This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/60e376-993c-4baf-b590-6e6481e5765c/1/vHIrFpXjJbBEQLCFk5449-qqOs0.roa File: vHIrFpXjJbBEQLCFk5449-qqOs0.roa (raw, json) Hash identifier: fu+mos6wV/3DS80C/FDLDSbQMT9S0fJqCvMfKTRbzL0= Subject key identifier: BC:72:2B:16:95:E3:25:B0:44:40:B0:85:93:9E:38:F7:EA:AA:3A:CD Certificate issuer: /CN=2050df51f0e5bc81db4b05f449f74308d7fcfa2e Certificate serial: 019B76EB41CE3DB596949B295E55CB75C5DC Authority key identifier: 20:50:DF:51:F0:E5:BC:81:DB:4B:05:F4:49:F7:43:08:D7:FC:FA:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IFDfUfDlvIHbSwX0SfdDCNf8-i4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/60e376-993c-4baf-b590-6e6481e5765c/1/vHIrFpXjJbBEQLCFk5449-qqOs0.roa Signing time: Thu 01 Jan 2026 00:18:07 +0000 ROA not before: Thu 01 Jan 2026 00:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12858 IP address blocks: 212.101.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/60e376-993c-4baf-b590-6e6481e5765c/1/IFDfUfDlvIHbSwX0SfdDCNf8-i4.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/60e376-993c-4baf-b590-6e6481e5765c/1/IFDfUfDlvIHbSwX0SfdDCNf8-i4.mft rsync://rpki.ripe.net/repository/DEFAULT/IFDfUfDlvIHbSwX0SfdDCNf8-i4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:41:ce:3d:b5:96:94:9b:29:5e:55:cb:75:c5:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2050df51f0e5bc81db4b05f449f74308d7fcfa2e Validity Not Before: Jan 1 00:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc722b1695e325b04440b085939e38f7eaaa3acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:31:4a:39:29:36:dc:7b:08:4d:d7:14:e4:83: 0a:84:01:14:19:1c:a4:25:21:ad:5d:ba:a9:d6:10: 84:49:73:d7:d6:0c:a5:69:ee:55:5f:5b:3c:9f:ce: 00:e7:fa:86:4f:e5:a9:47:00:1e:06:4c:a4:3e:66: 43:6c:24:5f:a0:0c:10:26:96:98:5f:5b:90:2d:4b: 27:96:ac:27:c1:9e:74:ae:58:a8:d9:04:f7:01:c3: 67:07:b2:7a:bd:5c:1e:5f:b2:83:8e:17:ab:bd:9e: c5:38:6e:53:1f:ff:15:e1:3d:6e:41:9c:bb:2e:4f: e0:dc:36:7e:99:0b:39:15:76:45:e4:ff:20:5a:b1: 29:b7:c2:a5:1f:f6:86:d7:b5:89:75:2b:ff:db:23: bb:91:56:ad:da:cb:70:84:2c:22:db:19:2b:98:ad: 89:fa:66:86:a0:7e:60:02:52:5b:e3:e1:eb:01:c7: f4:2a:32:e5:04:a1:5a:c0:29:34:83:91:2a:3e:97: f8:fa:b1:b9:f2:84:b0:04:da:cc:bb:e5:88:72:70: 4d:9f:82:f3:ea:20:4c:1f:7d:fb:35:f5:fc:43:e1: 1e:2b:fc:7d:dd:6b:a3:31:94:c3:85:4e:08:73:b3: 81:bc:85:bf:3e:c3:d7:b8:79:ea:25:6d:47:e5:a0: cf:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:72:2B:16:95:E3:25:B0:44:40:B0:85:93:9E:38:F7:EA:AA:3A:CD X509v3 Authority Key Identifier: keyid:20:50:DF:51:F0:E5:BC:81:DB:4B:05:F4:49:F7:43:08:D7:FC:FA:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IFDfUfDlvIHbSwX0SfdDCNf8-i4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/60e376-993c-4baf-b590-6e6481e5765c/1/vHIrFpXjJbBEQLCFk5449-qqOs0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/60e376-993c-4baf-b590-6e6481e5765c/1/IFDfUfDlvIHbSwX0SfdDCNf8-i4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.101.119.0/24 Signature Algorithm: sha256WithRSAEncryption 81:42:9b:f7:69:39:ee:1e:6d:0a:e4:56:04:58:56:fe:2e:94: ee:ca:78:de:d5:83:43:7f:06:3d:b4:44:cf:29:e8:18:13:5f: a0:43:4c:3e:28:54:68:57:95:fc:5e:0c:32:a3:70:ae:9f:f0: 40:da:3c:ea:42:04:f1:2d:a6:a1:d5:30:a5:01:91:ee:e1:38: a3:29:c4:0a:a4:40:ee:87:6a:32:74:17:6b:d5:af:be:db:90: a2:09:13:51:2c:61:54:c7:bf:01:f3:09:8c:18:c8:49:83:b4: 95:d5:02:34:ea:01:65:c4:40:3c:66:ce:fe:fe:51:05:ce:cd: e1:ee:3a:df:4b:44:60:25:54:b0:cc:ef:d9:d9:30:0b:c3:05: d1:c8:74:80:88:a0:dc:ea:db:71:57:f7:a6:bb:de:34:18:1a: 4c:c6:d9:b3:67:75:66:c3:1f:16:cb:8b:37:3d:e6:54:ac:16: 0a:b9:56:11:98:4e:7b:ed:97:53:6a:c9:6c:d0:fb:02:77:ab: 38:f5:3a:f4:e0:72:f8:b2:8b:3c:70:12:b6:c4:9c:32:82:07: 0c:44:74:2a:f2:d8:3b:ce:c5:e3:af:54:a0:cd:21:03:ab:4b: 0e:b9:ab:16:09:18:7f:a7:81:c9:8e:ec:c4:df:f6:02:91:95: 78:24:0f:be -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt260HOPbWWlJspXlXLdcXcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNTBkZjUxZjBlNWJjODFkYjRiMDVmNDQ5Zjc0MzA4ZDdm Y2ZhMmUwHhcNMjYwMTAxMDAxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzcyMmIxNjk1ZTMyNWIwNDQ0MGIwODU5MzllMzhmN2VhYWEzYWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzFKOSk23HsITdcU5IMKhAEUGRyk JSGtXbqp1hCESXPX1gylae5VX1s8n84A5/qGT+WpRwAeBkykPmZDbCRfoAwQJpaY X1uQLUsnlqwnwZ50rlio2QT3AcNnB7J6vVweX7KDjhervZ7FOG5TH/8V4T1uQZy7 Lk/g3DZ+mQs5FXZF5P8gWrEpt8KlH/aG17WJdSv/2yO7kVat2stwhCwi2xkrmK2J +maGoH5gAlJb4+HrAcf0KjLlBKFawCk0g5EqPpf4+rG58oSwBNrMu+WIcnBNn4Lz 6iBMH337NfX8Q+EeK/x93WujMZTDhU4Ic7OBvIW/PsPXuHnqJW1H5aDPmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLxyKxaV4yWwRECwhZOeOPfqqjrNMB8GA1UdIwQY MBaAFCBQ31Hw5byB20sF9En3QwjX/PouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUZEZlVmRGx2SUhiU3dYMFNmZERDTmY4LWk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS82MGUzNzYtOTkzYy00YmFmLWI1OTAt NmU2NDgxZTU3NjVjLzEvdkhJckZwWGpKYkJFUUxDRms1NDQ5LXFxT3MwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS82MGUzNzYtOTkzYy00YmFmLWI1OTAtNmU2NDgxZTU3NjVj LzEvSUZEZlVmRGx2SUhiU3dYMFNmZERDTmY4LWk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GV3MA0G CSqGSIb3DQEBCwUAA4IBAQCBQpv3aTnuHm0K5FYEWFb+LpTuynje1YNDfwY9tETP KegYE1+gQ0w+KFRoV5X8Xgwyo3Cun/BA2jzqQgTxLaah1TClAZHu4TijKcQKpEDu h2oydBdr1a++25CiCRNRLGFUx78B8wmMGMhJg7SV1QI06gFlxEA8Zs7+/lEFzs3h 7jrfS0RgJVSwzO/Z2TALwwXRyHSAiKDc6ttxV/emu940GBpMxtmzZ3Vmwx8Wy4s3 PeZUrBYKuVYRmE577ZdTasls0PsCd6s49Tr04HL4sos8cBK2xJwyggcMRHQq8tg7 zsXjr1SgzSEDq0sOuasWCRh/p4HJjuzE3/YCkZV4JA++ -----END CERTIFICATE-----Generated at Mon Jan 26 00:13:56 2026 by rpki-client