This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/dr4ERfRqn_ghQRIttdnBh9fXjas.roa File: dr4ERfRqn_ghQRIttdnBh9fXjas.roa (raw, json) Hash identifier: uHaHOk9OGRVoN05Lx2H15zjg2EWZadYEAqhzWiPC/Ak= Subject key identifier: 76:BE:04:45:F4:6A:9F:F8:21:41:12:2D:B5:D9:C1:87:D7:D7:8D:AB Certificate issuer: /CN=7b385e86167d5ccc22fd85892560ae760b5f2898 Certificate serial: 019B77C760535DBE0BF9334814095B85EC76 Authority key identifier: 7B:38:5E:86:16:7D:5C:CC:22:FD:85:89:25:60:AE:76:0B:5F:28:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ezhehhZ9XMwi_YWJJWCudgtfKJg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/dr4ERfRqn_ghQRIttdnBh9fXjas.roa Signing time: Thu 01 Jan 2026 04:18:33 +0000 ROA not before: Thu 01 Jan 2026 04:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31673 IP address blocks: 185.226.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/ezhehhZ9XMwi_YWJJWCudgtfKJg.crl rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/ezhehhZ9XMwi_YWJJWCudgtfKJg.mft rsync://rpki.ripe.net/repository/DEFAULT/ezhehhZ9XMwi_YWJJWCudgtfKJg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:60:53:5d:be:0b:f9:33:48:14:09:5b:85:ec:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b385e86167d5ccc22fd85892560ae760b5f2898 Validity Not Before: Jan 1 04:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=76be0445f46a9ff82141122db5d9c187d7d78dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:39:fd:41:b4:7f:a9:b6:94:20:85:40:63:5d: 05:17:e6:78:1f:b6:36:25:32:25:c7:18:41:c4:22: a0:ff:24:09:2d:7b:6e:f7:3c:75:0d:16:3e:65:29: 71:78:79:ef:35:44:13:61:a4:8f:85:2b:a9:f5:50: 45:82:f2:90:86:47:5e:87:2b:db:b7:41:08:f4:fc: ee:0a:ba:63:13:5c:31:5c:ae:bb:02:58:70:3c:85: 08:d3:2d:c5:de:c0:eb:15:0c:b3:3f:dd:94:11:1e: ae:37:cd:de:aa:76:d2:00:20:20:6b:d3:ee:d2:75: 3a:a7:b9:f4:90:ad:a0:65:6f:11:ca:a3:ac:b8:cb: 32:a7:bc:e9:be:b4:3b:91:c8:28:ff:35:18:a1:46: 06:1a:08:37:86:b9:6f:d0:5a:12:ae:39:f1:1a:21: 8d:a4:da:16:60:91:be:cc:db:fa:f4:2d:53:c3:4d: 99:d1:c0:b5:d5:51:22:24:80:d2:3b:bf:53:ad:87: 86:25:e9:06:70:9b:6b:cd:06:a2:68:e9:ba:ef:1a: 48:74:e1:bf:81:b4:f7:8f:6f:49:55:2e:ab:07:5f: 27:47:4c:b6:96:d3:85:9a:41:2f:a0:9c:d1:1f:12: 4a:d1:30:d4:ea:1c:de:d1:ca:6a:f5:7b:9a:9e:7a: 74:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BE:04:45:F4:6A:9F:F8:21:41:12:2D:B5:D9:C1:87:D7:D7:8D:AB X509v3 Authority Key Identifier: keyid:7B:38:5E:86:16:7D:5C:CC:22:FD:85:89:25:60:AE:76:0B:5F:28:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ezhehhZ9XMwi_YWJJWCudgtfKJg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/dr4ERfRqn_ghQRIttdnBh9fXjas.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/ezhehhZ9XMwi_YWJJWCudgtfKJg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.226.136.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:f5:38:88:20:77:dd:c4:52:ee:ef:3a:bf:11:f7:69:26:ed: 3e:87:0a:00:78:df:7f:74:80:fe:00:c5:4e:de:ba:61:d3:ac: f9:db:05:c3:5a:bf:97:e9:b3:a1:04:9d:90:9d:35:7c:e3:39: c5:5d:31:ca:cc:ad:6e:ef:b4:52:eb:95:4a:aa:ce:d9:85:bf: 54:62:64:a8:e6:3f:7e:1b:eb:f6:de:2d:07:b3:7d:32:78:98: 27:a5:04:fc:6d:f7:74:52:bf:76:77:ab:05:7d:fb:57:69:06: f7:a8:da:2d:a0:4e:af:46:b5:ed:83:53:2b:a4:b6:4d:4b:8f: db:d9:c2:ed:8c:41:8e:02:db:76:2a:71:e8:5e:66:16:75:ff: 7a:38:9e:90:f5:4a:72:ea:b8:8c:0b:6b:fd:b3:c6:be:c8:23: df:d9:39:61:4b:2d:e5:5b:fe:34:42:62:89:2e:e7:fe:2b:f7: c2:49:85:7a:92:d5:50:70:f9:05:67:93:4b:9a:7e:65:52:cc: 72:b2:76:44:8a:20:0e:10:10:13:ab:b5:fe:2d:02:db:be:ae: fc:da:1c:37:19:3e:a6:7e:a1:f1:79:e1:3a:a1:79:d8:f8:db: d5:65:60:6b:f9:cf:47:24:83:10:ba:b7:15:6e:ae:32:65:6f: 27:8c:45:5a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x2BTXb4L+TNIFAlbhex2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiMzg1ZTg2MTY3ZDVjY2MyMmZkODU4OTI1NjBhZTc2MGI1 ZjI4OTgwHhcNMjYwMTAxMDQxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NmJlMDQ0NWY0NmE5ZmY4MjE0MTEyMmRiNWQ5YzE4N2Q3ZDc4ZGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDn9QbR/qbaUIIVAY10FF+Z4H7Y2 JTIlxxhBxCKg/yQJLXtu9zx1DRY+ZSlxeHnvNUQTYaSPhSup9VBFgvKQhkdehyvb t0EI9PzuCrpjE1wxXK67AlhwPIUI0y3F3sDrFQyzP92UER6uN83eqnbSACAga9Pu 0nU6p7n0kK2gZW8RyqOsuMsyp7zpvrQ7kcgo/zUYoUYGGgg3hrlv0FoSrjnxGiGN pNoWYJG+zNv69C1Tw02Z0cC11VEiJIDSO79TrYeGJekGcJtrzQaiaOm67xpIdOG/ gbT3j29JVS6rB18nR0y2ltOFmkEvoJzRHxJK0TDU6hze0cpq9Xuannp0swIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHa+BEX0ap/4IUESLbXZwYfX142rMB8GA1UdIwQY MBaAFHs4XoYWfVzMIv2FiSVgrnYLXyiYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXpoZWhoWjlYTXdpX1lXSkpXQ3VkZ3RmS0pnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9iNDU5ZjEtNjQ5OS00ZTE0LWFjZmIt ZWE3ODhhZDMyOTZhLzEvZHI0RVJmUnFuX2doUVJJdHRkbkJoOWZYamFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9iNDU5ZjEtNjQ5OS00ZTE0LWFjZmItZWE3ODhhZDMyOTZh LzEvZXpoZWhoWjlYTXdpX1lXSkpXQ3VkZ3RmS0pnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBueKIMA0G CSqGSIb3DQEBCwUAA4IBAQBe9TiIIHfdxFLu7zq/EfdpJu0+hwoAeN9/dID+AMVO 3rph06z52wXDWr+X6bOhBJ2QnTV84znFXTHKzK1u77RS65VKqs7Zhb9UYmSo5j9+ G+v23i0Hs30yeJgnpQT8bfd0Ur92d6sFfftXaQb3qNotoE6vRrXtg1MrpLZNS4/b 2cLtjEGOAtt2KnHoXmYWdf96OJ6Q9Upy6riMC2v9s8a+yCPf2TlhSy3lW/40QmKJ Luf+K/fCSYV6ktVQcPkFZ5NLmn5lUsxysnZEiiAOEBATq7X+LQLbvq782hw3GT6m fqHxeeE6oXnY+NvVZWBr+c9HJIMQurcVbq4yZW8njEVa -----END CERTIFICATE-----Generated at Sun Jan 25 22:47:03 2026 by rpki-client