This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/4EqplrDV06lCRhif2tEMHft3Z9w.roa File: 4EqplrDV06lCRhif2tEMHft3Z9w.roa (raw, json) Hash identifier: MDA/7gQCBeR21SlR0B8S+aKGXZRnN83I/YW6CNM0l3M= Subject key identifier: E0:4A:A9:96:B0:D5:D3:A9:42:46:18:9F:DA:D1:0C:1D:FB:77:67:DC Certificate issuer: /CN=0011400d548fa21af819a0c6e23e77a6012eb5e9 Certificate serial: 019B7F137E252DD05C0BD08EAB605E687E51 Authority key identifier: 00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/4EqplrDV06lCRhif2tEMHft3Z9w.roa Signing time: Fri 02 Jan 2026 14:19:02 +0000 ROA not before: Fri 02 Jan 2026 14:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210626 IP address blocks: 91.199.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/ABFADVSPohr4GaDG4j53pgEutek.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/ABFADVSPohr4GaDG4j53pgEutek.mft rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:7e:25:2d:d0:5c:0b:d0:8e:ab:60:5e:68:7e:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0011400d548fa21af819a0c6e23e77a6012eb5e9 Validity Not Before: Jan 2 14:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e04aa996b0d5d3a94246189fdad10c1dfb7767dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:43:18:2e:8e:97:73:21:93:14:b7:5e:e1:1c: 11:a0:c2:72:ce:14:ef:84:3b:97:d8:70:90:3b:3d: 42:21:61:16:c0:aa:b6:a6:7c:3a:ac:ed:52:9e:cb: 8b:7d:a6:e2:fc:cd:c5:3d:64:3d:45:46:3d:38:f2: c4:3c:59:5f:b3:46:d1:e0:5b:cb:ff:76:30:1b:6c: e7:03:96:b0:fa:b2:29:58:3a:a7:d6:db:ab:d4:fd: 92:ea:87:1b:29:bd:61:06:4b:b3:06:9c:65:f8:45: a3:9e:14:88:e4:2c:34:f2:aa:45:6f:fa:9d:0e:fc: 16:a9:89:6d:2c:3a:ef:8f:e8:c6:8a:4d:f2:62:d4: ab:74:82:ec:0b:9b:48:89:e2:75:94:c3:44:b6:c0: 82:7c:e0:6d:01:ed:20:0d:8e:5f:f9:f7:a0:01:de: 04:f9:af:b5:60:09:fb:e8:d7:6d:c0:b8:95:42:d7: 13:b4:10:a2:cf:30:dd:69:1f:a5:44:c2:56:68:33: 1b:14:45:3d:3e:bd:8d:42:6d:8c:5f:02:57:7b:71: 4b:1a:9e:52:10:92:16:88:3c:ff:f0:c6:09:13:ef: a6:c6:49:3c:83:83:af:a4:3c:0d:72:cc:45:b0:8a: ef:23:28:a9:a0:55:1b:95:83:e2:e9:53:18:30:95: 62:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4A:A9:96:B0:D5:D3:A9:42:46:18:9F:DA:D1:0C:1D:FB:77:67:DC X509v3 Authority Key Identifier: keyid:00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/4EqplrDV06lCRhif2tEMHft3Z9w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/ABFADVSPohr4GaDG4j53pgEutek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.70.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:21:bf:8b:b6:84:dd:72:62:4c:c8:8f:b4:c9:d8:e0:ca:4f: 8c:05:2f:76:1a:7e:22:a1:bd:1d:51:68:ef:9b:93:70:55:72: 6e:55:94:61:54:6a:4d:24:48:03:68:38:82:b9:89:a1:68:30: 3b:19:cd:9e:1d:0a:ae:4b:ad:7a:4a:1a:e5:61:29:43:2f:72: 23:4a:b4:9b:9f:2f:f5:4d:7b:ed:f5:22:ea:01:af:81:0b:8c: 88:8f:aa:e0:cf:d6:dd:b4:0d:ea:47:5e:ba:7a:17:29:bb:66: 45:64:d8:24:9a:8c:66:47:4b:33:64:1c:47:2a:53:a7:b6:0f: e4:89:da:6d:e0:ed:46:be:4c:a9:9b:8d:ca:54:17:4f:9c:df: 9b:e1:ce:0c:ec:92:ad:95:f6:15:fc:ed:95:41:55:68:9c:8f: bd:e7:49:23:9b:f7:d9:ce:56:b3:d7:78:1d:ad:0f:69:74:14: 65:b4:59:ca:82:fa:2d:93:0d:a7:7d:21:ec:67:64:71:16:0a: b2:c0:22:f0:1d:7d:cb:a9:8b:3a:35:86:61:29:70:35:f2:82: 4c:09:71:6a:65:67:b1:f1:04:2d:2c:5e:47:a8:db:83:fb:71: 97:9e:3d:5c:81:7f:87:37:f6:41:80:1b:1d:c1:d2:de:a4:2e: 08:41:6f:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E34lLdBcC9COq2BeaH5RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwMTE0MDBkNTQ4ZmEyMWFmODE5YTBjNmUyM2U3N2E2MDEy ZWI1ZTkwHhcNMjYwMTAyMTQxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDRhYTk5NmIwZDVkM2E5NDI0NjE4OWZkYWQxMGMxZGZiNzc2N2RjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEMYLo6XcyGTFLde4RwRoMJyzhTv hDuX2HCQOz1CIWEWwKq2pnw6rO1SnsuLfabi/M3FPWQ9RUY9OPLEPFlfs0bR4FvL /3YwG2znA5aw+rIpWDqn1tur1P2S6ocbKb1hBkuzBpxl+EWjnhSI5Cw08qpFb/qd DvwWqYltLDrvj+jGik3yYtSrdILsC5tIieJ1lMNEtsCCfOBtAe0gDY5f+fegAd4E +a+1YAn76NdtwLiVQtcTtBCizzDdaR+lRMJWaDMbFEU9Pr2NQm2MXwJXe3FLGp5S EJIWiDz/8MYJE++mxkk8g4OvpDwNcsxFsIrvIyipoFUblYPi6VMYMJViQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOBKqZaw1dOpQkYYn9rRDB37d2fcMB8GA1UdIwQY MBaAFAARQA1Uj6Ia+BmgxuI+d6YBLrXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUJGQURWU1BvaHI0R2FERzRqNTNwZ0V1dGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy81MmRhYWItNjgyOS00NWZhLTk2N2Ut MDFmNDYwNmM2NWVjLzEvNEVxcGxyRFYwNmxDUmhpZjJ0RU1IZnQzWjl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy81MmRhYWItNjgyOS00NWZhLTk2N2UtMDFmNDYwNmM2NWVj LzEvQUJGQURWU1BvaHI0R2FERzRqNTNwZ0V1dGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8dGMA0G CSqGSIb3DQEBCwUAA4IBAQBbIb+LtoTdcmJMyI+0ydjgyk+MBS92Gn4iob0dUWjv m5NwVXJuVZRhVGpNJEgDaDiCuYmhaDA7Gc2eHQquS616ShrlYSlDL3IjSrSbny/1 TXvt9SLqAa+BC4yIj6rgz9bdtA3qR166ehcpu2ZFZNgkmoxmR0szZBxHKlOntg/k idpt4O1Gvkypm43KVBdPnN+b4c4M7JKtlfYV/O2VQVVonI+950kjm/fZzlaz13gd rQ9pdBRltFnKgvotkw2nfSHsZ2RxFgqywCLwHX3LqYs6NYZhKXA18oJMCXFqZWex 8QQtLF5HqNuD+3GXnj1cgX+HN/ZBgBsdwdLepC4IQW8f -----END CERTIFICATE-----Generated at Mon Feb 9 23:47:29 2026 by rpki-client