This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/4ghPvO8O8ubg-UpOgj-hc0SbXTA.roa File: 4ghPvO8O8ubg-UpOgj-hc0SbXTA.roa (raw, json) Hash identifier: JypQzsIdWOc7a9gykbPnzDsycctJC1lDHtCOuiPvEAA= Subject key identifier: E2:08:4F:BC:EF:0E:F2:E6:E0:F9:4A:4E:82:3F:A1:73:44:9B:5D:30 Certificate issuer: /CN=f57dc5996c8178c0de2ea20499eebdeade4023eb Certificate serial: 019B79ECC3A7D8D4EA36F486E6C310A3CA70 Authority key identifier: F5:7D:C5:99:6C:81:78:C0:DE:2E:A2:04:99:EE:BD:EA:DE:40:23:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9X3FmWyBeMDeLqIEme696t5AI-s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/4ghPvO8O8ubg-UpOgj-hc0SbXTA.roa Signing time: Thu 01 Jan 2026 14:18:38 +0000 ROA not before: Thu 01 Jan 2026 14:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59755 IP address blocks: 185.71.8.0/22 maxlen: 22 2a03:37a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/9X3FmWyBeMDeLqIEme696t5AI-s.crl rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/9X3FmWyBeMDeLqIEme696t5AI-s.mft rsync://rpki.ripe.net/repository/DEFAULT/9X3FmWyBeMDeLqIEme696t5AI-s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c3:a7:d8:d4:ea:36:f4:86:e6:c3:10:a3:ca:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f57dc5996c8178c0de2ea20499eebdeade4023eb Validity Not Before: Jan 1 14:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e2084fbcef0ef2e6e0f94a4e823fa173449b5d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:89:5f:06:76:50:30:78:d3:47:ea:af:c7:50: 07:4d:8c:0e:4a:b7:45:ce:6e:38:e0:51:55:ac:5a: 74:8b:d3:10:98:73:00:29:be:d5:14:42:cb:86:02: 7b:3b:ea:19:a0:ae:56:24:88:cd:e1:44:69:d4:b5: dd:54:59:6c:bf:d3:c9:b7:51:0d:48:a8:07:5c:15: 7d:8e:92:e3:71:87:ea:f1:b5:9d:3e:9e:7e:74:6f: 27:53:3d:f1:e7:17:e6:99:b0:d8:75:bd:36:d2:c5: be:f2:52:87:da:cf:b4:43:90:c6:56:3b:a9:de:7b: 40:3f:ea:27:bb:39:25:bb:2e:54:2f:77:91:9a:56: 65:9b:38:00:2f:b0:1d:50:98:1c:00:55:20:ec:27: 98:bb:ab:a5:73:3d:29:d8:cc:46:5c:46:de:32:3f: 33:64:03:54:ba:2f:d8:b6:6f:25:6d:99:db:f5:ec: b4:c7:b8:43:0b:82:10:1e:c4:cc:2e:09:3d:c2:e2: 35:cf:04:72:f2:d3:1d:61:c5:d2:68:cd:a8:8f:3f: d7:62:33:77:0c:59:ce:b6:2b:dd:c5:38:6c:a2:00: c3:ee:d0:e7:85:2f:c4:00:80:57:9b:df:db:2a:f5: 3f:a3:1d:ba:52:59:36:14:98:ec:2e:a5:82:7f:0b: 1c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:08:4F:BC:EF:0E:F2:E6:E0:F9:4A:4E:82:3F:A1:73:44:9B:5D:30 X509v3 Authority Key Identifier: keyid:F5:7D:C5:99:6C:81:78:C0:DE:2E:A2:04:99:EE:BD:EA:DE:40:23:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9X3FmWyBeMDeLqIEme696t5AI-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/4ghPvO8O8ubg-UpOgj-hc0SbXTA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/9X3FmWyBeMDeLqIEme696t5AI-s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.71.8.0/22 IPv6: 2a03:37a0::/32 Signature Algorithm: sha256WithRSAEncryption 61:57:93:70:f2:1a:1d:43:36:62:bd:04:1e:09:a9:0f:b3:c1: 11:fb:21:cc:62:e9:96:2a:2b:5d:a0:57:d0:cd:25:e4:d7:42: 79:33:48:7c:36:88:32:6a:90:e1:df:91:9e:73:97:24:5b:7c: a5:aa:fa:23:8d:27:45:9c:77:e4:f2:ee:2e:d0:ef:30:6a:8f: e6:9e:c7:89:70:54:70:37:33:f0:24:d5:b9:96:86:7d:64:29: d9:97:3c:90:d6:fa:43:ef:f3:e1:25:d7:03:14:cd:36:0b:af: ea:5c:03:83:66:cc:a7:05:31:1b:9f:13:04:7c:fe:67:6b:b9: 1a:6b:f1:d1:7b:ee:b6:3c:ce:68:c1:a8:9e:98:45:07:36:e7: a0:56:ef:c0:2c:c5:54:15:10:1b:83:11:c0:55:e3:57:b2:67: 3a:34:5f:58:4f:d6:73:28:c0:a4:85:a7:f8:e2:a5:9e:72:e8: 02:5c:27:17:01:c4:5c:35:2a:10:79:4a:d2:23:e1:31:a3:ed: 86:57:30:53:9f:4b:10:90:1c:df:6c:df:a9:1f:10:9e:82:b4: bb:8d:41:f4:96:a7:3f:ca:54:fb:fd:f2:f4:e4:b6:e2:1e:e6: fb:48:11:af:0c:28:75:86:6e:8c:13:11:f7:d2:3b:34:91:43: 5b:bd:f2:77 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57MOn2NTqNvSG5sMQo8pwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1N2RjNTk5NmM4MTc4YzBkZTJlYTIwNDk5ZWViZGVhZGU0 MDIzZWIwHhcNMjYwMTAxMTQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjA4NGZiY2VmMGVmMmU2ZTBmOTRhNGU4MjNmYTE3MzQ0OWI1ZDMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYlfBnZQMHjTR+qvx1AHTYwOSrdF zm444FFVrFp0i9MQmHMAKb7VFELLhgJ7O+oZoK5WJIjN4URp1LXdVFlsv9PJt1EN SKgHXBV9jpLjcYfq8bWdPp5+dG8nUz3x5xfmmbDYdb020sW+8lKH2s+0Q5DGVjup 3ntAP+onuzkluy5UL3eRmlZlmzgAL7AdUJgcAFUg7CeYu6ulcz0p2MxGXEbeMj8z ZANUui/Ytm8lbZnb9ey0x7hDC4IQHsTMLgk9wuI1zwRy8tMdYcXSaM2ojz/XYjN3 DFnOtivdxThsogDD7tDnhS/EAIBXm9/bKvU/ox26Ulk2FJjsLqWCfwscOQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOIIT7zvDvLm4PlKToI/oXNEm10wMB8GA1UdIwQY MBaAFPV9xZlsgXjA3i6iBJnuvereQCPrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVgzRm1XeUJlTURlTHFJRW1lNjk2dDVBSS1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82N2UzYWMtYzMzMi00ZDEzLTgzZWYt YzdiMTBkNTA1Y2ZlLzEvNGdoUHZPOE84dWJnLVVwT2dqLWhjMFNiWFRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My82N2UzYWMtYzMzMi00ZDEzLTgzZWYtYzdiMTBkNTA1Y2Zl LzEvOVgzRm1XeUJlTURlTHFJRW1lNjk2dDVBSS1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUcIMA0E AgACMAcDBQAqAzegMA0GCSqGSIb3DQEBCwUAA4IBAQBhV5Nw8hodQzZivQQeCakP s8ER+yHMYumWKitdoFfQzSXk10J5M0h8NogyapDh35Gec5ckW3ylqvojjSdFnHfk 8u4u0O8wao/mnseJcFRwNzPwJNW5loZ9ZCnZlzyQ1vpD7/PhJdcDFM02C6/qXAOD ZsynBTEbnxMEfP5na7kaa/HRe+62PM5owaiemEUHNuegVu/ALMVUFRAbgxHAVeNX smc6NF9YT9ZzKMCkhaf44qWecugCXCcXAcRcNSoQeUrSI+Exo+2GVzBTn0sQkBzf bN+pHxCegrS7jUH0lqc/ylT7/fL05LbiHub7SBGvDCh1hm6MExH30js0kUNbvfJ3 -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:25 2026 by rpki-client