This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7729e4-6a6d-4bc5-88e1-66f8b6e16b8a/1/vGQ0FlfBg9HurxXzBHSCF8IWFRQ.roa File: vGQ0FlfBg9HurxXzBHSCF8IWFRQ.roa (raw, json) Hash identifier: vG2KyLa3eKD4ni6LSYbmZcxZgH0oTjxPgZTSDvuGGJI= Subject key identifier: BC:64:34:16:57:C1:83:D1:EE:AF:15:F3:04:74:82:17:C2:16:15:14 Certificate issuer: /CN=e8d1d15f5911d48d1c59eef374f7b37f71d4ebbf Certificate serial: 019B7BA513F257A0046510175443173BB796 Authority key identifier: E8:D1:D1:5F:59:11:D4:8D:1C:59:EE:F3:74:F7:B3:7F:71:D4:EB:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6NHRX1kR1I0cWe7zdPezf3HU678.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7729e4-6a6d-4bc5-88e1-66f8b6e16b8a/1/vGQ0FlfBg9HurxXzBHSCF8IWFRQ.roa Signing time: Thu 01 Jan 2026 22:19:34 +0000 ROA not before: Thu 01 Jan 2026 22:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39923 IP address blocks: 91.216.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7729e4-6a6d-4bc5-88e1-66f8b6e16b8a/1/6NHRX1kR1I0cWe7zdPezf3HU678.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/7729e4-6a6d-4bc5-88e1-66f8b6e16b8a/1/6NHRX1kR1I0cWe7zdPezf3HU678.mft rsync://rpki.ripe.net/repository/DEFAULT/6NHRX1kR1I0cWe7zdPezf3HU678.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:13:f2:57:a0:04:65:10:17:54:43:17:3b:b7:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8d1d15f5911d48d1c59eef374f7b37f71d4ebbf Validity Not Before: Jan 1 22:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc64341657c183d1eeaf15f304748217c2161514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ee:c1:74:08:83:6e:9e:7b:c3:ec:2f:f8:97: 4c:1e:cc:c5:60:d3:45:01:f4:28:1d:a0:4b:0d:70: 78:a3:e3:df:c9:cf:5f:1e:38:ac:b7:bd:d6:01:76: 36:5e:5d:57:ee:26:75:e4:60:1c:5c:2f:56:ef:f1: 89:c9:87:00:2d:bb:9f:d9:02:fd:df:74:44:72:ab: bb:bd:e0:97:0c:d5:c5:70:da:9a:c0:fa:d8:60:8d: 44:74:83:ee:99:18:c1:97:33:e0:c0:27:99:00:61: 4b:5e:03:ec:07:d5:f4:77:63:d4:c5:8b:0c:1b:6c: af:90:7d:31:c2:c2:5b:e1:88:b3:ad:c7:73:07:ba: 5c:5f:64:93:5a:8c:a0:09:f1:28:99:63:10:c3:d2: ea:63:56:9a:69:cb:d6:57:be:3b:09:cc:ec:fd:51: 0f:0f:12:c4:b5:4d:ad:fe:5d:14:b6:1e:ad:1d:3c: da:33:6e:48:9a:29:7b:01:5c:ef:db:96:7e:5d:12: e9:d3:b0:21:e1:23:02:d5:7d:d9:1b:bc:ad:0f:0e: 37:20:8a:d7:b3:11:c6:39:a5:f3:81:2e:50:6a:d8: 71:90:b3:b6:12:13:30:ed:d5:56:80:f2:c4:8a:28: 7a:a0:31:2d:e2:87:dc:c1:9a:0e:18:65:fd:7d:45: a1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:64:34:16:57:C1:83:D1:EE:AF:15:F3:04:74:82:17:C2:16:15:14 X509v3 Authority Key Identifier: keyid:E8:D1:D1:5F:59:11:D4:8D:1C:59:EE:F3:74:F7:B3:7F:71:D4:EB:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6NHRX1kR1I0cWe7zdPezf3HU678.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7729e4-6a6d-4bc5-88e1-66f8b6e16b8a/1/vGQ0FlfBg9HurxXzBHSCF8IWFRQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7729e4-6a6d-4bc5-88e1-66f8b6e16b8a/1/6NHRX1kR1I0cWe7zdPezf3HU678.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.10.0/24 Signature Algorithm: sha256WithRSAEncryption ca:2e:5d:14:17:1f:10:b9:75:27:b0:4b:78:8b:6b:81:e3:29: 89:9a:b2:32:c1:ae:56:cd:84:17:da:1d:ad:24:3a:bf:af:de: eb:d9:68:90:75:b0:3c:57:1a:ac:04:79:f6:88:6f:e2:37:ff: 82:03:75:94:e3:6e:8f:ce:5b:64:3e:cf:60:3c:c7:cc:4a:c4: 2b:98:4b:16:05:7d:ec:a1:c6:63:eb:35:87:2c:4a:c1:67:76: 88:22:69:0e:07:69:4f:72:c4:68:27:7f:ae:88:1d:d8:95:10: e1:17:15:09:70:25:ef:1e:8f:3d:66:d5:a2:0e:49:9a:8c:f4: 69:12:2d:2c:29:92:e0:a7:52:ca:2c:c5:1a:aa:41:28:62:db: d5:81:c6:e8:c5:0f:9b:89:3a:d4:86:b1:61:91:3d:51:1c:42: 27:84:a7:af:31:56:40:f5:8e:55:fa:a3:da:be:0c:a2:b8:1b: c3:77:40:a0:20:83:96:1a:2c:03:2d:a3:c9:f8:47:5e:c6:4b: 86:ce:42:fa:d8:4b:2a:6e:a8:d5:df:c3:b3:a2:c7:58:9e:06: 3d:32:3b:77:b8:c2:87:12:ea:bf:19:60:22:60:09:f8:2c:5d: 3f:46:dd:16:a9:96:e0:69:22:da:f0:01:36:46:70:14:4a:88: c9:77:f4:c2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pRPyV6AEZRAXVEMXO7eWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4ZDFkMTVmNTkxMWQ0OGQxYzU5ZWVmMzc0ZjdiMzdmNzFk NGViYmYwHhcNMjYwMTAxMjIxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzY0MzQxNjU3YzE4M2QxZWVhZjE1ZjMwNDc0ODIxN2MyMTYxNTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvO7BdAiDbp57w+wv+JdMHszFYNNF AfQoHaBLDXB4o+Pfyc9fHjist73WAXY2Xl1X7iZ15GAcXC9W7/GJyYcALbuf2QL9 33REcqu7veCXDNXFcNqawPrYYI1EdIPumRjBlzPgwCeZAGFLXgPsB9X0d2PUxYsM G2yvkH0xwsJb4YizrcdzB7pcX2STWoygCfEomWMQw9LqY1aaacvWV747Cczs/VEP DxLEtU2t/l0Uth6tHTzaM25Imil7AVzv25Z+XRLp07Ah4SMC1X3ZG7ytDw43IIrX sxHGOaXzgS5QathxkLO2EhMw7dVWgPLEiih6oDEt4ofcwZoOGGX9fUWhNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLxkNBZXwYPR7q8V8wR0ghfCFhUUMB8GA1UdIwQY MBaAFOjR0V9ZEdSNHFnu83T3s39x1Ou/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNk5IUlgxa1IxSTBjV2U3emRQZXpmM0hVNjc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83NzI5ZTQtNmE2ZC00YmM1LTg4ZTEt NjZmOGI2ZTE2YjhhLzEvdkdRMEZsZkJnOUh1cnhYekJIU0NGOElXRlJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC83NzI5ZTQtNmE2ZC00YmM1LTg4ZTEtNjZmOGI2ZTE2Yjhh LzEvNk5IUlgxa1IxSTBjV2U3emRQZXpmM0hVNjc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9gKMA0G CSqGSIb3DQEBCwUAA4IBAQDKLl0UFx8QuXUnsEt4i2uB4ymJmrIywa5WzYQX2h2t JDq/r97r2WiQdbA8VxqsBHn2iG/iN/+CA3WU426PzltkPs9gPMfMSsQrmEsWBX3s ocZj6zWHLErBZ3aIImkOB2lPcsRoJ3+uiB3YlRDhFxUJcCXvHo89ZtWiDkmajPRp Ei0sKZLgp1LKLMUaqkEoYtvVgcboxQ+biTrUhrFhkT1RHEInhKevMVZA9Y5V+qPa vgyiuBvDd0CgIIOWGiwDLaPJ+EdexkuGzkL62EsqbqjV38OzosdYngY9Mjt3uMKH Euq/GWAiYAn4LF0/Rt0WqZbgaSLa8AE2RnAUSojJd/TC -----END CERTIFICATE-----Generated at Sun Jan 25 17:40:03 2026 by rpki-client