This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/G48c25I5OuL866LyO6M_26nsAK8.roa File: G48c25I5OuL866LyO6M_26nsAK8.roa (raw, json) Hash identifier: 68SHHwBgvuRE97ZnSpXksRyvWdRzVzty6FK8M3D3Odw= Subject key identifier: 1B:8F:1C:DB:92:39:3A:E2:FC:EB:A2:F2:3B:A3:3F:DB:A9:EC:00:AF Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F845C11EE8DE1A6B57DF431182E1F9B Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/G48c25I5OuL866LyO6M_26nsAK8.roa Signing time: Fri 02 Jan 2026 16:22:19 +0000 ROA not before: Fri 02 Jan 2026 16:22:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25098 IP address blocks: 217.60.239.0/24 maxlen: 24 217.60.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:5c:11:ee:8d:e1:a6:b5:7d:f4:31:18:2e:1f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b8f1cdb92393ae2fceba2f23ba33fdba9ec00af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c4:89:32:59:97:b0:51:31:d4:bc:a0:7a:f8: d2:2e:44:2d:b4:fe:f1:5a:71:38:2b:5e:18:c9:e3: ed:4b:41:c3:fc:39:6e:03:0e:07:a2:1a:f6:81:b7: 84:53:59:d2:3d:3a:7c:7d:ed:78:97:f5:1d:45:f2: df:4a:a8:ba:ee:00:ba:b6:7a:a3:5f:52:a0:31:bb: 66:77:5c:5d:22:c1:1b:70:c1:4c:03:a8:3f:a0:61: f9:b9:fc:d5:74:5b:fc:66:c6:66:a6:ca:e7:30:21: cc:82:4e:73:8d:b3:8b:ca:67:c3:ea:c7:ce:97:55: 31:05:77:f4:a9:97:38:db:4e:cb:f9:52:cc:ea:c6: d7:cd:35:d7:49:d9:de:e3:b2:f1:e5:16:1c:83:82: a2:ac:f5:2d:4c:e6:bd:ec:3d:62:7d:08:e7:91:92: 36:51:36:28:f9:a7:31:d6:6c:a2:90:c5:df:0a:ac: db:f1:43:9f:8e:73:fd:da:a6:4a:18:bd:51:1c:7b: 4c:32:7f:33:04:51:9f:85:6d:19:cc:4a:6c:bb:4a: e9:12:2d:50:3b:82:ea:9d:0d:cb:bd:4e:bd:89:33: f2:91:9e:a1:f1:c0:63:20:94:13:ef:cc:2d:9a:1c: eb:98:af:61:99:ce:37:6d:1d:9f:a7:c6:5c:a5:7f: ad:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8F:1C:DB:92:39:3A:E2:FC:EB:A2:F2:3B:A3:3F:DB:A9:EC:00:AF X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/G48c25I5OuL866LyO6M_26nsAK8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.60.239.0/24 217.60.246.0/24 Signature Algorithm: sha256WithRSAEncryption 83:b5:6e:88:88:fe:e1:a3:1d:49:b7:ae:78:09:5d:2c:13:ed: a4:cb:a3:ba:7e:0a:3b:b9:bf:87:3d:77:08:e2:36:4f:06:e6: 01:69:f0:45:d0:c9:3c:14:2e:93:f2:46:4b:81:6a:cd:ac:d7: b5:ed:78:6b:47:cb:11:30:46:7e:ae:68:9d:18:8a:00:83:c3: 1b:22:af:0e:ec:57:56:10:f6:99:67:8a:0b:12:54:10:d0:84: 05:f4:b6:07:79:45:dd:52:83:ac:6c:7c:d9:12:28:d2:b5:b4: 13:82:a1:a3:24:6e:29:5a:7f:ab:98:94:9d:92:39:d9:98:3e: e5:42:e6:aa:c3:e7:6c:00:6b:82:20:f3:1b:99:d3:ce:0d:6d: a5:d8:10:c1:e4:5d:f1:69:9a:2c:c5:fc:b8:3f:d7:03:25:a2: 07:f4:cc:59:bf:57:2d:db:d2:16:10:51:db:06:c8:26:02:da: c9:39:6f:9c:2b:d7:7e:6f:84:1a:7b:4e:e4:d1:48:8b:df:54: 7a:f1:76:89:a0:ea:c9:04:ae:74:15:46:98:42:40:75:07:b9: 4d:0f:64:a1:fd:b6:cd:92:0c:21:7d:03:54:04:d1:1c:30:3e: b5:35:e4:da:9c:d9:be:eb:5a:2e:4b:65:be:8c:1f:d6:e4:1d: 46:2c:4f:59 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hFwR7o3hprV99DEYLh+bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjhmMWNkYjkyMzkzYWUyZmNlYmEyZjIzYmEzM2ZkYmE5ZWMwMGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcSJMlmXsFEx1LygevjSLkQttP7x WnE4K14YyePtS0HD/DluAw4Hohr2gbeEU1nSPTp8fe14l/UdRfLfSqi67gC6tnqj X1KgMbtmd1xdIsEbcMFMA6g/oGH5ufzVdFv8ZsZmpsrnMCHMgk5zjbOLymfD6sfO l1UxBXf0qZc4207L+VLM6sbXzTXXSdne47Lx5RYcg4KirPUtTOa97D1ifQjnkZI2 UTYo+acx1myikMXfCqzb8UOfjnP92qZKGL1RHHtMMn8zBFGfhW0ZzEpsu0rpEi1Q O4LqnQ3LvU69iTPykZ6h8cBjIJQT78wtmhzrmK9hmc43bR2fp8ZcpX+towIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBuPHNuSOTri/Oui8jujP9up7ACvMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvRzQ4YzI1STVPdUw4NjZMeU82TV8yNm5zQUs4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA2TzvAwQA 2Tz2MA0GCSqGSIb3DQEBCwUAA4IBAQCDtW6IiP7hox1Jt654CV0sE+2ky6O6fgo7 ub+HPXcI4jZPBuYBafBF0Mk8FC6T8kZLgWrNrNe17XhrR8sRMEZ+rmidGIoAg8Mb Iq8O7FdWEPaZZ4oLElQQ0IQF9LYHeUXdUoOsbHzZEijStbQTgqGjJG4pWn+rmJSd kjnZmD7lQuaqw+dsAGuCIPMbmdPODW2l2BDB5F3xaZosxfy4P9cDJaIH9MxZv1ct 29IWEFHbBsgmAtrJOW+cK9d+b4Qae07k0UiL31R68XaJoOrJBK50FUaYQkB1B7lN D2Sh/bbNkgwhfQNUBNEcMD61NeTanNm+61ouS2W+jB/W5B1GLE9Z -----END CERTIFICATE-----Generated at Mon Jan 5 14:35:50 2026 by rpki-client