This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/4l9EsCgzSHlVTtpywsbUUFtExTk.roa File: 4l9EsCgzSHlVTtpywsbUUFtExTk.roa (raw, json) Hash identifier: YL2VEKNHNIjwIMrHgQShXB+ezdUEHsuR+LX2D+OX3sQ= Subject key identifier: E2:5F:44:B0:28:33:48:79:55:4E:DA:72:C2:C6:D4:50:5B:44:C5:39 Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Certificate serial: 019B7C809A4FDF9AEC9C67E58360B2595963 Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/4l9EsCgzSHlVTtpywsbUUFtExTk.roa Signing time: Fri 02 Jan 2026 02:19:21 +0000 ROA not before: Fri 02 Jan 2026 02:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41953 IP address blocks: 89.40.196.0/22 maxlen: 22 91.196.153.0/24 maxlen: 24 91.206.123.0/24 maxlen: 24 92.114.111.0/24 maxlen: 24 93.113.47.0/24 maxlen: 24 93.115.34.0/24 maxlen: 24 185.202.84.0/22 maxlen: 22 2a14:3700::/30 maxlen: 30 2a14:3704::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:9a:4f:df:9a:ec:9c:67:e5:83:60:b2:59:59:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Validity Not Before: Jan 2 02:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e25f44b028334879554eda72c2c6d4505b44c539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:90:3c:69:7f:ea:24:00:e0:11:d7:f8:f5:99: 11:ed:7b:7e:38:44:ec:ad:e4:39:1e:9b:d3:b1:b0: 85:0f:32:9c:23:a0:41:f5:6e:1f:4f:22:d2:60:56: 6d:d5:5f:fa:3f:5f:95:fd:32:77:ec:cd:bd:45:ca: 4b:98:18:9e:b4:60:77:bd:c2:e6:e7:fb:ec:c9:ff: d9:d5:d3:d4:9b:b8:3c:a8:66:7c:eb:df:ce:f1:87: 56:dc:87:8a:5e:fb:a7:b6:27:70:22:ac:10:67:dd: 79:39:81:90:11:0c:d5:d2:ca:09:10:cf:76:0d:7b: 2a:0b:15:82:5c:af:ee:f7:b5:f7:a9:0d:ab:0b:9b: be:d6:55:77:d1:18:ae:26:fa:d9:12:46:7a:6d:ac: cc:ae:be:4b:5e:2a:c2:c9:11:2c:1d:3b:0c:06:07: ee:5f:fe:30:8c:96:fd:e3:46:5c:52:7f:a9:07:b3: 95:56:30:6c:82:98:eb:76:93:20:52:71:52:02:ba: 54:ad:4e:f9:7f:67:88:fc:9d:82:fb:db:12:e5:32: 5c:e2:5e:83:8d:7f:68:3b:c3:c5:ba:09:d2:48:53: e3:ba:87:ef:53:de:f9:bf:c6:79:84:dd:13:4e:25: e7:ea:4e:5e:9a:0c:2c:78:cf:8d:a0:87:8d:cb:c8: a9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:5F:44:B0:28:33:48:79:55:4E:DA:72:C2:C6:D4:50:5B:44:C5:39 X509v3 Authority Key Identifier: keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/4l9EsCgzSHlVTtpywsbUUFtExTk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.40.196.0/22 91.196.153.0/24 91.206.123.0/24 92.114.111.0/24 93.113.47.0/24 93.115.34.0/24 185.202.84.0/22 IPv6: 2a14:3700::/29 Signature Algorithm: sha256WithRSAEncryption 02:81:2a:10:a1:ac:e5:94:a5:a3:4e:84:60:e8:1d:a6:21:f5: eb:d6:50:d6:e9:2b:16:f9:24:29:77:f8:b0:9f:63:93:cf:f1: 44:17:a3:a3:60:7d:9a:b1:e2:9c:3c:80:53:21:a3:7c:0e:fb: 43:c7:fa:db:2f:bc:31:a8:9f:d4:7d:9b:2e:7d:bd:73:14:3f: d4:73:df:01:a6:4f:3c:f6:86:3f:a6:06:82:ed:78:63:27:54: 0a:9d:88:18:be:d2:47:26:5f:5d:40:72:da:df:ad:e6:31:62: f3:76:1c:43:54:37:72:54:09:fe:f5:43:8a:5c:b4:b5:eb:23: 6e:c8:bd:16:72:9e:2d:11:ad:af:cc:77:48:90:17:b8:65:54: ac:d4:8e:57:8d:5c:18:70:13:0f:4a:93:7f:2b:d4:83:bd:fe: 31:a7:d6:21:65:8b:27:19:ab:dc:fa:94:74:a2:d8:99:44:e6: 57:df:3a:78:cd:31:5d:39:78:40:3d:f3:45:ea:f1:9e:b4:e7: ac:4a:99:0d:d0:6a:c9:7c:fd:36:5b:17:ff:31:b9:67:fb:57: 07:67:e4:5b:ba:fa:e2:db:15:3e:1b:5e:59:66:52:6c:fe:e7: 19:28:05:47:c7:d8:83:8d:3c:d0:13:4c:84:76:9a:38:8a:7c: 37:e4:b5:8f -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt8gJpP35rsnGflg2CyWVljMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5 M2FlYjkwHhcNMjYwMTAyMDIxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjVmNDRiMDI4MzM0ODc5NTU0ZWRhNzJjMmM2ZDQ1MDViNDRjNTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg5A8aX/qJADgEdf49ZkR7Xt+OETs reQ5HpvTsbCFDzKcI6BB9W4fTyLSYFZt1V/6P1+V/TJ37M29RcpLmBietGB3vcLm 5/vsyf/Z1dPUm7g8qGZ869/O8YdW3IeKXvuntidwIqwQZ915OYGQEQzV0soJEM92 DXsqCxWCXK/u97X3qQ2rC5u+1lV30RiuJvrZEkZ6bazMrr5LXirCyREsHTsMBgfu X/4wjJb940ZcUn+pB7OVVjBsgpjrdpMgUnFSArpUrU75f2eI/J2C+9sS5TJc4l6D jX9oO8PFugnSSFPjuofvU975v8Z5hN0TTiXn6k5emgwseM+NoIeNy8iphQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFOJfRLAoM0h5VU7acsLG1FBbRMU5MB8GA1UdIwQY MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt NWQ0OGI2NWNlNTczLzEvNGw5RXNDZ3pTSGxWVHRweXdzYlVVRnRFeFRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCWSjEAwQA W8SZAwQAW857AwQAXHJvAwQAXXEvAwQAXXMiAwQCucpUMA0EAgACMAcDBQMqFDcA MA0GCSqGSIb3DQEBCwUAA4IBAQACgSoQoazllKWjToRg6B2mIfXr1lDW6SsW+SQp d/iwn2OTz/FEF6OjYH2aseKcPIBTIaN8DvtDx/rbL7wxqJ/UfZsufb1zFD/Uc98B pk889oY/pgaC7XhjJ1QKnYgYvtJHJl9dQHLa363mMWLzdhxDVDdyVAn+9UOKXLS1 6yNuyL0Wcp4tEa2vzHdIkBe4ZVSs1I5XjVwYcBMPSpN/K9SDvf4xp9YhZYsnGavc +pR0otiZROZX3zp4zTFdOXhAPfNF6vGetOesSpkN0GrJfP02Wxf/Mbln+1cHZ+Rb uvri2xU+G15ZZlJs/ucZKAVHx9iDjTzQE0yEdpo4inw35LWP -----END CERTIFICATE-----Generated at Wed Jan 21 10:46:56 2026 by rpki-client