This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/4w3AemhGZ_3ySwMyKZeafIyCF88.roa File: 4w3AemhGZ_3ySwMyKZeafIyCF88.roa (raw, json) Hash identifier: cY5JvH77nnSimrIa7oGqc732afU5pkIzOBhYOOlSeII= Subject key identifier: E3:0D:C0:7A:68:46:67:FD:F2:4B:03:32:29:97:9A:7C:8C:82:17:CF Certificate issuer: /CN=7021d7528be713a4ba2cb4db5e58d64d882eb555 Certificate serial: 019B9D72F081192DA52CE57069C67490B303 Authority key identifier: 70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/4w3AemhGZ_3ySwMyKZeafIyCF88.roa Signing time: Thu 08 Jan 2026 11:51:54 +0000 ROA not before: Thu 08 Jan 2026 11:51:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212219 IP address blocks: 80.253.246.0/24 maxlen: 24 91.151.88.0/24 maxlen: 24 91.151.89.0/24 maxlen: 24 91.151.95.0/24 maxlen: 24 212.108.107.0/24 maxlen: 24 213.142.148.0/24 maxlen: 24 213.142.151.0/24 maxlen: 24 213.142.159.0/24 maxlen: 24 2a0f:bf00::/29 maxlen: 29 2a0f:bf01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.mft rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9d:72:f0:81:19:2d:a5:2c:e5:70:69:c6:74:90:b3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7021d7528be713a4ba2cb4db5e58d64d882eb555 Validity Not Before: Jan 8 11:51:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e30dc07a684667fdf24b033229979a7c8c8217cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fe:47:78:50:23:71:c4:b5:7f:94:86:4a:56: 19:17:9b:c6:fa:fe:ea:6e:41:75:7a:c9:af:97:c7: 15:36:20:5f:ff:aa:75:2d:3c:86:7c:10:41:e2:f7: 3f:58:a1:15:6d:b7:6e:57:b5:07:63:83:b9:db:79: cc:99:73:f4:e6:05:ab:29:e1:af:ed:57:63:bd:1c: ae:7a:ac:62:b9:35:85:74:6e:c2:06:fb:fb:54:e6: 7c:fc:e3:0f:35:25:c0:87:de:79:fb:ac:01:57:82: ce:84:8f:bb:34:c4:68:13:bc:50:db:03:ae:05:8f: 64:00:7b:b6:ea:f9:fc:7d:77:bf:da:ed:a0:5d:fb: 5e:91:e5:ce:cf:a6:a4:67:06:6e:54:6f:47:e7:ae: 4f:8d:7f:32:8a:f7:94:93:d7:93:66:08:50:97:63: 36:55:14:46:ba:7f:0e:28:31:6e:aa:32:06:a3:4a: e4:9d:1d:00:a6:53:15:e3:15:87:8e:a7:67:df:c2: 05:fb:a4:80:7f:25:2d:66:b6:9f:59:ea:e7:b8:ac: 53:09:ed:d2:6f:66:47:98:62:9c:08:d9:4b:64:c9: 38:a2:23:04:e4:0e:23:49:9c:56:02:a7:73:5c:1e: 60:5b:9a:ff:37:27:d2:e2:17:0a:63:bd:c3:a9:d1: 96:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:0D:C0:7A:68:46:67:FD:F2:4B:03:32:29:97:9A:7C:8C:82:17:CF X509v3 Authority Key Identifier: keyid:70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/4w3AemhGZ_3ySwMyKZeafIyCF88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.253.246.0/24 91.151.88.0/23 91.151.95.0/24 212.108.107.0/24 213.142.148.0/24 213.142.151.0/24 213.142.159.0/24 IPv6: 2a0f:bf00::/29 Signature Algorithm: sha256WithRSAEncryption 36:75:45:b5:49:5c:0d:9b:09:ac:7c:bc:33:ef:4d:cf:62:a5: 2b:07:23:0e:05:b2:fd:ca:6f:b5:aa:4e:e3:b5:24:52:8e:13: 5a:00:40:5d:86:38:f1:2c:bb:87:03:81:78:2e:91:28:ec:d6: ed:16:14:32:07:1c:f0:d9:29:26:17:9e:41:1c:70:46:40:33: 8e:86:c0:89:99:a2:c6:d4:de:de:8f:56:63:4b:17:ae:16:b9: ce:b6:be:8a:19:62:af:7b:15:a4:70:1c:75:18:e6:e9:7f:78: f9:e6:69:3f:ed:9b:66:ca:69:b3:4f:53:f6:38:64:65:d7:13: 02:05:94:4f:53:4d:24:8c:bc:2e:04:f7:5f:04:09:f2:d0:68: 54:9d:1b:ca:dc:0c:5a:aa:98:a2:9c:fe:74:65:c3:48:40:46: 1b:44:2b:c0:21:f9:9f:85:7e:b6:3a:29:63:7d:5b:92:b6:d7: 07:e0:e6:14:03:c2:29:22:0b:e4:c9:46:f0:4a:82:ca:ea:5e: b5:7d:e2:38:9f:5e:25:9c:76:ab:63:4c:81:77:50:2a:b5:37: 26:ea:24:ce:c9:35:fb:de:50:70:b9:25:8d:a0:88:0e:f9:f4: 30:34:8a:a7:92:3f:46:a1:f8:f4:34:fb:85:a4:9e:a0:da:b8: bc:e8:d6:e7 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZudcvCBGS2lLOVwacZ0kLMDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwMjFkNzUyOGJlNzEzYTRiYTJjYjRkYjVlNThkNjRkODgy ZWI1NTUwHhcNMjYwMTA4MTE1MTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzBkYzA3YTY4NDY2N2ZkZjI0YjAzMzIyOTk3OWE3YzhjODIxN2NmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmv5HeFAjccS1f5SGSlYZF5vG+v7q bkF1esmvl8cVNiBf/6p1LTyGfBBB4vc/WKEVbbduV7UHY4O523nMmXP05gWrKeGv 7VdjvRyueqxiuTWFdG7CBvv7VOZ8/OMPNSXAh955+6wBV4LOhI+7NMRoE7xQ2wOu BY9kAHu26vn8fXe/2u2gXftekeXOz6akZwZuVG9H565PjX8yiveUk9eTZghQl2M2 VRRGun8OKDFuqjIGo0rknR0AplMV4xWHjqdn38IF+6SAfyUtZrafWernuKxTCe3S b2ZHmGKcCNlLZMk4oiME5A4jSZxWAqdzXB5gW5r/NyfS4hcKY73DqdGWaQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFOMNwHpoRmf98ksDMimXmnyMghfPMB8GA1UdIwQY MBaAFHAh11KL5xOkuiy0215Y1k2ILrVVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0NIWFVvdm5FNlM2TExUYlhsaldUWWd1dFZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8wMWIwYzAtMWI4Ny00ZDZmLTllOTAt OTI4MWYwZDIzZGJmLzEvNHczQWVtaEdaXzN5U3dNeUtaZWFmSXlDRjg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS8wMWIwYzAtMWI4Ny00ZDZmLTllOTAtOTI4MWYwZDIzZGJm LzEvY0NIWFVvdm5FNlM2TExUYlhsaldUWWd1dFZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQAUP32AwQB W5dYAwQAW5dfAwQA1GxrAwQA1Y6UAwQA1Y6XAwQA1Y6fMA0EAgACMAcDBQMqD78A MA0GCSqGSIb3DQEBCwUAA4IBAQA2dUW1SVwNmwmsfLwz703PYqUrByMOBbL9ym+1 qk7jtSRSjhNaAEBdhjjxLLuHA4F4LpEo7NbtFhQyBxzw2SkmF55BHHBGQDOOhsCJ maLG1N7ej1ZjSxeuFrnOtr6KGWKvexWkcBx1GObpf3j55mk/7ZtmymmzT1P2OGRl 1xMCBZRPU00kjLwuBPdfBAny0GhUnRvK3AxaqpiinP50ZcNIQEYbRCvAIfmfhX62 OiljfVuSttcH4OYUA8IpIgvkyUbwSoLK6l61feI4n14lnHarY0yBd1AqtTcm6iTO yTX73lBwuSWNoIgO+fQwNIqnkj9Gofj0NPuFpJ6g2ri86Nbn -----END CERTIFICATE-----Generated at Wed Jan 21 16:15:41 2026 by rpki-client