This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/1-jVMWvCo1Ia8-NPvjqSraY5h6j8.roa File: 1-jVMWvCo1Ia8-NPvjqSraY5h6j8.roa (raw, json) Hash identifier: UbgB51BsUdBtKMnN7GLkK8Ly1Wmd/yhJ431EUB3j0ds= Subject key identifier: FA:35:4C:5A:F0:A8:D4:86:BC:F8:D3:EF:8E:A4:AB:69:8E:61:EA:3F Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda Certificate serial: 019B7A5A8ED1B104F7EC6EB08CC31C71E54F Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/1-jVMWvCo1Ia8-NPvjqSraY5h6j8.roa Signing time: Thu 01 Jan 2026 16:18:33 +0000 ROA not before: Thu 01 Jan 2026 16:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60522 IP address blocks: 86.111.152.0/21 maxlen: 32 134.255.192.0/22 maxlen: 32 185.29.216.0/22 maxlen: 32 185.205.124.0/22 maxlen: 32 195.192.216.0/21 maxlen: 32 217.61.192.0/20 maxlen: 32 2a00:ab60::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:8e:d1:b1:04:f7:ec:6e:b0:8c:c3:1c:71:e5:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda Validity Not Before: Jan 1 16:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa354c5af0a8d486bcf8d3ef8ea4ab698e61ea3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6c:47:c3:b0:79:fe:79:46:20:bf:4d:52:bd: c8:70:ef:c7:7d:58:6e:13:58:bd:62:cf:1e:d9:a0: da:69:c4:fb:a7:9a:bc:ac:32:19:e0:2a:70:f9:64: 89:4e:2c:5b:b0:41:84:cf:1f:00:b7:19:73:d1:cc: dd:2e:20:c2:53:9c:9b:bd:c9:df:dd:b3:fc:49:2e: 1a:4c:a6:71:c2:7b:72:fa:98:51:c5:33:3a:4d:c6: 1c:c5:8f:71:6b:aa:16:d4:39:56:65:d3:14:4a:34: 3a:8b:33:dc:9c:8b:67:bb:be:35:da:56:ee:a8:70: 46:29:27:11:ee:dc:af:4c:24:de:06:69:dd:18:65: dd:43:27:37:66:a8:84:ae:74:05:18:fa:3e:f5:97: 57:bc:82:1f:50:35:ed:51:5a:0d:6e:49:53:3a:31: f9:2c:ef:ef:63:b2:de:38:49:a4:a9:41:45:be:ae: cd:f8:19:ca:2a:bf:62:ee:69:ff:f2:c0:6d:e1:95: f3:ec:24:9b:83:84:67:2a:77:17:75:48:c6:a6:d1: d2:77:68:15:33:f8:6f:81:96:9c:5e:b6:f6:a6:16: 5c:e1:6e:6c:d8:3d:93:49:8e:73:06:af:1d:33:4a: 4e:49:c0:d5:31:f1:d0:7d:4f:d2:6a:21:c8:f4:a3: 10:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:35:4C:5A:F0:A8:D4:86:BC:F8:D3:EF:8E:A4:AB:69:8E:61:EA:3F X509v3 Authority Key Identifier: keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/1-jVMWvCo1Ia8-NPvjqSraY5h6j8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.111.152.0/21 134.255.192.0/22 185.29.216.0/22 185.205.124.0/22 195.192.216.0/21 217.61.192.0/20 IPv6: 2a00:ab60::/29 Signature Algorithm: sha256WithRSAEncryption 14:02:91:5d:d0:3e:e3:ce:12:32:42:bd:b5:00:bd:69:1e:ff: a5:a1:a6:54:67:dc:94:60:c7:fb:42:1e:ce:0f:7d:cf:6d:f5: ab:36:9b:4c:ba:5d:03:90:01:41:eb:dc:f6:fb:60:bb:8f:3d: ae:1c:d8:61:f2:fb:ea:cc:a7:86:3e:15:13:9e:2f:ca:0d:ef: 1e:81:c9:de:d1:2c:2d:02:c8:60:0e:8b:41:25:3d:23:f9:b6: d8:2c:68:cb:2f:4e:e4:3e:ad:b8:53:1c:3a:79:45:c6:0f:49: 00:1c:60:a1:f2:41:2f:97:4b:f6:86:b5:4a:15:52:51:b5:09: c5:6f:01:21:a1:47:08:b6:ba:fc:09:8f:15:37:92:ec:fd:fd: d3:22:22:70:20:82:d8:9a:44:7d:93:6d:88:20:d1:86:2e:14: a8:91:89:4a:d2:f0:99:25:db:36:ad:18:ea:be:df:6d:23:13: b5:a1:7c:86:dd:39:00:59:10:26:1d:93:6d:eb:68:e1:1e:27: 0c:c0:20:0c:f6:29:58:b2:1b:36:82:3e:85:fe:71:d9:90:43: 4d:90:b6:57:45:7b:d1:08:20:7f:29:28:a7:a4:74:53:9b:ed: 78:4b:e0:bc:80:97:bb:74:3b:f2:96:0e:ba:af:9a:04:da:4b: 9c:9d:b7:fe -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt6Wo7RsQT37G6wjMMcceVPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNDhjYzM1NDg4YmQ5ZTZmMzEyYjIwZmM3NmExMDI3MmYw Y2RlZGEwHhcNMjYwMTAxMTYxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTM1NGM1YWYwYThkNDg2YmNmOGQzZWY4ZWE0YWI2OThlNjFlYTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWxHw7B5/nlGIL9NUr3IcO/HfVhu E1i9Ys8e2aDaacT7p5q8rDIZ4Cpw+WSJTixbsEGEzx8Atxlz0czdLiDCU5ybvcnf 3bP8SS4aTKZxwnty+phRxTM6TcYcxY9xa6oW1DlWZdMUSjQ6izPcnItnu7412lbu qHBGKScR7tyvTCTeBmndGGXdQyc3ZqiErnQFGPo+9ZdXvIIfUDXtUVoNbklTOjH5 LO/vY7LeOEmkqUFFvq7N+BnKKr9i7mn/8sBt4ZXz7CSbg4RnKncXdUjGptHSd2gV M/hvgZacXrb2phZc4W5s2D2TSY5zBq8dM0pOScDVMfHQfU/SaiHI9KMQeQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFPo1TFrwqNSGvPjT746kq2mOYeo/MB8GA1UdIwQY MBaAFL5IzDVIi9nm8xKyD8dqECcvDN7aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9kMjY5NzEtYjdhOC00ZWRlLThiYjQt NDliYzQzNjYwYzk3LzEvMS1qVk1XdkNvMUlhOC1OUHZqcVNyYVk1aDZqOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZDcvZDI2OTcxLWI3YTgtNGVkZS04YmI0LTQ5YmM0MzY2MGM5 Ny8xL3Zrak1OVWlMMmViekVySVB4Mm9RSnk4TTN0by5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBMBggrBgEFBQcBBwEB/wQ9MDswKgQCAAEwJAMEA1ZvmAME Aob/wAMEArkd2AMEArnNfAMEA8PA2AMEBNk9wDANBAIAAjAHAwUDKgCrYDANBgkq hkiG9w0BAQsFAAOCAQEAFAKRXdA+484SMkK9tQC9aR7/paGmVGfclGDH+0Iezg99 z231qzabTLpdA5ABQevc9vtgu489rhzYYfL76synhj4VE54vyg3vHoHJ3tEsLQLI YA6LQSU9I/m22Cxoyy9O5D6tuFMcOnlFxg9JABxgofJBL5dL9oa1ShVSUbUJxW8B IaFHCLa6/AmPFTeS7P390yIicCCC2JpEfZNtiCDRhi4UqJGJStLwmSXbNq0Y6r7f bSMTtaF8ht05AFkQJh2Tbeto4R4nDMAgDPYpWLIbNoI+hf5x2ZBDTZC2V0V70Qgg fykop6R0U5vteEvgvICXu3Q78pYOuq+aBNpLnJ23/g== -----END CERTIFICATE-----Generated at Mon Jan 26 12:27:01 2026 by rpki-client