This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/vra2UalB8zKcRswteQwt6syFXsU.roa File: vra2UalB8zKcRswteQwt6syFXsU.roa (raw, json) Hash identifier: Tpc5Qa0k/xE4ohFATArZFnNYinBhp2z+5+MJHN79L9s= Subject key identifier: BE:B6:B6:51:A9:41:F3:32:9C:46:CC:2D:79:0C:2D:EA:CC:85:5E:C5 Certificate issuer: /CN=5bb1c57055c29d669f289a9f68f392823942132a Certificate serial: 019B76EB2F48D6B80BE2434404E7204487F7 Authority key identifier: 5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/vra2UalB8zKcRswteQwt6syFXsU.roa Signing time: Thu 01 Jan 2026 00:18:03 +0000 ROA not before: Thu 01 Jan 2026 00:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44084 IP address blocks: 5.253.212.0/23 maxlen: 24 2a09:5dc0::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/W7HFcFXCnWafKJqfaPOSgjlCEyo.crl rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/W7HFcFXCnWafKJqfaPOSgjlCEyo.mft rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:2f:48:d6:b8:0b:e2:43:44:04:e7:20:44:87:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bb1c57055c29d669f289a9f68f392823942132a Validity Not Before: Jan 1 00:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=beb6b651a941f3329c46cc2d790c2deacc855ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:da:f4:15:26:7f:2c:7f:4d:af:65:97:9a:3d: 01:76:1a:bd:30:ca:6a:bf:19:48:a3:e2:e5:80:b1: 91:40:ae:dc:be:05:ee:ee:74:8f:bd:a4:fa:44:66: 42:6c:81:55:68:08:a4:89:e1:d9:54:0e:3a:e4:28: 03:0a:ca:28:1e:5a:42:c3:d0:38:2c:47:9d:e6:67: 4d:41:dd:86:40:47:b7:66:ba:b0:1d:8f:70:4a:e4: 1b:d8:f2:4c:5a:84:d5:26:2d:21:64:f9:9d:a7:fd: 67:75:ff:67:0b:c9:7b:83:95:5d:1e:93:e1:a4:28: b8:e5:24:c6:90:54:03:cd:d9:bb:83:31:6f:b1:95: 2c:6a:8c:d2:6d:4b:c3:73:98:15:de:74:f8:19:61: af:47:05:8c:2b:2b:84:3e:96:bf:12:9b:2a:d0:64: da:77:71:6d:42:8f:ed:f4:1d:c9:ad:bb:9c:5a:1a: e1:d5:c0:3e:a9:30:61:b0:ed:22:50:bd:39:43:14: 05:fc:cc:00:6a:07:e9:2d:16:cd:3c:cf:b7:c7:d2: 5f:83:34:64:40:d0:08:c0:77:65:6e:01:33:83:fd: 40:6d:48:8f:90:72:b3:69:1e:30:38:e3:d6:9f:18: e7:bf:b2:2c:b2:a3:11:5b:00:67:42:02:c9:91:49: 52:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B6:B6:51:A9:41:F3:32:9C:46:CC:2D:79:0C:2D:EA:CC:85:5E:C5 X509v3 Authority Key Identifier: keyid:5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/vra2UalB8zKcRswteQwt6syFXsU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/W7HFcFXCnWafKJqfaPOSgjlCEyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.212.0/23 IPv6: 2a09:5dc0::/30 Signature Algorithm: sha256WithRSAEncryption bf:1e:59:11:31:b7:3d:ce:23:dc:37:2c:d2:81:1a:f3:51:96: 35:19:06:ba:48:06:0a:4b:69:90:a1:e8:5c:3d:c9:64:5d:64: 3f:4d:22:a3:26:f3:57:99:f2:92:ce:27:5a:e6:2d:c8:eb:54: 3f:81:74:73:98:62:f7:9c:01:39:b4:5a:6d:b5:1d:e2:12:44: 2b:73:fd:c4:d0:3b:5c:89:ff:bb:75:0d:99:76:45:18:93:5f: 68:e3:80:b4:c7:32:3a:1d:a8:41:2e:0a:ff:4c:3c:19:6b:e5: 37:bc:2e:48:1f:d2:3f:f1:bd:63:b5:a1:d3:0a:ae:f5:25:b8: 73:42:f7:29:b1:42:78:47:30:2d:45:e0:45:d9:65:8a:c3:9b: 95:37:d2:80:ce:2e:ab:05:c7:9c:ff:36:08:2f:e5:38:df:62: 4b:d6:ee:9a:ad:8f:fb:95:4f:cb:42:c8:4d:45:1d:6c:b1:d8: fc:68:a7:e3:ee:09:d3:fd:21:fa:86:f2:9e:17:59:80:66:d8: 4c:3e:85:0f:a0:b0:e4:bd:b3:9d:6e:42:4a:ab:35:59:29:a0: 29:4c:45:b7:1d:d1:ef:1a:a8:fd:9f:b9:c1:9f:06:ed:7a:30: af:81:ef:dd:0d:86:9b:7b:f1:25:67:99:4a:90:02:7e:25:53: f3:a8:e0:db -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26y9I1rgL4kNEBOcgRIf3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViYjFjNTcwNTVjMjlkNjY5ZjI4OWE5ZjY4ZjM5MjgyMzk0 MjEzMmEwHhcNMjYwMTAxMDAxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWI2YjY1MWE5NDFmMzMyOWM0NmNjMmQ3OTBjMmRlYWNjODU1ZWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNr0FSZ/LH9Nr2WXmj0Bdhq9MMpq vxlIo+LlgLGRQK7cvgXu7nSPvaT6RGZCbIFVaAikieHZVA465CgDCsooHlpCw9A4 LEed5mdNQd2GQEe3ZrqwHY9wSuQb2PJMWoTVJi0hZPmdp/1ndf9nC8l7g5VdHpPh pCi45STGkFQDzdm7gzFvsZUsaozSbUvDc5gV3nT4GWGvRwWMKyuEPpa/Epsq0GTa d3FtQo/t9B3JrbucWhrh1cA+qTBhsO0iUL05QxQF/MwAagfpLRbNPM+3x9JfgzRk QNAIwHdlbgEzg/1AbUiPkHKzaR4wOOPWnxjnv7IssqMRWwBnQgLJkUlSPQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL62tlGpQfMynEbMLXkMLerMhV7FMB8GA1UdIwQY MBaAFFuxxXBVwp1mnyian2jzkoI5QhMqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVzdIRmNGWENuV2FmS0pxZmFQT1NnamxDRXlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS84MjIzNzYtODA4YS00NjVjLWE4N2Yt NWNlYWUxOWY5NGY5LzEvdnJhMlVhbEI4ektjUnN3dGVRd3Q2c3lGWHNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS84MjIzNzYtODA4YS00NjVjLWE4N2YtNWNlYWUxOWY5NGY5 LzEvVzdIRmNGWENuV2FmS0pxZmFQT1NnamxDRXlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBBf3UMA0E AgACMAcDBQIqCV3AMA0GCSqGSIb3DQEBCwUAA4IBAQC/HlkRMbc9ziPcNyzSgRrz UZY1GQa6SAYKS2mQoehcPclkXWQ/TSKjJvNXmfKSzida5i3I61Q/gXRzmGL3nAE5 tFpttR3iEkQrc/3E0Dtcif+7dQ2ZdkUYk19o44C0xzI6HahBLgr/TDwZa+U3vC5I H9I/8b1jtaHTCq71JbhzQvcpsUJ4RzAtReBF2WWKw5uVN9KAzi6rBcec/zYIL+U4 32JL1u6arY/7lU/LQshNRR1ssdj8aKfj7gnT/SH6hvKeF1mAZthMPoUPoLDkvbOd bkJKqzVZKaApTEW3HdHvGqj9n7nBnwbtejCvge/dDYabe/ElZ5lKkAJ+JVPzqODb -----END CERTIFICATE-----Generated at Mon Jan 26 12:27:08 2026 by rpki-client