This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/g4mflD0Y4dFeWIYXrHeIdFF1Tzk.roa File: g4mflD0Y4dFeWIYXrHeIdFF1Tzk.roa (raw, json) Hash identifier: LWoE8PLWl9I6/87QZF5e3VTAa9OFMyf8LK0mAIwQhYU= Subject key identifier: 83:89:9F:94:3D:18:E1:D1:5E:58:86:17:AC:77:88:74:51:75:4F:39 Certificate issuer: /CN=b74ce3f3c5e5a2f9d8b8a4c77a8361f8a216f3ad Certificate serial: 019B7AC8A8DDB46B0FB817F9CEA65D60FE7C Authority key identifier: B7:4C:E3:F3:C5:E5:A2:F9:D8:B8:A4:C7:7A:83:61:F8:A2:16:F3:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t0zj88XlovnYuKTHeoNh-KIW860.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/g4mflD0Y4dFeWIYXrHeIdFF1Tzk.roa Signing time: Thu 01 Jan 2026 18:18:49 +0000 ROA not before: Thu 01 Jan 2026 18:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198881 IP address blocks: 194.99.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/t0zj88XlovnYuKTHeoNh-KIW860.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/t0zj88XlovnYuKTHeoNh-KIW860.mft rsync://rpki.ripe.net/repository/DEFAULT/t0zj88XlovnYuKTHeoNh-KIW860.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 18:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:a8:dd:b4:6b:0f:b8:17:f9:ce:a6:5d:60:fe:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b74ce3f3c5e5a2f9d8b8a4c77a8361f8a216f3ad Validity Not Before: Jan 1 18:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83899f943d18e1d15e588617ac77887451754f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:73:f2:56:6f:93:01:98:f4:96:98:68:77:67: 71:49:f0:65:5f:07:c6:64:ea:04:77:cb:18:3b:70: 1b:db:3c:19:6b:b2:e2:ce:2c:57:97:1e:7d:4e:29: e0:6c:b4:2b:5f:00:fd:9b:cb:40:a1:b9:e5:30:fe: a2:64:8c:ac:58:a3:cb:7c:50:10:59:a5:a2:4d:d4: 71:41:8e:07:0e:90:bf:06:c1:90:1b:fa:fb:84:89: de:87:a7:45:fd:8b:a9:cb:d2:f2:b5:0c:73:ed:a9: 69:b2:5c:86:9c:bb:1e:da:48:a2:22:ae:76:55:f2: cd:4f:33:9f:14:30:14:70:ba:bc:09:90:ef:31:b4: b9:89:85:21:4d:5d:83:86:f2:a9:7b:d3:20:ff:a1: 95:8f:f2:df:26:41:63:8b:19:eb:c3:fe:3e:c6:da: 48:a9:15:99:f6:e6:e8:18:69:3c:15:aa:13:05:8b: 69:55:e7:3c:17:56:d2:80:2f:20:d8:e8:cc:62:d5: 4b:42:5a:43:c1:0b:a2:04:e6:5f:b6:6b:38:5c:ff: c5:b8:a1:b6:2f:bb:a4:2b:c0:25:95:2a:cf:e3:52: 01:b9:8f:19:c0:5c:a6:0b:8b:f3:ea:ad:3c:c1:5a: 30:44:ab:17:11:de:6d:09:8b:90:aa:2b:ba:bf:bd: 25:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:89:9F:94:3D:18:E1:D1:5E:58:86:17:AC:77:88:74:51:75:4F:39 X509v3 Authority Key Identifier: keyid:B7:4C:E3:F3:C5:E5:A2:F9:D8:B8:A4:C7:7A:83:61:F8:A2:16:F3:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t0zj88XlovnYuKTHeoNh-KIW860.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/g4mflD0Y4dFeWIYXrHeIdFF1Tzk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/t0zj88XlovnYuKTHeoNh-KIW860.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.99.96.0/23 Signature Algorithm: sha256WithRSAEncryption 17:6f:5c:65:9b:12:14:50:4e:c4:d9:59:73:34:56:75:03:6a: 65:30:3e:90:ee:9c:0b:ba:5a:09:14:ad:a9:f9:30:e8:ec:fd: 91:65:f1:fa:05:c7:67:5c:41:95:8b:5a:85:78:fa:16:c2:d4: 4c:8a:64:35:ef:c8:a1:14:00:36:6e:dc:ff:01:1b:ec:f5:fc: c3:d9:74:98:9b:3a:6e:be:7e:34:ca:9a:3e:65:9a:5e:78:35: c0:bb:57:43:b6:ea:23:30:b3:81:4f:4d:f3:f1:ed:62:47:f9: ab:66:33:12:63:dc:90:08:73:94:65:7f:bc:29:43:5b:e5:c1: 52:f0:bb:92:b6:a3:70:f5:90:98:13:51:3c:ef:9b:f1:89:98: 01:75:eb:86:a8:e6:97:a2:f5:40:fc:39:26:c1:20:49:1f:b3: 7b:c9:85:d4:91:11:58:15:9f:62:1e:e5:6e:dc:06:e8:1c:a3: 81:cb:2d:26:81:4f:28:7c:b1:8d:df:01:d8:e1:b5:15:b1:99: 9e:4c:8f:21:fa:9b:bb:1e:6a:0c:89:c1:7e:90:15:8a:93:49: a1:9c:a1:ae:1e:04:4f:55:7e:a5:2a:08:98:42:b0:93:70:a4: 36:e2:98:a6:12:e9:f1:7e:6b:b4:8f:14:12:d0:29:6c:98:84: 2a:53:51:94 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yKjdtGsPuBf5zqZdYP58MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NGNlM2YzYzVlNWEyZjlkOGI4YTRjNzdhODM2MWY4YTIx NmYzYWQwHhcNMjYwMTAxMTgxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Mzg5OWY5NDNkMThlMWQxNWU1ODg2MTdhYzc3ODg3NDUxNzU0ZjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3nPyVm+TAZj0lphod2dxSfBlXwfG ZOoEd8sYO3Ab2zwZa7LizixXlx59TingbLQrXwD9m8tAobnlMP6iZIysWKPLfFAQ WaWiTdRxQY4HDpC/BsGQG/r7hIneh6dF/Yupy9LytQxz7alpslyGnLse2kiiIq52 VfLNTzOfFDAUcLq8CZDvMbS5iYUhTV2DhvKpe9Mg/6GVj/LfJkFjixnrw/4+xtpI qRWZ9uboGGk8FaoTBYtpVec8F1bSgC8g2OjMYtVLQlpDwQuiBOZftms4XP/FuKG2 L7ukK8AllSrP41IBuY8ZwFymC4vz6q08wVowRKsXEd5tCYuQqiu6v70l8QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIOJn5Q9GOHRXliGF6x3iHRRdU85MB8GA1UdIwQY MBaAFLdM4/PF5aL52Likx3qDYfiiFvOtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDB6ajg4WGxvdm5ZdUtUSGVvTmgtS0lXODYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hYzY4MWYtMDVkMi00MDQ1LWFlMTAt NWViZGQ5ZTI4ODdjLzEvZzRtZmxEMFk0ZEZlV0lZWHJIZUlkRkYxVHprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9hYzY4MWYtMDVkMi00MDQ1LWFlMTAtNWViZGQ5ZTI4ODdj LzEvdDB6ajg4WGxvdm5ZdUtUSGVvTmgtS0lXODYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwmNgMA0G CSqGSIb3DQEBCwUAA4IBAQAXb1xlmxIUUE7E2VlzNFZ1A2plMD6Q7pwLuloJFK2p +TDo7P2RZfH6BcdnXEGVi1qFePoWwtRMimQ178ihFAA2btz/ARvs9fzD2XSYmzpu vn40ypo+ZZpeeDXAu1dDtuojMLOBT03z8e1iR/mrZjMSY9yQCHOUZX+8KUNb5cFS 8LuStqNw9ZCYE1E875vxiZgBdeuGqOaXovVA/DkmwSBJH7N7yYXUkRFYFZ9iHuVu 3AboHKOByy0mgU8ofLGN3wHY4bUVsZmeTI8h+pu7HmoMicF+kBWKk0mhnKGuHgRP VX6lKgiYQrCTcKQ24pimEunxfmu0jxQS0ClsmIQqU1GU -----END CERTIFICATE-----Generated at Sun Jan 11 03:41:09 2026 by rpki-client