This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/4-WbBaq98Oq9Hev6MWdBUYGPmH0.roa File: 4-WbBaq98Oq9Hev6MWdBUYGPmH0.roa (raw, json) Hash identifier: GNmnhi1gsX6X4qEuEkfyWsKzBAsClKRsbDlEB+HLZ4o= Subject key identifier: E3:E5:9B:05:AA:BD:F0:EA:BD:1D:EB:FA:31:67:41:51:81:8F:98:7D Certificate issuer: /CN=553ca7b2e6c1e17f5f3edbe375e19ece39533910 Certificate serial: 019B79107C2FD915C4289449D14FD68A1F0F Authority key identifier: 55:3C:A7:B2:E6:C1:E1:7F:5F:3E:DB:E3:75:E1:9E:CE:39:53:39:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VTynsubB4X9fPtvjdeGezjlTORA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/4-WbBaq98Oq9Hev6MWdBUYGPmH0.roa Signing time: Thu 01 Jan 2026 10:18:02 +0000 ROA not before: Thu 01 Jan 2026 10:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49318 IP address blocks: 46.28.248.0/21 maxlen: 21 46.28.248.0/23 maxlen: 23 46.28.248.0/24 maxlen: 24 46.28.249.0/24 maxlen: 24 46.28.250.0/23 maxlen: 23 46.28.250.0/24 maxlen: 24 46.28.251.0/24 maxlen: 24 46.28.252.0/23 maxlen: 23 46.28.252.0/24 maxlen: 24 46.28.253.0/24 maxlen: 24 46.28.254.0/23 maxlen: 23 46.28.254.0/24 maxlen: 24 46.28.255.0/24 maxlen: 24 188.93.176.0/21 maxlen: 21 188.93.176.0/23 maxlen: 23 188.93.176.0/24 maxlen: 24 188.93.177.0/24 maxlen: 24 188.93.178.0/23 maxlen: 23 188.93.178.0/24 maxlen: 24 188.93.179.0/24 maxlen: 24 188.93.180.0/23 maxlen: 23 188.93.180.0/24 maxlen: 24 188.93.181.0/24 maxlen: 24 188.93.182.0/23 maxlen: 23 188.93.182.0/24 maxlen: 24 188.93.183.0/24 maxlen: 24 194.110.124.0/23 maxlen: 23 194.110.124.0/24 maxlen: 24 194.110.125.0/24 maxlen: 24 194.110.130.0/23 maxlen: 23 194.110.130.0/24 maxlen: 24 194.110.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/VTynsubB4X9fPtvjdeGezjlTORA.crl rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/VTynsubB4X9fPtvjdeGezjlTORA.mft rsync://rpki.ripe.net/repository/DEFAULT/VTynsubB4X9fPtvjdeGezjlTORA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 19:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:7c:2f:d9:15:c4:28:94:49:d1:4f:d6:8a:1f:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=553ca7b2e6c1e17f5f3edbe375e19ece39533910 Validity Not Before: Jan 1 10:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e3e59b05aabdf0eabd1debfa31674151818f987d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e4:23:53:0d:09:e4:76:2a:4b:53:91:93:92: fb:3d:bc:3f:5e:c2:1b:4a:ff:05:d5:8f:81:04:20: a3:c8:7b:2e:8e:cb:dd:c3:d6:eb:0d:96:91:3f:09: 83:ac:75:fd:0f:da:e1:22:36:e5:02:a7:ca:4f:19: ab:f0:dd:0c:d4:be:78:3d:db:80:3e:79:38:fd:6b: 90:ab:87:44:e6:dc:2b:43:e4:db:4c:86:1a:c2:88: 9f:cd:b3:fb:d3:01:ba:21:0c:c6:6b:c8:28:e2:90: 9c:a2:d5:1b:b5:e9:3d:ce:38:26:75:e3:97:f5:5a: c5:77:92:76:20:a1:4c:6c:60:54:81:b3:12:63:64: 20:ac:24:5c:a5:ab:46:ad:2e:6c:d6:06:7a:48:27: 8f:74:94:51:4f:2d:d1:fe:7d:cc:14:c5:6e:36:f2: 3a:2a:79:eb:dc:34:9f:a5:fd:0f:ac:85:43:42:33: 2f:8e:08:d2:19:f9:fc:fd:43:ad:f3:86:2e:63:f4: 41:ab:1c:54:8f:f1:5e:52:a5:6d:75:87:c0:fb:cd: c5:aa:b5:65:55:c8:4d:d3:89:e3:c7:ab:95:21:15: 0b:76:50:3d:90:be:b2:d2:30:b2:49:bd:5b:24:91: 96:a7:10:b9:3a:f2:74:d6:6b:71:e8:3c:57:dd:78: 78:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E5:9B:05:AA:BD:F0:EA:BD:1D:EB:FA:31:67:41:51:81:8F:98:7D X509v3 Authority Key Identifier: keyid:55:3C:A7:B2:E6:C1:E1:7F:5F:3E:DB:E3:75:E1:9E:CE:39:53:39:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VTynsubB4X9fPtvjdeGezjlTORA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/4-WbBaq98Oq9Hev6MWdBUYGPmH0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/VTynsubB4X9fPtvjdeGezjlTORA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.28.248.0/21 188.93.176.0/21 194.110.124.0/23 194.110.130.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:d9:70:92:de:eb:35:c4:bd:30:af:74:49:e8:b1:f0:81:97: ac:8d:67:ce:75:13:b8:9b:d1:0e:cf:4d:b2:6c:33:e0:7f:8d: 57:36:b9:9e:5c:9f:7b:e7:6b:57:55:99:ba:79:18:ba:f1:fc: 76:36:b5:4e:ed:25:4c:81:b9:1c:33:95:80:ff:bc:24:5d:c2: 77:32:76:3d:42:ca:04:4d:f0:bb:20:92:71:e5:1d:c8:ba:1b: 15:71:89:f3:d2:52:b7:96:9e:10:17:a7:4a:3a:e2:95:6f:dd: 8b:6f:37:27:8a:4a:89:e3:d4:b2:6a:83:7e:c6:7e:04:7a:9a: be:f5:fa:8e:56:7e:6c:fd:0b:e4:83:06:fd:61:c9:f1:fc:24: 96:df:94:fc:ad:35:89:8d:dc:3d:35:aa:8f:8a:4d:b7:ef:cc: 73:6e:11:6f:a0:6b:4e:d5:7b:4d:5f:e7:9d:88:06:45:72:27: 32:5c:ff:4b:8b:f5:34:84:9f:92:33:be:6a:75:5f:94:ac:f3: 76:16:92:7b:6f:26:a0:ad:34:c8:e8:b4:19:89:7f:97:a1:3c: c3:86:6c:df:0b:eb:b2:82:69:2a:62:d3:eb:55:78:9c:6b:30: 84:47:97:71:b7:57:dc:76:7f:0c:6b:45:ed:b3:7a:a8:31:f5: 11:55:c2:11 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt5EHwv2RXEKJRJ0U/Wih8PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1M2NhN2IyZTZjMWUxN2Y1ZjNlZGJlMzc1ZTE5ZWNlMzk1 MzM5MTAwHhcNMjYwMTAxMTAxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlM2U1OWIwNWFhYmRmMGVhYmQxZGViZmEzMTY3NDE1MTgxOGY5ODdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuQjUw0J5HYqS1ORk5L7Pbw/XsIb Sv8F1Y+BBCCjyHsujsvdw9brDZaRPwmDrHX9D9rhIjblAqfKTxmr8N0M1L54PduA Pnk4/WuQq4dE5twrQ+TbTIYawoifzbP70wG6IQzGa8go4pCcotUbtek9zjgmdeOX 9VrFd5J2IKFMbGBUgbMSY2QgrCRcpatGrS5s1gZ6SCePdJRRTy3R/n3MFMVuNvI6 Knnr3DSfpf0PrIVDQjMvjgjSGfn8/UOt84YuY/RBqxxUj/FeUqVtdYfA+83FqrVl VchN04njx6uVIRULdlA9kL6y0jCySb1bJJGWpxC5OvJ01mtx6DxX3Xh4QwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFOPlmwWqvfDqvR3r+jFnQVGBj5h9MB8GA1UdIwQY MBaAFFU8p7LmweF/Xz7b43Xhns45UzkQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlR5bnN1YkI0WDlmUHR2amRlR2V6amxUT1JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kNTcyYzMtMzUwZi00NzliLWE3YjMt MTUzZTkxODJhZjQxLzEvNC1XYkJhcTk4T3E5SGV2Nk1XZEJVWUdQbUgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC9kNTcyYzMtMzUwZi00NzliLWE3YjMtMTUzZTkxODJhZjQx LzEvVlR5bnN1YkI0WDlmUHR2amRlR2V6amxUT1JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQDLhz4AwQD vF2wAwQBwm58AwQBwm6CMA0GCSqGSIb3DQEBCwUAA4IBAQBa2XCS3us1xL0wr3RJ 6LHwgZesjWfOdRO4m9EOz02ybDPgf41XNrmeXJ9752tXVZm6eRi68fx2NrVO7SVM gbkcM5WA/7wkXcJ3MnY9QsoETfC7IJJx5R3IuhsVcYnz0lK3lp4QF6dKOuKVb92L bzcnikqJ49SyaoN+xn4Eepq+9fqOVn5s/Qvkgwb9Ycnx/CSW35T8rTWJjdw9NaqP ik2378xzbhFvoGtO1XtNX+ediAZFcicyXP9Li/U0hJ+SM75qdV+UrPN2FpJ7byag rTTI6LQZiX+XoTzDhmzfC+uygmkqYtPrVXicazCER5dxt1fcdn8Ma0Xts3qoMfUR VcIR -----END CERTIFICATE-----Generated at Tue Jan 20 04:47:37 2026 by rpki-client