This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/4wa1tHwKdY2PTVezNrOpLDjrCT4.roa File: 4wa1tHwKdY2PTVezNrOpLDjrCT4.roa (raw, json) Hash identifier: GfbWUAMsrOZ93MYzLz5odAAQ7FttgjXvWGneiCnzBXE= Subject key identifier: E3:06:B5:B4:7C:0A:75:8D:8F:4D:57:B3:36:B3:A9:2C:38:EB:09:3E Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Certificate serial: 019B7E37E56979FE873898D6EDA7989AC27B Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/4wa1tHwKdY2PTVezNrOpLDjrCT4.roa Signing time: Fri 02 Jan 2026 10:19:11 +0000 ROA not before: Fri 02 Jan 2026 10:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30734 IP address blocks: 62.244.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.mft rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:e5:69:79:fe:87:38:98:d6:ed:a7:98:9a:c2:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Validity Not Before: Jan 2 10:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e306b5b47c0a758d8f4d57b336b3a92c38eb093e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:a0:4d:af:d1:c4:51:ef:92:c9:ed:39:d1: 1b:94:71:10:fc:8d:0b:37:fe:1f:bc:7c:e7:b3:21: 10:28:c6:22:9a:10:14:f2:e2:42:52:d7:a7:cf:b1: c6:4a:da:30:42:8e:a7:1c:35:65:38:0e:38:ec:b6: 68:4c:ec:82:9d:fa:0a:2b:6a:0c:75:8c:08:fe:d5: b7:ac:74:d4:12:77:13:d8:e0:35:b0:6e:eb:65:0b: e3:55:0c:d8:ec:45:38:51:cd:c7:a5:2d:05:52:1d: 81:71:37:5a:e4:db:66:ab:a7:de:fb:7e:c0:ce:19: b3:b2:a8:eb:11:05:6e:3e:ce:6e:82:42:48:36:92: f8:98:87:b5:18:48:16:2d:60:1a:e9:8e:34:ea:cd: 04:06:39:78:f1:79:26:59:4a:03:79:d0:57:95:bb: b9:57:f1:c3:66:45:96:c9:06:9a:83:80:39:aa:77: 07:44:6e:ce:c8:39:b5:37:c2:99:ae:45:5a:20:45: f8:29:fc:a9:2f:a3:c2:7d:47:f3:a0:ac:cd:8e:ee: 4e:6a:a2:f9:89:61:35:08:15:bc:fc:6a:fb:de:7f: db:6c:94:07:18:1b:de:ea:7d:4d:f1:82:26:c7:cf: 25:c1:92:74:a7:24:b5:ae:45:86:81:ed:ee:ab:05: 02:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:06:B5:B4:7C:0A:75:8D:8F:4D:57:B3:36:B3:A9:2C:38:EB:09:3E X509v3 Authority Key Identifier: keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/4wa1tHwKdY2PTVezNrOpLDjrCT4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.244.221.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:92:ca:be:55:1d:68:22:2c:fe:2d:ac:a0:3a:1d:26:7a:0d: 0e:23:42:7b:6f:8f:8f:e2:5a:b2:1a:95:1d:21:4e:f8:0a:04: f8:3b:d1:66:5d:d4:97:ec:99:ac:40:e3:37:c7:45:b2:6d:d8: dd:c8:e6:08:11:3d:2e:67:58:cc:f5:57:4d:c6:4e:28:69:06: 18:42:a5:1f:fc:82:3f:3a:2d:9f:00:d6:06:08:87:0e:01:52: 61:f4:67:8c:57:0e:d7:9e:9f:e5:99:ae:76:0b:e1:a9:f3:59: 9e:0d:53:c7:c9:17:23:93:96:0d:9a:94:46:c4:8a:94:bd:c0: 2c:d0:76:b1:16:ad:d0:ef:fc:00:45:a9:ff:e9:17:87:4b:fa: 3e:88:fd:31:86:0c:da:69:ab:9e:e7:8d:63:e2:12:b3:e9:3b: 6e:0b:1c:e0:27:94:07:e2:4a:b6:ca:69:31:8f:ce:85:6b:bb: 4e:08:3a:58:de:4f:29:0d:c7:0f:76:02:3a:4c:59:4a:b1:49: 55:63:62:e1:0c:28:df:0e:a4:e3:5e:85:a0:91:d7:93:ca:8e: 65:7f:a3:8e:18:b0:e3:24:c3:90:48:8e:f5:f3:48:f0:25:1c: d9:c4:61:fe:df:84:a3:99:8c:87:0a:84:62:9b:f6:6d:0f:ae: d4:9f:b7:86 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N+Vpef6HOJjW7aeYmsJ7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw MWY0YzkwHhcNMjYwMTAyMTAxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzA2YjViNDdjMGE3NThkOGY0ZDU3YjMzNmIzYTkyYzM4ZWIwOTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpCgTa/RxFHvksntOdEblHEQ/I0L N/4fvHznsyEQKMYimhAU8uJCUtenz7HGStowQo6nHDVlOA447LZoTOyCnfoKK2oM dYwI/tW3rHTUEncT2OA1sG7rZQvjVQzY7EU4Uc3HpS0FUh2BcTda5Ntmq6fe+37A zhmzsqjrEQVuPs5ugkJINpL4mIe1GEgWLWAa6Y406s0EBjl48XkmWUoDedBXlbu5 V/HDZkWWyQaag4A5qncHRG7OyDm1N8KZrkVaIEX4KfypL6PCfUfzoKzNju5OaqL5 iWE1CBW8/Gr73n/bbJQHGBve6n1N8YImx88lwZJ0pyS1rkWGge3uqwUC1wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOMGtbR8CnWNj01XszazqSw46wk+MB8GA1UdIwQY MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt ODNkNjQ4Zjc5NzQ2LzEvNHdhMXRId0tkWTJQVFZlek5yT3BMRGpyQ1Q0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2 LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPvTdMA0G CSqGSIb3DQEBCwUAA4IBAQA/ksq+VR1oIiz+LaygOh0meg0OI0J7b4+P4lqyGpUd IU74CgT4O9FmXdSX7JmsQOM3x0WybdjdyOYIET0uZ1jM9VdNxk4oaQYYQqUf/II/ Oi2fANYGCIcOAVJh9GeMVw7Xnp/lma52C+Gp81meDVPHyRcjk5YNmpRGxIqUvcAs 0HaxFq3Q7/wARan/6ReHS/o+iP0xhgzaaaue541j4hKz6TtuCxzgJ5QH4kq2ymkx j86Fa7tOCDpY3k8pDccPdgI6TFlKsUlVY2LhDCjfDqTjXoWgkdeTyo5lf6OOGLDj JMOQSI7180jwJRzZxGH+34SjmYyHCoRim/ZtD67Un7eG -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:47 2026 by rpki-client