This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/4U4MbiSV6kmpKfL8B6L6VKqblTY.roa File: 4U4MbiSV6kmpKfL8B6L6VKqblTY.roa (raw, json) Hash identifier: X9YwPhP7oKQF4wZpCPI7kZ8nWJ6qTuSADd5JFvye0ys= Subject key identifier: E1:4E:0C:6E:24:95:EA:49:A9:29:F2:FC:07:A2:FA:54:AA:9B:95:36 Certificate issuer: /CN=480b4e6530f58db338e41d434e5c248eb8b49eb5 Certificate serial: 019B79ED5EA0E8A3EF9ED42D46DFE4FC3F13 Authority key identifier: 48:0B:4E:65:30:F5:8D:B3:38:E4:1D:43:4E:5C:24:8E:B8:B4:9E:B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAtOZTD1jbM45B1DTlwkjri0nrU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/4U4MbiSV6kmpKfL8B6L6VKqblTY.roa Signing time: Thu 01 Jan 2026 14:19:17 +0000 ROA not before: Thu 01 Jan 2026 14:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44628 IP address blocks: 91.211.176.0/24 maxlen: 24 91.211.177.0/24 maxlen: 24 91.211.178.0/24 maxlen: 24 91.211.179.0/24 maxlen: 24 91.237.232.0/24 maxlen: 24 91.237.233.0/24 maxlen: 24 91.237.234.0/24 maxlen: 24 91.237.235.0/24 maxlen: 24 195.42.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/SAtOZTD1jbM45B1DTlwkjri0nrU.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/SAtOZTD1jbM45B1DTlwkjri0nrU.mft rsync://rpki.ripe.net/repository/DEFAULT/SAtOZTD1jbM45B1DTlwkjri0nrU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:5e:a0:e8:a3:ef:9e:d4:2d:46:df:e4:fc:3f:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=480b4e6530f58db338e41d434e5c248eb8b49eb5 Validity Not Before: Jan 1 14:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e14e0c6e2495ea49a929f2fc07a2fa54aa9b9536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:0c:2c:a8:c9:49:97:d2:b1:5a:79:35:d9: 6b:a9:a6:be:3e:96:76:d5:76:61:91:43:10:79:74: eb:a2:94:e2:e4:43:7e:08:fc:b5:be:ea:85:33:af: 45:27:b6:b7:6f:db:34:76:dc:1e:41:60:e7:14:67: 60:ad:48:ce:a4:b7:95:69:ef:a2:fd:66:4f:3b:95: a3:7f:bc:32:84:9c:21:25:7c:6f:6c:53:8d:9d:45: eb:b6:14:ad:c5:e1:b2:56:65:95:a9:8a:0a:b2:76: d3:80:f0:c6:6f:de:54:a1:6b:5d:2d:cb:fd:da:3a: 14:01:2e:1c:84:5f:45:19:2a:d1:36:c6:7e:7a:77: 8e:7a:6c:ba:bd:be:59:52:76:7d:5b:ce:58:73:47: 32:da:60:c9:27:77:ad:37:09:25:52:e5:2c:29:0b: 8f:71:f3:c4:a9:66:49:ec:30:ab:72:c0:6e:07:ff: 9c:c1:a8:6d:3a:0e:a2:8a:92:aa:63:32:56:19:5d: 97:58:cf:bc:f3:13:74:5c:72:77:f9:f3:c0:bb:37: e3:87:ad:e4:7e:71:29:6b:b1:59:e8:d7:5e:4b:57: 0d:91:2f:fa:d4:2c:90:c0:98:d3:06:7a:2d:01:38: 7f:c3:e7:ce:4f:04:08:78:87:de:23:88:7d:c8:25: 83:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4E:0C:6E:24:95:EA:49:A9:29:F2:FC:07:A2:FA:54:AA:9B:95:36 X509v3 Authority Key Identifier: keyid:48:0B:4E:65:30:F5:8D:B3:38:E4:1D:43:4E:5C:24:8E:B8:B4:9E:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAtOZTD1jbM45B1DTlwkjri0nrU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/4U4MbiSV6kmpKfL8B6L6VKqblTY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/SAtOZTD1jbM45B1DTlwkjri0nrU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.211.176.0/22 91.237.232.0/22 195.42.136.0/23 Signature Algorithm: sha256WithRSAEncryption d5:78:c4:67:b1:31:29:ec:f8:31:d5:c0:c8:ec:d3:f2:c3:89: a8:0e:b0:65:b1:b7:66:2a:63:14:e9:06:ed:88:20:f5:b7:4d: 98:8f:5a:ee:24:ea:c1:c7:84:7d:45:2d:77:d9:67:79:3b:15: 4c:98:e8:f3:fd:a0:3d:5c:54:91:62:ca:4e:d1:5d:17:c6:34: b2:18:d3:dc:f2:52:d9:db:d7:fa:1e:d9:db:8d:96:d0:d6:49: af:57:94:9c:e9:1a:95:11:9b:5a:58:8b:24:c1:2a:f2:31:72: 8d:dc:e2:65:24:16:f7:32:b9:46:d5:a1:45:cd:b3:7e:45:93: bc:99:04:b1:09:29:1b:22:41:85:3b:ae:39:32:12:3a:38:65: c9:5c:4e:d9:cb:69:e6:bb:e7:1b:4e:28:72:61:cf:3f:7d:58: e1:5f:ef:36:08:7a:a8:d7:e0:67:21:d2:5c:ec:dc:7b:ed:3a: ce:8d:4a:8c:d5:52:13:8b:a2:33:8b:d1:87:66:0b:8d:8c:47: 68:c7:31:0d:f5:73:cc:8f:80:1d:02:35:db:4a:a9:b1:ac:40: 10:c2:d5:a5:e0:cf:ff:14:45:43:e8:d3:6f:76:21:04:b4:39: 48:19:a9:d3:f7:c9:93:15:95:da:e9:99:fa:50:d8:d1:2e:21: 62:6d:24:0c -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt57V6g6KPvntQtRt/k/D8TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4MGI0ZTY1MzBmNThkYjMzOGU0MWQ0MzRlNWMyNDhlYjhi NDllYjUwHhcNMjYwMTAxMTQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTRlMGM2ZTI0OTVlYTQ5YTkyOWYyZmMwN2EyZmE1NGFhOWI5NTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvkMLKjJSZfSsVp5Ndlrqaa+PpZ2 1XZhkUMQeXTropTi5EN+CPy1vuqFM69FJ7a3b9s0dtweQWDnFGdgrUjOpLeVae+i /WZPO5Wjf7wyhJwhJXxvbFONnUXrthStxeGyVmWVqYoKsnbTgPDGb95UoWtdLcv9 2joUAS4chF9FGSrRNsZ+eneOemy6vb5ZUnZ9W85Yc0cy2mDJJ3etNwklUuUsKQuP cfPEqWZJ7DCrcsBuB/+cwahtOg6iipKqYzJWGV2XWM+88xN0XHJ3+fPAuzfjh63k fnEpa7FZ6NdeS1cNkS/61CyQwJjTBnotATh/w+fOTwQIeIfeI4h9yCWDfQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFOFODG4klepJqSny/Aei+lSqm5U2MB8GA1UdIwQY MBaAFEgLTmUw9Y2zOOQdQ05cJI64tJ61MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0F0T1pURDFqYk00NUIxRFRsd2tqcmkwbnJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8yYTcyZWUtZWMxZi00MGM2LWFkOWQt NWE0ZGY4OTZmYzNlLzEvNFU0TWJpU1Y2a21wS2ZMOEI2TDZWS3FibFRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi8yYTcyZWUtZWMxZi00MGM2LWFkOWQtNWE0ZGY4OTZmYzNl LzEvU0F0T1pURDFqYk00NUIxRFRsd2tqcmkwbnJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCW9OwAwQC W+3oAwQBwyqIMA0GCSqGSIb3DQEBCwUAA4IBAQDVeMRnsTEp7Pgx1cDI7NPyw4mo DrBlsbdmKmMU6QbtiCD1t02Yj1ruJOrBx4R9RS132Wd5OxVMmOjz/aA9XFSRYspO 0V0XxjSyGNPc8lLZ29f6HtnbjZbQ1kmvV5Sc6RqVEZtaWIskwSryMXKN3OJlJBb3 MrlG1aFFzbN+RZO8mQSxCSkbIkGFO645MhI6OGXJXE7Zy2nmu+cbTihyYc8/fVjh X+82CHqo1+BnIdJc7Nx77TrOjUqM1VITi6Izi9GHZguNjEdoxzEN9XPMj4AdAjXb SqmxrEAQwtWl4M//FEVD6NNvdiEEtDlIGanT98mTFZXa6Zn6UNjRLiFibSQM -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:25 2026 by rpki-client