This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/vFI2x1fy3xps2xAf3f_h_9yy-Tg.roa File: vFI2x1fy3xps2xAf3f_h_9yy-Tg.roa (raw, json) Hash identifier: TtgylUr0tbdZiUoUKT4r/viS1heMVtVcTRSM+MrqZkU= Subject key identifier: BC:52:36:C7:57:F2:DF:1A:6C:DB:10:1F:DD:FF:E1:FF:DC:B2:F9:38 Certificate issuer: /CN=50bb4c781a5b393ff07fb405e528179f5ab87726 Certificate serial: 019B7EA6554A28C95AF8CF00F2DACE90916C Authority key identifier: 50:BB:4C:78:1A:5B:39:3F:F0:7F:B4:05:E5:28:17:9F:5A:B8:77:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULtMeBpbOT_wf7QF5SgXn1q4dyY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/vFI2x1fy3xps2xAf3f_h_9yy-Tg.roa Signing time: Fri 02 Jan 2026 12:19:48 +0000 ROA not before: Fri 02 Jan 2026 12:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1103 IP address blocks: 129.125.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/ULtMeBpbOT_wf7QF5SgXn1q4dyY.crl rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/ULtMeBpbOT_wf7QF5SgXn1q4dyY.mft rsync://rpki.ripe.net/repository/DEFAULT/ULtMeBpbOT_wf7QF5SgXn1q4dyY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:55:4a:28:c9:5a:f8:cf:00:f2:da:ce:90:91:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50bb4c781a5b393ff07fb405e528179f5ab87726 Validity Not Before: Jan 2 12:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc5236c757f2df1a6cdb101fddffe1ffdcb2f938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f0:6c:e2:1a:a0:5b:3b:28:96:e5:ed:ec:c4: 1f:8e:74:d0:93:9f:1b:ef:4a:d9:a7:46:5e:77:38: 08:2c:8e:2e:88:c9:80:12:5a:b2:b6:5c:89:da:b6: 3b:11:80:26:50:a9:7a:f9:74:b5:1b:1b:a2:94:48: 61:7f:17:3b:e3:6c:fe:5d:3c:c0:3e:cc:5b:66:42: a1:bc:19:be:13:32:23:33:b3:b6:00:b5:af:a7:f3: 86:71:ce:eb:5a:e5:e7:c5:d0:b2:11:f4:6d:48:98: 7c:37:74:fd:58:35:90:8e:c3:a2:9c:20:54:db:71: b2:71:e7:b4:37:6b:4a:79:8d:97:06:9c:1a:7b:80: 75:5b:94:23:05:e0:68:d3:41:b2:4b:9a:ec:9c:3e: 87:8f:39:7b:d7:8f:51:4b:f9:75:60:10:aa:7f:20: 93:1e:1c:0b:ef:ab:5d:2d:33:e5:6d:9b:8f:59:5c: 93:98:22:0b:87:fa:17:f4:8e:d8:36:26:ee:d0:ee: 2c:c2:06:54:a2:f0:ff:48:f3:28:7b:1e:95:32:73: 50:b5:48:c1:c9:74:66:c5:86:ac:b6:cf:02:b3:b9: c9:a9:65:b1:5a:0a:71:3f:06:d5:e2:fa:0d:65:1b: 11:12:fd:25:f6:78:5a:22:14:12:32:2d:69:24:fb: 2c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:52:36:C7:57:F2:DF:1A:6C:DB:10:1F:DD:FF:E1:FF:DC:B2:F9:38 X509v3 Authority Key Identifier: keyid:50:BB:4C:78:1A:5B:39:3F:F0:7F:B4:05:E5:28:17:9F:5A:B8:77:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULtMeBpbOT_wf7QF5SgXn1q4dyY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/vFI2x1fy3xps2xAf3f_h_9yy-Tg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/ULtMeBpbOT_wf7QF5SgXn1q4dyY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:13:33:f7:32:6e:b8:2b:b2:da:47:80:5e:90:34:a2:53:28: 3e:fb:70:4a:8f:ec:86:c4:a9:a6:46:4b:0b:fe:57:f1:2f:df: d5:a6:0c:8f:07:58:a2:86:87:cd:4c:3c:de:bd:6e:f9:3d:5a: 78:8a:29:56:cc:7d:d0:73:90:03:15:e2:e2:42:76:59:0c:e0: 02:49:eb:b2:57:ce:d6:e4:9f:09:67:f1:d1:9c:b6:93:80:8d: 24:4c:a6:35:5a:58:b9:74:60:3b:8f:4d:b9:58:9b:38:4b:f7: 43:15:a1:e3:4a:6a:9f:b5:97:a6:40:9a:a5:38:3b:b5:66:1b: a4:1c:4a:96:c7:ef:5a:f7:31:c5:1a:ce:51:70:26:f2:22:71: e5:85:e5:cd:1c:fc:4a:c9:61:30:39:e5:32:55:58:8c:d6:79: db:76:28:4f:fb:d6:c5:db:65:10:be:24:9b:11:03:02:6d:56: 9f:36:ad:05:2a:35:86:5f:92:f0:53:ce:ff:76:64:04:83:7d: d3:05:a6:46:1f:22:97:10:7d:43:e8:3a:65:8a:31:78:bc:cd: c9:b5:bf:d2:21:ef:17:36:5e:c1:a7:83:b1:04:1e:e1:fe:60: 94:14:4a:ed:89:c2:14:64:76:fb:d9:c9:01:bb:b8:1a:0f:97: 00:9f:62:e0 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt+plVKKMla+M8A8trOkJFsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwYmI0Yzc4MWE1YjM5M2ZmMDdmYjQwNWU1MjgxNzlmNWFi ODc3MjYwHhcNMjYwMTAyMTIxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzUyMzZjNzU3ZjJkZjFhNmNkYjEwMWZkZGZmZTFmZmRjYjJmOTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/Bs4hqgWzsoluXt7MQfjnTQk58b 70rZp0ZedzgILI4uiMmAElqytlyJ2rY7EYAmUKl6+XS1GxuilEhhfxc742z+XTzA PsxbZkKhvBm+EzIjM7O2ALWvp/OGcc7rWuXnxdCyEfRtSJh8N3T9WDWQjsOinCBU 23Gycee0N2tKeY2XBpwae4B1W5QjBeBo00GyS5rsnD6Hjzl7149RS/l1YBCqfyCT HhwL76tdLTPlbZuPWVyTmCILh/oX9I7YNibu0O4swgZUovD/SPMoex6VMnNQtUjB yXRmxYasts8Cs7nJqWWxWgpxPwbV4voNZRsREv0l9nhaIhQSMi1pJPssTQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFLxSNsdX8t8abNsQH93/4f/csvk4MB8GA1UdIwQY MBaAFFC7THgaWzk/8H+0BeUoF59auHcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUx0TWVCcGJPVF93ZjdRRjVTZ1huMXE0ZHlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xYjEzOGUtMWUxOS00YzdkLThjYTQt Yjg3ZjkxYzI5YjllLzEvdkZJMngxZnkzeHBzMnhBZjNmX2hfOXl5LVRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS8xYjEzOGUtMWUxOS00YzdkLThjYTQtYjg3ZjkxYzI5Yjll LzEvVUx0TWVCcGJPVF93ZjdRRjVTZ1huMXE0ZHlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAgX0wDQYJ KoZIhvcNAQELBQADggEBACMTM/cybrgrstpHgF6QNKJTKD77cEqP7IbEqaZGSwv+ V/Ev39WmDI8HWKKGh81MPN69bvk9WniKKVbMfdBzkAMV4uJCdlkM4AJJ67JXztbk nwln8dGctpOAjSRMpjVaWLl0YDuPTblYmzhL90MVoeNKap+1l6ZAmqU4O7VmG6Qc SpbH71r3McUazlFwJvIiceWF5c0c/ErJYTA55TJVWIzWedt2KE/71sXbZRC+JJsR AwJtVp82rQUqNYZfkvBTzv92ZASDfdMFpkYfIpcQfUPoOmWKMXi8zcm1v9Ih7xc2 XsGng7EEHuH+YJQUSu2JwhRkdvvZyQG7uBoPlwCfYuA= -----END CERTIFICATE-----Generated at Sun Jan 25 19:36:08 2026 by rpki-client