This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/552e68-611d-4ad8-a7e1-48bfac2cdc72/1/RCbtWtfNbNugIvs-Dmql2deK4Ko.roa File: RCbtWtfNbNugIvs-Dmql2deK4Ko.roa (raw, json) Hash identifier: Rgh4Ci+jMhlRgR9C2JdR2931yRKR2EjS9oS9ki8UOrI= Subject key identifier: 44:26:ED:5A:D7:CD:6C:DB:A0:22:FB:3E:0E:6A:A5:D9:D7:8A:E0:AA Certificate issuer: /CN=2ed7fbc1df0070acf5b3a67ce4e212dbd03afad7 Certificate serial: 019B7FF15C0DA2381BD13B8AC8A254487753 Authority key identifier: 2E:D7:FB:C1:DF:00:70:AC:F5:B3:A6:7C:E4:E2:12:DB:D0:3A:FA:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ltf7wd8AcKz1s6Z85OIS29A6-tc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/552e68-611d-4ad8-a7e1-48bfac2cdc72/1/RCbtWtfNbNugIvs-Dmql2deK4Ko.roa Signing time: Fri 02 Jan 2026 18:21:22 +0000 ROA not before: Fri 02 Jan 2026 18:21:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199933 IP address blocks: 185.41.120.0/22 maxlen: 22 2a01:4de0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/552e68-611d-4ad8-a7e1-48bfac2cdc72/1/Ltf7wd8AcKz1s6Z85OIS29A6-tc.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/552e68-611d-4ad8-a7e1-48bfac2cdc72/1/Ltf7wd8AcKz1s6Z85OIS29A6-tc.mft rsync://rpki.ripe.net/repository/DEFAULT/Ltf7wd8AcKz1s6Z85OIS29A6-tc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:5c:0d:a2:38:1b:d1:3b:8a:c8:a2:54:48:77:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ed7fbc1df0070acf5b3a67ce4e212dbd03afad7 Validity Not Before: Jan 2 18:21:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4426ed5ad7cd6cdba022fb3e0e6aa5d9d78ae0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3c:31:92:4e:3c:a8:d7:d3:2f:0e:ff:b1:83: a2:4e:5e:f0:74:4c:2b:55:a2:df:45:30:26:8c:c3: 16:01:d9:fd:87:c1:ba:23:1c:fd:1e:d8:7b:10:3f: b0:f6:6c:fd:da:a4:6d:44:29:6f:75:f9:4c:61:fd: a2:96:a9:40:42:cf:ae:7f:f7:34:53:b4:53:64:53: 2e:7d:b8:41:65:34:38:98:89:00:d9:6e:ce:ed:b7: ad:0c:fe:a3:55:d3:9e:1f:d2:1d:a5:a3:e1:47:f4: 8d:52:87:c7:9f:2f:9c:5d:cb:b5:8c:3f:3a:76:35: d7:2f:46:8f:b5:3e:c2:a3:7f:b4:18:38:ae:01:d0: 8a:4b:94:4e:46:83:22:ca:66:6c:65:20:06:81:02: 99:91:b8:b5:12:a5:aa:00:1e:78:fb:77:0b:45:84: 94:1f:0c:da:0d:93:f0:70:b5:78:dc:8f:f9:14:44: 25:ad:46:9b:eb:3e:1c:5d:d6:9e:0f:9c:77:80:77: 54:c7:48:35:29:fc:cb:dd:e7:28:bc:a1:e3:94:74: 4b:02:d0:eb:04:db:21:dc:dc:bd:0c:30:10:cf:c3: 3a:6a:f0:9a:1f:32:f6:02:11:65:35:1d:1f:06:05: f1:47:a1:ed:b3:f6:00:7c:ca:60:f6:fd:aa:e1:9a: 29:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:26:ED:5A:D7:CD:6C:DB:A0:22:FB:3E:0E:6A:A5:D9:D7:8A:E0:AA X509v3 Authority Key Identifier: keyid:2E:D7:FB:C1:DF:00:70:AC:F5:B3:A6:7C:E4:E2:12:DB:D0:3A:FA:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ltf7wd8AcKz1s6Z85OIS29A6-tc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/552e68-611d-4ad8-a7e1-48bfac2cdc72/1/RCbtWtfNbNugIvs-Dmql2deK4Ko.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/552e68-611d-4ad8-a7e1-48bfac2cdc72/1/Ltf7wd8AcKz1s6Z85OIS29A6-tc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.41.120.0/22 IPv6: 2a01:4de0::/32 Signature Algorithm: sha256WithRSAEncryption ce:56:e1:0e:98:87:4c:4a:29:e7:f4:c3:66:2c:26:f2:21:28: ca:91:da:6a:86:21:f1:09:2e:6d:76:83:7a:fc:35:9c:a1:f2: 55:48:62:78:05:11:b2:36:da:66:ab:c4:06:d1:ac:c7:02:28: 86:1e:02:1f:d9:6b:bb:a1:2e:ee:2a:ef:64:95:9e:f1:b7:78: e0:12:f2:62:59:52:4b:4b:d4:05:d5:13:69:77:aa:0d:69:76: 42:3c:ed:ba:43:17:72:6e:d2:53:38:a7:0c:f2:88:dc:5e:52: e7:04:b9:23:ed:0c:0d:de:dd:24:e1:70:3f:92:8c:b3:51:54: b8:20:9f:86:d7:62:fc:99:1d:6e:48:60:46:ef:cc:d5:c6:97: 7f:28:c0:cd:94:f7:6d:35:b8:67:3d:e3:2a:42:6f:75:9d:2d: ab:02:16:22:29:51:16:fd:2e:e2:ee:29:dd:9f:f2:1a:20:2a: ff:5d:cd:81:3a:40:2b:41:c4:c8:ef:a8:9d:a4:2e:13:2f:b4: f9:38:ff:1d:99:52:01:21:14:d0:60:dd:f5:25:9b:9a:1a:62: 61:a5:30:d5:45:6c:b7:95:c7:ae:67:36:b4:8a:c0:70:bb:c3: 2f:2a:55:55:ec:33:7e:7e:12:1c:d5:3b:3d:8f:c3:10:7a:e3: fc:3b:e2:af -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8VwNojgb0TuKyKJUSHdTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlZDdmYmMxZGYwMDcwYWNmNWIzYTY3Y2U0ZTIxMmRiZDAz YWZhZDcwHhcNMjYwMTAyMTgyMTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDI2ZWQ1YWQ3Y2Q2Y2RiYTAyMmZiM2UwZTZhYTVkOWQ3OGFlMGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozwxkk48qNfTLw7/sYOiTl7wdEwr VaLfRTAmjMMWAdn9h8G6Ixz9Hth7ED+w9mz92qRtRClvdflMYf2ilqlAQs+uf/c0 U7RTZFMufbhBZTQ4mIkA2W7O7betDP6jVdOeH9IdpaPhR/SNUofHny+cXcu1jD86 djXXL0aPtT7Co3+0GDiuAdCKS5RORoMiymZsZSAGgQKZkbi1EqWqAB54+3cLRYSU HwzaDZPwcLV43I/5FEQlrUab6z4cXdaeD5x3gHdUx0g1KfzL3ecovKHjlHRLAtDr BNsh3Ny9DDAQz8M6avCaHzL2AhFlNR0fBgXxR6Hts/YAfMpg9v2q4Zop+wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEQm7VrXzWzboCL7Pg5qpdnXiuCqMB8GA1UdIwQY MBaAFC7X+8HfAHCs9bOmfOTiEtvQOvrXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHRmN3dkOEFjS3oxczZaODVPSVMyOUE2LXRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi81NTJlNjgtNjExZC00YWQ4LWE3ZTEt NDhiZmFjMmNkYzcyLzEvUkNidFd0Zk5iTnVnSXZzLURtcWwyZGVLNEtvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi81NTJlNjgtNjExZC00YWQ4LWE3ZTEtNDhiZmFjMmNkYzcy LzEvTHRmN3dkOEFjS3oxczZaODVPSVMyOUE2LXRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuSl4MA0E AgACMAcDBQAqAU3gMA0GCSqGSIb3DQEBCwUAA4IBAQDOVuEOmIdMSinn9MNmLCby ISjKkdpqhiHxCS5tdoN6/DWcofJVSGJ4BRGyNtpmq8QG0azHAiiGHgIf2Wu7oS7u Ku9klZ7xt3jgEvJiWVJLS9QF1RNpd6oNaXZCPO26QxdybtJTOKcM8ojcXlLnBLkj 7QwN3t0k4XA/koyzUVS4IJ+G12L8mR1uSGBG78zVxpd/KMDNlPdtNbhnPeMqQm91 nS2rAhYiKVEW/S7i7indn/IaICr/Xc2BOkArQcTI76idpC4TL7T5OP8dmVIBIRTQ YN31JZuaGmJhpTDVRWy3lceuZza0isBwu8MvKlVV7DN+fhIc1Ts9j8MQeuP8O+Kv -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:22 2026 by rpki-client