This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/1KzAL4WrD5dhhGZJOCxuUIPFwOk.roa File: 1KzAL4WrD5dhhGZJOCxuUIPFwOk.roa (raw, json) Hash identifier: aO9dX9fJ0rrae7yQKAQfFledrNyIupTZnT+cq07JYUA= Subject key identifier: D4:AC:C0:2F:85:AB:0F:97:61:84:66:49:38:2C:6E:50:83:C5:C0:E9 Certificate issuer: /CN=ed6da9e41686d21c12799c8e84b274aa8241508c Certificate serial: 019B7910F0E3FE32089B165453B53A38C029 Authority key identifier: ED:6D:A9:E4:16:86:D2:1C:12:79:9C:8E:84:B2:74:AA:82:41:50:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/1KzAL4WrD5dhhGZJOCxuUIPFwOk.roa Signing time: Thu 01 Jan 2026 10:18:32 +0000 ROA not before: Thu 01 Jan 2026 10:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43395 IP address blocks: 46.143.224.0/20 maxlen: 20 46.143.224.0/24 maxlen: 24 46.143.225.0/24 maxlen: 24 46.143.226.0/24 maxlen: 24 46.143.227.0/24 maxlen: 24 46.143.228.0/24 maxlen: 24 46.143.229.0/24 maxlen: 24 46.143.230.0/24 maxlen: 24 46.143.231.0/24 maxlen: 24 46.143.232.0/24 maxlen: 24 46.143.233.0/24 maxlen: 24 46.143.234.0/24 maxlen: 24 46.143.235.0/24 maxlen: 24 46.143.236.0/24 maxlen: 24 46.143.237.0/24 maxlen: 24 46.143.238.0/24 maxlen: 24 46.143.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.crl rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.mft rsync://rpki.ripe.net/repository/DEFAULT/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:f0:e3:fe:32:08:9b:16:54:53:b5:3a:38:c0:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed6da9e41686d21c12799c8e84b274aa8241508c Validity Not Before: Jan 1 10:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4acc02f85ab0f9761846649382c6e5083c5c0e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:cd:f0:1a:23:88:2f:8a:81:33:5a:10:f1: b8:d3:7d:3d:76:49:56:f1:57:e1:58:ba:ef:e4:f5: 04:6e:10:3e:15:7c:f9:a4:ee:0b:f7:d2:83:2f:72: fb:26:67:5c:29:74:86:2a:5a:62:5d:3c:57:67:d2: 3b:74:e6:b9:b6:aa:64:17:86:19:52:22:53:bc:88: 3e:73:c0:87:65:a5:bf:86:f8:70:2a:c1:72:5d:b5: 85:e6:c0:06:d2:78:7f:30:4a:c1:5d:d9:8c:59:5e: 5f:ce:22:cb:b1:9d:67:40:d4:ba:6f:e2:cd:ff:8f: d3:08:26:d4:97:53:13:45:8c:af:2c:36:2f:14:a2: 45:2a:13:41:4c:2c:94:1b:47:0f:79:77:77:3f:e9: d2:b4:6c:f9:5b:a6:e0:b6:14:7a:7d:9a:85:2a:5c: 27:e0:6e:05:28:1a:ba:a0:2e:9a:cc:d4:9f:8a:83: 24:b1:8b:bb:13:70:f9:fa:ea:d0:47:02:01:d7:30: 9a:3a:02:b7:b9:9f:51:8e:c9:ad:ad:25:56:f3:62: 9b:35:6d:ee:d2:3f:c3:19:f6:f2:66:f2:c9:2d:8d: 59:c3:b5:5b:ac:61:43:84:c2:47:fa:69:77:94:b2: 33:34:65:5f:d3:ee:0e:a5:73:5e:a4:a5:33:4d:03: 1d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:AC:C0:2F:85:AB:0F:97:61:84:66:49:38:2C:6E:50:83:C5:C0:E9 X509v3 Authority Key Identifier: keyid:ED:6D:A9:E4:16:86:D2:1C:12:79:9C:8E:84:B2:74:AA:82:41:50:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/1KzAL4WrD5dhhGZJOCxuUIPFwOk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.143.224.0/20 Signature Algorithm: sha256WithRSAEncryption 3e:96:8c:df:13:a4:03:dd:e5:23:ce:a5:76:76:8f:eb:9f:eb: c8:82:c0:b1:3b:ba:54:aa:f3:8d:6c:35:76:74:bf:b7:dc:09: 22:a9:af:84:b4:0c:2a:d5:ad:21:e9:fd:8d:0c:a1:d0:4d:ba: dd:25:21:a9:9d:44:eb:1a:6b:59:dd:a8:ab:97:01:42:21:d0: 0d:db:4e:cb:18:47:96:14:d5:12:97:34:a8:2a:0f:e6:0f:cd: 17:15:e9:ff:59:d1:94:66:2c:aa:da:44:ef:1b:e6:c5:84:49: d0:21:79:3e:cc:19:19:13:33:95:9e:83:46:77:ec:ad:f3:fb: 85:de:aa:e5:2c:b9:22:a1:34:01:a8:41:d2:87:e6:61:9b:65: 00:48:43:e5:06:02:77:86:4f:f2:05:0d:ae:01:5a:00:85:0a: a2:3b:7f:4f:03:ca:5f:47:a2:33:57:c7:9e:60:e5:23:99:7e: ff:aa:0f:ee:8e:a2:09:85:af:a0:6d:2c:c0:11:58:c3:e6:89: df:9d:eb:64:19:cc:cf:88:5e:e9:00:a9:8c:49:aa:19:a5:65: 60:b5:d4:2f:4d:2e:e5:01:31:80:fc:81:30:0f:bb:f4:26:72: 7a:ad:ed:87:43:81:2b:05:dd:3c:27:d9:51:3d:17:36:fc:78: d5:c3:24:49 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EPDj/jIImxZUU7U6OMApMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkNmRhOWU0MTY4NmQyMWMxMjc5OWM4ZTg0YjI3NGFhODI0 MTUwOGMwHhcNMjYwMTAxMTAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGFjYzAyZjg1YWIwZjk3NjE4NDY2NDkzODJjNmU1MDgzYzVjMGU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XXN8BojiC+KgTNaEPG40309dklW 8VfhWLrv5PUEbhA+FXz5pO4L99KDL3L7JmdcKXSGKlpiXTxXZ9I7dOa5tqpkF4YZ UiJTvIg+c8CHZaW/hvhwKsFyXbWF5sAG0nh/MErBXdmMWV5fziLLsZ1nQNS6b+LN /4/TCCbUl1MTRYyvLDYvFKJFKhNBTCyUG0cPeXd3P+nStGz5W6bgthR6fZqFKlwn 4G4FKBq6oC6azNSfioMksYu7E3D5+urQRwIB1zCaOgK3uZ9RjsmtrSVW82KbNW3u 0j/DGfbyZvLJLY1Zw7VbrGFDhMJH+ml3lLIzNGVf0+4OpXNepKUzTQMdMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNSswC+Fqw+XYYRmSTgsblCDxcDpMB8GA1UdIwQY MBaAFO1tqeQWhtIcEnmcjoSydKqCQVCMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1cycDVCYUcwaHdTZVp5T2hMSjBxb0pCVUl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hYzAxN2MtZmYyOS00M2NmLWEzZDYt MjlmMWJlYjJmMjgyLzEvMUt6QUw0V3JENWRoaEdaSk9DeHVVSVBGd09rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9hYzAxN2MtZmYyOS00M2NmLWEzZDYtMjlmMWJlYjJmMjgy LzEvN1cycDVCYUcwaHdTZVp5T2hMSjBxb0pCVUl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELo/gMA0G CSqGSIb3DQEBCwUAA4IBAQA+lozfE6QD3eUjzqV2do/rn+vIgsCxO7pUqvONbDV2 dL+33Akiqa+EtAwq1a0h6f2NDKHQTbrdJSGpnUTrGmtZ3airlwFCIdAN207LGEeW FNUSlzSoKg/mD80XFen/WdGUZiyq2kTvG+bFhEnQIXk+zBkZEzOVnoNGd+yt8/uF 3qrlLLkioTQBqEHSh+Zhm2UASEPlBgJ3hk/yBQ2uAVoAhQqiO39PA8pfR6IzV8ee YOUjmX7/qg/ujqIJha+gbSzAEVjD5onfnetkGczPiF7pAKmMSaoZpWVgtdQvTS7l ATGA/IEwD7v0JnJ6re2HQ4ErBd08J9lRPRc2/HjVwyRJ -----END CERTIFICATE-----Generated at Mon Jan 26 21:04:35 2026 by rpki-client