This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/22df61-b609-4986-99e3-926c4a326e08/1/4yAos7CZgWKf3gn3IrsDl-srEto.roa File: 4yAos7CZgWKf3gn3IrsDl-srEto.roa (raw, json) Hash identifier: APm7pBB8tOvmNKA+K6EEmrpwAa/2uNe5vUUzyTIaj0k= Subject key identifier: E3:20:28:B3:B0:99:81:62:9F:DE:09:F7:22:BB:03:97:EB:2B:12:DA Certificate issuer: /CN=aeb0b777f5377bb1c50653884b03e27dcdee828e Certificate serial: 019B797E206E0E7D53C1759A3CB720ABA72F Authority key identifier: AE:B0:B7:77:F5:37:7B:B1:C5:06:53:88:4B:03:E2:7D:CD:EE:82:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrC3d_U3e7HFBlOISwPifc3ugo4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/22df61-b609-4986-99e3-926c4a326e08/1/4yAos7CZgWKf3gn3IrsDl-srEto.roa Signing time: Thu 01 Jan 2026 12:17:47 +0000 ROA not before: Thu 01 Jan 2026 12:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33921 IP address blocks: 5.42.207.0/24 maxlen: 24 45.92.79.0/24 maxlen: 24 84.246.112.0/24 maxlen: 24 84.246.113.0/24 maxlen: 24 84.246.114.0/24 maxlen: 24 84.246.115.0/24 maxlen: 24 194.213.108.0/24 maxlen: 24 2a13:a380::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/22df61-b609-4986-99e3-926c4a326e08/1/rrC3d_U3e7HFBlOISwPifc3ugo4.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/22df61-b609-4986-99e3-926c4a326e08/1/rrC3d_U3e7HFBlOISwPifc3ugo4.mft rsync://rpki.ripe.net/repository/DEFAULT/rrC3d_U3e7HFBlOISwPifc3ugo4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:20:6e:0e:7d:53:c1:75:9a:3c:b7:20:ab:a7:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aeb0b777f5377bb1c50653884b03e27dcdee828e Validity Not Before: Jan 1 12:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e32028b3b09981629fde09f722bb0397eb2b12da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:54:3b:87:aa:e3:d2:4e:6c:ca:65:16:ee:21: ac:00:b4:43:f6:1a:ff:44:09:ed:f7:52:1c:79:78: a2:fd:d1:24:44:bd:ba:9b:c4:ec:61:03:6d:cc:ac: d4:9c:76:1d:6e:32:db:3d:64:55:c4:33:bc:9c:61: ce:f7:6d:aa:1a:48:d6:64:38:56:f5:24:ad:5e:e1: d1:15:03:34:94:b5:f0:88:e6:2f:90:b9:29:36:e9: b0:80:83:f5:54:c0:38:b4:55:4a:d5:38:17:bc:4c: 63:87:f6:e3:f3:93:eb:6a:89:25:08:2e:ba:30:d1: 92:81:4e:07:74:07:52:18:a0:2d:4a:57:1a:46:e5: f1:f6:95:05:4f:d6:61:52:33:a1:9c:55:e2:2d:2f: 5e:92:a6:48:e1:07:f8:02:27:fd:81:b1:40:90:b7: 33:7b:21:e3:f6:6f:37:06:fb:b9:62:d5:8e:4d:41: 56:23:73:79:94:3a:d0:84:ad:39:52:c6:4c:8f:45: 56:0d:57:20:cf:d5:b5:91:44:d5:cc:70:ea:44:9a: 90:f1:1c:18:c6:68:eb:fa:b2:53:6f:2e:2d:af:2b: 10:a5:f1:f8:d4:a3:44:64:77:4b:a9:1e:bf:9a:4d: 71:15:ff:d0:05:ad:98:c7:57:a2:b3:ab:0b:09:b9: c5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:20:28:B3:B0:99:81:62:9F:DE:09:F7:22:BB:03:97:EB:2B:12:DA X509v3 Authority Key Identifier: keyid:AE:B0:B7:77:F5:37:7B:B1:C5:06:53:88:4B:03:E2:7D:CD:EE:82:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrC3d_U3e7HFBlOISwPifc3ugo4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/22df61-b609-4986-99e3-926c4a326e08/1/4yAos7CZgWKf3gn3IrsDl-srEto.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/22df61-b609-4986-99e3-926c4a326e08/1/rrC3d_U3e7HFBlOISwPifc3ugo4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.42.207.0/24 45.92.79.0/24 84.246.112.0/22 194.213.108.0/24 IPv6: 2a13:a380::/40 Signature Algorithm: sha256WithRSAEncryption 83:8c:ba:b7:be:8c:30:70:7a:e9:c5:3f:ea:ed:50:da:8a:97: ed:f2:ef:70:84:69:23:48:5c:1a:41:53:35:56:cc:2f:fc:67: 7b:bf:72:8a:f0:83:73:44:87:a0:1b:d2:df:44:c9:e7:f9:b0: 5d:24:c1:22:13:53:33:34:b6:aa:e6:ce:cb:ff:50:6a:4a:26: 96:e3:e3:d4:ae:c8:b7:d0:49:25:c4:d6:f0:91:66:60:dd:ce: 73:f8:16:1d:b2:cd:6f:03:b7:fe:6f:ef:1f:b2:3e:12:7c:dc: 46:0c:c8:3a:e4:27:90:56:df:e1:fe:85:ae:48:e8:9a:a2:5c: 4f:dc:15:1f:87:ad:f7:e2:94:93:7e:f7:8a:ef:32:3f:5a:a2: 53:6f:97:ad:19:17:67:43:a0:01:8d:09:d6:0d:60:f9:1b:c8: cb:0c:7f:bc:69:b8:7b:9a:94:1d:69:f5:fe:92:ce:36:0b:2a: d9:a7:d8:79:77:85:46:ce:96:2d:2c:b9:46:81:e3:b9:55:73: 91:74:b6:e1:e8:29:51:b2:b2:27:a5:dd:ed:af:58:40:4e:34: 1f:11:6a:b2:2a:7a:76:55:dc:44:30:3d:9a:16:1e:e3:03:47: 3a:95:24:93:de:92:be:79:cd:95:dc:df:2d:0c:74:42:de:ca: 7d:f9:f6:c9 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt5fiBuDn1TwXWaPLcgq6cvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlYjBiNzc3ZjUzNzdiYjFjNTA2NTM4ODRiMDNlMjdkY2Rl ZTgyOGUwHhcNMjYwMTAxMTIxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzIwMjhiM2IwOTk4MTYyOWZkZTA5ZjcyMmJiMDM5N2ViMmIxMmRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlQ7h6rj0k5symUW7iGsALRD9hr/ RAnt91IceXii/dEkRL26m8TsYQNtzKzUnHYdbjLbPWRVxDO8nGHO922qGkjWZDhW 9SStXuHRFQM0lLXwiOYvkLkpNumwgIP1VMA4tFVK1TgXvExjh/bj85PraoklCC66 MNGSgU4HdAdSGKAtSlcaRuXx9pUFT9ZhUjOhnFXiLS9ekqZI4Qf4Aif9gbFAkLcz eyHj9m83Bvu5YtWOTUFWI3N5lDrQhK05UsZMj0VWDVcgz9W1kUTVzHDqRJqQ8RwY xmjr+rJTby4trysQpfH41KNEZHdLqR6/mk1xFf/QBa2Yx1eis6sLCbnFSwIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFOMgKLOwmYFin94J9yK7A5frKxLaMB8GA1UdIwQY MBaAFK6wt3f1N3uxxQZTiEsD4n3N7oKOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnJDM2RfVTNlN0hGQmxPSVN3UGlmYzN1Z280LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8yMmRmNjEtYjYwOS00OTg2LTk5ZTMt OTI2YzRhMzI2ZTA4LzEvNHlBb3M3Q1pnV0tmM2duM0lyc0RsLXNyRXRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8yMmRmNjEtYjYwOS00OTg2LTk5ZTMtOTI2YzRhMzI2ZTA4 LzEvcnJDM2RfVTNlN0hGQmxPSVN3UGlmYzN1Z280LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAeBAIAATAYAwQABSrPAwQA LVxPAwQCVPZwAwQAwtVsMA4EAgACMAgDBgAqE6OAADANBgkqhkiG9w0BAQsFAAOC AQEAg4y6t76MMHB66cU/6u1Q2oqX7fLvcIRpI0hcGkFTNVbML/xne79yivCDc0SH oBvS30TJ5/mwXSTBIhNTMzS2qubOy/9QakomluPj1K7It9BJJcTW8JFmYN3Oc/gW HbLNbwO3/m/vH7I+EnzcRgzIOuQnkFbf4f6FrkjomqJcT9wVH4et9+KUk373iu8y P1qiU2+XrRkXZ0OgAY0J1g1g+RvIywx/vGm4e5qUHWn1/pLONgsq2afYeXeFRs6W LSy5RoHjuVVzkXS24egpUbKyJ6Xd7a9YQE40HxFqsip6dlXcRDA9mhYe4wNHOpUk k96SvnnNldzfLQx0Qt7Kffn2yQ== -----END CERTIFICATE-----Generated at Tue Feb 10 04:49:36 2026 by rpki-client