This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/vREpqPygKpqEUBRK1WP9YRnHT1U.roa File: vREpqPygKpqEUBRK1WP9YRnHT1U.roa (raw, json) Hash identifier: aIOz9LGkgfShAFeGoLvJK3zSpzEcpe5gJpmAOuZIS1I= Subject key identifier: BD:11:29:A8:FC:A0:2A:9A:84:50:14:4A:D5:63:FD:61:19:C7:4F:55 Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0 Certificate serial: 019B76EACB2D41AED1F8077AF26FA7BEFBEF Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/vREpqPygKpqEUBRK1WP9YRnHT1U.roa Signing time: Thu 01 Jan 2026 00:17:37 +0000 ROA not before: Thu 01 Jan 2026 00:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203898 IP address blocks: 185.122.0.0/24 maxlen: 24 2a06:98c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.mft rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:cb:2d:41:ae:d1:f8:07:7a:f2:6f:a7:be:fb:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0 Validity Not Before: Jan 1 00:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd1129a8fca02a9a8450144ad563fd6119c74f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6b:3e:b6:fb:81:4a:4b:b6:99:b6:4d:fa:60: df:bc:b5:57:46:b2:6b:8f:8d:0f:43:3f:59:fc:20: 82:98:be:eb:33:a9:48:e3:be:7b:8a:ed:a2:db:50: 25:74:06:bd:c7:36:7d:79:5b:f3:92:e9:3b:16:5c: e2:d4:30:27:d7:82:73:18:01:9b:aa:30:b8:70:ba: 80:ff:db:cd:81:9d:0c:7b:52:25:98:24:45:c3:94: f0:db:ce:06:4a:c5:49:25:45:12:4a:1b:2b:c0:40: 03:5f:6c:38:ce:86:70:68:37:24:21:ed:8d:f4:16: a9:03:e4:cc:75:22:4b:09:6d:8b:98:a7:4e:f6:f5: 04:56:df:9c:c0:2e:8e:1e:87:c5:1e:20:56:d0:a4: 90:a6:ea:c0:e3:5c:bf:55:83:c2:43:31:83:bf:89: b2:d7:8f:3f:82:7d:8a:e5:93:1c:a2:6a:3f:30:5c: b1:f3:25:7b:d0:28:5c:e8:6f:5c:16:ae:e4:9a:c5: 98:73:b1:fb:e0:56:9d:99:11:d4:dc:d6:5a:5c:60: ec:06:78:af:bd:64:fb:2a:5e:93:b2:85:24:57:19: 08:ca:ee:37:4f:6f:2a:01:31:12:66:16:e2:78:22: b4:53:23:0b:af:0f:f3:2b:3f:d2:01:47:b1:70:a6: 7c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:11:29:A8:FC:A0:2A:9A:84:50:14:4A:D5:63:FD:61:19:C7:4F:55 X509v3 Authority Key Identifier: keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/vREpqPygKpqEUBRK1WP9YRnHT1U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.122.0.0/24 IPv6: 2a06:98c0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 60:3e:34:65:a4:2d:4a:c8:1c:3c:10:44:41:3c:a0:bc:c4:aa: c8:dc:c4:6d:3a:09:a4:64:c6:ae:f3:55:dc:7a:04:93:02:f6: 48:e1:67:11:31:6d:14:65:b9:5d:b5:93:ba:5f:d5:90:90:65: ee:b5:e8:ca:e7:76:9f:ff:e6:7f:a2:89:ed:00:57:8c:b7:4d: 0d:5f:f0:42:f0:97:a4:6e:e5:4e:8d:1e:44:5e:2b:f0:ea:af: 2d:9b:d0:92:23:9b:47:ac:0e:4a:52:33:b8:8c:98:5e:b7:ae: 3b:85:ea:75:93:f1:82:23:e6:ad:44:ef:64:fb:9f:9d:ae:df: 59:20:d2:15:5a:b0:04:f5:19:1f:fa:d2:17:77:80:cc:b3:db: 03:99:ea:b3:bb:01:8f:42:7c:a6:8c:49:23:31:26:04:a0:2c: 5d:43:9c:d8:b1:58:b5:ae:f9:90:8f:96:be:7b:95:57:e7:8a: 9b:cb:fb:3d:db:b4:d5:74:0c:af:ca:23:85:35:0d:68:a8:48: 92:c6:47:7a:11:66:bc:33:fa:60:d6:02:5b:20:8d:b0:5a:8f: 29:98:b3:8a:8b:af:ab:a5:da:e2:72:c3:99:ec:2b:62:ed:5f: 0d:33:db:59:50:20:90:d9:9b:5d:ab:7a:72:57:f3:1b:4f:bb: 92:b8:d4:e1 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt26sstQa7R+Ad68m+nvvvvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZDViZmFkNDVkN2M2NWE2ZTM0MzAyODUwOWZkMTg5MmU5 N2I5ZDAwHhcNMjYwMTAxMDAxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDExMjlhOGZjYTAyYTlhODQ1MDE0NGFkNTYzZmQ2MTE5Yzc0ZjU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoms+tvuBSku2mbZN+mDfvLVXRrJr j40PQz9Z/CCCmL7rM6lI4757iu2i21AldAa9xzZ9eVvzkuk7Flzi1DAn14JzGAGb qjC4cLqA/9vNgZ0Me1IlmCRFw5Tw284GSsVJJUUSShsrwEADX2w4zoZwaDckIe2N 9BapA+TMdSJLCW2LmKdO9vUEVt+cwC6OHofFHiBW0KSQpurA41y/VYPCQzGDv4my 148/gn2K5ZMcomo/MFyx8yV70Chc6G9cFq7kmsWYc7H74FadmRHU3NZaXGDsBniv vWT7Kl6TsoUkVxkIyu43T28qATESZhbieCK0UyMLrw/zKz/SAUexcKZ8lwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFL0RKaj8oCqahFAUStVj/WEZx09VMB8GA1UdIwQY MBaAFJnVv61F18ZabjQwKFCf0Ykul7nQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQt NzU1MTgwOWNiNzMxLzEvdlJFcHFQeWdLcHFFVUJSSzFXUDlZUm5IVDFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQtNzU1MTgwOWNiNzMx LzEvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuXoAMA8E AgACMAkDBwAqBpjAEAAwDQYJKoZIhvcNAQELBQADggEBAGA+NGWkLUrIHDwQREE8 oLzEqsjcxG06CaRkxq7zVdx6BJMC9kjhZxExbRRluV21k7pf1ZCQZe616Mrndp// 5n+iie0AV4y3TQ1f8ELwl6Ru5U6NHkReK/Dqry2b0JIjm0esDkpSM7iMmF63rjuF 6nWT8YIj5q1E72T7n52u31kg0hVasAT1GR/60hd3gMyz2wOZ6rO7AY9CfKaMSSMx JgSgLF1DnNixWLWu+ZCPlr57lVfnipvL+z3btNV0DK/KI4U1DWioSJLGR3oRZrwz +mDWAlsgjbBajymYs4qLr6ul2uJyw5nsK2LtXw0z21lQIJDZm12renJX8xtPu5K4 1OE= -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:38 2026 by rpki-client