This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/4o-bt20-Klk9OGwhcdkI9KciRV0.roa File: 4o-bt20-Klk9OGwhcdkI9KciRV0.roa (raw, json) Hash identifier: sjuZ/oHVjNQGQYCn+VBpDH3q6eM0bSoLTp3EsyAorJA= Subject key identifier: E2:8F:9B:B7:6D:3E:2A:59:3D:38:6C:21:71:D9:08:F4:A7:22:45:5D Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Certificate serial: 019B7BA3D555E7DDFBF9DD7CF580B736788C Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/4o-bt20-Klk9OGwhcdkI9KciRV0.roa Signing time: Thu 01 Jan 2026 22:18:13 +0000 ROA not before: Thu 01 Jan 2026 22:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202736 IP address blocks: 212.100.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 22:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:d5:55:e7:dd:fb:f9:dd:7c:f5:80:b7:36:78:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Validity Not Before: Jan 1 22:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e28f9bb76d3e2a593d386c2171d908f4a722455d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:78:28:0e:87:7d:f8:1b:fa:9c:49:e6:97: 11:1f:98:c2:0c:80:14:bd:01:67:fe:71:66:27:23: ac:82:f5:30:13:fe:b4:e0:5c:08:92:d7:d1:c2:b2: 79:d5:e6:0e:ef:dc:b9:e8:6a:08:f7:60:6e:54:b1: 23:fa:48:95:f7:76:05:d0:ed:03:44:f9:e6:83:29: ec:01:a2:63:90:bb:a5:76:67:21:6a:28:46:f9:11: c1:a8:4b:c9:f5:6d:68:30:3a:34:bc:b7:ea:a1:b2: 74:d2:be:e0:db:b9:6c:0f:30:e6:55:e6:1e:6a:3b: 6a:9c:ec:9b:19:ee:c3:82:22:eb:26:53:10:2d:2e: fe:7a:11:03:34:be:f6:7c:1b:d4:89:dd:64:ae:fc: e1:0e:6e:2c:dc:0f:36:07:cd:24:ff:cf:09:13:2a: 13:f5:f7:5a:65:16:39:ba:36:ed:56:75:7b:ee:64: d4:b1:32:d2:63:99:3b:1f:1c:85:fb:87:11:a7:bd: 14:84:47:ca:03:ba:79:fa:9e:4d:94:fa:e9:b2:23: 68:44:03:ed:62:38:1e:45:f7:0d:3a:ca:95:ce:a5: d6:5c:6f:fc:ac:39:ca:73:73:13:e3:14:f0:ce:01: c0:a5:b9:3a:37:03:96:c8:ad:cb:33:45:46:46:a4: 8f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8F:9B:B7:6D:3E:2A:59:3D:38:6C:21:71:D9:08:F4:A7:22:45:5D X509v3 Authority Key Identifier: keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/4o-bt20-Klk9OGwhcdkI9KciRV0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.100.190.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:f8:56:c6:b8:18:3f:f3:ac:81:3d:dd:29:6a:70:35:4d:b9: ea:f2:00:19:0f:41:98:3c:11:6a:0c:94:01:7b:ca:68:8f:73: 5a:55:39:42:06:bf:ba:9f:aa:73:92:7d:8b:ac:88:66:93:58: d5:83:c1:92:f9:e6:78:0e:31:59:67:2f:59:db:d2:0a:2b:ac: 9d:c4:e6:a2:ae:c3:83:12:cc:fa:8f:cf:50:96:3f:df:6e:5d: 44:6e:2d:7e:94:8b:89:f8:86:1a:ab:d9:d2:a2:67:6f:ce:a9: cf:70:22:62:9c:59:e6:7b:d8:9a:50:fd:89:3a:a6:5b:50:ca: 18:6e:7f:e9:f2:37:19:26:f3:0c:1d:13:74:e9:f0:35:87:c9: 6b:0a:f1:e7:ab:e2:81:fd:09:db:ea:83:ae:5c:46:64:da:6d: 5b:f0:8c:3f:e6:1f:48:c9:1c:a1:3f:1a:77:78:28:4e:ff:98: 21:83:2e:d5:27:81:3d:55:0f:34:45:00:da:91:84:77:9f:dc: 6e:43:32:70:c4:5a:a8:b8:ee:0b:ba:90:20:b5:6e:10:59:fa: 5f:13:2e:a5:af:26:fb:ed:23:fb:fb:6c:59:f3:c7:a3:8f:af: e0:ef:e0:92:f7:35:fd:47:4a:64:a5:71:40:19:63:11:91:75: 12:df:33:0a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o9VV5937+d189YC3NniMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxYjQ5YmEwZGQ4NjE1MTI4NjE4ZDUwMTU5Y2IwZjNiNWU5 ZWU2MjYwHhcNMjYwMTAxMjIxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjhmOWJiNzZkM2UyYTU5M2QzODZjMjE3MWQ5MDhmNGE3MjI0NTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBB4KA6Hffgb+pxJ5pcRH5jCDIAU vQFn/nFmJyOsgvUwE/604FwIktfRwrJ51eYO79y56GoI92BuVLEj+kiV93YF0O0D RPnmgynsAaJjkLuldmchaihG+RHBqEvJ9W1oMDo0vLfqobJ00r7g27lsDzDmVeYe ajtqnOybGe7DgiLrJlMQLS7+ehEDNL72fBvUid1krvzhDm4s3A82B80k/88JEyoT 9fdaZRY5ujbtVnV77mTUsTLSY5k7HxyF+4cRp70UhEfKA7p5+p5NlPrpsiNoRAPt YjgeRfcNOsqVzqXWXG/8rDnKc3MT4xTwzgHApbk6NwOWyK3LM0VGRqSPiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOKPm7dtPipZPThsIXHZCPSnIkVdMB8GA1UdIwQY MBaAFFG0m6DdhhUShhjVAVnLDztenuYmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQt NGFiOWU4YWEzMjYyLzEvNG8tYnQyMC1LbGs5T0d3aGNka0k5S2NpUlYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQtNGFiOWU4YWEzMjYy LzEvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GS+MA0G CSqGSIb3DQEBCwUAA4IBAQCd+FbGuBg/86yBPd0panA1Tbnq8gAZD0GYPBFqDJQB e8poj3NaVTlCBr+6n6pzkn2LrIhmk1jVg8GS+eZ4DjFZZy9Z29IKK6ydxOairsOD Esz6j89Qlj/fbl1Ebi1+lIuJ+IYaq9nSomdvzqnPcCJinFnme9iaUP2JOqZbUMoY bn/p8jcZJvMMHRN06fA1h8lrCvHnq+KB/Qnb6oOuXEZk2m1b8Iw/5h9IyRyhPxp3 eChO/5ghgy7VJ4E9VQ80RQDakYR3n9xuQzJwxFqouO4LupAgtW4QWfpfEy6lryb7 7SP7+2xZ88ejj6/g7+CS9zX9R0pkpXFAGWMRkXUS3zMK -----END CERTIFICATE-----Generated at Sun Jan 11 07:31:22 2026 by rpki-client