This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/VTOF1mAuOAY_-tLdNMoe_pcrjMQ.roa File: VTOF1mAuOAY_-tLdNMoe_pcrjMQ.roa (raw, json) Hash identifier: jtjYRNSSBZQBAMWJxgI/LVkURXr1s2BmDS5NjL+Hzks= Subject key identifier: 55:33:85:D6:60:2E:38:06:3F:FA:D2:DD:34:CA:1E:FE:97:2B:8C:C4 Certificate issuer: /CN=97d23ae28cd860c8edfd618356f8b31f5e4dc928 Certificate serial: 019B7CED98403A14C15F4749DC82297A5E9A Authority key identifier: 97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9I64ozYYMjt_WGDVvizH15NySg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/VTOF1mAuOAY_-tLdNMoe_pcrjMQ.roa Signing time: Fri 02 Jan 2026 04:18:24 +0000 ROA not before: Fri 02 Jan 2026 04:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213438 IP address blocks: 2a13:29c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.mft rsync://rpki.ripe.net/repository/DEFAULT/l9I64ozYYMjt_WGDVvizH15NySg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:98:40:3a:14:c1:5f:47:49:dc:82:29:7a:5e:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97d23ae28cd860c8edfd618356f8b31f5e4dc928 Validity Not Before: Jan 2 04:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=553385d6602e38063ffad2dd34ca1efe972b8cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:77:f8:05:e7:79:71:dc:90:de:55:d0:4c:3e: 50:15:11:ee:85:63:8a:3a:34:ef:66:12:dc:28:04: 8e:fc:84:5e:8d:36:d3:6b:a3:2f:2c:b1:89:00:62: e8:d3:6e:46:29:67:73:23:bc:13:f8:27:cf:4e:6a: fd:e3:8d:c4:98:4e:c2:e8:87:a8:72:8a:d0:33:a5: 3c:5b:89:f6:b0:b4:16:5f:17:13:2b:c9:29:b0:bb: 87:2a:1d:ba:51:8d:41:de:d7:20:f1:79:8b:8b:48: e7:1e:4b:28:dd:44:cd:c8:99:a4:1c:e0:8c:42:dc: 2a:93:13:00:72:3e:1a:b2:26:cd:88:33:e6:70:cb: a6:72:4b:08:de:a6:d4:92:c2:49:75:3f:ed:0e:03: 4b:8a:f7:86:a2:ae:f3:cf:da:10:e3:b1:f5:32:0a: 6f:34:d8:8f:08:f4:d3:94:7e:71:5f:1a:34:ed:42: 4a:43:01:f4:b8:fe:51:bb:58:7e:45:83:4e:e7:e3: 77:7d:94:90:9f:c3:d4:d0:b0:ec:1f:aa:d2:ec:e5: 78:36:50:35:6a:f4:10:19:dd:5f:50:e3:ad:df:1d: de:4e:fa:54:84:1a:54:ac:b0:05:00:8f:9e:8f:73: d5:46:42:34:83:bd:44:e7:cc:8b:28:c7:71:df:e2: b5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:33:85:D6:60:2E:38:06:3F:FA:D2:DD:34:CA:1E:FE:97:2B:8C:C4 X509v3 Authority Key Identifier: keyid:97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9I64ozYYMjt_WGDVvizH15NySg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/VTOF1mAuOAY_-tLdNMoe_pcrjMQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:29c0::/29 Signature Algorithm: sha256WithRSAEncryption 71:8e:7a:14:56:f5:f3:5e:98:62:62:e9:9e:c4:03:3a:a7:61: a7:ba:23:e0:83:cc:fd:83:e7:61:e2:50:61:1a:b3:3d:ab:41: 22:c4:ce:1e:e0:c3:1a:c3:fb:a1:a2:ad:6a:b7:5a:34:16:5d: 87:9c:e3:bc:6f:31:ff:96:c5:a8:52:d4:da:0d:96:ff:0d:65: 4a:94:25:d3:9a:34:45:ee:93:d9:c6:6f:91:15:c2:9e:3f:2b: 63:0b:bf:84:cf:76:ee:6e:85:f2:15:05:e2:c3:c3:1f:a6:fe: 6b:c3:e8:e7:aa:d2:34:71:af:d3:6c:56:ad:db:19:6e:40:e4: 61:db:a3:50:90:ac:16:a0:be:72:bf:25:5a:02:bc:c3:13:46: 30:5a:89:5b:08:f7:73:0a:56:c4:ef:8f:61:81:ac:b1:d0:9f: 2d:cf:dc:ea:da:f4:69:86:bf:f3:cc:35:a9:ca:1b:57:a4:2d: e0:53:cd:5e:fb:61:80:16:77:a1:a0:50:ac:f1:9b:14:99:f0: 43:3d:e2:25:ef:75:56:80:89:e6:b9:b8:b7:d6:b0:43:71:1e: ed:96:aa:20:f5:3f:30:e1:29:10:1e:88:f4:07:3f:58:7d:b7: 72:48:1e:7c:80:d9:89:18:07:31:b1:a3:27:bf:55:aa:2a:03: 76:19:cc:07 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt87ZhAOhTBX0dJ3IIpel6aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3ZDIzYWUyOGNkODYwYzhlZGZkNjE4MzU2ZjhiMzFmNWU0 ZGM5MjgwHhcNMjYwMTAyMDQxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTMzODVkNjYwMmUzODA2M2ZmYWQyZGQzNGNhMWVmZTk3MmI4Y2M0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03f4Bed5cdyQ3lXQTD5QFRHuhWOK OjTvZhLcKASO/IRejTbTa6MvLLGJAGLo025GKWdzI7wT+CfPTmr9443EmE7C6Ieo corQM6U8W4n2sLQWXxcTK8kpsLuHKh26UY1B3tcg8XmLi0jnHkso3UTNyJmkHOCM QtwqkxMAcj4asibNiDPmcMumcksI3qbUksJJdT/tDgNLiveGoq7zz9oQ47H1Mgpv NNiPCPTTlH5xXxo07UJKQwH0uP5Ru1h+RYNO5+N3fZSQn8PU0LDsH6rS7OV4NlA1 avQQGd1fUOOt3x3eTvpUhBpUrLAFAI+ej3PVRkI0g71E58yLKMdx3+K1JwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFFUzhdZgLjgGP/rS3TTKHv6XK4zEMB8GA1UdIwQY MBaAFJfSOuKM2GDI7f1hg1b4sx9eTckoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDlJNjRvellZTWp0X1dHRFZ2aXpIMTVOeVNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9jYTY0MWYtZGIzYS00ZjY0LWEyNWIt Y2ZhNmE5MTQ4MWUyLzEvVlRPRjFtQXVPQVlfLXRMZE5Nb2VfcGNyak1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9jYTY0MWYtZGIzYS00ZjY0LWEyNWItY2ZhNmE5MTQ4MWUy LzEvbDlJNjRvellZTWp0X1dHRFZ2aXpIMTVOeVNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMpwDAN BgkqhkiG9w0BAQsFAAOCAQEAcY56FFb1816YYmLpnsQDOqdhp7oj4IPM/YPnYeJQ YRqzPatBIsTOHuDDGsP7oaKtardaNBZdh5zjvG8x/5bFqFLU2g2W/w1lSpQl05o0 Re6T2cZvkRXCnj8rYwu/hM927m6F8hUF4sPDH6b+a8Po56rSNHGv02xWrdsZbkDk YdujUJCsFqC+cr8lWgK8wxNGMFqJWwj3cwpWxO+PYYGssdCfLc/c6tr0aYa/88w1 qcobV6Qt4FPNXvthgBZ3oaBQrPGbFJnwQz3iJe91VoCJ5rm4t9awQ3Ee7ZaqIPU/ MOEpEB6I9Ac/WH23ckgefIDZiRgHMbGjJ79VqioDdhnMBw== -----END CERTIFICATE-----Generated at Sun Jan 25 19:17:45 2026 by rpki-client