This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/vjjNirlV9YoXstARjswGH3SkSGs.roa File: vjjNirlV9YoXstARjswGH3SkSGs.roa (raw, json) Hash identifier: chn0/YJ36zUfQlB64u8vlgqzqY6hyVXARJHun9FywnQ= Subject key identifier: BE:38:CD:8A:B9:55:F5:8A:17:B2:D0:11:8E:CC:06:1F:74:A4:48:6B Certificate issuer: /CN=58d2d2715f43f747bea762dce166bca4b8e965eb Certificate serial: 019B76EB47CB700AB108DAB112A95DD5DB76 Authority key identifier: 58:D2:D2:71:5F:43:F7:47:BE:A7:62:DC:E1:66:BC:A4:B8:E9:65:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/vjjNirlV9YoXstARjswGH3SkSGs.roa Signing time: Thu 01 Jan 2026 00:18:09 +0000 ROA not before: Thu 01 Jan 2026 00:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6786 IP address blocks: 81.169.191.0/24 maxlen: 24 85.214.9.0/24 maxlen: 24 85.214.11.0/24 maxlen: 24 85.215.0.0/19 maxlen: 24 2a01:238:cca::/48 maxlen: 48 2a01:238:3000::/36 maxlen: 48 2a01:238:e000::/35 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/WNLScV9D90e-p2Lc4Wa8pLjpZes.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/WNLScV9D90e-p2Lc4Wa8pLjpZes.mft rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:47:cb:70:0a:b1:08:da:b1:12:a9:5d:d5:db:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58d2d2715f43f747bea762dce166bca4b8e965eb Validity Not Before: Jan 1 00:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be38cd8ab955f58a17b2d0118ecc061f74a4486b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:05:31:7a:27:9b:4f:59:32:e2:f7:c1:9e:87: 9a:04:b6:eb:37:d0:3f:a8:ec:9d:26:30:76:ae:07: 0d:e7:f6:be:d4:70:a1:ef:6f:01:46:19:e6:dc:99: ca:91:22:ac:82:76:b5:df:97:78:60:9d:4d:4b:98: 34:e5:32:24:1b:e8:6c:87:bb:f6:7f:85:d7:3f:61: a0:2f:49:d0:da:82:1d:aa:30:ea:ef:a0:f7:57:db: 30:65:a9:9b:c2:84:48:e4:77:93:f9:41:57:28:44: cd:a0:c6:b0:ac:29:20:9a:49:3b:dc:9c:9b:ac:9d: a5:85:c5:b0:04:bc:9d:27:23:b4:7e:06:db:34:c9: 8b:a4:58:b7:40:83:a0:b8:38:ae:41:84:60:91:c8: 52:f1:4e:dc:19:15:90:a2:2c:cb:19:78:82:81:b4: 03:7c:3e:45:81:56:d9:1c:e3:ea:69:74:7e:44:cd: 03:cf:79:cb:99:92:ec:fe:ed:1e:2b:7a:85:a7:bc: bd:ed:b4:47:58:68:0a:04:10:7c:e2:a5:d1:d8:15: bb:2f:14:ba:5e:b7:0e:18:63:7f:59:aa:cc:07:42: 32:29:d6:c1:95:80:7b:0f:00:b3:62:80:6e:a7:1d: fd:ec:e5:ee:f9:b2:85:21:e5:37:1a:ad:78:2d:23: ff:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:38:CD:8A:B9:55:F5:8A:17:B2:D0:11:8E:CC:06:1F:74:A4:48:6B X509v3 Authority Key Identifier: keyid:58:D2:D2:71:5F:43:F7:47:BE:A7:62:DC:E1:66:BC:A4:B8:E9:65:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/vjjNirlV9YoXstARjswGH3SkSGs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/WNLScV9D90e-p2Lc4Wa8pLjpZes.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.169.191.0/24 85.214.9.0/24 85.214.11.0/24 85.215.0.0/19 IPv6: 2a01:238:cca::/48 2a01:238:3000::/36 2a01:238:e000::/35 Signature Algorithm: sha256WithRSAEncryption 9a:4d:c4:b6:52:4f:68:27:e3:99:ac:61:00:c3:2a:ec:2a:59: 1b:3a:fb:06:16:3d:f6:b2:33:d7:d5:81:a1:2b:3c:e3:ad:b4: 71:bf:f1:15:32:42:21:de:d4:6d:6d:f0:d6:3b:5d:0c:b6:0b: c2:7a:7c:c1:90:4f:51:e3:09:46:b8:cb:d2:9d:54:99:b1:f4: 4a:cc:61:96:04:96:81:fe:ed:9f:14:c2:df:55:57:13:d8:47: eb:85:c4:e6:d2:82:b0:f7:fd:f3:2a:f9:8f:fb:f2:bc:1c:e6: 28:50:6a:c3:9f:62:d4:25:f4:1b:f2:77:52:16:f1:67:ac:b0: 72:ad:3f:a6:67:cb:1e:ae:dc:aa:be:d4:af:44:a1:e0:cc:eb: 61:20:14:a0:ef:f9:49:ae:4d:5a:37:23:c8:f2:ea:60:dd:b2: 8c:c3:9b:02:83:74:7d:48:b3:2c:61:bf:7b:09:2d:57:e7:18: f2:95:d0:3e:6c:50:a4:9f:1c:ce:ee:bb:11:6b:32:64:f1:a0: 2a:26:dd:84:72:cd:0d:61:1d:07:0a:f4:76:88:77:1e:60:85: 13:3b:f9:89:a7:9f:d6:d1:24:1b:f9:e8:5e:c4:07:84:ea:3f: 64:0e:fa:8c:95:bb:60:14:14:30:ca:12:d1:cf:7a:6a:dc:b4: e9:2d:75:b2 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt260fLcAqxCNqxEqld1dt2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ZDJkMjcxNWY0M2Y3NDdiZWE3NjJkY2UxNjZiY2E0Yjhl OTY1ZWIwHhcNMjYwMTAxMDAxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTM4Y2Q4YWI5NTVmNThhMTdiMmQwMTE4ZWNjMDYxZjc0YTQ0ODZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogUxeiebT1ky4vfBnoeaBLbrN9A/ qOydJjB2rgcN5/a+1HCh728BRhnm3JnKkSKsgna135d4YJ1NS5g05TIkG+hsh7v2 f4XXP2GgL0nQ2oIdqjDq76D3V9swZambwoRI5HeT+UFXKETNoMawrCkgmkk73Jyb rJ2lhcWwBLydJyO0fgbbNMmLpFi3QIOguDiuQYRgkchS8U7cGRWQoizLGXiCgbQD fD5FgVbZHOPqaXR+RM0Dz3nLmZLs/u0eK3qFp7y97bRHWGgKBBB84qXR2BW7LxS6 XrcOGGN/WarMB0IyKdbBlYB7DwCzYoBupx397OXu+bKFIeU3Gq14LSP/uQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFL44zYq5VfWKF7LQEY7MBh90pEhrMB8GA1UdIwQY MBaAFFjS0nFfQ/dHvqdi3OFmvKS46WXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV05MU2NWOUQ5MGUtcDJMYzRXYThwTGpwWmVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9kNjdiN2ItYzc5OC00OTAxLTgwZjkt ZTM4MzQ1MTZmYzA4LzEvdmpqTmlybFY5WW9Yc3RBUmpzd0dIM1NrU0dzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9kNjdiN2ItYzc5OC00OTAxLTgwZjktZTM4MzQ1MTZmYzA4 LzEvV05MU2NWOUQ5MGUtcDJMYzRXYThwTGpwWmVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAeBAIAATAYAwQAUam/AwQA VdYJAwQAVdYLAwQFVdcAMB8EAgACMBkDBwAqAQI4DMoDBgQqAQI4MAMGBSoBAjjg MA0GCSqGSIb3DQEBCwUAA4IBAQCaTcS2Uk9oJ+OZrGEAwyrsKlkbOvsGFj32sjPX 1YGhKzzjrbRxv/EVMkIh3tRtbfDWO10MtgvCenzBkE9R4wlGuMvSnVSZsfRKzGGW BJaB/u2fFMLfVVcT2EfrhcTm0oKw9/3zKvmP+/K8HOYoUGrDn2LUJfQb8ndSFvFn rLByrT+mZ8sertyqvtSvRKHgzOthIBSg7/lJrk1aNyPI8upg3bKMw5sCg3R9SLMs Yb97CS1X5xjyldA+bFCknxzO7rsRazJk8aAqJt2Ecs0NYR0HCvR2iHceYIUTO/mJ p5/W0SQb+ehexAeE6j9kDvqMlbtgFBQwyhLRz3pq3LTpLXWy -----END CERTIFICATE-----Generated at Mon Jan 26 00:37:26 2026 by rpki-client