This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/h4iABUgwazCz-pCOSSyUf9YLiAg.roa File: h4iABUgwazCz-pCOSSyUf9YLiAg.roa (raw, json) Hash identifier: tCHk4qE9Q5zfvBErJsMHjuZZF+ssjuMVkrpkwNxm+AE= Subject key identifier: 87:88:80:05:48:30:6B:30:B3:FA:90:8E:49:2C:94:7F:D6:0B:88:08 Certificate issuer: /CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Certificate serial: 019B7B369F5A1D1C8D5E307A621C6E21826F Authority key identifier: 96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/h4iABUgwazCz-pCOSSyUf9YLiAg.roa Signing time: Thu 01 Jan 2026 20:18:55 +0000 ROA not before: Thu 01 Jan 2026 20:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206092 IP address blocks: 85.203.13.0/24 maxlen: 24 85.203.21.0/24 maxlen: 24 85.203.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.mft rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:9f:5a:1d:1c:8d:5e:30:7a:62:1c:6e:21:82:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Validity Not Before: Jan 1 20:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8788800548306b30b3fa908e492c947fd60b8808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:06:61:eb:d6:8d:18:98:1e:da:57:39:71:3e: d2:f5:61:70:d8:38:22:75:8f:48:c1:cb:7a:d0:9e: 7f:0e:43:39:15:1e:25:af:9f:9f:d1:fd:6c:05:99: 33:bf:3f:dd:f6:c6:dc:57:ee:2e:cf:4b:fe:fa:5b: dd:17:58:a4:3b:fd:e1:9b:b2:19:05:55:45:6b:34: 33:6c:fe:33:00:8e:64:91:0f:6f:10:64:8d:04:f4: 3b:81:f1:ed:38:a3:4a:05:8c:91:ea:27:e8:51:63: c2:3e:99:3e:9d:48:0f:e1:60:67:a8:2d:5d:40:52: 24:4a:54:3e:d0:e2:0b:6e:b0:ec:64:f5:62:be:2e: 5c:e2:81:59:5d:99:ac:98:17:0c:9e:e0:50:5f:cf: 94:92:43:df:a2:f4:85:75:9f:b9:01:e8:37:e5:a1: 1a:db:44:7e:f6:07:53:f1:45:b1:2e:33:92:1f:c5: 8c:f2:c5:6a:a1:a0:1a:52:4e:69:f8:ad:09:23:c3: 29:d3:07:94:44:10:e2:94:2b:7b:51:6e:e8:92:04: 1e:28:bf:30:20:ef:9b:1f:e5:74:eb:23:85:9d:51: 91:50:c8:60:45:05:0d:e4:d8:60:92:bc:4c:ed:75: f4:21:88:db:df:fd:33:cc:c9:9e:69:de:47:6f:9d: a7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:88:80:05:48:30:6B:30:B3:FA:90:8E:49:2C:94:7F:D6:0B:88:08 X509v3 Authority Key Identifier: keyid:96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/h4iABUgwazCz-pCOSSyUf9YLiAg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.203.13.0/24 85.203.21.0/24 85.203.34.0/24 Signature Algorithm: sha256WithRSAEncryption 68:86:e3:11:c2:f2:c2:62:5e:5b:1e:8f:c3:0d:96:e3:84:c3: 1d:48:1f:5a:85:bd:a7:55:f6:15:60:6e:a1:a7:5e:29:c0:b7: 92:d2:dd:e7:78:00:ef:21:76:04:3e:ff:f7:20:c0:ea:8a:92: b1:95:ac:ff:31:40:fc:32:2d:8e:67:e8:c0:18:f9:05:7b:64: 11:f1:3e:43:1d:bd:94:a2:6d:ae:63:7c:b6:1e:fe:f9:7d:b0: 21:25:40:7f:cf:e7:0f:c3:be:42:e2:ad:77:e0:9c:e5:18:87: 84:17:07:56:cc:d3:52:2f:1a:83:99:85:71:d1:c5:a4:3b:0a: 6e:de:25:5a:02:4d:a9:46:06:fa:77:fe:2c:a2:b0:12:37:7a: 9f:57:87:f0:3e:37:df:85:03:93:cf:01:bc:65:e7:38:be:af: e0:04:05:f4:d6:77:71:69:cd:51:d0:ca:1f:00:f8:f6:a7:fd: 08:9b:d1:7a:57:e3:a3:0a:0d:61:1f:a9:04:ad:f8:57:47:80: c3:30:a1:b3:49:2f:46:ff:fe:34:49:e6:20:fe:45:af:5b:74: c5:3f:6a:df:33:5f:20:fd:aa:e1:5f:74:07:3f:c7:1a:21:85: a9:6c:bf:73:02:d5:70:ec:ea:9e:55:57:7f:1e:86:67:62:d4: cf:bc:ab:4e -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt7Np9aHRyNXjB6YhxuIYJvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MmJkNzZhNWNhYzI4M2VjZTBhMGY4ZWFiMmM5NzAyMTQw MWZiODkwHhcNMjYwMTAxMjAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Nzg4ODAwNTQ4MzA2YjMwYjNmYTkwOGU0OTJjOTQ3ZmQ2MGI4ODA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4wZh69aNGJge2lc5cT7S9WFw2Dgi dY9Iwct60J5/DkM5FR4lr5+f0f1sBZkzvz/d9sbcV+4uz0v++lvdF1ikO/3hm7IZ BVVFazQzbP4zAI5kkQ9vEGSNBPQ7gfHtOKNKBYyR6ifoUWPCPpk+nUgP4WBnqC1d QFIkSlQ+0OILbrDsZPVivi5c4oFZXZmsmBcMnuBQX8+UkkPfovSFdZ+5Aeg35aEa 20R+9gdT8UWxLjOSH8WM8sVqoaAaUk5p+K0JI8Mp0weURBDilCt7UW7okgQeKL8w IO+bH+V06yOFnVGRUMhgRQUN5NhgkrxM7XX0IYjb3/0zzMmead5Hb52ncQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFIeIgAVIMGsws/qQjkkslH/WC4gIMB8GA1UdIwQY MBaAFJYr12pcrCg+zgoPjqsslwIUAfuJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGl2WGFseXNLRDdPQ2ctT3F5eVhBaFFCLTRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8wNDY0NjAtMTAyYy00OTMwLTg0MmMt NmFiMTExNTVmNmZiLzEvaDRpQUJVZ3dhekN6LXBDT1NTeVVmOVlMaUFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC8wNDY0NjAtMTAyYy00OTMwLTg0MmMtNmFiMTExNTVmNmZi LzEvbGl2WGFseXNLRDdPQ2ctT3F5eVhBaFFCLTRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAVcsNAwQA VcsVAwQAVcsiMA0GCSqGSIb3DQEBCwUAA4IBAQBohuMRwvLCYl5bHo/DDZbjhMMd SB9ahb2nVfYVYG6hp14pwLeS0t3neADvIXYEPv/3IMDqipKxlaz/MUD8Mi2OZ+jA GPkFe2QR8T5DHb2Uom2uY3y2Hv75fbAhJUB/z+cPw75C4q134JzlGIeEFwdWzNNS LxqDmYVx0cWkOwpu3iVaAk2pRgb6d/4sorASN3qfV4fwPjffhQOTzwG8Zec4vq/g BAX01ndxac1R0MofAPj2p/0Im9F6V+OjCg1hH6kErfhXR4DDMKGzSS9G//40SeYg /kWvW3TFP2rfM18g/arhX3QHP8caIYWpbL9zAtVw7OqeVVd/HoZnYtTPvKtO -----END CERTIFICATE-----Generated at Wed Jan 21 02:47:32 2026 by rpki-client