This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/_vvsbXrJo_c1HEgyqYRPDVhypp0.roa File: _vvsbXrJo_c1HEgyqYRPDVhypp0.roa (raw, json) Hash identifier: qkx1pHlwpZwYxvxvdZ0ja9GX2r8gdUPL+Cn8v39PX0Q= Subject key identifier: FE:FB:EC:6D:7A:C9:A3:F7:35:1C:48:32:A9:84:4F:0D:58:72:A6:9D Certificate issuer: /CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29 Certificate serial: 019B79ED07229026B0CBA17A27E8502520BD Authority key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/_vvsbXrJo_c1HEgyqYRPDVhypp0.roa Signing time: Thu 01 Jan 2026 14:18:55 +0000 ROA not before: Thu 01 Jan 2026 14:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15169 IP address blocks: 2a00:79e0::/31 maxlen: 48 2a00:79e1:380::/42 maxlen: 48 2a00:79e1:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.mft rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:07:22:90:26:b0:cb:a1:7a:27:e8:50:25:20:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29 Validity Not Before: Jan 1 14:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fefbec6d7ac9a3f7351c4832a9844f0d5872a69d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3e:d1:43:59:89:f7:d0:bc:fe:9a:34:ff:99: ad:04:9a:d4:2a:4f:28:e1:72:87:05:70:5d:e7:ab: 5f:c3:0a:52:78:6c:28:ca:44:20:9c:73:37:ef:a7: 81:69:d9:d3:1c:9f:72:a4:51:00:06:00:ec:83:aa: ee:7c:0c:45:8e:18:d5:a0:83:e3:25:64:56:fd:ac: c5:19:e7:8e:37:f2:06:25:03:10:ed:73:71:fc:fe: ea:59:d0:70:c4:10:16:2d:95:d5:6c:21:0d:97:b8: d5:eb:b1:29:6c:02:d6:1b:4e:77:cd:b4:4d:28:74: 47:3b:13:bd:6d:95:2d:56:e0:ac:02:8f:b7:b6:95: 0d:87:2d:e1:32:76:0e:80:4c:44:33:83:61:a4:13: ef:b7:8c:df:ee:98:79:77:d1:8d:92:56:95:8b:04: f6:3b:03:70:88:14:75:da:c4:90:30:30:6a:4e:c6: 29:a5:cb:00:2a:72:f2:85:62:28:08:26:5e:f8:41: 7c:19:b1:8a:ed:29:02:87:5f:89:88:e9:77:7e:03: a5:c3:d2:12:59:f2:3e:e3:6e:65:0d:63:ef:1e:2d: aa:f4:f9:1a:c4:a0:a1:a4:13:44:17:d5:0e:fa:2f: 3a:11:a2:09:78:00:6c:2c:05:bf:ed:57:c6:f0:2c: 5b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FB:EC:6D:7A:C9:A3:F7:35:1C:48:32:A9:84:4F:0D:58:72:A6:9D X509v3 Authority Key Identifier: keyid:C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/_vvsbXrJo_c1HEgyqYRPDVhypp0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:79e0::/31 Signature Algorithm: sha256WithRSAEncryption 25:12:d1:f2:25:75:b1:fd:67:8a:a1:93:aa:d5:ae:c1:d4:cc: 8a:75:cb:86:8e:b2:8d:1b:95:df:15:8e:e4:8f:7f:dc:1e:e8: 3c:9d:05:13:7a:f9:11:55:25:2e:e8:3d:6b:e4:08:c8:70:ad: 54:32:17:73:dc:f6:2d:a0:4b:ab:a6:1d:82:98:a0:c1:61:4d: 0c:62:3d:a3:94:9f:cf:fd:33:2c:f0:e7:45:2f:1b:ef:8e:cc: 30:bd:4c:64:f5:8f:85:bd:43:11:e5:4f:a5:a9:42:2b:45:ed: d8:b5:19:bc:8a:ea:cf:f9:df:5d:03:a1:e8:30:bd:35:f4:3d: ad:58:f7:46:3a:78:4d:9a:63:38:a8:3e:41:a0:66:45:fa:fb: 77:19:3a:02:89:dd:0c:c2:6a:cb:c2:3c:10:5e:08:50:e1:ec: fa:43:c7:5e:01:7b:be:b6:30:5e:9a:71:54:3d:2b:3c:ce:3a: cd:e2:a7:2a:5a:3d:44:e6:4b:51:d0:7d:6b:f4:6a:c4:bb:c6: 06:9a:61:ab:06:76:8d:f5:ea:71:d0:76:d6:b7:88:93:08:6e: 19:97:2c:7f:9c:49:64:6b:fa:44:8b:f6:78:9a:e7:bd:c3:17: 57:e6:29:42:75:59:0d:a3:ed:a1:7c:68:93:6d:24:a7:80:21: a6:6a:9c:cc -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt57QcikCawy6F6J+hQJSC9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwNzQ3ZmJlMjZjOWNkZDc2MjhhZGZlZGI1N2I3OGJlOGRl NzVlMjkwHhcNMjYwMTAxMTQxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWZiZWM2ZDdhYzlhM2Y3MzUxYzQ4MzJhOTg0NGYwZDU4NzJhNjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmj7RQ1mJ99C8/po0/5mtBJrUKk8o 4XKHBXBd56tfwwpSeGwoykQgnHM376eBadnTHJ9ypFEABgDsg6rufAxFjhjVoIPj JWRW/azFGeeON/IGJQMQ7XNx/P7qWdBwxBAWLZXVbCENl7jV67EpbALWG053zbRN KHRHOxO9bZUtVuCsAo+3tpUNhy3hMnYOgExEM4NhpBPvt4zf7ph5d9GNklaViwT2 OwNwiBR12sSQMDBqTsYppcsAKnLyhWIoCCZe+EF8GbGK7SkCh1+JiOl3fgOlw9IS WfI+425lDWPvHi2q9PkaxKChpBNEF9UO+i86EaIJeABsLAW/7VfG8CxbEwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFP777G16yaP3NRxIMqmETw1YcqadMB8GA1UdIwQY MBaAFMB0f74myc3XYorf7bV7eL6N514pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0hSX3ZpYkp6ZGRpaXRfdHRYdDR2bzNuWGlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8yNDA2YWItM2JjYi00MWJjLWE5NDIt MzY4NjA4Mzg1ODgzLzEvX3Z2c2JYckpvX2MxSEVneXFZUlBEVmh5cHAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC8yNDA2YWItM2JjYi00MWJjLWE5NDItMzY4NjA4Mzg1ODgz LzEvd0hSX3ZpYkp6ZGRpaXRfdHRYdDR2bzNuWGlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKgB54DAN BgkqhkiG9w0BAQsFAAOCAQEAJRLR8iV1sf1niqGTqtWuwdTMinXLho6yjRuV3xWO 5I9/3B7oPJ0FE3r5EVUlLug9a+QIyHCtVDIXc9z2LaBLq6YdgpigwWFNDGI9o5Sf z/0zLPDnRS8b747MML1MZPWPhb1DEeVPpalCK0Xt2LUZvIrqz/nfXQOh6DC9NfQ9 rVj3Rjp4TZpjOKg+QaBmRfr7dxk6AondDMJqy8I8EF4IUOHs+kPHXgF7vrYwXppx VD0rPM46zeKnKlo9ROZLUdB9a/RqxLvGBpphqwZ2jfXqcdB21reIkwhuGZcsf5xJ ZGv6RIv2eJrnvcMXV+YpQnVZDaPtoXxok20kp4AhpmqczA== -----END CERTIFICATE-----Generated at Mon Jan 26 06:19:27 2026 by rpki-client