This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/4nJD6h_AT_Jm3vuCDyt9q7O_3CQ.roa File: 4nJD6h_AT_Jm3vuCDyt9q7O_3CQ.roa (raw, json) Hash identifier: GQ/gs01dnRvZL+8O2A61zDdVjrGTgR7MaIk+wMIYhGg= Subject key identifier: E2:72:43:EA:1F:C0:4F:F2:66:DE:FB:82:0F:2B:7D:AB:B3:BF:DC:24 Certificate issuer: /CN=88652fe652966d728a527aee6e43c485c6939f45 Certificate serial: 019B7DCB0441C131CD6F18EC152FD8F1D1B3 Authority key identifier: 88:65:2F:E6:52:96:6D:72:8A:52:7A:EE:6E:43:C4:85:C6:93:9F:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGUv5lKWbXKKUnrubkPEhcaTn0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/4nJD6h_AT_Jm3vuCDyt9q7O_3CQ.roa Signing time: Fri 02 Jan 2026 08:20:15 +0000 ROA not before: Fri 02 Jan 2026 08:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29663 IP address blocks: 195.149.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/iGUv5lKWbXKKUnrubkPEhcaTn0U.crl rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/iGUv5lKWbXKKUnrubkPEhcaTn0U.mft rsync://rpki.ripe.net/repository/DEFAULT/iGUv5lKWbXKKUnrubkPEhcaTn0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:04:41:c1:31:cd:6f:18:ec:15:2f:d8:f1:d1:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88652fe652966d728a527aee6e43c485c6939f45 Validity Not Before: Jan 2 08:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e27243ea1fc04ff266defb820f2b7dabb3bfdc24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:55:ff:d9:88:25:21:63:dd:8d:7d:0c:7f:f7: 5d:4b:b7:ed:a6:ab:af:ea:83:5d:51:13:a9:70:42: 31:3e:38:76:48:e8:9f:49:06:9a:84:0b:82:f1:a2: 45:81:3c:a2:1c:57:33:9e:78:dd:11:c2:82:71:73: cf:41:1e:0c:20:18:d0:6e:50:c9:01:dd:d3:80:e4: ee:e0:ac:15:c8:9f:23:a3:0f:d9:8e:4e:29:61:4d: a8:ed:96:1c:5e:bb:be:5b:70:d5:c4:39:49:db:86: 83:de:c6:4d:80:2f:49:58:a8:8a:a9:e7:0e:35:fc: ca:4a:74:82:bb:04:30:71:a0:ba:0b:a4:81:49:c2: 70:3e:5d:59:88:4b:c6:5d:c2:05:40:76:db:85:61: d7:d6:b4:dd:b7:ba:f0:3a:d3:38:96:9a:06:ef:b6: 81:8c:cf:6b:82:a2:66:b5:32:f4:e4:ed:06:eb:65: 5a:9c:9f:93:9e:ea:99:f9:33:10:13:1e:d3:f0:0d: 59:c7:fc:de:c9:2e:3c:f3:74:72:59:64:09:8b:be: 52:f3:89:a5:0e:5f:88:f8:f1:96:7a:3b:dd:6b:1c: 20:be:cc:8d:56:7a:85:15:7f:0c:0e:39:07:ce:71: ea:5f:bd:0e:7f:86:51:ae:d2:50:6e:9a:c9:53:a3: 75:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:72:43:EA:1F:C0:4F:F2:66:DE:FB:82:0F:2B:7D:AB:B3:BF:DC:24 X509v3 Authority Key Identifier: keyid:88:65:2F:E6:52:96:6D:72:8A:52:7A:EE:6E:43:C4:85:C6:93:9F:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGUv5lKWbXKKUnrubkPEhcaTn0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/4nJD6h_AT_Jm3vuCDyt9q7O_3CQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/iGUv5lKWbXKKUnrubkPEhcaTn0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.149.112.0/24 Signature Algorithm: sha256WithRSAEncryption 26:ed:0d:a9:78:5f:b5:28:36:88:06:ae:e4:d0:fa:4b:b7:1e: 3e:4b:5a:e4:89:94:32:2d:91:f2:ca:96:d6:38:5b:7e:63:39: 21:2c:cd:2c:a1:f7:2b:56:ca:75:de:db:b7:6f:da:81:ce:6e: 55:c0:a6:67:62:8e:6c:71:42:d3:2f:5f:b4:60:56:05:5a:a5: d5:8e:0b:75:91:d8:51:10:b2:c6:08:b2:9c:b0:c1:e2:90:e5: f7:71:5e:e7:3d:42:ec:c5:42:86:51:59:39:9a:70:19:e7:33: 3a:11:96:a6:64:9d:84:42:f4:a1:fa:da:1e:55:7d:b9:75:b5: 10:01:18:94:58:bc:31:6a:4f:8e:83:bb:a4:b0:6f:b5:e7:84: 6d:aa:7a:6f:54:30:07:2c:2f:08:c5:7d:6b:9c:84:17:f7:21: 49:d5:f4:c8:8e:84:5d:2a:76:f2:d8:99:ba:3e:35:98:1d:c7: 13:7f:30:98:b6:3b:43:96:fd:bb:06:bb:30:24:43:3c:e6:e1: 47:d4:04:d7:88:15:a8:15:6a:ac:c9:95:7a:b9:20:2f:0e:f2: 2c:e6:e2:b3:1d:26:a7:02:d8:ac:a8:8c:fe:cc:72:00:9d:34: d7:67:f6:a0:b2:40:6c:bb:bf:76:7a:d6:98:f2:05:24:e3:8d: 66:d4:07:94 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9ywRBwTHNbxjsFS/Y8dGzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NjUyZmU2NTI5NjZkNzI4YTUyN2FlZTZlNDNjNDg1YzY5 MzlmNDUwHhcNMjYwMTAyMDgyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjcyNDNlYTFmYzA0ZmYyNjZkZWZiODIwZjJiN2RhYmIzYmZkYzI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0lX/2YglIWPdjX0Mf/ddS7ftpquv 6oNdUROpcEIxPjh2SOifSQaahAuC8aJFgTyiHFcznnjdEcKCcXPPQR4MIBjQblDJ Ad3TgOTu4KwVyJ8jow/Zjk4pYU2o7ZYcXru+W3DVxDlJ24aD3sZNgC9JWKiKqecO NfzKSnSCuwQwcaC6C6SBScJwPl1ZiEvGXcIFQHbbhWHX1rTdt7rwOtM4lpoG77aB jM9rgqJmtTL05O0G62VanJ+TnuqZ+TMQEx7T8A1Zx/zeyS4883RyWWQJi75S84ml Dl+I+PGWejvdaxwgvsyNVnqFFX8MDjkHznHqX70Of4ZRrtJQbprJU6N11wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOJyQ+ofwE/yZt77gg8rfauzv9wkMB8GA1UdIwQY MBaAFIhlL+ZSlm1yilJ67m5DxIXGk59FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUdVdjVsS1diWEtLVW5ydWJrUEVoY2FUbjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yMDE3NjMtMTc2Yy00ZTc4LTliYzAt NDk2ZjMwYWM1Mjc1LzEvNG5KRDZoX0FUX0ptM3Z1Q0R5dDlxN09fM0NRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yMDE3NjMtMTc2Yy00ZTc4LTliYzAtNDk2ZjMwYWM1Mjc1 LzEvaUdVdjVsS1diWEtLVW5ydWJrUEVoY2FUbjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw5VwMA0G CSqGSIb3DQEBCwUAA4IBAQAm7Q2peF+1KDaIBq7k0PpLtx4+S1rkiZQyLZHyypbW OFt+YzkhLM0sofcrVsp13tu3b9qBzm5VwKZnYo5scULTL1+0YFYFWqXVjgt1kdhR ELLGCLKcsMHikOX3cV7nPULsxUKGUVk5mnAZ5zM6EZamZJ2EQvSh+toeVX25dbUQ ARiUWLwxak+Og7uksG+154RtqnpvVDAHLC8IxX1rnIQX9yFJ1fTIjoRdKnby2Jm6 PjWYHccTfzCYtjtDlv27BrswJEM85uFH1ATXiBWoFWqsyZV6uSAvDvIs5uKzHSan AtisqIz+zHIAnTTXZ/agskBsu792etaY8gUk441m1AeU -----END CERTIFICATE-----Generated at Mon Feb 9 21:24:17 2026 by rpki-client