This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/4x9FdsuCZT8eQjbR_xFCkkyHceI.roa File: 4x9FdsuCZT8eQjbR_xFCkkyHceI.roa (raw, json) Hash identifier: bwssY4p6B1jXdqnHRj8lHM3+o/n499u3nrapMoxhK40= Subject key identifier: E3:1F:45:76:CB:82:65:3F:1E:42:36:D1:FF:11:42:92:4C:87:71:E2 Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2 Certificate serial: 019B7834536C887031C1525C4AF7274FAA4F Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/4x9FdsuCZT8eQjbR_xFCkkyHceI.roa Signing time: Thu 01 Jan 2026 06:17:33 +0000 ROA not before: Thu 01 Jan 2026 06:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 63023 IP address blocks: 212.23.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.mft rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:53:6c:88:70:31:c1:52:5c:4a:f7:27:4f:aa:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2 Validity Not Before: Jan 1 06:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e31f4576cb82653f1e4236d1ff1142924c8771e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:34:ef:2f:dd:69:54:5d:55:8a:db:a1:f5:65: 21:4f:93:bd:bf:41:d6:bd:72:13:dc:e0:e7:06:b7: 40:66:4b:ba:f5:c7:e8:8b:ed:7b:64:0c:27:8d:c2: d2:01:1c:80:9f:0f:46:1d:d8:8a:b3:62:98:56:a6: 54:9a:c8:9c:c7:2f:13:c7:2a:95:6d:38:23:52:29: 5b:53:d4:0e:bd:9a:7b:04:ec:7f:48:e9:25:03:2a: a5:ca:a5:0c:dc:9c:19:82:a3:f8:a1:4b:8c:09:1e: 9b:04:3e:29:e2:cc:df:94:4d:7f:86:79:64:a9:69: 2f:d4:d5:e9:94:1b:56:11:19:15:be:98:55:f0:86: 48:86:9e:81:16:23:f3:e3:fb:a8:27:8f:50:97:87: 1b:55:da:98:d0:23:29:6a:b2:86:61:6a:6a:27:69: 17:24:b4:a8:14:ed:c0:dc:e6:f0:e2:b9:c0:57:c7: a0:25:2d:a9:ab:ec:80:fc:f0:76:33:5e:3b:a3:fc: 3f:02:d2:d5:6c:36:49:72:a9:c6:91:03:ad:1a:0a: 05:7d:44:f7:2a:57:2c:b0:35:8c:88:22:aa:68:f8: 26:56:4c:11:56:0e:61:2f:1e:b6:cd:19:4f:73:39: 8c:49:ce:a6:b0:ad:5d:6a:bc:77:45:65:d1:de:42: 94:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:1F:45:76:CB:82:65:3F:1E:42:36:D1:FF:11:42:92:4C:87:71:E2 X509v3 Authority Key Identifier: keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/4x9FdsuCZT8eQjbR_xFCkkyHceI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.23.196.0/24 Signature Algorithm: sha256WithRSAEncryption 70:bd:a4:34:35:2d:fa:4c:7a:4b:25:57:32:f0:51:71:d2:d8: 87:91:1b:38:d8:38:97:01:82:ad:5f:7b:4d:c9:40:db:c6:f0: dd:f0:a7:f2:e2:56:8d:bc:ea:88:13:77:eb:b1:03:f0:de:f0: 0f:ae:ba:c8:37:b3:b7:ae:b7:92:28:fd:2d:9e:c1:16:6b:d8: 21:76:8a:a6:19:1c:76:89:6b:4f:d7:1e:86:17:6f:d3:62:e4: a1:73:d1:aa:99:d6:b5:42:1a:da:0a:cf:7c:b8:6a:b9:5c:0a: 9d:e5:9e:70:81:c3:cb:e4:ef:28:05:42:20:5f:0d:3a:63:08: a8:ed:3e:fe:60:96:6e:34:8d:8f:f1:f6:64:89:98:a3:e2:f9: 4c:e6:2f:58:b0:b0:33:b9:57:ae:21:55:47:28:d0:cf:04:6b: dd:8f:bb:e2:f2:cf:d9:a7:c8:a6:f5:e7:2b:63:9b:35:07:c5: 76:9a:b8:08:47:92:e8:21:01:7c:e1:06:09:54:7f:f2:79:d3: 89:89:23:18:f9:d5:90:2f:36:5a:6c:5c:ef:0f:f0:48:7c:d1: a6:d6:8c:70:4f:ff:26:5a:a5:31:cc:dd:f6:42:87:91:fa:be: 9c:b1:27:1f:37:b2:08:58:fd:9f:73:c6:c2:3e:7c:02:d2:bc: d4:8d:b2:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NFNsiHAxwVJcSvcnT6pPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi YmFhZTIwHhcNMjYwMTAxMDYxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzFmNDU3NmNiODI2NTNmMWU0MjM2ZDFmZjExNDI5MjRjODc3MWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDTvL91pVF1Vituh9WUhT5O9v0HW vXIT3ODnBrdAZku69cfoi+17ZAwnjcLSARyAnw9GHdiKs2KYVqZUmsicxy8TxyqV bTgjUilbU9QOvZp7BOx/SOklAyqlyqUM3JwZgqP4oUuMCR6bBD4p4szflE1/hnlk qWkv1NXplBtWERkVvphV8IZIhp6BFiPz4/uoJ49Ql4cbVdqY0CMparKGYWpqJ2kX JLSoFO3A3Obw4rnAV8egJS2pq+yA/PB2M147o/w/AtLVbDZJcqnGkQOtGgoFfUT3 KlcssDWMiCKqaPgmVkwRVg5hLx62zRlPczmMSc6msK1darx3RWXR3kKUewIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOMfRXbLgmU/HkI20f8RQpJMh3HiMB8GA1UdIwQY MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt MjU0YWNkOTJiNGUxLzEvNHg5RmRzdUNaVDhlUWpiUl94RkNra3lIY2VJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfEMA0G CSqGSIb3DQEBCwUAA4IBAQBwvaQ0NS36THpLJVcy8FFx0tiHkRs42DiXAYKtX3tN yUDbxvDd8Kfy4laNvOqIE3frsQPw3vAPrrrIN7O3rreSKP0tnsEWa9ghdoqmGRx2 iWtP1x6GF2/TYuShc9Gqmda1QhraCs98uGq5XAqd5Z5wgcPL5O8oBUIgXw06Ywio 7T7+YJZuNI2P8fZkiZij4vlM5i9YsLAzuVeuIVVHKNDPBGvdj7vi8s/Zp8im9ecr Y5s1B8V2mrgIR5LoIQF84QYJVH/yedOJiSMY+dWQLzZabFzvD/BIfNGm1oxwT/8m WqUxzN32QoeR+r6csScfN7IIWP2fc8bCPnwC0rzUjbLH -----END CERTIFICATE-----Generated at Mon Jan 19 18:01:34 2026 by rpki-client