This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/4LD3RBJhF1EFVJ9oGeuCVHP_8UE.roa File: 4LD3RBJhF1EFVJ9oGeuCVHP_8UE.roa (raw, json) Hash identifier: +FGSXfetsw90djLhX8M4w7oZH7rHAR6iFD1Yl6CL8z8= Subject key identifier: E0:B0:F7:44:12:61:17:51:05:54:9F:68:19:EB:82:54:73:FF:F1:41 Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Certificate serial: 019AA177353375D212D67D6C05A93D06BC1B Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/4LD3RBJhF1EFVJ9oGeuCVHP_8UE.roa Signing time: Thu 20 Nov 2025 13:32:15 +0000 ROA not before: Thu 20 Nov 2025 13:32:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44547 IP address blocks: 45.143.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a1:77:35:33:75:d2:12:d6:7d:6c:05:a9:3d:06:bc:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Validity Not Before: Nov 20 13:32:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e0b0f7441261175105549f6819eb825473fff141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:83:b3:cc:1b:69:c5:be:fe:80:e0:15:a2:53: bb:ef:f3:83:a3:37:41:8e:72:19:de:7d:7d:48:78: 91:e8:7f:bd:a3:0e:ae:d6:6c:ea:51:ad:c0:df:be: ff:de:5e:f9:ba:50:9a:d5:9a:8f:2c:d5:32:4f:8d: 07:3a:8d:e9:4a:92:fc:62:2a:9e:cb:48:60:94:5d: 2e:74:d4:72:d7:31:5d:a3:4a:47:33:60:b5:36:37: 7d:e6:8c:44:1e:ce:2e:3a:88:3d:4b:fb:ee:6e:18: e7:59:3c:3f:7c:55:29:14:25:2e:05:f1:4c:c5:5e: 7e:ee:aa:04:85:d4:5e:db:0c:32:48:81:c2:04:f3: 15:28:30:19:91:31:6e:39:07:14:3d:05:a5:0b:d8: 55:c7:72:85:e1:38:1f:1a:c3:d1:0a:77:86:32:55: e9:d4:6d:56:ff:2c:7e:3d:97:08:b4:58:5f:41:00: 33:76:07:e6:a8:5b:81:24:e1:d6:a4:e8:f0:09:ba: d3:f4:9a:06:98:6d:46:55:4c:2b:d7:4f:4a:b2:c4: 4b:fc:38:00:18:43:79:23:2f:c8:94:a7:50:fc:bf: 1b:ec:c3:29:fe:a5:46:12:d7:b0:16:ed:2f:8f:89: f7:5b:46:09:98:4b:84:95:67:a7:7b:de:11:b0:dc: bd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B0:F7:44:12:61:17:51:05:54:9F:68:19:EB:82:54:73:FF:F1:41 X509v3 Authority Key Identifier: keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/4LD3RBJhF1EFVJ9oGeuCVHP_8UE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.4.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:6b:a1:b9:44:87:9f:61:35:b9:b1:55:e5:ec:27:0d:4f:03: 4b:e1:61:59:a1:41:5f:43:5e:ba:46:7b:83:b7:37:0a:69:0d: 32:25:10:d8:5c:f3:24:29:e9:3f:9f:18:91:b3:44:db:dc:4a: d3:22:04:09:b5:6f:32:7e:fd:1b:29:8e:c6:f9:e2:f8:35:90: 43:d0:4a:5d:c0:09:7f:1d:b3:98:70:3b:83:d8:4a:84:41:e5: 4a:72:7b:d2:66:f9:be:8b:d4:56:9a:60:7d:e0:cb:49:b1:e7: 4c:a5:a2:27:57:49:d7:4f:d2:71:a3:aa:fa:07:68:8d:15:10: c1:dd:7d:fe:ff:28:8e:39:c4:df:c4:af:8e:9f:40:dc:41:1a: 90:c3:de:f7:47:b8:ce:ee:d6:36:71:f4:7a:60:bd:28:f8:12: 39:85:11:f9:da:f2:c8:eb:0f:46:70:6b:00:bb:88:2e:b9:64: 90:5e:1f:47:27:a1:00:87:53:66:e2:19:6d:d8:0a:d3:2e:25: f3:1b:9d:31:e4:35:46:a0:db:2a:13:d4:ed:f4:ee:92:fe:1e: 13:01:e4:d2:40:da:61:6c:fe:08:1a:c6:ab:d8:b4:0d:55:41: 8b:39:e0:9f:38:06:f0:b1:bb:8b:59:cb:3d:e7:4c:00:27:92: 5e:be:0c:f5 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZqhdzUzddIS1n1sBak9BrwbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3 Y2Q0MjMwHhcNMjUxMTIwMTMzMjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMGIwZjc0NDEyNjExNzUxMDU1NDlmNjgxOWViODI1NDczZmZmMTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA54OzzBtpxb7+gOAVolO77/ODozdB jnIZ3n19SHiR6H+9ow6u1mzqUa3A377/3l75ulCa1ZqPLNUyT40HOo3pSpL8Yiqe y0hglF0udNRy1zFdo0pHM2C1Njd95oxEHs4uOog9S/vubhjnWTw/fFUpFCUuBfFM xV5+7qoEhdRe2wwySIHCBPMVKDAZkTFuOQcUPQWlC9hVx3KF4TgfGsPRCneGMlXp 1G1W/yx+PZcItFhfQQAzdgfmqFuBJOHWpOjwCbrT9JoGmG1GVUwr109KssRL/DgA GEN5Iy/IlKdQ/L8b7MMp/qVGEtewFu0vj4n3W0YJmEuElWene94RsNy91wIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFOCw90QSYRdRBVSfaBnrglRz//FBMB8GA1UdIwQY MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli LWExYjdjZWVmYTE2Yy8xLzRMRDNSQkpoRjFFRlZKOW9HZXVDVkhQXzhVRS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2 Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtjwQw DQYJKoZIhvcNAQELBQADggEBAH5roblEh59hNbmxVeXsJw1PA0vhYVmhQV9DXrpG e4O3NwppDTIlENhc8yQp6T+fGJGzRNvcStMiBAm1bzJ+/Rspjsb54vg1kEPQSl3A CX8ds5hwO4PYSoRB5Upye9Jm+b6L1FaaYH3gy0mx50yloidXSddP0nGjqvoHaI0V EMHdff7/KI45xN/Er46fQNxBGpDD3vdHuM7u1jZx9HpgvSj4EjmFEfna8sjrD0Zw awC7iC65ZJBeH0cnoQCHU2biGW3YCtMuJfMbnTHkNUag2yoT1O307pL+HhMB5NJA 2mFs/ggaxqvYtA1VQYs54J84BvCxu4tZyz3nTAAnkl6+DPU= -----END CERTIFICATE-----Generated at Fri Dec 5 18:22:19 2025 by rpki-client