This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/rdTHQVZWo1t3hczOhOF2CiHaxUk.roa File: rdTHQVZWo1t3hczOhOF2CiHaxUk.roa (raw, json) Hash identifier: ef5/lIQYQQAstetwvZkb0PaKZX/ci1jGdxBA5Hd8P3k= Subject key identifier: AD:D4:C7:41:56:56:A3:5B:77:85:CC:CE:84:E1:76:0A:21:DA:C5:49 Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA529B2CCB71A7D3789E375CAC0C58A Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/rdTHQVZWo1t3hczOhOF2CiHaxUk.roa Signing time: Thu 01 Jan 2026 22:19:40 +0000 ROA not before: Thu 01 Jan 2026 22:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9127 IP address blocks: 82.146.4.0/23 maxlen: 24 82.146.8.0/23 maxlen: 24 82.146.10.0/24 maxlen: 24 82.146.14.0/24 maxlen: 24 82.146.30.0/24 maxlen: 24 84.238.164.0/24 maxlen: 24 84.238.166.0/24 maxlen: 24 212.72.192.0/22 maxlen: 24 212.72.192.0/24 maxlen: 24 212.72.196.0/23 maxlen: 24 212.72.200.0/23 maxlen: 24 212.72.204.0/23 maxlen: 24 212.72.204.0/24 maxlen: 24 212.72.207.0/24 maxlen: 24 212.72.208.0/22 maxlen: 24 212.72.213.0/24 maxlen: 24 212.72.215.0/24 maxlen: 24 212.72.216.0/22 maxlen: 24 212.72.220.0/24 maxlen: 24 212.72.222.0/23 maxlen: 24 213.130.70.0/23 maxlen: 24 213.130.72.0/23 maxlen: 24 213.130.75.0/24 maxlen: 24 213.130.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:29:b2:cc:b7:1a:7d:37:89:e3:75:ca:c0:c5:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=add4c7415656a35b7785ccce84e1760a21dac549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5d:41:72:3f:52:cc:db:ed:39:38:f9:92:18: f5:3e:2b:54:a8:df:17:16:b1:3c:1f:30:a3:69:4b: f1:ce:81:ac:9d:6d:09:fe:ee:43:c8:66:88:76:9b: 7e:f3:a8:b0:5f:a8:c5:f6:cb:dc:27:67:3a:d1:26: cd:ad:58:76:82:12:fb:a7:3e:f5:78:ad:e2:95:1e: 48:60:ea:b1:dc:70:b2:6c:ee:7e:37:1e:8f:66:50: 2a:4c:7f:f6:38:a5:74:5b:f1:91:6f:a2:39:f3:0b: 87:dc:35:8a:9d:06:06:87:ee:7a:f2:9b:cd:fa:56: 99:09:c2:2b:24:57:d0:25:21:ac:68:81:82:4f:11: ef:79:86:09:67:a7:cf:3a:e1:a3:e3:86:72:28:f8: 39:00:75:34:8d:c5:e1:46:26:74:43:d1:1e:e0:e9: dd:fc:c3:06:e4:06:30:42:90:24:af:d4:42:5a:b5: c1:ed:79:b8:cd:69:66:03:80:d3:9a:d2:ca:7e:e0: 52:88:c6:07:07:66:ac:2c:c7:a2:19:2f:ae:20:3e: 2a:00:e2:07:5e:3f:52:48:04:fc:63:0b:4b:9f:87: fa:25:85:67:0e:44:0b:4e:59:a9:78:5e:e8:33:03: 27:af:cd:a7:65:09:a3:9a:6c:2b:75:21:d4:48:99: 0c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D4:C7:41:56:56:A3:5B:77:85:CC:CE:84:E1:76:0A:21:DA:C5:49 X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/rdTHQVZWo1t3hczOhOF2CiHaxUk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.146.4.0/23 82.146.8.0-82.146.10.255 82.146.14.0/24 82.146.30.0/24 84.238.164.0/24 84.238.166.0/24 212.72.192.0-212.72.197.255 212.72.200.0/23 212.72.204.0/23 212.72.207.0-212.72.211.255 212.72.213.0/24 212.72.215.0-212.72.220.255 212.72.222.0/23 213.130.70.0-213.130.73.255 213.130.75.0/24 213.130.94.0/24 Signature Algorithm: sha256WithRSAEncryption 01:14:a7:45:de:c1:68:3a:4f:de:49:60:ae:d7:f4:1e:68:dc: c2:13:a2:02:f8:40:78:0e:33:db:0a:1c:5a:67:7f:9c:fe:f2: 4d:a7:70:d4:81:93:b0:f9:24:fb:56:e9:58:5c:f6:49:c5:39: 96:01:e5:0c:f4:c5:43:67:44:dd:01:13:52:73:a3:8c:b4:2b: e0:e7:04:c5:42:23:f7:db:58:da:eb:78:2c:16:77:8c:77:92: 2c:10:a3:1e:74:9d:c7:7d:6d:da:79:7b:c1:ed:4b:ee:cf:26: f0:5c:b9:04:80:6a:65:f9:fa:43:f7:c7:51:79:56:d5:ce:b2: 75:52:5b:c1:07:c5:00:ad:58:a2:2d:16:72:e2:ea:71:1a:3c: 45:9c:d8:97:16:09:39:b6:b7:26:60:3b:d5:9a:3c:bf:82:2d: 7c:73:8c:bc:2e:d6:d6:dd:d9:94:3d:3e:d0:c0:49:ed:68:ad: ef:a4:c1:02:ef:b5:39:81:32:00:d3:57:16:7c:03:2c:0d:0e: 50:9a:bf:8f:a7:c2:83:4a:f2:d8:35:8f:db:3a:42:77:ab:1b: 82:fd:61:96:0b:e6:3e:fb:6b:17:b4:a1:2d:b4:b3:7a:a2:81: f5:35:59:b2:3a:2e:24:9f:bc:b7:ce:a4:8a:bc:80:16:9b:a2: 1f:c1:6c:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgISAZt7pSmyzLcafTeJ43XKwMWKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZGQ0Yzc0MTU2NTZhMzViNzc4NWNjY2U4NGUxNzYwYTIxZGFjNTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkV1Bcj9SzNvtOTj5khj1PitUqN8X FrE8HzCjaUvxzoGsnW0J/u5DyGaIdpt+86iwX6jF9svcJ2c60SbNrVh2ghL7pz71 eK3ilR5IYOqx3HCybO5+Nx6PZlAqTH/2OKV0W/GRb6I58wuH3DWKnQYGh+568pvN +laZCcIrJFfQJSGsaIGCTxHveYYJZ6fPOuGj44ZyKPg5AHU0jcXhRiZ0Q9Ee4Ond /MMG5AYwQpAkr9RCWrXB7Xm4zWlmA4DTmtLKfuBSiMYHB2asLMeiGS+uID4qAOIH Xj9SSAT8YwtLn4f6JYVnDkQLTlmpeF7oMwMnr82nZQmjmmwrdSHUSJkMKQIDAQAB o4ICkDCCAowwHQYDVR0OBBYEFK3Ux0FWVqNbd4XMzoThdgoh2sVJMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvcmRUSFFWWldvMXQzaGN6T2hPRjJDaUhheFVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjCBjwQCAAEwgYgDBAFS kgQwDAMEA1KSCAMEAFKSCgMEAFKSDgMEAFKSHgMEAFTupAMEAFTupjAMAwQG1EjA AwQB1EjEAwQB1EjIAwQB1EjMMAwDBADUSM8DBALUSNADBADUSNUwDAMEANRI1wME ANRI3AMEAdRI3jAMAwQB1YJGAwQB1YJIAwQA1YJLAwQA1YJeMA0GCSqGSIb3DQEB CwUAA4IBAQABFKdF3sFoOk/eSWCu1/QeaNzCE6IC+EB4DjPbChxaZ3+c/vJNp3DU gZOw+ST7VulYXPZJxTmWAeUM9MVDZ0TdARNSc6OMtCvg5wTFQiP321ja63gsFneM d5IsEKMedJ3HfW3aeXvB7UvuzybwXLkEgGpl+fpD98dReVbVzrJ1UlvBB8UArVii LRZy4upxGjxFnNiXFgk5trcmYDvVmjy/gi18c4y8LtbW3dmUPT7QwEntaK3vpMEC 77U5gTIA01cWfAMsDQ5Qmr+Pp8KDSvLYNY/bOkJ3qxuC/WGWC+Y++2sXtKEttLN6 ooH1NVmyOi4kn7y3zqSKvIAWm6IfwWyC -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:20 2026 by rpki-client