This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/VlaHlKRWDcOcGuVgnteAb200G78.roa File: VlaHlKRWDcOcGuVgnteAb200G78.roa (raw, json) Hash identifier: 0o9r3pak+CL/qWrBSr2iB7II/28BBOkaW9ePbk7/cdQ= Subject key identifier: 56:56:87:94:A4:56:0D:C3:9C:1A:E5:60:9E:D7:80:6F:6D:34:1B:BF Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c Certificate serial: 019B7F83C8B239582B350B723A087060F40B Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/VlaHlKRWDcOcGuVgnteAb200G78.roa Signing time: Fri 02 Jan 2026 16:21:41 +0000 ROA not before: Fri 02 Jan 2026 16:21:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20546 IP address blocks: 139.29.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:c8:b2:39:58:2b:35:0b:72:3a:08:70:60:f4:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c Validity Not Before: Jan 2 16:21:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=56568794a4560dc39c1ae5609ed7806f6d341bbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:21:a1:dc:13:86:83:45:7e:18:d8:22:b2:76: 3c:1e:04:dd:89:6f:7a:f0:15:41:13:29:ae:d0:e7: 6b:a0:71:8a:36:32:82:20:9f:44:9f:e5:3f:ba:9b: 33:bb:92:73:65:70:94:a1:49:db:ec:0b:0e:ff:3f: 0f:19:45:9f:55:67:c3:b5:fb:c4:dd:21:1e:1c:3b: 8b:19:7a:c7:55:a2:d2:6f:e8:e1:76:97:50:6a:93: f8:7d:87:17:d2:ee:b4:c5:22:0c:81:c9:92:a9:27: 3a:93:4f:d6:f6:34:df:b7:ae:56:c2:04:c4:95:70: 1d:4f:00:e5:a7:17:19:47:fc:03:85:86:cd:f7:2c: 97:27:d8:3e:17:4e:0e:3f:82:96:74:4c:8a:3e:f6: fe:98:29:12:15:0f:3a:e8:9e:e4:66:89:87:98:e6: 00:fe:f5:17:5e:35:b3:5b:bc:8d:0d:86:b8:f0:18: 58:99:29:91:07:98:4d:84:3c:2d:4f:ba:12:e3:45: 07:d7:7b:7c:0d:4d:15:1c:c7:21:03:66:30:a8:d1: 8c:b0:6b:de:ca:85:74:57:99:0c:e7:5c:5a:37:64: 97:d5:f9:81:b2:0d:8b:2e:fd:cd:56:fe:5e:fc:e8: c3:53:04:74:6e:dd:80:b0:9d:88:36:9b:6e:65:ce: 1f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:56:87:94:A4:56:0D:C3:9C:1A:E5:60:9E:D7:80:6F:6D:34:1B:BF X509v3 Authority Key Identifier: keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/VlaHlKRWDcOcGuVgnteAb200G78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.29.127.0/24 Signature Algorithm: sha256WithRSAEncryption a6:6e:a4:34:c8:62:3a:78:7f:37:af:bd:dd:3a:b6:13:2b:8c: 54:13:8f:00:e0:ae:1e:81:0b:41:6f:c4:c7:52:0f:19:12:5a: cf:67:13:00:db:b8:37:7a:65:b0:09:dc:76:d1:d9:38:5e:a6: 77:33:05:3d:44:0b:83:6b:d7:07:2d:5f:80:64:06:c8:39:96: 2b:eb:26:e8:e5:6c:13:0b:35:2f:4b:1c:4c:2c:7f:7a:0d:f4: 9e:70:63:78:4a:dd:5d:41:cf:94:e9:48:5c:73:52:78:5b:1c: 42:21:5b:4c:bd:8c:c6:7a:b7:a4:27:14:52:62:ab:0c:34:43: bc:c8:3f:d1:a0:02:ca:20:34:54:e7:ac:bb:8b:f3:37:8b:a7: c5:ca:d1:66:64:e0:74:39:4a:ae:2f:41:50:cd:2c:4f:5f:09: 3f:c4:19:1e:60:90:cf:fa:b5:8f:1a:cf:94:5d:e7:13:f2:d2: d8:ff:e7:90:21:8f:d0:7c:c0:74:d4:f7:49:27:47:6c:d9:37: 7a:8b:47:0c:10:ef:7c:f4:1f:9f:6b:bd:76:38:f0:71:fe:41: d7:1c:f4:af:99:ae:d2:2c:69:2a:d6:7e:8c:d1:50:5d:cd:15: 48:1d:fa:8e:7c:39:40:20:37:5e:be:62:75:cf:e2:96:1f:0e: 2d:ab:a6:08 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g8iyOVgrNQtyOghwYPQLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5M2FmZWNkNzExNzA1YzQ3NmI3ODVkMGM4NmVmNTRjMjEy NDM1NGMwHhcNMjYwMTAyMTYyMTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NjU2ODc5NGE0NTYwZGMzOWMxYWU1NjA5ZWQ3ODA2ZjZkMzQxYmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCGh3BOGg0V+GNgisnY8HgTdiW96 8BVBEymu0OdroHGKNjKCIJ9En+U/upszu5JzZXCUoUnb7AsO/z8PGUWfVWfDtfvE 3SEeHDuLGXrHVaLSb+jhdpdQapP4fYcX0u60xSIMgcmSqSc6k0/W9jTft65WwgTE lXAdTwDlpxcZR/wDhYbN9yyXJ9g+F04OP4KWdEyKPvb+mCkSFQ866J7kZomHmOYA /vUXXjWzW7yNDYa48BhYmSmRB5hNhDwtT7oS40UH13t8DU0VHMchA2YwqNGMsGve yoV0V5kM51xaN2SX1fmBsg2LLv3NVv5e/OjDUwR0bt2AsJ2INptuZc4fTQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFZWh5SkVg3DnBrlYJ7XgG9tNBu/MB8GA1UdIwQY MBaAFIk6/s1xFwXEdreF0Mhu9UwhJDVMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQt MWMxMzIwNmE4MTIzLzEvVmxhSGxLUldEY09jR3VWZ250ZUFiMjAwRzc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQtMWMxMzIwNmE4MTIz LzEvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAix1/MA0G CSqGSIb3DQEBCwUAA4IBAQCmbqQ0yGI6eH83r73dOrYTK4xUE48A4K4egQtBb8TH Ug8ZElrPZxMA27g3emWwCdx20dk4XqZ3MwU9RAuDa9cHLV+AZAbIOZYr6ybo5WwT CzUvSxxMLH96DfSecGN4St1dQc+U6Uhcc1J4WxxCIVtMvYzGerekJxRSYqsMNEO8 yD/RoALKIDRU56y7i/M3i6fFytFmZOB0OUquL0FQzSxPXwk/xBkeYJDP+rWPGs+U XecT8tLY/+eQIY/QfMB01PdJJ0ds2Td6i0cMEO989B+fa712OPBx/kHXHPSvma7S LGkq1n6M0VBdzRVIHfqOfDlAIDdevmJ1z+KWHw4tq6YI -----END CERTIFICATE-----Generated at Sun Jan 25 13:42:46 2026 by rpki-client