This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7e719d-75ae-4fd1-b145-f06ced52112a/1/4Wrio_4iNnpl1Y6QGrJWPm_-8xA.roa File: 4Wrio_4iNnpl1Y6QGrJWPm_-8xA.roa (raw, json) Hash identifier: 6jBbtoStgIk6zifFLk4lujFoBwI6HFMnQNdG0panh3s= Subject key identifier: E1:6A:E2:A3:FE:22:36:7A:65:D5:8E:90:1A:B2:56:3E:6F:FE:F3:10 Certificate issuer: /CN=1d828b781b079fb43ddb0ca75dc026e75d7f25e4 Certificate serial: 019B7D5B137D6592886A5F71F1F493D019F0 Authority key identifier: 1D:82:8B:78:1B:07:9F:B4:3D:DB:0C:A7:5D:C0:26:E7:5D:7F:25:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYKLeBsHn7Q92wynXcAm511_JeQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7e719d-75ae-4fd1-b145-f06ced52112a/1/4Wrio_4iNnpl1Y6QGrJWPm_-8xA.roa Signing time: Fri 02 Jan 2026 06:17:59 +0000 ROA not before: Fri 02 Jan 2026 06:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31370 IP address blocks: 89.249.240.0/20 maxlen: 20 109.72.224.0/20 maxlen: 20 185.215.60.0/22 maxlen: 22 193.27.41.0/24 maxlen: 24 193.39.160.0/22 maxlen: 22 2a01:94c0::/32 maxlen: 32 2a0c:dc40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7e719d-75ae-4fd1-b145-f06ced52112a/1/HYKLeBsHn7Q92wynXcAm511_JeQ.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7e719d-75ae-4fd1-b145-f06ced52112a/1/HYKLeBsHn7Q92wynXcAm511_JeQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HYKLeBsHn7Q92wynXcAm511_JeQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:13:7d:65:92:88:6a:5f:71:f1:f4:93:d0:19:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d828b781b079fb43ddb0ca75dc026e75d7f25e4 Validity Not Before: Jan 2 06:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e16ae2a3fe22367a65d58e901ab2563e6ffef310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:52:06:8f:67:c8:37:e0:77:4c:35:d0:4d:1b: 5c:ce:7c:42:9f:de:a0:11:9f:b3:13:98:a5:f8:a1: 62:e2:cf:2f:c9:c8:d9:15:c3:8f:9a:1b:35:77:d5: e0:00:22:21:32:1a:d9:4f:30:92:3e:25:7f:ae:fc: c5:76:c8:f1:96:08:57:5a:d5:e4:1c:d5:9f:2b:e2: 9a:ec:59:e6:dc:b3:9e:29:72:35:19:25:6b:95:a3: ee:a4:4d:3d:68:71:09:40:3d:5d:2c:12:58:31:fe: a2:13:c7:09:f6:fe:d0:d4:51:92:0e:16:84:8a:85: 47:3f:39:7f:fc:7a:3d:31:08:de:fa:f4:9c:a8:68: 89:e6:50:6b:14:46:4f:98:a8:9d:64:75:88:d4:0d: ec:bc:ff:59:4c:43:5c:da:f7:e5:95:8a:e1:33:c4: 1c:53:a1:4d:3c:64:a6:9e:b6:01:ae:42:dc:fe:20: 49:0c:e8:b8:7d:28:b9:8a:ee:87:27:bc:e4:ee:9e: c9:5d:d5:81:61:64:2a:00:26:ce:1c:dc:c7:0c:d1: 51:fa:ea:73:aa:9b:00:c9:42:87:f9:a1:ec:2b:95: 5b:44:09:6c:9d:6e:0d:e3:4a:64:fc:9e:8f:d0:5e: d0:bb:d9:93:52:61:b0:89:cb:0c:b1:2b:81:90:92: 74:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6A:E2:A3:FE:22:36:7A:65:D5:8E:90:1A:B2:56:3E:6F:FE:F3:10 X509v3 Authority Key Identifier: keyid:1D:82:8B:78:1B:07:9F:B4:3D:DB:0C:A7:5D:C0:26:E7:5D:7F:25:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYKLeBsHn7Q92wynXcAm511_JeQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7e719d-75ae-4fd1-b145-f06ced52112a/1/4Wrio_4iNnpl1Y6QGrJWPm_-8xA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7e719d-75ae-4fd1-b145-f06ced52112a/1/HYKLeBsHn7Q92wynXcAm511_JeQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.249.240.0/20 109.72.224.0/20 185.215.60.0/22 193.27.41.0/24 193.39.160.0/22 IPv6: 2a01:94c0::/32 2a0c:dc40::/29 Signature Algorithm: sha256WithRSAEncryption 3e:18:85:ec:94:78:8c:4c:1d:e8:d7:82:5e:0a:15:f8:35:36: 6a:e5:4b:db:26:c9:ea:b8:d8:52:71:1a:d5:8e:20:82:6d:56: f1:20:f9:29:90:2a:ae:67:f5:9b:69:fa:a2:e1:20:e3:fc:93: a1:cf:e0:e5:87:c3:63:08:d4:c1:1e:aa:08:2d:37:35:f0:97: c3:0e:cb:21:3f:5f:5c:26:5c:4a:d1:d8:61:1a:8e:2a:18:08: a8:69:5d:fa:90:0e:1d:0d:fd:99:c5:04:27:1f:b3:7e:f2:92: fc:15:56:69:5e:88:10:20:1b:cf:d3:83:99:84:79:62:a3:fa: 83:75:64:df:11:af:ee:60:b3:84:ff:1f:e8:c2:de:5d:f0:d7: 00:b4:03:80:7f:d3:b1:25:b8:3e:e7:2a:0f:c9:26:36:68:a4: 6e:32:13:af:28:36:9b:a7:91:20:fa:86:f0:06:2f:51:1a:fe: e0:22:55:56:a1:53:90:8a:8d:21:a1:50:25:d7:ad:c1:04:e4: 0e:37:44:58:28:2f:01:47:89:d7:2d:51:0c:14:68:fa:f7:16: f0:ac:b1:ae:77:3b:5a:69:05:58:b4:32:72:d6:33:81:ef:ef: cd:1a:8a:8e:38:9f:8f:2e:af:ca:58:88:96:bb:b9:f8:49:0c: 64:b2:c6:e9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt9WxN9ZZKIal9x8fST0BnwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODI4Yjc4MWIwNzlmYjQzZGRiMGNhNzVkYzAyNmU3NWQ3 ZjI1ZTQwHhcNMjYwMTAyMDYxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTZhZTJhM2ZlMjIzNjdhNjVkNThlOTAxYWIyNTYzZTZmZmVmMzEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVIGj2fIN+B3TDXQTRtcznxCn96g EZ+zE5il+KFi4s8vycjZFcOPmhs1d9XgACIhMhrZTzCSPiV/rvzFdsjxlghXWtXk HNWfK+Ka7Fnm3LOeKXI1GSVrlaPupE09aHEJQD1dLBJYMf6iE8cJ9v7Q1FGSDhaE ioVHPzl//Ho9MQje+vScqGiJ5lBrFEZPmKidZHWI1A3svP9ZTENc2vfllYrhM8Qc U6FNPGSmnrYBrkLc/iBJDOi4fSi5iu6HJ7zk7p7JXdWBYWQqACbOHNzHDNFR+upz qpsAyUKH+aHsK5VbRAlsnW4N40pk/J6P0F7Qu9mTUmGwicsMsSuBkJJ05QIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFOFq4qP+IjZ6ZdWOkBqyVj5v/vMQMB8GA1UdIwQY MBaAFB2Ci3gbB5+0PdsMp13AJuddfyXkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlLTGVCc0huN1E5Mnd5blhjQW01MTFfSmVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83ZTcxOWQtNzVhZS00ZmQxLWIxNDUt ZjA2Y2VkNTIxMTJhLzEvNFdyaW9fNGlObnBsMVk2UUdySldQbV8tOHhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83ZTcxOWQtNzVhZS00ZmQxLWIxNDUtZjA2Y2VkNTIxMTJh LzEvSFlLTGVCc0huN1E5Mnd5blhjQW01MTFfSmVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQEWfnwAwQE bUjgAwQCudc8AwQAwRspAwQCwSegMBQEAgACMA4DBQAqAZTAAwUDKgzcQDANBgkq hkiG9w0BAQsFAAOCAQEAPhiF7JR4jEwd6NeCXgoV+DU2auVL2ybJ6rjYUnEa1Y4g gm1W8SD5KZAqrmf1m2n6ouEg4/yToc/g5YfDYwjUwR6qCC03NfCXww7LIT9fXCZc StHYYRqOKhgIqGld+pAOHQ39mcUEJx+zfvKS/BVWaV6IECAbz9ODmYR5YqP6g3Vk 3xGv7mCzhP8f6MLeXfDXALQDgH/TsSW4PucqD8kmNmikbjITryg2m6eRIPqG8AYv URr+4CJVVqFTkIqNIaFQJdetwQTkDjdEWCgvAUeJ1y1RDBRo+vcW8Kyxrnc7WmkF WLQyctYzge/vzRqKjjifjy6vyliIlru5+EkMZLLG6Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:12 2026 by rpki-client