This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/4CR3SdFhOlu-RkeOFq_vghJGhj4.roa File: 4CR3SdFhOlu-RkeOFq_vghJGhj4.roa (raw, json) Hash identifier: QtbjIi0WHlEAIJlgI+Jq5aUhRNaXqI2rV+v6dQ82Kvk= Subject key identifier: E0:24:77:49:D1:61:3A:5B:BE:46:47:8E:16:AF:EF:82:12:46:86:3E Certificate issuer: /CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a Certificate serial: 019B7A5B2E9682E12E0EFD4F380C4BC69D4C Authority key identifier: 3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/4CR3SdFhOlu-RkeOFq_vghJGhj4.roa Signing time: Thu 01 Jan 2026 16:19:14 +0000 ROA not before: Thu 01 Jan 2026 16:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49275 IP address blocks: 91.199.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:2e:96:82:e1:2e:0e:fd:4f:38:0c:4b:c6:9d:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a Validity Not Before: Jan 1 16:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e0247749d1613a5bbe46478e16afef821246863e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cc:ca:81:5b:1a:ee:88:9b:d7:91:9c:9e:da: f3:43:b2:58:66:36:6e:f8:e8:3c:a3:0d:e1:27:90: b5:67:dd:5c:30:d7:7f:4b:79:d2:ba:e3:2d:ed:ff: 8e:4a:5e:4c:d2:61:d9:15:11:03:e0:d0:91:f6:76: ff:26:85:ff:c6:4b:1d:1b:20:bd:f6:b5:ca:61:e6: c1:01:54:51:6d:b4:41:3f:80:e9:1e:23:be:f1:69: bd:f4:66:64:f7:ef:8d:1c:2a:91:8a:14:54:89:1a: d6:1f:da:ad:23:30:a9:c6:78:64:0f:ab:b5:ff:44: e0:88:b0:42:53:99:bd:1c:c6:0e:15:63:4c:59:70: 4c:07:24:8e:4f:29:11:42:d3:ba:d1:8c:61:96:17: 4f:eb:ad:04:22:e8:19:63:34:c8:53:d2:45:e7:f5: a7:6a:80:f6:9c:d5:91:9c:00:46:02:c7:d8:51:e2: f6:03:3c:93:3b:66:97:3c:ce:68:fb:7a:3c:d6:d3: 6c:81:a1:93:de:d8:45:db:c4:43:bd:d2:f7:71:21: 7a:9a:61:b1:85:f0:c6:23:2e:02:fc:cb:a9:4e:55: 30:81:f3:8d:03:fd:2e:58:72:7b:f0:37:e6:e7:b9: 39:60:85:0d:fb:5b:6d:fa:a6:6b:48:0e:82:48:6c: d1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:24:77:49:D1:61:3A:5B:BE:46:47:8E:16:AF:EF:82:12:46:86:3E X509v3 Authority Key Identifier: keyid:3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/4CR3SdFhOlu-RkeOFq_vghJGhj4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.239.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:89:fd:a9:cd:4e:8a:62:ce:42:61:44:98:de:8b:00:cb:bd: f9:5b:45:ec:24:52:e9:95:40:ab:33:1d:d1:ed:53:79:26:80: 76:f2:f0:5a:af:a8:30:f8:ad:49:f3:6d:04:22:39:e9:db:11: 78:77:07:4a:31:22:3d:6b:44:40:27:0c:f3:c3:ed:3e:7a:40: d0:57:85:b4:bb:50:a4:6f:c9:d8:cd:ab:a6:b7:4e:02:4c:c3: 05:c2:51:b0:94:f3:94:9d:02:7e:8c:8b:13:44:c1:56:ce:9a: 98:24:a5:63:43:ca:40:9d:ee:be:4c:75:f3:e0:a1:85:61:9c: be:6b:6e:7d:16:74:a9:78:73:ee:55:69:23:7f:99:61:ed:2f: 87:25:e5:9b:30:cd:cf:1d:27:f9:29:68:37:a0:43:7d:fb:0c: 56:a0:5a:a3:f6:16:b5:dd:7b:22:fe:f8:bd:f0:b1:27:dd:f6: 38:b0:cc:b2:6b:4e:6d:6d:86:f4:14:ec:6a:ea:2b:bb:3d:0f: 04:69:84:1d:37:42:30:56:ce:7d:9d:1f:10:85:01:03:74:6f: 3b:cb:ce:df:06:05:b5:c7:ad:f4:f6:0d:d0:0e:fb:6d:e3:ef: ff:bc:3d:15:7a:7a:6c:bd:36:fd:8a:82:c8:36:57:26:4e:c3: d2:7f:88:da -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wy6WguEuDv1POAxLxp1MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmYTJkNjg1MGJiYzQ3MjA1NTdhOTE3NGRjYmM5NzYwYWVj YzBiMWEwHhcNMjYwMTAxMTYxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDI0Nzc0OWQxNjEzYTViYmU0NjQ3OGUxNmFmZWY4MjEyNDY4NjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08zKgVsa7oib15GcntrzQ7JYZjZu +Og8ow3hJ5C1Z91cMNd/S3nSuuMt7f+OSl5M0mHZFRED4NCR9nb/JoX/xksdGyC9 9rXKYebBAVRRbbRBP4DpHiO+8Wm99GZk9++NHCqRihRUiRrWH9qtIzCpxnhkD6u1 /0TgiLBCU5m9HMYOFWNMWXBMBySOTykRQtO60YxhlhdP660EIugZYzTIU9JF5/Wn aoD2nNWRnABGAsfYUeL2AzyTO2aXPM5o+3o81tNsgaGT3thF28RDvdL3cSF6mmGx hfDGIy4C/MupTlUwgfONA/0uWHJ78Dfm57k5YIUN+1tt+qZrSA6CSGzRuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOAkd0nRYTpbvkZHjhav74ISRoY+MB8GA1UdIwQY MBaAFD+i1oULvEcgVXqRdNy8l2CuzAsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9jM2M3NTgtYTI1My00OTg5LWFlMmQt OWM2NWQxODhlNTRlLzEvNENSM1NkRmhPbHUtUmtlT0ZxX3ZnaEpHaGo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9jM2M3NTgtYTI1My00OTg5LWFlMmQtOWM2NWQxODhlNTRl LzEvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8fvMA0G CSqGSIb3DQEBCwUAA4IBAQCbif2pzU6KYs5CYUSY3osAy735W0XsJFLplUCrMx3R 7VN5JoB28vBar6gw+K1J820EIjnp2xF4dwdKMSI9a0RAJwzzw+0+ekDQV4W0u1Ck b8nYzaumt04CTMMFwlGwlPOUnQJ+jIsTRMFWzpqYJKVjQ8pAne6+THXz4KGFYZy+ a259FnSpeHPuVWkjf5lh7S+HJeWbMM3PHSf5KWg3oEN9+wxWoFqj9ha13Xsi/vi9 8LEn3fY4sMyya05tbYb0FOxq6iu7PQ8EaYQdN0IwVs59nR8QhQEDdG87y87fBgW1 x6309g3QDvtt4+//vD0VenpsvTb9ioLINlcmTsPSf4ja -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:24 2026 by rpki-client