This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/4qhtyZ6wg0TLaoTl20bTQ6zdZzM.roa File: 4qhtyZ6wg0TLaoTl20bTQ6zdZzM.roa (raw, json) Hash identifier: bXRFiV2MIGjAM6fy+eAjD8g/ZdGNJ5y70pWUssKwM58= Subject key identifier: E2:A8:6D:C9:9E:B0:83:44:CB:6A:84:E5:DB:46:D3:43:AC:DD:67:33 Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7C240588277AF74E0B5A6018092D3 Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/4qhtyZ6wg0TLaoTl20bTQ6zdZzM.roa Signing time: Thu 01 Jan 2026 18:17:50 +0000 ROA not before: Thu 01 Jan 2026 18:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15483 IP address blocks: 159.148.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:c2:40:58:82:77:af:74:e0:b5:a6:01:80:92:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e2a86dc99eb08344cb6a84e5db46d343acdd6733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:52:48:14:d6:ad:90:0c:33:b3:a2:de:79:f4: d6:86:c1:45:92:2d:25:1a:9a:a6:7b:9d:a3:86:7a: 58:ca:04:51:c2:64:28:54:24:70:01:7f:ed:9d:f6: ba:df:4b:da:bd:97:c3:c1:b0:04:43:60:57:43:db: a6:da:e9:6d:c3:8e:70:51:31:dc:01:73:6a:99:6c: 9c:d7:5c:bd:9a:96:6c:a3:77:7b:18:16:96:86:16: cc:e1:3d:8c:e2:1b:36:e7:49:38:4e:ab:51:bf:37: d9:38:d1:17:5e:33:78:0f:59:80:9b:75:8a:b7:0f: bc:df:02:34:1a:c4:d0:2c:14:ab:61:9a:4d:78:26: b3:d7:86:33:6f:65:a8:aa:0c:80:1c:0a:dc:81:42: b6:37:4c:7e:c7:0c:1b:56:16:e7:47:8b:68:42:f5: 22:cc:c5:8d:6d:91:7d:92:7c:66:0c:71:0d:1b:28: 0f:b7:6b:8e:af:42:5a:6c:d9:ac:43:80:ab:f7:77: 01:9f:17:3c:e1:dd:cf:9c:b7:10:6a:86:b1:48:f1: ff:89:60:63:93:ab:82:8a:c3:df:f1:e8:2a:71:5c: e2:bb:c0:84:c6:3e:ec:0a:96:5c:5a:00:5d:40:e9: ac:71:80:be:b0:66:bd:3a:82:1c:11:e4:7e:6d:a2: 3a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A8:6D:C9:9E:B0:83:44:CB:6A:84:E5:DB:46:D3:43:AC:DD:67:33 X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/4qhtyZ6wg0TLaoTl20bTQ6zdZzM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.160.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:9a:b9:c1:e4:d7:04:22:95:15:3c:b5:b5:a0:d1:da:e3:99: c4:9c:11:20:da:e9:bd:b0:d6:b7:6a:78:05:1c:0a:cd:09:16: 9c:1f:9a:b8:83:e3:0d:cf:57:ba:72:7e:50:52:e8:85:ce:43: 9a:93:75:d1:55:7b:61:62:b5:3a:22:52:e9:f4:32:9f:05:06: 56:d6:0b:7c:8b:0a:f6:9e:ae:82:01:01:db:5c:60:4a:40:50: 9c:0a:25:57:65:ec:4e:24:71:6f:f4:d2:ac:89:8c:17:04:3b: 19:99:29:93:b8:f7:f3:e8:b9:2a:9e:d0:dc:ba:b2:9b:38:df: dc:dd:a5:34:6d:cd:8c:fe:58:6a:9a:18:be:6e:ff:68:ff:ee: 5a:40:0b:18:02:c8:09:8e:5b:2b:cd:72:fc:aa:35:f0:6f:5f: 09:25:e8:05:40:bc:94:71:e1:2b:42:68:97:ee:13:42:dc:9d: 86:51:48:40:45:10:8b:47:76:8f:a1:78:0c:8f:79:3a:22:a2: 4b:f8:f8:82:cf:b2:45:6a:ea:f8:4f:59:27:94:02:47:57:f8: d8:66:50:00:f6:15:c4:12:41:f5:b3:16:64:f6:54:fd:19:01: 14:b9:26:c8:f6:c9:d4:4d:91:fb:c2:80:d0:bd:67:74:5e:10: c4:26:1b:ea -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x8JAWIJ3r3TgtaYBgJLTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMmE4NmRjOTllYjA4MzQ0Y2I2YTg0ZTVkYjQ2ZDM0M2FjZGQ2NzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFJIFNatkAwzs6LeefTWhsFFki0l Gpqme52jhnpYygRRwmQoVCRwAX/tnfa630vavZfDwbAEQ2BXQ9um2ultw45wUTHc AXNqmWyc11y9mpZso3d7GBaWhhbM4T2M4hs250k4TqtRvzfZONEXXjN4D1mAm3WK tw+83wI0GsTQLBSrYZpNeCaz14Yzb2WoqgyAHArcgUK2N0x+xwwbVhbnR4toQvUi zMWNbZF9knxmDHENGygPt2uOr0JabNmsQ4Cr93cBnxc84d3PnLcQaoaxSPH/iWBj k6uCisPf8egqcVziu8CExj7sCpZcWgBdQOmscYC+sGa9OoIcEeR+baI6GwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOKobcmesINEy2qE5dtG00Os3WczMB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEvNHFodHlaNndnMFRMYW9UbDIwYlRRNnpkWnpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5SgMA0G CSqGSIb3DQEBCwUAA4IBAQBOmrnB5NcEIpUVPLW1oNHa45nEnBEg2um9sNa3angF HArNCRacH5q4g+MNz1e6cn5QUuiFzkOak3XRVXthYrU6IlLp9DKfBQZW1gt8iwr2 nq6CAQHbXGBKQFCcCiVXZexOJHFv9NKsiYwXBDsZmSmTuPfz6LkqntDcurKbON/c 3aU0bc2M/lhqmhi+bv9o/+5aQAsYAsgJjlsrzXL8qjXwb18JJegFQLyUceErQmiX 7hNC3J2GUUhARRCLR3aPoXgMj3k6IqJL+PiCz7JFaur4T1knlAJHV/jYZlAA9hXE EkH1sxZk9lT9GQEUuSbI9snUTZH7woDQvWd0XhDEJhvq -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:51 2026 by rpki-client