This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/b4aJBKPY7aTe_Hym47DoZy9HQ0c.roa File: b4aJBKPY7aTe_Hym47DoZy9HQ0c.roa (raw, json) Hash identifier: ZP4IGyJC5dcJ7hoX3v5ptHfmXaZeS9xvmwl13FGG14c= Subject key identifier: 6F:86:89:04:A3:D8:ED:A4:DE:FC:7C:A6:E3:B0:E8:67:2F:47:43:47 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019BD5F32C01F6A4288517BDDF902AC11CAC Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/b4aJBKPY7aTe_Hym47DoZy9HQ0c.roa Signing time: Mon 19 Jan 2026 11:10:42 +0000 ROA not before: Mon 19 Jan 2026 11:10:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215355 IP address blocks: 109.74.16.0/24 maxlen: 24 2a14:67c0:100::/40 maxlen: 48 2a14:67c0:110::/44 maxlen: 48 2a14:67c0:298::/48 maxlen: 48 2a14:67c0:300::/40 maxlen: 48 2a14:67c0:600::/48 maxlen: 48 2a14:67c0:601::/48 maxlen: 48 2a14:67c0:1000::/40 maxlen: 48 2a14:67c0:1000::/48 maxlen: 48 2a14:67c0:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d5:f3:2c:01:f6:a4:28:85:17:bd:df:90:2a:c1:1c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 19 11:10:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f868904a3d8eda4defc7ca6e3b0e8672f474347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:de:23:e6:6d:26:2d:53:82:cf:04:50:41:b3: 67:dd:d6:2e:25:c5:dd:38:51:ed:73:a4:6e:2b:74: 46:ed:5e:96:cc:74:d6:94:cd:28:85:dd:64:84:e4: 5e:5b:c4:50:37:8d:71:40:2e:4f:db:97:3f:5b:3e: e0:2b:99:ea:cf:31:97:63:76:57:32:ae:0a:43:26: 9a:e4:1a:73:5d:73:02:b1:ae:db:32:38:32:a3:34: 58:37:ea:54:ab:39:a7:e4:89:82:70:a2:bd:a0:73: 8e:86:76:51:df:6b:f5:a1:98:67:1a:90:45:4a:63: 63:f2:a4:fe:7b:16:26:b5:9d:1d:e3:4c:65:20:2d: 99:06:22:45:a8:5f:c6:d9:87:b8:d2:43:aa:79:38: 8b:d5:90:53:c0:f5:fa:2f:66:a1:c6:36:22:6a:3b: 59:38:a3:82:a7:c4:a1:90:f2:2f:a7:60:72:53:91: 7d:ef:09:21:fc:09:db:26:22:0e:ab:ef:f2:d3:dd: 33:65:2a:86:92:0b:06:2b:77:5a:e7:1a:4a:e2:26: 86:ea:b8:6f:77:71:d7:fc:65:7f:9b:5c:29:cf:e9: 06:26:0d:ef:8c:d9:df:18:40:f0:80:b5:34:50:36: d7:10:48:a6:08:59:2b:d1:73:18:18:28:6f:ca:22: 40:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:86:89:04:A3:D8:ED:A4:DE:FC:7C:A6:E3:B0:E8:67:2F:47:43:47 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/b4aJBKPY7aTe_Hym47DoZy9HQ0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.74.16.0/24 IPv6: 2a14:67c0:100::/40 2a14:67c0:298::/48 2a14:67c0:300::/40 2a14:67c0:600::/47 2a14:67c0:1000::/40 Signature Algorithm: sha256WithRSAEncryption 58:93:96:89:5d:35:10:c4:c9:e9:a5:02:1a:50:6b:6d:f1:25: 31:69:c8:75:fe:40:cb:6e:d3:61:2c:7b:f6:d8:6f:85:31:8b: 95:07:86:fc:e9:45:34:30:45:80:fc:47:a9:b0:5b:dc:94:bc: 4f:b4:cb:2d:1f:bb:43:b9:1d:b3:c7:29:ea:fd:bb:0d:9d:68: 78:59:60:26:61:1a:5f:26:b1:01:16:59:bb:fa:2e:1b:38:a4: 70:89:05:ea:a7:fa:55:fd:8c:6c:58:5e:e1:c0:57:0f:33:99: ec:cb:e5:0b:4d:88:f3:6c:57:20:13:6e:23:50:f5:aa:73:d2: 78:bb:5c:8b:a8:e4:4e:0f:99:5f:67:42:dc:82:97:3a:1a:3d: 77:0d:37:df:c2:5c:f1:8d:2e:69:1a:68:76:ad:34:98:b7:7c: 7d:a0:7d:47:db:12:13:36:c0:08:81:2b:96:8a:89:64:d4:f5: 7e:56:a8:d3:a0:d9:7a:7f:8b:c1:e7:af:24:6f:15:04:20:9f: 1a:b4:81:35:9e:31:3c:ec:ac:1d:98:88:1d:38:1a:c4:bf:b2: b5:3a:55:ed:6a:69:f6:b8:79:75:8b:ee:0b:a0:06:6f:dd:44: 65:88:a3:da:0d:b2:f2:b0:7d:63:60:12:e6:f9:b9:52:05:d6: 36:ac:9e:47 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZvV8ywB9qQohRe935AqwRysMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTE5MTExMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Zjg2ODkwNGEzZDhlZGE0ZGVmYzdjYTZlM2IwZTg2NzJmNDc0MzQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApt4j5m0mLVOCzwRQQbNn3dYuJcXd OFHtc6RuK3RG7V6WzHTWlM0ohd1khOReW8RQN41xQC5P25c/Wz7gK5nqzzGXY3ZX Mq4KQyaa5BpzXXMCsa7bMjgyozRYN+pUqzmn5ImCcKK9oHOOhnZR32v1oZhnGpBF SmNj8qT+exYmtZ0d40xlIC2ZBiJFqF/G2Ye40kOqeTiL1ZBTwPX6L2ahxjYiajtZ OKOCp8ShkPIvp2ByU5F97wkh/AnbJiIOq+/y090zZSqGkgsGK3da5xpK4iaG6rhv d3HX/GV/m1wpz+kGJg3vjNnfGEDwgLU0UDbXEEimCFkr0XMYGChvyiJA8wIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFG+GiQSj2O2k3vx8puOw6GcvR0NHMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvYjRhSkJLUFk3YVRlX0h5bTQ3RG9aeTlIUTBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAMBAIAATAGAwQAbUoQMDAE AgACMCoDBgAqFGfAAQMHACoUZ8ACmAMGACoUZ8ADAwcBKhRnwAYAAwYAKhRnwBAw DQYJKoZIhvcNAQELBQADggEBAFiTloldNRDEyemlAhpQa23xJTFpyHX+QMtu02Es e/bYb4Uxi5UHhvzpRTQwRYD8R6mwW9yUvE+0yy0fu0O5HbPHKer9uw2daHhZYCZh Gl8msQEWWbv6Lhs4pHCJBeqn+lX9jGxYXuHAVw8zmezL5QtNiPNsVyATbiNQ9apz 0ni7XIuo5E4PmV9nQtyClzoaPXcNN9/CXPGNLmkaaHatNJi3fH2gfUfbEhM2wAiB K5aKiWTU9X5WqNOg2Xp/i8HnryRvFQQgnxq0gTWeMTzsrB2YiB04GsS/srU6Ve1q afa4eXWL7gugBm/dRGWIo9oNsvKwfWNgEub5uVIF1jasnkc= -----END CERTIFICATE-----Generated at Sun Jan 25 16:34:20 2026 by rpki-client