This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/c4AMpI84bSLLoLu-Ea8RFpboDzQ.roa File: c4AMpI84bSLLoLu-Ea8RFpboDzQ.roa (raw, json) Hash identifier: 2I19yw1SZNgsve1ORsF8XfKr6nE/sZkCdyWL4vHbbeI= Subject key identifier: 73:80:0C:A4:8F:38:6D:22:CB:A0:BB:BE:11:AF:11:16:96:E8:0F:34 Certificate issuer: /CN=04a5ec5f52668be50b4518b687cf8bd95930ae39 Certificate serial: 019B7A5B51C11395951EBBE33F92D816AEE8 Authority key identifier: 04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/c4AMpI84bSLLoLu-Ea8RFpboDzQ.roa Signing time: Thu 01 Jan 2026 16:19:23 +0000 ROA not before: Thu 01 Jan 2026 16:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25415 IP address blocks: 185.60.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.mft rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 23:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:51:c1:13:95:95:1e:bb:e3:3f:92:d8:16:ae:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04a5ec5f52668be50b4518b687cf8bd95930ae39 Validity Not Before: Jan 1 16:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=73800ca48f386d22cba0bbbe11af111696e80f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:93:0b:d3:ac:ae:b0:a3:bf:e3:3c:9f:94:8d: 4b:71:51:c9:67:76:ff:83:ac:6a:79:aa:dc:64:3d: ad:b4:9e:f5:5a:07:2d:19:95:32:35:5b:cc:02:89: 8e:3c:2b:8a:69:c9:26:8d:74:24:13:e7:9d:0c:87: 4f:cf:b2:4b:d8:95:dc:34:66:d5:8c:53:0b:13:07: 6d:9a:ec:60:fe:6c:84:41:48:82:ff:3b:8f:99:16: 6e:5c:66:5d:69:d5:69:2e:0e:12:53:82:57:18:6b: 9a:67:db:51:0d:92:89:e8:15:72:7d:be:26:02:f6: bd:e2:18:7d:ff:1f:a6:1c:80:4b:3c:49:18:9b:fe: 7e:c4:ec:18:1b:82:79:1d:8f:15:06:be:68:a6:d9: ae:b9:f3:4d:aa:da:5c:0a:24:72:df:7c:6f:8b:ca: 0b:14:0d:5f:91:c5:bf:e3:64:fc:72:2d:51:7e:80: b4:16:d5:10:64:5f:45:90:b7:14:9f:f2:6c:f8:04: 61:d8:08:e2:2f:77:68:94:24:fd:21:2d:25:b0:64: 43:c5:00:2d:07:2d:34:e0:1a:6d:8e:4c:91:2c:e5: 75:92:ec:3f:b2:99:f0:a3:3f:ff:4a:34:57:4a:53: e0:00:de:de:93:82:f6:67:38:65:f3:86:55:16:b9: 5c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:80:0C:A4:8F:38:6D:22:CB:A0:BB:BE:11:AF:11:16:96:E8:0F:34 X509v3 Authority Key Identifier: keyid:04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/c4AMpI84bSLLoLu-Ea8RFpboDzQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.60.21.0/24 Signature Algorithm: sha256WithRSAEncryption 03:3a:78:9b:20:38:74:a7:01:96:7d:a6:c9:3a:b5:ba:37:da: 31:9b:be:05:6a:e7:88:0a:43:31:36:2b:19:20:eb:ad:4d:92: 00:20:fe:38:2a:c8:21:a5:90:9a:43:d4:69:79:c0:84:f9:52: 4f:a4:9e:2e:d1:2f:4d:ac:82:a8:44:91:a0:2f:19:3f:ed:aa: 3e:0a:ef:1e:1d:23:1b:67:dc:c5:43:f0:73:56:8c:ac:63:36: 5d:df:d9:41:21:99:93:e4:c4:3a:65:29:20:ed:3b:8e:6a:78: ae:a3:e7:0b:53:a9:49:1d:08:de:78:26:69:73:fd:77:3a:9a: e1:0e:35:40:74:9b:fe:ef:45:5d:60:bf:67:91:b7:9a:23:70: 97:9e:93:c5:1c:00:45:56:4f:19:63:40:23:95:7b:43:21:2d: 7d:4f:42:fc:10:93:f4:ce:8a:8a:2c:3f:2e:a9:9a:f5:b3:4c: 60:b2:eb:c4:0d:d3:f2:76:e8:8d:25:e7:ac:6e:fd:6c:19:2d: ab:48:64:e8:a6:14:48:eb:e2:85:1f:46:43:c8:8f:76:2f:fc: f6:35:fd:01:75:6f:64:c3:e7:5c:de:28:69:6b:9b:74:7e:c7: 4a:3e:c3:7a:93:06:02:33:a9:f1:e8:09:c6:54:54:82:88:17: 07:75:24:e5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W1HBE5WVHrvjP5LYFq7oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0YTVlYzVmNTI2NjhiZTUwYjQ1MThiNjg3Y2Y4YmQ5NTkz MGFlMzkwHhcNMjYwMTAxMTYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzgwMGNhNDhmMzg2ZDIyY2JhMGJiYmUxMWFmMTExNjk2ZTgwZjM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpML06yusKO/4zyflI1LcVHJZ3b/ g6xqearcZD2ttJ71WgctGZUyNVvMAomOPCuKackmjXQkE+edDIdPz7JL2JXcNGbV jFMLEwdtmuxg/myEQUiC/zuPmRZuXGZdadVpLg4SU4JXGGuaZ9tRDZKJ6BVyfb4m Ava94hh9/x+mHIBLPEkYm/5+xOwYG4J5HY8VBr5optmuufNNqtpcCiRy33xvi8oL FA1fkcW/42T8ci1RfoC0FtUQZF9FkLcUn/Js+ARh2AjiL3dolCT9IS0lsGRDxQAt By004BptjkyRLOV1kuw/spnwoz//SjRXSlPgAN7ek4L2Zzhl84ZVFrlcywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHOADKSPOG0iy6C7vhGvERaW6A80MB8GA1UdIwQY MBaAFASl7F9SZovlC0UYtofPi9lZMK45MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQktYc1gxSm1pLVVMUlJpMmg4LUwyVmt3cmprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8wMGUzM2UtZmQ3NC00NTgzLTk4NGUt YzZiODRjYzU4NjEwLzEvYzRBTXBJODRiU0xMb0x1LUVhOFJGcGJvRHpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8wMGUzM2UtZmQ3NC00NTgzLTk4NGUtYzZiODRjYzU4NjEw LzEvQktYc1gxSm1pLVVMUlJpMmg4LUwyVmt3cmprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTwVMA0G CSqGSIb3DQEBCwUAA4IBAQADOnibIDh0pwGWfabJOrW6N9oxm74FaueICkMxNisZ IOutTZIAIP44KsghpZCaQ9RpecCE+VJPpJ4u0S9NrIKoRJGgLxk/7ao+Cu8eHSMb Z9zFQ/BzVoysYzZd39lBIZmT5MQ6ZSkg7TuOaniuo+cLU6lJHQjeeCZpc/13Oprh DjVAdJv+70VdYL9nkbeaI3CXnpPFHABFVk8ZY0AjlXtDIS19T0L8EJP0zoqKLD8u qZr1s0xgsuvEDdPyduiNJeesbv1sGS2rSGTophRI6+KFH0ZDyI92L/z2Nf0BdW9k w+dc3ihpa5t0fsdKPsN6kwYCM6nx6AnGVFSCiBcHdSTl -----END CERTIFICATE-----Generated at Mon Jan 5 04:58:48 2026 by rpki-client