This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/SD4DOOe1Q-YfVl5PpC2wzjneINo.roa File: SD4DOOe1Q-YfVl5PpC2wzjneINo.roa (raw, json) Hash identifier: rAueVU0HnCRC0myAX4koUuZ65An0z5mJknuS+tLrJrQ= Subject key identifier: 48:3E:03:38:E7:B5:43:E6:1F:56:5E:4F:A4:2D:B0:CE:39:DE:20:DA Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa Certificate serial: 019B77C7080E3AABB2DE16AB1453A5BB56C1 Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/SD4DOOe1Q-YfVl5PpC2wzjneINo.roa Signing time: Thu 01 Jan 2026 04:18:11 +0000 ROA not before: Thu 01 Jan 2026 04:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48252 IP address blocks: 185.14.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:08:0e:3a:ab:b2:de:16:ab:14:53:a5:bb:56:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa Validity Not Before: Jan 1 04:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=483e0338e7b543e61f565e4fa42db0ce39de20da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d5:62:11:6a:a4:53:c6:18:fd:26:bf:fc:f8: 9b:98:43:14:a4:4b:96:96:df:f7:79:b6:f0:eb:e8: c9:f7:26:af:f8:f2:b8:d2:89:20:23:c8:6f:57:f4: 75:c2:42:3f:14:75:13:c9:6e:b3:b7:d7:ef:22:7c: 0e:c5:0c:68:af:dc:7f:bd:97:c5:2c:a9:1a:92:c4: a4:49:00:e3:33:67:e0:d7:7a:f5:56:86:3e:5c:00: 65:87:15:84:f0:06:11:99:b5:d9:71:eb:57:68:05: aa:5d:69:ee:0d:7e:91:90:c3:3f:f5:f8:4c:1a:9a: 32:de:45:78:26:06:5f:d5:67:f0:18:84:61:8b:15: 36:e7:4a:86:37:53:cf:4a:b2:7a:6d:e0:9e:b8:8d: 96:b3:cb:0b:62:69:7e:2c:c4:18:41:ab:42:53:89: c5:53:74:1f:50:71:a4:28:d0:a3:af:69:4d:67:a4: a5:12:79:95:11:a9:e5:77:09:c4:d7:87:7a:09:d8: f6:a8:1c:13:f2:93:a7:f0:fd:ce:72:1f:2d:84:ea: 67:21:d9:15:92:04:c3:fe:27:6f:e9:86:4d:3e:d8: 0b:0b:fa:5e:2d:a8:33:93:e2:09:01:57:c7:68:bf: af:93:b8:19:0d:4c:0d:72:2e:1b:6c:c7:5d:6d:dd: 0c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3E:03:38:E7:B5:43:E6:1F:56:5E:4F:A4:2D:B0:CE:39:DE:20:DA X509v3 Authority Key Identifier: keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/SD4DOOe1Q-YfVl5PpC2wzjneINo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.14.99.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:c4:38:b6:91:4b:78:37:8e:f7:45:8b:80:cc:06:30:a3:59: d4:41:dc:05:84:6a:aa:77:52:17:2d:0e:ad:d3:ee:61:b9:ed: 20:b0:ba:41:a0:8c:6f:38:88:6c:d6:18:60:cf:20:a1:c3:cf: 62:3b:04:c5:0c:11:4d:b5:69:e0:4d:33:82:6f:9f:e8:3f:c4: 28:5c:d9:0f:de:1c:02:ce:f2:5d:ab:64:99:95:aa:4a:04:5e: 3b:46:85:ce:a9:37:6f:fc:54:1b:0e:d3:72:d9:71:c1:08:2b: 18:cc:2b:a0:97:d7:71:80:86:6d:bd:ae:06:b8:6e:e7:4f:0e: f5:a6:c6:8a:bb:b5:e4:ed:d6:c3:2e:26:4a:3b:d5:9c:ca:ab: 71:1a:76:34:fd:1b:46:96:13:ea:6d:e7:5f:0b:18:79:ff:7c: bf:f0:d3:9b:b7:92:a2:3a:2f:a6:ef:67:5a:15:dd:43:aa:34: 00:34:51:7b:00:90:85:6c:e8:28:c1:a5:dd:24:2c:5c:34:42: ac:ea:a5:5d:f6:83:bc:7c:27:9e:29:88:0a:4f:e3:03:70:ca: 35:31:d7:e4:62:67:33:47:9f:98:53:da:ba:a9:eb:7f:12:cc: a4:1c:80:12:6d:aa:cd:05:99:28:bc:f3:97:a3:46:1b:1a:20: 26:33:e8:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xwgOOquy3harFFOlu1bBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxOGQ1NGI1NWIxOTJhMjQ4Yjg0NzIzNGRiYTUxMmY5NzYw Y2FiZmEwHhcNMjYwMTAxMDQxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODNlMDMzOGU3YjU0M2U2MWY1NjVlNGZhNDJkYjBjZTM5ZGUyMGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7tViEWqkU8YY/Sa//PibmEMUpEuW lt/3ebbw6+jJ9yav+PK40okgI8hvV/R1wkI/FHUTyW6zt9fvInwOxQxor9x/vZfF LKkaksSkSQDjM2fg13r1VoY+XABlhxWE8AYRmbXZcetXaAWqXWnuDX6RkMM/9fhM Gpoy3kV4JgZf1WfwGIRhixU250qGN1PPSrJ6beCeuI2Ws8sLYml+LMQYQatCU4nF U3QfUHGkKNCjr2lNZ6SlEnmVEanldwnE14d6Cdj2qBwT8pOn8P3Och8thOpnIdkV kgTD/idv6YZNPtgLC/peLagzk+IJAVfHaL+vk7gZDUwNci4bbMddbd0MhwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEg+AzjntUPmH1ZeT6QtsM453iDaMB8GA1UdIwQY MBaAFEGNVLVbGSoki4RyNNulEvl2DKv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMt MWQ3N2NmMmE3MTAwLzEvU0Q0RE9PZTFRLVlmVmw1UHBDMnd6am5lSU5vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMtMWQ3N2NmMmE3MTAw LzEvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQ5jMA0G CSqGSIb3DQEBCwUAA4IBAQA8xDi2kUt4N473RYuAzAYwo1nUQdwFhGqqd1IXLQ6t 0+5hue0gsLpBoIxvOIhs1hhgzyChw89iOwTFDBFNtWngTTOCb5/oP8QoXNkP3hwC zvJdq2SZlapKBF47RoXOqTdv/FQbDtNy2XHBCCsYzCugl9dxgIZtva4GuG7nTw71 psaKu7Xk7dbDLiZKO9WcyqtxGnY0/RtGlhPqbedfCxh5/3y/8NObt5KiOi+m72da Fd1DqjQANFF7AJCFbOgowaXdJCxcNEKs6qVd9oO8fCeeKYgKT+MDcMo1MdfkYmcz R5+YU9q6qet/EsykHIASbarNBZkovPOXo0YbGiAmM+j5 -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:23 2026 by rpki-client