This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/f91a85-e93c-4a49-8215-8497717a4f61/1/4ypktVvAzfNV9xVobcyFTIbQDTY.roa File: 4ypktVvAzfNV9xVobcyFTIbQDTY.roa (raw, json) Hash identifier: gbFNuHiI6Q6GwECOCQ38Wty+z3M8uTYhivyQMeIFbAs= Subject key identifier: E3:2A:64:B5:5B:C0:CD:F3:55:F7:15:68:6D:CC:85:4C:86:D0:0D:36 Certificate issuer: /CN=e3106ac3ea760b2d0242a9efba2c2116b626f824 Certificate serial: 019B78A26F861B8A1D2A8F9C6610A3997FFB Authority key identifier: E3:10:6A:C3:EA:76:0B:2D:02:42:A9:EF:BA:2C:21:16:B6:26:F8:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xBqw-p2Cy0CQqnvuiwhFrYm-CQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/f91a85-e93c-4a49-8215-8497717a4f61/1/4ypktVvAzfNV9xVobcyFTIbQDTY.roa Signing time: Thu 01 Jan 2026 08:17:49 +0000 ROA not before: Thu 01 Jan 2026 08:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204934 IP address blocks: 188.68.64.0/20 maxlen: 24 188.68.64.0/24 maxlen: 24 188.68.69.0/24 maxlen: 24 2a0a:f480::/32 maxlen: 48 2a0a:f481:2::/48 maxlen: 48 2a0a:f487::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/f91a85-e93c-4a49-8215-8497717a4f61/1/4xBqw-p2Cy0CQqnvuiwhFrYm-CQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/f91a85-e93c-4a49-8215-8497717a4f61/1/4xBqw-p2Cy0CQqnvuiwhFrYm-CQ.mft rsync://rpki.ripe.net/repository/DEFAULT/4xBqw-p2Cy0CQqnvuiwhFrYm-CQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:6f:86:1b:8a:1d:2a:8f:9c:66:10:a3:99:7f:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3106ac3ea760b2d0242a9efba2c2116b626f824 Validity Not Before: Jan 1 08:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e32a64b55bc0cdf355f715686dcc854c86d00d36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:33:3b:9c:a5:26:00:2b:d8:bd:db:b5:83: 11:dd:29:3f:59:c2:18:75:02:9e:74:51:e4:42:41: 21:e7:a4:5d:a4:60:35:e6:ad:ed:4f:32:a5:e8:9c: b2:27:ce:88:10:20:6a:66:60:ca:13:19:28:0f:88: 7d:4d:73:55:1f:2f:28:04:76:df:12:75:c2:7a:7a: 5e:d7:da:01:2c:6c:17:5b:3f:45:55:8e:ff:7b:f5: 2a:82:26:0d:99:51:84:41:d1:d2:e7:63:cc:64:97: 1f:ab:d0:a8:3c:56:fa:fa:8c:04:ae:4c:16:d2:ec: 97:f7:8f:68:74:f0:28:69:10:8e:4f:52:52:d0:cd: fc:86:ff:ff:b3:9a:34:ec:7a:04:e4:17:96:f9:d9: af:21:5b:2d:fd:d8:5d:83:32:aa:cb:97:de:7b:05: fb:c3:03:66:bd:52:63:55:71:ab:19:a4:2b:14:7c: 18:c1:8c:91:0a:76:24:52:1b:37:6e:23:b0:a0:bd: 17:fb:cb:c9:92:89:ac:4f:6d:e6:ce:e3:3a:f3:2a: 01:f5:31:7e:5d:2b:fc:90:41:f2:2e:1f:32:07:cf: f0:0a:3e:76:19:59:65:91:ae:7d:90:c4:4a:42:46: ac:17:66:e1:0c:d0:56:dd:56:df:61:dd:d2:e3:53: 05:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:2A:64:B5:5B:C0:CD:F3:55:F7:15:68:6D:CC:85:4C:86:D0:0D:36 X509v3 Authority Key Identifier: keyid:E3:10:6A:C3:EA:76:0B:2D:02:42:A9:EF:BA:2C:21:16:B6:26:F8:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xBqw-p2Cy0CQqnvuiwhFrYm-CQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f91a85-e93c-4a49-8215-8497717a4f61/1/4ypktVvAzfNV9xVobcyFTIbQDTY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f91a85-e93c-4a49-8215-8497717a4f61/1/4xBqw-p2Cy0CQqnvuiwhFrYm-CQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.68.64.0/20 IPv6: 2a0a:f480::/32 2a0a:f481:2::/48 2a0a:f487::/32 Signature Algorithm: sha256WithRSAEncryption 5b:05:45:f3:e7:88:ed:64:16:1e:eb:f1:10:ac:eb:c3:57:51: e3:01:12:df:6b:7d:b5:d6:52:5e:65:5e:0a:20:57:b7:f9:d1: 3f:8e:cc:15:ba:18:11:f9:25:f9:fc:48:84:31:cd:ef:6a:7c: ec:f8:eb:4c:25:03:3e:3b:f9:3b:d9:74:f0:b9:5a:fa:36:43: 32:f4:ac:d2:03:35:6e:a5:8b:ca:b0:ff:3d:31:2a:0b:b3:83: d6:80:ef:05:93:97:56:43:fe:ea:69:62:c4:5c:0d:7c:bf:b9: 79:b4:9c:7c:f1:f3:b4:0f:5b:1b:42:9a:a1:f4:7f:a3:56:fe: 12:c3:9f:cf:0f:94:16:92:b4:c4:bb:87:9d:26:42:da:d6:39: 4d:18:b5:ba:c5:d6:86:62:24:f9:8f:ac:d8:02:c0:5a:5f:3d: 68:66:54:ac:e2:23:95:f9:0d:7f:54:96:59:44:51:cf:99:aa: d4:29:3c:9c:c2:07:af:80:ed:2e:d5:58:be:61:62:3e:a1:9d: ba:1d:7b:c3:40:04:dc:ea:c1:e3:58:08:ee:77:db:f9:54:a5: 8e:97:af:ea:2d:15:eb:13:51:02:a2:a1:82:c6:f7:2a:f4:9a: 95:22:cc:e3:16:1e:22:cf:d4:3f:e3:13:33:e2:c6:eb:c3:64: 62:8a:3f:de -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt4om+GG4odKo+cZhCjmX/7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzMTA2YWMzZWE3NjBiMmQwMjQyYTllZmJhMmMyMTE2YjYy NmY4MjQwHhcNMjYwMTAxMDgxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzJhNjRiNTViYzBjZGYzNTVmNzE1Njg2ZGNjODU0Yzg2ZDAwZDM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1TgzO5ylJgAr2L3btYMR3Sk/WcIY dQKedFHkQkEh56RdpGA15q3tTzKl6JyyJ86IECBqZmDKExkoD4h9TXNVHy8oBHbf EnXCenpe19oBLGwXWz9FVY7/e/UqgiYNmVGEQdHS52PMZJcfq9CoPFb6+owErkwW 0uyX949odPAoaRCOT1JS0M38hv//s5o07HoE5BeW+dmvIVst/dhdgzKqy5feewX7 wwNmvVJjVXGrGaQrFHwYwYyRCnYkUhs3biOwoL0X+8vJkomsT23mzuM68yoB9TF+ XSv8kEHyLh8yB8/wCj52GVllka59kMRKQkasF2bhDNBW3VbfYd3S41MF1wIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFOMqZLVbwM3zVfcVaG3MhUyG0A02MB8GA1UdIwQY MBaAFOMQasPqdgstAkKp77osIRa2JvgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHhCcXctcDJDeTBDUXFudnVpd2hGclltLUNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9mOTFhODUtZTkzYy00YTQ5LTgyMTUt ODQ5NzcxN2E0ZjYxLzEvNHlwa3RWdkF6Zk5WOXhWb2JjeUZUSWJRRFRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9mOTFhODUtZTkzYy00YTQ5LTgyMTUtODQ5NzcxN2E0ZjYx LzEvNHhCcXctcDJDeTBDUXFudnVpd2hGclltLUNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD4GCCsGAQUFBwEHAQH/BC8wLTAMBAIAATAGAwQEvERAMB0E AgACMBcDBQAqCvSAAwcAKgr0gQACAwUAKgr0hzANBgkqhkiG9w0BAQsFAAOCAQEA WwVF8+eI7WQWHuvxEKzrw1dR4wES32t9tdZSXmVeCiBXt/nRP47MFboYEfkl+fxI hDHN72p87PjrTCUDPjv5O9l08Lla+jZDMvSs0gM1bqWLyrD/PTEqC7OD1oDvBZOX VkP+6mlixFwNfL+5ebScfPHztA9bG0KaofR/o1b+EsOfzw+UFpK0xLuHnSZC2tY5 TRi1usXWhmIk+Y+s2ALAWl89aGZUrOIjlfkNf1SWWURRz5mq1Ck8nMIHr4DtLtVY vmFiPqGduh17w0AE3OrB41gI7nfb+VSljpev6i0V6xNRAqKhgsb3KvSalSLM4xYe Is/UP+MTM+LG68NkYoo/3g== -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:09 2026 by rpki-client