This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/4RzlaE4IATIyocr-VUzpEUSO7Mo.roa File: 4RzlaE4IATIyocr-VUzpEUSO7Mo.roa (raw, json) Hash identifier: zDqUG2mBRxI6CuLzFrAEFvPmBc+dGZskWKeVJphaxsI= Subject key identifier: E1:1C:E5:68:4E:08:01:32:32:A1:CA:FE:55:4C:E9:11:44:8E:EC:CA Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339 Certificate serial: 019B76EB17BA1F060B5AC2D420FBCE2F981B Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/4RzlaE4IATIyocr-VUzpEUSO7Mo.roa Signing time: Thu 01 Jan 2026 00:17:57 +0000 ROA not before: Thu 01 Jan 2026 00:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50053 IP address blocks: 195.96.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.mft rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:17:ba:1f:06:0b:5a:c2:d4:20:fb:ce:2f:98:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339 Validity Not Before: Jan 1 00:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e11ce5684e08013232a1cafe554ce911448eecca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:31:23:ac:02:4a:c9:50:92:70:7f:a3:4a:5b: eb:65:6a:4c:7b:cf:77:e5:4b:ee:45:d5:42:9d:6b: b2:d4:76:8b:7e:78:ed:93:61:44:7f:75:ee:93:9b: 7f:89:c5:c2:28:5a:64:67:b2:0f:7f:f2:56:49:73: ff:24:7e:66:3a:25:75:54:ee:7e:8b:eb:e0:c5:64: 90:de:dc:54:38:24:2a:9e:4d:41:d6:87:f8:b3:cc: 45:37:91:cf:d2:17:9e:6c:de:c8:85:77:28:65:d9: f0:dc:0e:5f:35:ad:9d:0a:37:eb:f6:77:fc:17:d5: e8:b6:a9:d0:ad:33:54:d2:65:25:cd:84:23:7a:d9: fd:a3:b1:42:f3:35:cf:57:93:e1:e1:7c:fe:fc:d9: ca:60:47:9c:9f:6a:95:33:a4:d2:32:e9:84:40:01: 7e:47:27:e7:5b:6a:be:aa:9f:75:cf:30:62:a9:da: 3f:45:14:6e:23:29:4d:e0:73:53:d4:13:78:35:c6: 8f:8b:2c:6e:de:1a:79:2c:4b:11:13:9b:11:58:02: 22:85:24:a5:85:b5:4a:91:f7:48:01:98:07:7c:0a: 45:0b:1f:9a:3c:6a:00:8e:91:a3:f7:a3:4e:1f:86: b5:e0:46:7d:12:2a:ff:7a:2e:4a:a4:3c:de:d4:35: aa:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1C:E5:68:4E:08:01:32:32:A1:CA:FE:55:4C:E9:11:44:8E:EC:CA X509v3 Authority Key Identifier: keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/4RzlaE4IATIyocr-VUzpEUSO7Mo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.96.156.0/24 Signature Algorithm: sha256WithRSAEncryption b2:e7:ad:e0:2f:91:5b:1c:95:d3:3d:38:2c:49:40:f6:f2:fe: 09:2a:94:c5:37:dc:ec:31:f8:0e:e3:c0:7a:23:30:77:1b:9e: 32:1e:f2:59:54:f7:14:d2:ce:b3:6d:24:fd:4f:b4:99:90:0f: eb:de:ff:6c:24:0d:49:c1:81:1a:d7:1f:b3:fa:f7:9b:dc:62: 1f:c9:19:9a:07:b1:98:68:e9:3b:ab:f5:39:39:4b:ff:92:69: d7:c0:7c:ab:40:d6:09:61:5d:e5:50:40:ee:b1:a0:f1:85:cc: ee:cc:3e:78:6e:d4:29:63:9a:b6:c5:e5:87:e5:3a:85:80:f1: 40:20:51:13:5a:85:d9:ff:bc:10:b7:a4:5a:bb:42:4b:bb:60: 76:35:93:53:83:fc:33:4b:8c:18:5e:9a:cb:2e:ba:bc:c6:bc: 87:d4:ac:fa:9b:04:2b:cd:d0:f1:4d:c6:0a:8e:38:9a:08:0c: d3:2c:f7:08:4f:5e:b4:55:11:ef:0b:d3:a0:63:9d:f0:7b:16: af:c3:f6:4b:09:28:28:7f:4e:5f:9b:3a:f1:d9:a7:d7:09:83: 0d:c4:7d:75:52:b2:65:7f:48:46:72:72:64:28:8b:c1:e9:8a: 04:ad:e3:44:6b:30:e9:2e:2b:88:c9:d1:29:2b:6d:ff:3a:e8: 3f:e6:77:36 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26xe6HwYLWsLUIPvOL5gbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZWU0NTQyNmUxMmU1MGZlMzBlOGZmYzM5ZTA0NDg1ZDhm NzMzMzkwHhcNMjYwMTAxMDAxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTFjZTU2ODRlMDgwMTMyMzJhMWNhZmU1NTRjZTkxMTQ0OGVlY2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzzEjrAJKyVCScH+jSlvrZWpMe893 5UvuRdVCnWuy1HaLfnjtk2FEf3Xuk5t/icXCKFpkZ7IPf/JWSXP/JH5mOiV1VO5+ i+vgxWSQ3txUOCQqnk1B1of4s8xFN5HP0heebN7IhXcoZdnw3A5fNa2dCjfr9nf8 F9XotqnQrTNU0mUlzYQjetn9o7FC8zXPV5Ph4Xz+/NnKYEecn2qVM6TSMumEQAF+ RyfnW2q+qp91zzBiqdo/RRRuIylN4HNT1BN4NcaPiyxu3hp5LEsRE5sRWAIihSSl hbVKkfdIAZgHfApFCx+aPGoAjpGj96NOH4a14EZ9Eir/ei5KpDze1DWqSwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOEc5WhOCAEyMqHK/lVM6RFEjuzKMB8GA1UdIwQY MBaAFMLuRUJuEuUP4w6P/DngRIXY9zM5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUt ZGE3NTQzMGIxNmY2LzEvNFJ6bGFFNElBVEl5b2NyLVZVenBFVVNPN01vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUtZGE3NTQzMGIxNmY2 LzEvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw2CcMA0G CSqGSIb3DQEBCwUAA4IBAQCy563gL5FbHJXTPTgsSUD28v4JKpTFN9zsMfgO48B6 IzB3G54yHvJZVPcU0s6zbST9T7SZkA/r3v9sJA1JwYEa1x+z+veb3GIfyRmaB7GY aOk7q/U5OUv/kmnXwHyrQNYJYV3lUEDusaDxhczuzD54btQpY5q2xeWH5TqFgPFA IFETWoXZ/7wQt6Rau0JLu2B2NZNTg/wzS4wYXprLLrq8xryH1Kz6mwQrzdDxTcYK jjiaCAzTLPcIT160VRHvC9OgY53wexavw/ZLCSgof05fmzrx2afXCYMNxH11UrJl f0hGcnJkKIvB6YoEreNEazDpLiuIydEpK23/Oug/5nc2 -----END CERTIFICATE-----Generated at Thu Jan 1 21:34:41 2026 by rpki-client