This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/4k6D88-Mglvm1b3SeMgt30G2VwI.roa File: 4k6D88-Mglvm1b3SeMgt30G2VwI.roa (raw, json) Hash identifier: XMgdcG2fobHQupndrORqC3NlYthXxCSVasK7qXxsXZo= Subject key identifier: E2:4E:83:F3:CF:8C:82:5B:E6:D5:BD:D2:78:C8:2D:DF:41:B6:57:02 Certificate issuer: /CN=36fed2d5eb5b3c5266abaa617c960703c55d0785 Certificate serial: 019B7AC935CF4FAB8FE2FA7BE3B30018761E Authority key identifier: 36:FE:D2:D5:EB:5B:3C:52:66:AB:AA:61:7C:96:07:03:C5:5D:07:85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nv7S1etbPFJmq6phfJYHA8VdB4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/4k6D88-Mglvm1b3SeMgt30G2VwI.roa Signing time: Thu 01 Jan 2026 18:19:25 +0000 ROA not before: Thu 01 Jan 2026 18:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204861 IP address blocks: 2.57.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/Nv7S1etbPFJmq6phfJYHA8VdB4U.crl rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/Nv7S1etbPFJmq6phfJYHA8VdB4U.mft rsync://rpki.ripe.net/repository/DEFAULT/Nv7S1etbPFJmq6phfJYHA8VdB4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:35:cf:4f:ab:8f:e2:fa:7b:e3:b3:00:18:76:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36fed2d5eb5b3c5266abaa617c960703c55d0785 Validity Not Before: Jan 1 18:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e24e83f3cf8c825be6d5bdd278c82ddf41b65702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:78:09:5d:d5:2f:fb:56:b5:b4:e8:62:40: 21:1a:40:bf:1e:38:7f:63:13:24:80:7d:d4:05:2d: 2a:ed:fb:b0:29:62:d2:64:55:12:b8:0e:c8:e1:c9: 28:63:19:24:10:88:e3:42:a9:93:1f:cb:9b:4d:e6: 26:d0:14:10:8e:e6:02:2e:6a:ec:8b:a8:87:f0:52: 8f:4c:10:bf:d0:00:ea:1a:9f:e3:e3:83:6a:59:bc: 05:18:27:12:53:be:4d:ff:7e:40:39:56:11:2a:4c: ff:75:57:f1:5d:24:08:8f:83:03:dc:57:9f:47:df: 2b:a3:0e:be:5a:cc:1f:42:aa:e0:65:b1:5b:5a:79: 16:46:02:5a:ce:37:eb:2f:9d:27:2d:e4:4e:af:37: 60:46:15:76:0e:8b:93:f0:10:27:64:1a:88:6c:f9: 6c:57:e8:26:a8:8e:5d:c3:79:56:11:30:3a:43:2c: f6:84:81:7b:51:f5:a6:ae:cf:1f:19:44:3e:26:74: 61:b5:e0:c4:ad:b3:5e:d4:61:f8:87:1d:99:b7:52: b8:77:21:07:01:af:3f:b2:a4:b2:68:a7:7f:8a:f1: 8e:ee:7d:3d:dc:4e:e1:51:01:95:57:19:b4:9a:de: 05:92:0f:91:92:b9:82:11:ff:d5:99:f9:46:e7:48: c0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:4E:83:F3:CF:8C:82:5B:E6:D5:BD:D2:78:C8:2D:DF:41:B6:57:02 X509v3 Authority Key Identifier: keyid:36:FE:D2:D5:EB:5B:3C:52:66:AB:AA:61:7C:96:07:03:C5:5D:07:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nv7S1etbPFJmq6phfJYHA8VdB4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/4k6D88-Mglvm1b3SeMgt30G2VwI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/Nv7S1etbPFJmq6phfJYHA8VdB4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.4.0/22 Signature Algorithm: sha256WithRSAEncryption 15:15:db:07:24:e3:a8:0c:ba:30:65:f6:24:47:5f:09:e1:01: fd:fd:21:17:6d:fa:64:74:2f:33:2e:6f:13:2a:bc:f6:61:dc: 49:59:f6:42:cf:2f:c5:c3:45:5a:c6:b6:37:93:fc:b9:54:52: f6:ef:7d:c1:04:d9:d7:55:5b:91:ab:e3:cd:9f:5f:0b:35:58: 37:8e:61:fc:3e:03:1d:ab:de:38:b2:2b:2d:3c:81:c4:66:65: 28:1a:59:f5:8f:9b:05:bc:28:e9:6b:8d:a1:1b:a9:85:69:99: 76:72:ff:08:0e:93:0f:77:94:a3:d2:69:5d:eb:c7:2c:e6:38: cd:8f:87:8a:85:fd:2a:b5:cd:cd:8a:73:4e:40:53:01:e0:2a: 56:0f:31:0d:e3:cc:90:13:bb:25:9d:b7:7b:2d:4e:36:c7:c3: 8f:6d:17:0d:8f:5b:0e:d8:80:a6:0c:fd:e7:e6:ac:fe:13:ac: ea:c2:a2:11:c7:b0:5d:b8:3d:71:e5:87:20:d1:69:c4:46:4c: a8:60:1b:c8:39:9e:31:d3:61:bf:fe:a8:25:dc:87:30:0c:eb: 25:34:e9:5e:ed:61:c9:9b:fc:06:ea:79:be:9e:61:18:18:b5: c6:7d:e3:ca:1a:8f:77:10:87:ca:fc:69:b1:1a:f2:2e:43:e9: b5:63:58:99 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yTXPT6uP4vp747MAGHYeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2ZmVkMmQ1ZWI1YjNjNTI2NmFiYWE2MTdjOTYwNzAzYzU1 ZDA3ODUwHhcNMjYwMTAxMTgxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjRlODNmM2NmOGM4MjViZTZkNWJkZDI3OGM4MmRkZjQxYjY1NzAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsr54CV3VL/tWtbToYkAhGkC/Hjh/ YxMkgH3UBS0q7fuwKWLSZFUSuA7I4ckoYxkkEIjjQqmTH8ubTeYm0BQQjuYCLmrs i6iH8FKPTBC/0ADqGp/j44NqWbwFGCcSU75N/35AOVYRKkz/dVfxXSQIj4MD3Fef R98row6+WswfQqrgZbFbWnkWRgJazjfrL50nLeROrzdgRhV2DouT8BAnZBqIbPls V+gmqI5dw3lWETA6Qyz2hIF7UfWmrs8fGUQ+JnRhteDErbNe1GH4hx2Zt1K4dyEH Aa8/sqSyaKd/ivGO7n093E7hUQGVVxm0mt4Fkg+RkrmCEf/VmflG50jAtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOJOg/PPjIJb5tW90njILd9BtlcCMB8GA1UdIwQY MBaAFDb+0tXrWzxSZquqYXyWBwPFXQeFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnY3UzFldGJQRkptcTZwaGZKWUhBOFZkQjRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81MzI0YmQtNzkyNi00NTEzLWJkMWYt NjhlZjMyMzhhNzJlLzEvNGs2RDg4LU1nbHZtMWIzU2VNZ3QzMEcyVndJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS81MzI0YmQtNzkyNi00NTEzLWJkMWYtNjhlZjMyMzhhNzJl LzEvTnY3UzFldGJQRkptcTZwaGZKWUhBOFZkQjRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCAjkEMA0G CSqGSIb3DQEBCwUAA4IBAQAVFdsHJOOoDLowZfYkR18J4QH9/SEXbfpkdC8zLm8T Krz2YdxJWfZCzy/Fw0VaxrY3k/y5VFL2733BBNnXVVuRq+PNn18LNVg3jmH8PgMd q944sistPIHEZmUoGln1j5sFvCjpa42hG6mFaZl2cv8IDpMPd5Sj0mld68cs5jjN j4eKhf0qtc3NinNOQFMB4CpWDzEN48yQE7slnbd7LU42x8OPbRcNj1sO2ICmDP3n 5qz+E6zqwqIRx7BduD1x5Ycg0WnERkyoYBvIOZ4x02G//qgl3IcwDOslNOle7WHJ m/wG6nm+nmEYGLXGfePKGo93EIfK/GmxGvIuQ+m1Y1iZ -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:26 2026 by rpki-client