This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/31fded-6fde-45ce-b358-a26889ee22c2/1/4pR5djsHM2EsPS0T7-XycSFJxHQ.roa File: 4pR5djsHM2EsPS0T7-XycSFJxHQ.roa (raw, json) Hash identifier: ZnT7/tbRl9arj2zsaTehaLwj6F/LDx/pFFbSN9w0fi8= Subject key identifier: E2:94:79:76:3B:07:33:61:2C:3D:2D:13:EF:E5:F2:71:21:49:C4:74 Certificate issuer: /CN=4ba7b24f87ea51446d519afd4fe60419198ec012 Certificate serial: 019B7BA3E56114D2603C79FB8FFCBC7AC174 Authority key identifier: 4B:A7:B2:4F:87:EA:51:44:6D:51:9A:FD:4F:E6:04:19:19:8E:C0:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S6eyT4fqUURtUZr9T-YEGRmOwBI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/31fded-6fde-45ce-b358-a26889ee22c2/1/4pR5djsHM2EsPS0T7-XycSFJxHQ.roa Signing time: Thu 01 Jan 2026 22:18:17 +0000 ROA not before: Thu 01 Jan 2026 22:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49010 IP address blocks: 84.252.76.0/22 maxlen: 22 86.62.24.0/22 maxlen: 22 91.207.2.0/23 maxlen: 23 109.232.72.0/21 maxlen: 21 185.20.140.0/22 maxlen: 22 193.187.164.0/22 maxlen: 22 2a00:19f8::/32 maxlen: 32 2a09:5500::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/31fded-6fde-45ce-b358-a26889ee22c2/1/S6eyT4fqUURtUZr9T-YEGRmOwBI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/31fded-6fde-45ce-b358-a26889ee22c2/1/S6eyT4fqUURtUZr9T-YEGRmOwBI.mft rsync://rpki.ripe.net/repository/DEFAULT/S6eyT4fqUURtUZr9T-YEGRmOwBI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:e5:61:14:d2:60:3c:79:fb:8f:fc:bc:7a:c1:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ba7b24f87ea51446d519afd4fe60419198ec012 Validity Not Before: Jan 1 22:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e29479763b0733612c3d2d13efe5f2712149c474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7e:3a:ec:d0:e3:de:a8:26:75:0e:20:aa:10: 43:75:a2:40:7b:9a:0b:b1:d7:ee:16:fe:99:65:e3: 6f:f9:8a:d1:9c:5c:8c:bb:d6:06:ed:aa:ed:d0:f7: 7a:ec:db:53:bc:4b:44:38:d0:a9:a8:af:a8:31:1d: 9b:1f:b6:9b:41:78:3e:a0:ed:25:58:96:a5:be:34: d1:3b:47:4e:22:f7:33:84:f9:3b:69:3f:cd:2d:6a: 3d:b7:4e:50:2f:2c:9e:83:d2:f6:36:ea:ac:bb:95: f8:6d:e3:d8:d3:54:4d:70:30:f6:5f:05:d5:9e:80: 21:c1:e4:10:dc:ca:41:c0:fd:75:9b:67:a8:be:07: ee:f2:d6:3f:92:21:7e:12:0b:81:9e:1f:43:69:96: c8:9f:af:29:b3:fc:a3:b3:4d:1e:31:1c:37:a8:91: 49:3e:88:7a:00:f2:dd:c5:48:16:40:52:ff:c6:78: 5b:cc:f0:85:1d:40:49:57:8f:f2:fa:7e:1a:a0:99: 24:f8:40:69:2b:90:4f:20:1a:86:75:95:70:6f:43: b6:d5:58:a5:06:1c:84:dd:87:10:d9:b0:5e:8f:0c: e8:a2:39:34:3d:f3:91:6f:99:c1:14:d7:1a:b5:ac: 8e:b2:77:97:db:72:b6:72:85:a1:23:93:ba:19:bd: b9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:94:79:76:3B:07:33:61:2C:3D:2D:13:EF:E5:F2:71:21:49:C4:74 X509v3 Authority Key Identifier: keyid:4B:A7:B2:4F:87:EA:51:44:6D:51:9A:FD:4F:E6:04:19:19:8E:C0:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S6eyT4fqUURtUZr9T-YEGRmOwBI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/31fded-6fde-45ce-b358-a26889ee22c2/1/4pR5djsHM2EsPS0T7-XycSFJxHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/31fded-6fde-45ce-b358-a26889ee22c2/1/S6eyT4fqUURtUZr9T-YEGRmOwBI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.252.76.0/22 86.62.24.0/22 91.207.2.0/23 109.232.72.0/21 185.20.140.0/22 193.187.164.0/22 IPv6: 2a00:19f8::/32 2a09:5500::/29 Signature Algorithm: sha256WithRSAEncryption 0f:34:c7:80:40:b1:1d:50:28:29:67:69:67:25:65:12:6d:6f: b5:fd:a9:ab:e5:40:a4:32:ce:2b:73:98:d8:1b:f7:fc:2e:36: 39:6a:56:9d:e5:c0:fe:e3:e0:ec:b1:18:71:5b:4b:ab:20:7c: 1f:55:c9:ea:26:81:01:7c:fe:16:00:13:1b:7d:d5:e8:45:07: 6a:fc:eb:b6:e4:f7:c8:8f:64:c6:a3:4c:0e:a5:b1:e1:7c:1e: 65:9e:43:67:04:95:e1:c9:00:cd:4c:7e:ce:1a:bf:9f:d9:3c: 9d:98:d7:47:90:8b:c6:c2:90:3d:a3:49:02:2f:00:2c:e5:bb: f6:6d:84:dd:30:c4:24:6c:34:be:14:0c:37:c5:de:90:a8:e6: 60:22:e8:59:a4:e6:f9:dc:06:f0:ea:f6:39:9b:79:6d:55:a2: cd:14:f9:b3:2e:44:47:e9:7f:1c:bc:e0:6b:d5:aa:bd:5a:70: 9c:c2:c3:8b:31:1b:d9:cc:7b:fe:b5:4c:14:18:a1:2c:d1:76: 89:85:5c:5b:a7:3e:22:e4:f8:c4:09:ec:f3:5d:61:7d:14:75: 77:2e:fa:7b:8d:f2:11:7d:f8:76:1c:f1:c0:5a:6e:aa:0e:2d: 84:c5:8b:1f:70:62:f4:bd:14:f8:1e:7d:4e:1d:85:bd:5e:8d: 89:c2:bb:a3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt7o+VhFNJgPHn7j/y8esF0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiYTdiMjRmODdlYTUxNDQ2ZDUxOWFmZDRmZTYwNDE5MTk4 ZWMwMTIwHhcNMjYwMTAxMjIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjk0Nzk3NjNiMDczMzYxMmMzZDJkMTNlZmU1ZjI3MTIxNDljNDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43467NDj3qgmdQ4gqhBDdaJAe5oL sdfuFv6ZZeNv+YrRnFyMu9YG7art0Pd67NtTvEtEONCpqK+oMR2bH7abQXg+oO0l WJalvjTRO0dOIvczhPk7aT/NLWo9t05QLyyeg9L2Nuqsu5X4bePY01RNcDD2XwXV noAhweQQ3MpBwP11m2eovgfu8tY/kiF+EguBnh9DaZbIn68ps/yjs00eMRw3qJFJ Poh6APLdxUgWQFL/xnhbzPCFHUBJV4/y+n4aoJkk+EBpK5BPIBqGdZVwb0O21Vil BhyE3YcQ2bBejwzoojk0PfORb5nBFNcatayOsneX23K2coWhI5O6Gb25SwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFOKUeXY7BzNhLD0tE+/l8nEhScR0MB8GA1UdIwQY MBaAFEunsk+H6lFEbVGa/U/mBBkZjsASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzZleVQ0ZnFVVVJ0VVpyOVQtWUVHUm1Pd0JJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zMWZkZWQtNmZkZS00NWNlLWIzNTgt YTI2ODg5ZWUyMmMyLzEvNHBSNWRqc0hNMkVzUFMwVDctWHljU0ZKeEhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zMWZkZWQtNmZkZS00NWNlLWIzNTgtYTI2ODg5ZWUyMmMy LzEvUzZleVQ0ZnFVVVJ0VVpyOVQtWUVHUm1Pd0JJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQCVPxMAwQC Vj4YAwQBW88CAwQDbehIAwQCuRSMAwQCwbukMBQEAgACMA4DBQAqABn4AwUDKglV ADANBgkqhkiG9w0BAQsFAAOCAQEADzTHgECxHVAoKWdpZyVlEm1vtf2pq+VApDLO K3OY2Bv3/C42OWpWneXA/uPg7LEYcVtLqyB8H1XJ6iaBAXz+FgATG33V6EUHavzr tuT3yI9kxqNMDqWx4XweZZ5DZwSV4ckAzUx+zhq/n9k8nZjXR5CLxsKQPaNJAi8A LOW79m2E3TDEJGw0vhQMN8XekKjmYCLoWaTm+dwG8Or2OZt5bVWizRT5sy5ER+l/ HLzga9WqvVpwnMLDizEb2cx7/rVMFBihLNF2iYVcW6c+IuT4xAns811hfRR1dy76 e43yEX34dhzxwFpuqg4thMWLH3Bi9L0U+B59Th2FvV6NicK7ow== -----END CERTIFICATE-----Generated at Tue Feb 10 03:57:19 2026 by rpki-client