This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/4PuIVLEIj4zZmZW-uUpD3PaA49w.roa File: 4PuIVLEIj4zZmZW-uUpD3PaA49w.roa (raw, json) Hash identifier: ywwR6jVCoJoX2GD3atJ7KKAi8JK9J3yhYoAwj8Jfgz4= Subject key identifier: E0:FB:88:54:B1:08:8F:8C:D9:99:95:BE:B9:4A:43:DC:F6:80:E3:DC Certificate issuer: /CN=5e05cb67209bbd1983f4327716523eb1777fd4fa Certificate serial: 019B783493D9A3A469C19231BE0FCBBB33FF Authority key identifier: 5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/4PuIVLEIj4zZmZW-uUpD3PaA49w.roa Signing time: Thu 01 Jan 2026 06:17:50 +0000 ROA not before: Thu 01 Jan 2026 06:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6893 IP address blocks: 193.247.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.mft rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 12:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:93:d9:a3:a4:69:c1:92:31:be:0f:cb:bb:33:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e05cb67209bbd1983f4327716523eb1777fd4fa Validity Not Before: Jan 1 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e0fb8854b1088f8cd99995beb94a43dcf680e3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:de:d1:2c:f6:4b:b7:91:4c:59:d8:cd:d2:1f: 95:60:47:7b:52:87:3c:63:cb:3d:32:c7:69:07:bc: e0:c1:f1:5f:70:68:2b:6a:80:4a:da:e4:ea:e8:d5: cc:c3:3a:41:48:f8:37:d8:7b:21:9f:61:6e:f6:c0: af:a3:92:75:e0:2e:bf:bc:d3:9a:25:be:36:37:ff: ef:29:78:da:d5:cd:d2:0d:19:b4:02:68:ba:55:a7: 7c:c5:98:69:9d:57:0f:61:06:e1:11:9f:3e:8c:66: 5f:e1:6c:dc:ae:84:6a:a1:42:48:09:89:51:d8:ef: f8:d3:aa:42:a7:ad:46:e4:5a:fe:65:38:14:4a:b7: ad:80:28:12:fd:3b:59:d5:9d:df:03:d4:ba:01:3b: 1f:04:cc:47:2e:f1:cc:3b:46:07:af:36:6a:58:55: af:6b:98:ee:01:63:02:fb:ab:60:e4:01:e8:bd:d0: 78:cf:03:b4:81:d4:7c:39:82:83:15:45:b1:c4:46: a1:23:af:22:48:44:93:7b:07:61:d8:42:b4:2e:14: f6:78:9d:57:c7:81:5f:ca:63:ad:64:9b:e0:a4:4d: 4d:a6:df:63:50:83:68:3d:39:a2:8c:0b:0a:0f:11: f4:c9:2b:81:65:9a:48:cb:d2:21:24:05:03:b0:1b: a9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FB:88:54:B1:08:8F:8C:D9:99:95:BE:B9:4A:43:DC:F6:80:E3:DC X509v3 Authority Key Identifier: keyid:5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/4PuIVLEIj4zZmZW-uUpD3PaA49w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.247.238.0/24 Signature Algorithm: sha256WithRSAEncryption 33:ca:88:c3:c7:ae:4c:6d:3d:a0:10:c5:78:9e:22:20:05:75: a7:2d:59:85:e6:cd:21:56:2e:f8:fb:45:6e:26:3a:b0:66:f9: 8a:bd:8f:6b:f8:f2:96:cd:e9:3b:fc:31:40:45:6c:c3:30:b6: a0:73:9a:67:f1:9b:44:1a:61:d9:09:37:de:8d:84:6c:36:57: 22:fe:71:58:cf:5d:cb:27:12:bc:f3:a7:35:c3:5a:24:24:84: 0a:e4:38:2f:df:0e:5c:be:53:de:bc:67:26:1f:3a:9d:00:ef: a1:a8:b6:fb:60:35:99:a7:9c:dc:c7:66:90:af:0b:9c:55:42: 75:26:f4:d4:0b:0e:44:70:9d:10:eb:9e:4f:46:8c:07:16:fb: c2:54:4b:7f:10:1c:98:01:a7:9b:04:87:c7:54:1f:6a:04:24: 2d:98:1e:12:80:61:59:3a:f0:82:1d:f1:1e:39:cb:2f:a8:b7: 9b:39:67:c1:4c:95:0a:71:67:4f:a0:25:89:e3:41:96:e2:72: 13:a4:7b:b7:5f:76:36:00:6f:bb:8c:2d:00:19:c8:ec:f3:91: da:72:9e:3e:9f:eb:f1:7f:c1:a0:50:ea:f8:c3:ba:86:a5:bc: b5:54:50:9e:33:30:92:4e:20:c1:d7:dd:7b:34:b6:77:44:85: 36:3b:a8:27 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NJPZo6RpwZIxvg/LuzP/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlMDVjYjY3MjA5YmJkMTk4M2Y0MzI3NzE2NTIzZWIxNzc3 ZmQ0ZmEwHhcNMjYwMTAxMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMGZiODg1NGIxMDg4ZjhjZDk5OTk1YmViOTRhNDNkY2Y2ODBlM2RjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhd7RLPZLt5FMWdjN0h+VYEd7Uoc8 Y8s9MsdpB7zgwfFfcGgraoBK2uTq6NXMwzpBSPg32Hshn2Fu9sCvo5J14C6/vNOa Jb42N//vKXja1c3SDRm0Ami6Vad8xZhpnVcPYQbhEZ8+jGZf4WzcroRqoUJICYlR 2O/406pCp61G5Fr+ZTgUSretgCgS/TtZ1Z3fA9S6ATsfBMxHLvHMO0YHrzZqWFWv a5juAWMC+6tg5AHovdB4zwO0gdR8OYKDFUWxxEahI68iSESTewdh2EK0LhT2eJ1X x4FfymOtZJvgpE1Npt9jUINoPTmijAsKDxH0ySuBZZpIy9IhJAUDsBup2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOD7iFSxCI+M2ZmVvrlKQ9z2gOPcMB8GA1UdIwQY MBaAFF4Fy2cgm70Zg/QydxZSPrF3f9T6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGdYTFp5Q2J2Um1EOURKM0ZsSS1zWGRfMVBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85Y2EwZGYtZDQ3NC00MGNkLTg2ODgt MTcxNTkxOTU2N2M5LzEvNFB1SVZMRUlqNHpabVpXLXVVcEQzUGFBNDl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS85Y2EwZGYtZDQ3NC00MGNkLTg2ODgtMTcxNTkxOTU2N2M5 LzEvWGdYTFp5Q2J2Um1EOURKM0ZsSS1zWGRfMVBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwffuMA0G CSqGSIb3DQEBCwUAA4IBAQAzyojDx65MbT2gEMV4niIgBXWnLVmF5s0hVi74+0Vu JjqwZvmKvY9r+PKWzek7/DFARWzDMLagc5pn8ZtEGmHZCTfejYRsNlci/nFYz13L JxK886c1w1okJIQK5Dgv3w5cvlPevGcmHzqdAO+hqLb7YDWZp5zcx2aQrwucVUJ1 JvTUCw5EcJ0Q655PRowHFvvCVEt/EByYAaebBIfHVB9qBCQtmB4SgGFZOvCCHfEe OcsvqLebOWfBTJUKcWdPoCWJ40GW4nITpHu3X3Y2AG+7jC0AGcjs85Hacp4+n+vx f8GgUOr4w7qGpby1VFCeMzCSTiDB1917NLZ3RIU2O6gn -----END CERTIFICATE-----Generated at Mon Feb 2 17:17:53 2026 by rpki-client