdiMDFlMjQwMGUxNjcxYWMxY2RmNDIwNTVhMTk5ZWE0ODVlNjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjud5c4A2lAzpJ07CRPnJ+yQooOwD l8u++QiwaeopIOEIB4K5U7UuE+Xt50aupaGWp2UX4vKhhs4ZEZDGdx45lmqfYhZD lw2XSoTvtNbnaCYXU0L6Iw7nGRENwVcwZfjMLmvWKGIThq6BLbr36hkvudgSLQYE xE3F/AO5+hhWvguBB34HknF0+Z9n+2KCZBBDvt7eD5R4mRXFmuhG9dEVpcIfkGnm zf8rdGX3BnHD9GCa1Sc76h4G+kHgjZkR6PGjJI7LZ7Lgv4rUo4YhBdAjz+iPTiSo 8CW6r2NaaENZcFSyNIUc9S2LvlovugBljogWNiA4fbX0/HLogb26/7WwgwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL57AeJADhZxrBzfQgVaGZ6kheZaMB8GA1UdIwQY MBaAFGG4ZuMjOCyuqWHn0kI+U8q1CZExMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWJobTR5TTRMSzZwWWVmU1FqNVR5clVKa1RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS80ZWY0YTktNmQ5Ni00OTg5LTljODEt ZDkyZTY4ZGZmZmU0LzEvdm5zQjRrQU9GbkdzSE45Q0JWb1pucVNGNWxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS80ZWY0YTktNmQ5Ni00OTg5LTljODEtZDkyZTY4ZGZmZmU0 LzEvWWJobTR5TTRMSzZwWWVmU1FqNVR5clVKa1RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSEMMA0G CSqGSIb3DQEBCwUAA4IBAQCV0WZfcqgpVQJkIiaC7H923kSb4x5UtRdMGfDzmTeM bz73FVIkx5iLGP5ZG87n7D5zdn/wpFObBeBp6fRtATY7e1Q50PCUtE7T0zKUcr+a M/su/0PjX5F389H1NQprN2bjzJ3EIC2MEaw8ccwn20fVkkmMOXfkKqkRJAZjfqc9 udtnU32oAFJnKfbp1gungXc6cT6Tc2S4vH/UTbpFoZ0ICDDAM4zUp983D8C1ZqGF 2zzqbjv7lZ1tDsR+6gGhZRLets7/lu7xFvzjFH/PrAEnCukvvsmrxQgbejeeHiyi +qHM5lSEfZPbkngnowJc++rUUDMX+QrjDZpOPMmyW6SG -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:32 2026 by rpki-client