This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/4TWnkEehYGPz8S3MxMCECSR21Hk.roa File: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (raw, json) Hash identifier: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM= Subject key identifier: E1:35:A7:90:47:A1:60:63:F3:F1:2D:CC:C4:C0:84:09:24:76:D4:79 Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0 Certificate serial: 019B7FF2561BFFED572D1FF90AE252C8913A Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/4TWnkEehYGPz8S3MxMCECSR21Hk.roa Signing time: Fri 02 Jan 2026 18:22:26 +0000 ROA not before: Fri 02 Jan 2026 18:22:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212745 IP address blocks: 77.247.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:56:1b:ff:ed:57:2d:1f:f9:0a:e2:52:c8:91:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=090287256e25fa340d3afba780eac60d556adec0 Validity Not Before: Jan 2 18:22:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e135a79047a16063f3f12dccc4c084092476d479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:64:8a:02:bd:1c:c0:04:cf:2c:be:d7:1b:97: de:cb:e0:62:49:0f:13:93:8e:51:4f:73:d6:4a:cc: 3d:4e:a0:00:b7:83:17:cc:92:60:76:bc:12:41:4d: fc:1d:4e:e4:ea:99:a5:7c:bb:06:6d:5c:04:b9:bb: de:c1:98:f1:6f:6e:6a:87:12:26:9d:ff:21:5a:89: fc:83:a7:0d:11:9e:ec:da:2f:8c:14:c5:62:c6:fa: 71:54:62:4a:6b:eb:d3:71:0d:67:78:0a:ea:58:f6: 88:26:dd:e8:8e:55:c2:cb:77:f6:6b:1b:dd:57:24: 48:68:4a:37:e2:3a:b0:14:ae:02:82:b1:d8:70:e1: 45:79:19:90:08:a7:3a:82:87:9f:1e:16:0b:52:00: cb:36:d9:19:d3:ae:6e:1d:1e:a6:e8:6c:b4:62:4d: 55:7a:98:1a:e8:83:7f:44:29:da:0a:f3:4d:19:fe: f7:f0:d4:e5:14:15:4a:15:ac:2c:56:9d:08:aa:96: 1f:f7:48:a9:16:6e:1e:7f:4d:c5:b1:9a:ae:07:f0: f1:02:b9:95:b6:07:30:e4:09:75:1d:2d:ae:7b:45: 37:e8:41:e5:f1:2a:e9:a8:bb:8b:76:be:fd:9d:96: b1:b2:72:3d:32:d1:6f:8e:4a:f9:6a:ec:b0:3a:cc: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:35:A7:90:47:A1:60:63:F3:F1:2D:CC:C4:C0:84:09:24:76:D4:79 X509v3 Authority Key Identifier: keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/4TWnkEehYGPz8S3MxMCECSR21Hk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.247.193.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:98:2b:6b:2d:29:61:dc:5d:d3:ee:a6:74:a4:ff:7c:23:4e: 28:04:cf:a7:18:c2:5b:5a:56:43:12:ec:93:98:cf:69:fc:b0: 3f:9b:80:03:d6:fe:11:05:29:2f:0a:ea:c8:f4:68:ac:08:6d: f8:1d:22:0d:75:ef:fb:ce:90:bf:66:1f:62:c3:34:16:c2:9d: 32:44:76:db:6f:94:54:00:97:9a:3e:90:0b:ad:28:eb:93:5a: 52:af:50:80:41:2d:33:c8:7f:bc:61:b7:aa:2c:9a:89:53:0f: c4:72:dc:29:2f:5d:82:cb:ec:ce:68:36:86:04:86:1c:ec:19: a4:f4:0b:bf:6b:41:52:48:b4:f7:ba:bc:95:2b:f0:bf:0e:63: 0c:80:4f:1d:13:48:40:82:aa:b8:cd:f1:fd:88:74:22:ef:ee: 94:47:27:65:21:cb:62:07:58:bb:50:56:e0:e6:21:92:b5:a4: af:c9:ee:66:93:b0:b3:27:2e:06:9e:47:1e:9a:cd:47:95:f1: 47:66:76:9c:f8:78:ed:e6:23:39:e1:05:28:be:e6:19:07:43: 2d:56:8a:ae:2c:cb:e4:8d:b6:12:eb:52:79:cf:73:ea:ca:b2: 47:4b:63:56:a5:a5:7e:72:b9:40:4c:88:34:ea:cd:6b:57:ab: 29:fe:89:96 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8lYb/+1XLR/5CuJSyJE6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MDI4NzI1NmUyNWZhMzQwZDNhZmJhNzgwZWFjNjBkNTU2 YWRlYzAwHhcNMjYwMTAyMTgyMjI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTM1YTc5MDQ3YTE2MDYzZjNmMTJkY2NjNGMwODQwOTI0NzZkNDc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4GSKAr0cwATPLL7XG5fey+BiSQ8T k45RT3PWSsw9TqAAt4MXzJJgdrwSQU38HU7k6pmlfLsGbVwEubvewZjxb25qhxIm nf8hWon8g6cNEZ7s2i+MFMVixvpxVGJKa+vTcQ1neArqWPaIJt3ojlXCy3f2axvd VyRIaEo34jqwFK4CgrHYcOFFeRmQCKc6goefHhYLUgDLNtkZ065uHR6m6Gy0Yk1V epga6IN/RCnaCvNNGf738NTlFBVKFawsVp0IqpYf90ipFm4ef03FsZquB/DxArmV tgcw5Al1HS2ue0U36EHl8SrpqLuLdr79nZaxsnI9MtFvjkr5auywOszLgQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOE1p5BHoWBj8/EtzMTAhAkkdtR5MB8GA1UdIwQY MBaAFAkChyVuJfo0DTr7p4Dqxg1Vat7AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1FLSEpXNGwtalFOT3Z1bmdPckdEVlZxM3NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC81YjBmZjUtODRjMy00OWJiLTlmYWIt NzdiMjFjMDRiYzdkLzEvNFRXbmtFZWhZR1B6OFMzTXhNQ0VDU1IyMUhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC81YjBmZjUtODRjMy00OWJiLTlmYWItNzdiMjFjMDRiYzdk LzEvQ1FLSEpXNGwtalFOT3Z1bmdPckdEVlZxM3NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATffBMA0G CSqGSIb3DQEBCwUAA4IBAQBqmCtrLSlh3F3T7qZ0pP98I04oBM+nGMJbWlZDEuyT mM9p/LA/m4AD1v4RBSkvCurI9GisCG34HSINde/7zpC/Zh9iwzQWwp0yRHbbb5RU AJeaPpALrSjrk1pSr1CAQS0zyH+8YbeqLJqJUw/EctwpL12Cy+zOaDaGBIYc7Bmk 9Au/a0FSSLT3uryVK/C/DmMMgE8dE0hAgqq4zfH9iHQi7+6URydlIctiB1i7UFbg 5iGStaSvye5mk7CzJy4Gnkcems1HlfFHZnac+Hjt5iM54QUovuYZB0MtVoquLMvk jbYS61J5z3PqyrJHS2NWpaV+crlATIg06s1rV6sp/omW -----END CERTIFICATE-----Generated at Tue Feb 10 04:32:08 2026 by rpki-client