This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/733598-74e8-47aa-8c8e-99ec88c47760/1/vrzaOZyt0yuGmEkZWTfpBfvU0FM.roa File: vrzaOZyt0yuGmEkZWTfpBfvU0FM.roa (raw, json) Hash identifier: wM8w9UXwnJwWC//EoV2cIpFlr+CCNnYEJvvmregOsvI= Subject key identifier: BE:BC:DA:39:9C:AD:D3:2B:86:98:49:19:59:37:E9:05:FB:D4:D0:53 Certificate issuer: /CN=ca0c2dacafdfa53997ed3b0a70dfbc270a933bf4 Certificate serial: 019B7F15BA6C44B624C1CD8301C7129F4B9C Authority key identifier: CA:0C:2D:AC:AF:DF:A5:39:97:ED:3B:0A:70:DF:BC:27:0A:93:3B:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygwtrK_fpTmX7TsKcN-8JwqTO_Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/733598-74e8-47aa-8c8e-99ec88c47760/1/vrzaOZyt0yuGmEkZWTfpBfvU0FM.roa Signing time: Fri 02 Jan 2026 14:21:29 +0000 ROA not before: Fri 02 Jan 2026 14:21:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15533 IP address blocks: 185.4.4.0/22 maxlen: 24 185.4.4.0/24 maxlen: 24 185.4.5.0/24 maxlen: 24 185.4.6.0/24 maxlen: 24 185.4.7.0/24 maxlen: 24 2a02:5e40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/733598-74e8-47aa-8c8e-99ec88c47760/1/ygwtrK_fpTmX7TsKcN-8JwqTO_Q.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/733598-74e8-47aa-8c8e-99ec88c47760/1/ygwtrK_fpTmX7TsKcN-8JwqTO_Q.mft rsync://rpki.ripe.net/repository/DEFAULT/ygwtrK_fpTmX7TsKcN-8JwqTO_Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:ba:6c:44:b6:24:c1:cd:83:01:c7:12:9f:4b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca0c2dacafdfa53997ed3b0a70dfbc270a933bf4 Validity Not Before: Jan 2 14:21:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bebcda399cadd32b869849195937e905fbd4d053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:47:17:06:87:79:61:3d:ed:a4:05:04:02:78: 99:93:36:62:55:de:f9:1d:03:e8:21:b2:84:14:5f: b9:99:65:69:aa:52:87:15:75:36:b3:eb:9e:ad:a8: 63:0e:d2:95:75:21:e7:f0:c0:b7:57:74:8a:65:f7: ec:ac:b8:a7:25:40:e6:ef:fc:f6:b0:b6:bd:bb:4b: 2b:0f:70:3a:54:13:f7:1a:8e:8a:c0:fa:53:d8:6c: b0:a8:7e:eb:2a:ac:b4:b1:d1:c7:2b:8c:e9:b5:4c: 58:63:21:5f:e2:65:9c:79:91:49:18:5e:96:5d:b5: b8:2c:4e:17:87:ea:8b:bb:53:a0:bd:5f:ff:82:b2: 68:73:1a:0d:f2:c9:ec:fa:01:2a:04:a4:b0:85:0b: d6:9c:92:35:ff:4d:8e:0d:9b:25:65:b0:4b:1f:19: bd:6a:13:e3:21:51:fd:e5:00:54:2c:44:4a:8e:e2: 28:a9:58:00:f1:71:28:54:4b:67:2b:21:84:3e:ef: e8:6a:bf:98:e4:63:2b:b6:41:bd:5c:b2:1b:4c:c9: 6f:15:4e:d7:43:a1:f8:71:33:53:97:db:f9:bc:9c: 8e:b6:e4:bc:47:75:53:3a:4f:5e:05:1c:44:b2:e6: 80:73:8b:25:4b:79:a4:d4:9c:f0:19:5c:54:d9:fa: a1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BC:DA:39:9C:AD:D3:2B:86:98:49:19:59:37:E9:05:FB:D4:D0:53 X509v3 Authority Key Identifier: keyid:CA:0C:2D:AC:AF:DF:A5:39:97:ED:3B:0A:70:DF:BC:27:0A:93:3B:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygwtrK_fpTmX7TsKcN-8JwqTO_Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/733598-74e8-47aa-8c8e-99ec88c47760/1/vrzaOZyt0yuGmEkZWTfpBfvU0FM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/733598-74e8-47aa-8c8e-99ec88c47760/1/ygwtrK_fpTmX7TsKcN-8JwqTO_Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.4.4.0/22 IPv6: 2a02:5e40::/32 Signature Algorithm: sha256WithRSAEncryption 02:62:d7:19:b7:d1:f1:50:cc:ab:3c:f0:33:c6:b0:9a:82:99: 89:55:eb:1f:91:1f:68:10:21:34:a6:b9:2d:f6:45:f2:8d:3c: 5b:97:c5:57:34:d7:c1:84:b7:63:46:84:cd:97:f2:b9:a0:2a: a9:00:51:fc:84:2d:5a:78:27:07:01:5a:6f:4e:ec:2e:0d:86: 65:74:64:1e:f4:af:1a:40:88:11:c6:ae:11:f2:84:a1:a2:5f: bf:9f:65:6d:b3:0e:1c:e6:7e:ad:c6:91:02:a6:f6:28:64:36: 5e:27:01:a3:2a:61:99:4f:33:ca:de:dd:f7:b6:ac:3d:6c:1c: fb:a5:8e:c1:fe:ad:f8:b0:ff:55:cb:7c:39:20:08:d3:98:fd: ed:7e:2f:f0:6e:61:15:24:a8:7a:ee:72:e9:61:a5:a0:ba:cb: 45:12:3c:19:8d:ef:4e:f3:4f:e2:26:53:2e:77:6d:ef:c5:e7: 36:ab:0b:eb:4f:80:98:b1:58:d3:96:ca:92:38:90:b9:30:7a: fb:c6:f8:9e:f5:96:6f:22:76:4d:64:f8:b2:1c:92:85:e4:65: 15:6a:e6:3b:8c:cf:e1:2c:9c:f3:a3:68:d0:fa:d4:f5:24:d0: 7f:ee:66:16:1e:e0:0a:03:42:63:bd:36:ac:79:27:a2:d5:a6: 59:5f:ef:4e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FbpsRLYkwc2DAccSn0ucMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMGMyZGFjYWZkZmE1Mzk5N2VkM2IwYTcwZGZiYzI3MGE5 MzNiZjQwHhcNMjYwMTAyMTQyMTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWJjZGEzOTljYWRkMzJiODY5ODQ5MTk1OTM3ZTkwNWZiZDRkMDUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEcXBod5YT3tpAUEAniZkzZiVd75 HQPoIbKEFF+5mWVpqlKHFXU2s+uerahjDtKVdSHn8MC3V3SKZffsrLinJUDm7/z2 sLa9u0srD3A6VBP3Go6KwPpT2GywqH7rKqy0sdHHK4zptUxYYyFf4mWceZFJGF6W XbW4LE4Xh+qLu1OgvV//grJocxoN8sns+gEqBKSwhQvWnJI1/02ODZslZbBLHxm9 ahPjIVH95QBULERKjuIoqVgA8XEoVEtnKyGEPu/oar+Y5GMrtkG9XLIbTMlvFU7X Q6H4cTNTl9v5vJyOtuS8R3VTOk9eBRxEsuaAc4slS3mk1JzwGVxU2fqhewIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL682jmcrdMrhphJGVk36QX71NBTMB8GA1UdIwQY MBaAFMoMLayv36U5l+07CnDfvCcKkzv0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWd3dHJLX2ZwVG1YN1RzS2NOLThKd3FUT19RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS83MzM1OTgtNzRlOC00N2FhLThjOGUt OTllYzg4YzQ3NzYwLzEvdnJ6YU9aeXQweXVHbUVrWldUZnBCZnZVMEZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS83MzM1OTgtNzRlOC00N2FhLThjOGUtOTllYzg4YzQ3NzYw LzEveWd3dHJLX2ZwVG1YN1RzS2NOLThKd3FUT19RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQQEMA0E AgACMAcDBQAqAl5AMA0GCSqGSIb3DQEBCwUAA4IBAQACYtcZt9HxUMyrPPAzxrCa gpmJVesfkR9oECE0prkt9kXyjTxbl8VXNNfBhLdjRoTNl/K5oCqpAFH8hC1aeCcH AVpvTuwuDYZldGQe9K8aQIgRxq4R8oShol+/n2Vtsw4c5n6txpECpvYoZDZeJwGj KmGZTzPK3t33tqw9bBz7pY7B/q34sP9Vy3w5IAjTmP3tfi/wbmEVJKh67nLpYaWg ustFEjwZje9O80/iJlMud23vxec2qwvrT4CYsVjTlsqSOJC5MHr7xvie9ZZvInZN ZPiyHJKF5GUVauY7jM/hLJzzo2jQ+tT1JNB/7mYWHuAKA0JjvTaseSei1aZZX+9O -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:24 2026 by rpki-client