This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/c5a159-8568-4945-8026-23c338680771/1/vKrnz1PqS6qb2zcTLwUYNYqlKd4.roa File: vKrnz1PqS6qb2zcTLwUYNYqlKd4.roa (raw, json) Hash identifier: 1IT80fZU/ax5KvjXCy5/nxPjuHIDLBfsXUQ0YfHBn7M= Subject key identifier: BC:AA:E7:CF:53:EA:4B:AA:9B:DB:37:13:2F:05:18:35:8A:A5:29:DE Certificate issuer: /CN=acbe212a2f1a119ef64ab62e1a96d711524c8bc7 Certificate serial: 019B77C7215B11AAB926C0AD12CEDFF606A6 Authority key identifier: AC:BE:21:2A:2F:1A:11:9E:F6:4A:B6:2E:1A:96:D7:11:52:4C:8B:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rL4hKi8aEZ72SrYuGpbXEVJMi8c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/c5a159-8568-4945-8026-23c338680771/1/vKrnz1PqS6qb2zcTLwUYNYqlKd4.roa Signing time: Thu 01 Jan 2026 04:18:17 +0000 ROA not before: Thu 01 Jan 2026 04:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48469 IP address blocks: 94.127.56.0/22 maxlen: 22 185.247.96.0/24 maxlen: 24 185.247.99.0/24 maxlen: 24 2a02:2188::/48 maxlen: 48 2a02:2188:1000::/36 maxlen: 36 2a02:2188:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/c5a159-8568-4945-8026-23c338680771/1/rL4hKi8aEZ72SrYuGpbXEVJMi8c.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/c5a159-8568-4945-8026-23c338680771/1/rL4hKi8aEZ72SrYuGpbXEVJMi8c.mft rsync://rpki.ripe.net/repository/DEFAULT/rL4hKi8aEZ72SrYuGpbXEVJMi8c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:21:5b:11:aa:b9:26:c0:ad:12:ce:df:f6:06:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acbe212a2f1a119ef64ab62e1a96d711524c8bc7 Validity Not Before: Jan 1 04:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bcaae7cf53ea4baa9bdb37132f0518358aa529de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:68:15:22:c2:fb:f7:67:41:cc:e6:0f:23:d3: b4:6e:dd:a2:ad:c2:ee:5f:80:80:1d:18:d8:62:1a: d5:d5:de:c0:59:fe:3b:7e:94:50:af:02:6d:ef:85: d5:73:0f:27:2f:ab:21:39:b9:95:5b:9b:af:48:ff: 5d:a6:ce:52:94:91:24:f7:c4:9e:a3:8c:9b:3a:66: 72:42:6e:31:6a:65:bd:c0:70:c2:27:fd:43:b3:dc: 38:6b:a5:34:d2:35:84:51:39:da:ba:24:14:c5:eb: d9:75:1f:a1:9b:de:3e:09:26:42:62:b8:14:4d:4b: 6e:17:dc:0a:2c:c5:26:0c:be:e0:10:a0:f2:ee:4c: 84:83:82:ef:f3:45:5b:85:03:68:a7:65:d7:69:04: 85:a4:18:d4:7a:5e:86:b3:d4:73:3b:62:b3:c6:fd: 67:2d:bf:ea:4c:dd:ac:84:4c:4c:64:e1:f0:eb:3f: 23:24:54:28:8d:b4:f3:57:54:21:40:f0:81:f8:33: 4a:8c:cf:f9:78:e6:4a:61:95:81:ad:9d:cc:2f:dc: ce:6d:b7:2c:73:74:7d:e6:71:54:24:09:77:c7:df: ff:9e:16:0b:73:93:ec:ac:ee:b3:9c:04:86:0e:0c: b3:a9:65:7f:a6:9a:b4:f0:5a:ef:c1:77:36:fb:95: 4a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:AA:E7:CF:53:EA:4B:AA:9B:DB:37:13:2F:05:18:35:8A:A5:29:DE X509v3 Authority Key Identifier: keyid:AC:BE:21:2A:2F:1A:11:9E:F6:4A:B6:2E:1A:96:D7:11:52:4C:8B:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rL4hKi8aEZ72SrYuGpbXEVJMi8c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c5a159-8568-4945-8026-23c338680771/1/vKrnz1PqS6qb2zcTLwUYNYqlKd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c5a159-8568-4945-8026-23c338680771/1/rL4hKi8aEZ72SrYuGpbXEVJMi8c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.127.56.0/22 185.247.96.0/24 185.247.99.0/24 IPv6: 2a02:2188::/48 2a02:2188:1000::/36 2a02:2188:f000::/36 Signature Algorithm: sha256WithRSAEncryption 1b:6d:a8:4a:e4:35:a6:46:e4:84:68:de:77:d1:df:bc:9b:1f: fd:e8:f5:12:58:9a:ad:6f:6f:8d:ff:c8:0e:ff:0b:72:0a:8d: 5d:e3:01:fd:63:95:66:4a:46:7c:2e:aa:5c:8a:4d:1b:a6:e8: 82:c6:78:33:51:40:5b:e9:32:45:a8:14:ee:8e:01:4e:f8:05: ad:02:4c:51:57:f5:13:79:71:bf:5f:42:de:09:9f:fe:13:78: b6:b7:e0:5a:b6:df:d7:91:d1:f8:66:f7:56:f7:ef:08:8d:bc: af:d5:68:82:be:79:d2:f2:c5:00:7c:e2:fe:59:63:8b:f7:0b: 8e:2d:dc:43:49:c1:79:40:0f:b9:f6:2f:f3:8a:7b:bb:2f:e2: 95:3c:ec:96:41:ad:4e:de:64:79:10:3f:e0:ac:92:d9:1f:c9: 15:32:1e:0c:87:fa:79:27:de:6c:78:2a:4c:2f:e8:3c:e9:15: c1:42:08:ed:58:5d:a4:b8:02:b7:76:66:c7:b8:eb:a2:b4:07: 3f:55:22:77:16:aa:00:46:1b:4e:0f:fd:03:64:b7:67:31:68: 51:27:30:8d:42:c0:2c:e5:06:50:28:df:c8:f3:d6:c4:2f:d0: 1e:92:c3:eb:be:12:e5:61:1d:43:4f:ad:a4:f7:5b:1b:a5:96: 01:f3:6f:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt3xyFbEaq5JsCtEs7f9gamMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYmUyMTJhMmYxYTExOWVmNjRhYjYyZTFhOTZkNzExNTI0 YzhiYzcwHhcNMjYwMTAxMDQxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiY2FhZTdjZjUzZWE0YmFhOWJkYjM3MTMyZjA1MTgzNThhYTUyOWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWgVIsL792dBzOYPI9O0bt2ircLu X4CAHRjYYhrV1d7AWf47fpRQrwJt74XVcw8nL6shObmVW5uvSP9dps5SlJEk98Se o4ybOmZyQm4xamW9wHDCJ/1Ds9w4a6U00jWEUTnauiQUxevZdR+hm94+CSZCYrgU TUtuF9wKLMUmDL7gEKDy7kyEg4Lv80VbhQNop2XXaQSFpBjUel6Gs9RzO2Kzxv1n Lb/qTN2shExMZOHw6z8jJFQojbTzV1QhQPCB+DNKjM/5eOZKYZWBrZ3ML9zObbcs c3R95nFUJAl3x9//nhYLc5PsrO6znASGDgyzqWV/ppq08FrvwXc2+5VKJwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFLyq589T6kuqm9s3Ey8FGDWKpSneMB8GA1UdIwQY MBaAFKy+ISovGhGe9kq2LhqW1xFSTIvHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckw0aEtpOGFFWjcyU3JZdUdwYlhFVkpNaThjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9jNWExNTktODU2OC00OTQ1LTgwMjYt MjNjMzM4NjgwNzcxLzEvdktybnoxUHFTNnFiMnpjVEx3VVlOWXFsS2Q0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9jNWExNTktODU2OC00OTQ1LTgwMjYtMjNjMzM4NjgwNzcx LzEvckw0aEtpOGFFWjcyU3JZdUdwYlhFVkpNaThjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAYBAIAATASAwQCXn84AwQA ufdgAwQAufdjMB8EAgACMBkDBwAqAiGIAAADBgQqAiGIEAMGBCoCIYjwMA0GCSqG SIb3DQEBCwUAA4IBAQAbbahK5DWmRuSEaN530d+8mx/96PUSWJqtb2+N/8gO/wty Co1d4wH9Y5VmSkZ8Lqpcik0bpuiCxngzUUBb6TJFqBTujgFO+AWtAkxRV/UTeXG/ X0LeCZ/+E3i2t+Batt/XkdH4ZvdW9+8Ijbyv1WiCvnnS8sUAfOL+WWOL9wuOLdxD ScF5QA+59i/zinu7L+KVPOyWQa1O3mR5ED/grJLZH8kVMh4Mh/p5J95seCpML+g8 6RXBQgjtWF2kuAK3dmbHuOuitAc/VSJ3FqoARhtOD/0DZLdnMWhRJzCNQsAs5QZQ KN/I89bEL9AeksPrvhLlYR1DT62k91sbpZYB829/ -----END CERTIFICATE-----Generated at Sun Jan 25 17:49:25 2026 by rpki-client