This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/4LkdmcjKUPYnNsC8p4HbsE6JtNw.roa File: 4LkdmcjKUPYnNsC8p4HbsE6JtNw.roa (raw, json) Hash identifier: jmfhhWKdSP4GG97BLqMH7I/oq4F3yyozqjmgiw+P0ts= Subject key identifier: E0:B9:1D:99:C8:CA:50:F6:27:36:C0:BC:A7:81:DB:B0:4E:89:B4:DC Certificate issuer: /CN=464528d9080c665db0551d8ad8b0f71f7bb76996 Certificate serial: 019B7E383FB20EABC875A15898EB83D69CFF Authority key identifier: 46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/4LkdmcjKUPYnNsC8p4HbsE6JtNw.roa Signing time: Fri 02 Jan 2026 10:19:34 +0000 ROA not before: Fri 02 Jan 2026 10:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59985 IP address blocks: 185.63.68.0/23 maxlen: 23 2a04:f380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:3f:b2:0e:ab:c8:75:a1:58:98:eb:83:d6:9c:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=464528d9080c665db0551d8ad8b0f71f7bb76996 Validity Not Before: Jan 2 10:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e0b91d99c8ca50f62736c0bca781dbb04e89b4dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:de:c5:26:9c:b9:9b:4a:c3:5a:bd:4f:6f:45: 6d:cc:8b:9d:c1:70:13:16:8f:b9:88:28:c2:1b:78: b8:a9:bc:cf:ee:ba:88:b5:18:79:ea:c7:fb:32:56: ca:53:fd:4f:78:9d:02:73:86:d5:81:76:de:90:86: 61:ac:1d:b4:28:79:00:4c:8e:c8:ff:47:be:99:b3: e7:8c:67:35:f4:52:cf:a9:f7:84:f3:cb:55:b7:98: 2d:1a:60:a9:62:ea:8e:6d:21:3c:90:6c:17:db:ae: 5b:2d:3d:2d:17:24:22:a9:62:c0:ec:26:f4:49:97: b2:0b:41:59:03:f5:2f:7d:aa:46:56:c2:7b:f3:b8: 03:31:a6:e1:61:2e:3a:fe:b4:62:8b:b0:39:0d:5c: 16:99:29:f6:44:25:52:48:6f:26:cc:3e:06:c7:2f: fd:50:d6:68:e1:06:b0:5d:d7:bc:26:b3:c3:33:22: 83:8a:8f:42:64:b5:10:ce:53:65:cb:ac:c1:dc:26: a7:19:f7:6c:6b:83:14:d0:41:f5:51:71:7f:aa:b8: c2:b3:d6:b6:42:77:cb:77:a6:a9:48:86:f8:f0:11: a1:d5:ae:02:b1:bd:0d:a3:a4:ef:03:7a:f7:98:ba: 12:ce:cb:0b:fb:e2:d1:27:7e:c1:68:66:22:af:12: 3c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B9:1D:99:C8:CA:50:F6:27:36:C0:BC:A7:81:DB:B0:4E:89:B4:DC X509v3 Authority Key Identifier: keyid:46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/4LkdmcjKUPYnNsC8p4HbsE6JtNw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.63.68.0/23 IPv6: 2a04:f380::/32 Signature Algorithm: sha256WithRSAEncryption ac:a0:e3:de:5e:87:34:82:e2:8d:55:dc:c3:c3:73:e6:0b:60: 3f:dd:e4:fa:c2:97:1e:ce:84:f4:93:d7:d4:7c:30:ea:8d:4f: 42:2b:28:f2:d0:80:df:b8:4b:c8:f7:83:0a:de:44:8c:dd:96: 30:0f:68:2e:a7:f5:e6:d4:35:5e:08:8a:6b:9b:b9:b1:81:a9: 87:ce:45:e9:55:ba:fa:27:30:5b:6f:cd:3d:05:99:9b:59:69: e1:7b:18:ad:bc:c1:73:b3:d8:40:c4:33:6d:21:79:df:24:c6: b8:85:2d:a8:75:b2:6b:7f:a1:9b:b9:78:dc:9e:0f:76:2f:21: 69:7e:30:6e:ea:8e:4e:ce:d9:57:6e:25:0f:93:ee:cd:ab:d2: e1:11:f6:9f:91:33:46:c1:cc:d2:e3:01:87:d8:ee:13:26:9b: d5:db:32:aa:bf:47:a0:8a:f0:16:11:e5:a4:9c:84:43:da:98: 9a:f5:58:62:9b:8c:4a:9f:ca:3f:ff:52:77:ae:76:85:35:63: d8:2a:d2:0f:a5:ea:4a:94:d9:e7:08:fc:25:db:65:8d:6f:22: 4f:59:a0:71:a3:ce:3f:89:0a:db:77:85:2e:a8:e3:3f:4c:7f: 66:49:8c:a8:8f:62:3d:99:d0:cd:af:60:ff:8f:c3:f7:31:00: c2:63:a2:f5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+OD+yDqvIdaFYmOuD1pz/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2NDUyOGQ5MDgwYzY2NWRiMDU1MWQ4YWQ4YjBmNzFmN2Ji NzY5OTYwHhcNMjYwMTAyMTAxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMGI5MWQ5OWM4Y2E1MGY2MjczNmMwYmNhNzgxZGJiMDRlODliNGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1t7FJpy5m0rDWr1Pb0VtzIudwXAT Fo+5iCjCG3i4qbzP7rqItRh56sf7MlbKU/1PeJ0Cc4bVgXbekIZhrB20KHkATI7I /0e+mbPnjGc19FLPqfeE88tVt5gtGmCpYuqObSE8kGwX265bLT0tFyQiqWLA7Cb0 SZeyC0FZA/UvfapGVsJ787gDMabhYS46/rRii7A5DVwWmSn2RCVSSG8mzD4Gxy/9 UNZo4QawXde8JrPDMyKDio9CZLUQzlNly6zB3CanGfdsa4MU0EH1UXF/qrjCs9a2 QnfLd6apSIb48BGh1a4Csb0No6TvA3r3mLoSzssL++LRJ37BaGYirxI8LQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOC5HZnIylD2JzbAvKeB27BOibTcMB8GA1UdIwQY MBaAFEZFKNkIDGZdsFUditiw9x97t2mWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmtVbzJRZ01abDJ3VlIySzJMRDNIM3UzYVpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC80NTg1MmYtOGZhZS00NDFkLWIxMGMt MGExYmY1YmYwY2EyLzEvNExrZG1jaktVUFluTnNDOHA0SGJzRTZKdE53LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC80NTg1MmYtOGZhZS00NDFkLWIxMGMtMGExYmY1YmYwY2Ey LzEvUmtVbzJRZ01abDJ3VlIySzJMRDNIM3UzYVpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuT9EMA0E AgACMAcDBQAqBPOAMA0GCSqGSIb3DQEBCwUAA4IBAQCsoOPeXoc0guKNVdzDw3Pm C2A/3eT6wpcezoT0k9fUfDDqjU9CKyjy0IDfuEvI94MK3kSM3ZYwD2gup/Xm1DVe CIprm7mxgamHzkXpVbr6JzBbb809BZmbWWnhexitvMFzs9hAxDNtIXnfJMa4hS2o dbJrf6GbuXjcng92LyFpfjBu6o5OztlXbiUPk+7Nq9LhEfafkTNGwczS4wGH2O4T JpvV2zKqv0egivAWEeWknIRD2pia9Vhim4xKn8o//1J3rnaFNWPYKtIPpepKlNnn CPwl22WNbyJPWaBxo84/iQrbd4UuqOM/TH9mSYyoj2I9mdDNr2D/j8P3MQDCY6L1 -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:21 2026 by rpki-client