This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/rM4I0AQSRdTKZg9T3uE_UJmHiKc.roa File: rM4I0AQSRdTKZg9T3uE_UJmHiKc.roa (raw, json) Hash identifier: EFWnpWFQadvqrTtsamGKwLlcYP7tUkP3TN3iAl9gbjo= Subject key identifier: AC:CE:08:D0:04:12:45:D4:CA:66:0F:53:DE:E1:3F:50:99:87:88:A7 Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46 Certificate serial: 019B76EB9EBE56E6C6D6B05A929B07C7A9C0 Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/rM4I0AQSRdTKZg9T3uE_UJmHiKc.roa Signing time: Thu 01 Jan 2026 00:18:31 +0000 ROA not before: Thu 01 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47674 IP address blocks: 185.11.145.0/24 maxlen: 32 185.11.146.0/24 maxlen: 32 185.11.147.0/24 maxlen: 32 185.62.188.0/24 maxlen: 32 185.62.189.0/24 maxlen: 32 185.62.190.0/24 maxlen: 32 188.209.49.0/24 maxlen: 24 188.209.52.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.mft rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:9e:be:56:e6:c6:d6:b0:5a:92:9b:07:c7:a9:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46 Validity Not Before: Jan 1 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=acce08d0041245d4ca660f53dee13f50998788a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:49:7d:85:8e:22:87:76:a1:ed:ea:d2:8e:08: 22:f5:a1:90:09:b8:f4:3d:de:6d:54:59:ff:df:33: 30:71:19:16:2a:1f:6c:f8:44:4e:8d:51:58:68:cd: f4:62:a1:a3:f7:78:13:e7:c4:51:24:d5:5d:cf:7e: 14:ad:8e:80:f8:43:4e:43:f0:89:d5:0e:fe:0c:0f: f7:bb:d6:df:a6:df:9e:ff:01:8a:b3:96:7b:d9:36: a2:7f:ed:32:bf:81:2e:c8:51:4b:4d:88:44:2b:e5: d4:91:b1:ad:2d:bd:5c:93:bf:dd:e2:0a:25:df:ed: 0e:7f:99:d8:57:44:c7:81:a3:64:3b:30:52:1e:c9: 38:d7:8d:8f:18:c5:7c:70:60:c9:07:d6:a2:df:35: 23:13:c4:44:e0:96:db:98:95:11:93:42:bb:bf:02: e2:c4:75:36:cf:00:0a:cd:98:be:05:60:3e:fc:38: 81:b7:62:aa:a3:7c:5e:90:d4:a0:68:6f:e6:05:51: 12:1a:27:48:3b:1e:58:5c:a3:ed:e7:ad:90:2f:7e: c0:c7:08:0d:42:00:0f:62:cf:6e:16:d5:61:f8:ca: d9:24:d7:c1:9d:9a:cb:aa:2b:d6:ba:73:a0:28:73: f1:d2:4a:d2:0d:54:41:8c:1d:aa:0a:53:0c:45:bb: 66:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CE:08:D0:04:12:45:D4:CA:66:0F:53:DE:E1:3F:50:99:87:88:A7 X509v3 Authority Key Identifier: keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/rM4I0AQSRdTKZg9T3uE_UJmHiKc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.11.145.0-185.11.147.255 185.62.188.0-185.62.190.255 188.209.49.0/24 188.209.52.0/24 Signature Algorithm: sha256WithRSAEncryption 23:5e:42:a2:e5:20:79:24:d6:0d:35:e2:01:ea:b0:8d:76:db: fa:9f:ee:2e:ab:7e:a1:c6:bc:47:dc:cb:20:9d:60:d0:50:41: b4:b0:24:3b:bb:52:68:17:3a:28:42:f6:83:7d:4a:16:ca:ad: d9:d3:6f:43:7f:d5:20:6b:5e:8d:48:d2:30:38:69:27:d0:72: a4:a6:b4:0c:78:bd:0b:7a:cb:86:e8:06:ae:d2:f8:d0:af:49: 95:05:76:7c:54:52:49:9d:9c:c5:60:39:37:16:61:a3:e6:58: 0a:9a:46:b1:c6:38:dc:b2:c4:5f:4d:9f:32:bc:90:d0:f3:8d: 5d:e1:c7:0a:f6:40:58:a5:68:67:05:77:cd:44:60:eb:30:96: cf:39:db:ce:78:c7:43:13:41:87:69:fd:9a:5b:14:a0:97:b1: 25:81:4c:4a:28:56:27:d6:16:5c:6e:7d:26:05:60:39:14:5c: 81:b2:aa:ac:bb:c3:28:9f:ad:e5:a1:8f:42:cc:fc:24:b2:b1: ba:9c:37:b5:87:37:5a:78:43:97:3f:92:1d:f9:87:d6:40:99: 8d:9a:af:be:57:bb:f7:7b:87:77:6b:2a:8a:b2:d4:d2:f0:1b: 08:a2:93:43:73:6e:79:18:18:00:41:e7:14:80:a7:f7:36:e5: 17:78:87:fe -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt2656+VubG1rBakpsHx6nAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxMzhlYzI0MmE0M2U5YzlkNGNlYjI1ZGM5MGU1NDUzMzcz ZDNmNDYwHhcNMjYwMTAxMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2NlMDhkMDA0MTI0NWQ0Y2E2NjBmNTNkZWUxM2Y1MDk5ODc4OGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Ul9hY4ih3ah7erSjggi9aGQCbj0 Pd5tVFn/3zMwcRkWKh9s+EROjVFYaM30YqGj93gT58RRJNVdz34UrY6A+ENOQ/CJ 1Q7+DA/3u9bfpt+e/wGKs5Z72Taif+0yv4EuyFFLTYhEK+XUkbGtLb1ck7/d4gol 3+0Of5nYV0THgaNkOzBSHsk4142PGMV8cGDJB9ai3zUjE8RE4JbbmJURk0K7vwLi xHU2zwAKzZi+BWA+/DiBt2Kqo3xekNSgaG/mBVESGidIOx5YXKPt562QL37AxwgN QgAPYs9uFtVh+MrZJNfBnZrLqivWunOgKHPx0krSDVRBjB2qClMMRbtmMQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFKzOCNAEEkXUymYPU97hP1CZh4inMB8GA1UdIwQY MBaAFOE47CQqQ+nJ1M6yXckOVFM3PT9GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFRqc0pDcEQ2Y25VenJKZHlRNVVVemM5UDBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8wYjdmZDMtOTBmMC00NWQxLThhNTgt Njc4NWNkNDU2ODcxLzEvck00STBBUVNSZFRLWmc5VDN1RV9VSm1IaUtjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8wYjdmZDMtOTBmMC00NWQxLThhNTgtNjc4NWNkNDU2ODcx LzEvNFRqc0pDcEQ2Y25VenJKZHlRNVVVemM5UDBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoMAwDBAC5C5ED BAK5C5AwDAMEArk+vAMEALk+vgMEALzRMQMEALzRNDANBgkqhkiG9w0BAQsFAAOC AQEAI15CouUgeSTWDTXiAeqwjXbb+p/uLqt+oca8R9zLIJ1g0FBBtLAkO7tSaBc6 KEL2g31KFsqt2dNvQ3/VIGtejUjSMDhpJ9BypKa0DHi9C3rLhugGrtL40K9JlQV2 fFRSSZ2cxWA5NxZho+ZYCppGscY43LLEX02fMryQ0PONXeHHCvZAWKVoZwV3zURg 6zCWzznbznjHQxNBh2n9mlsUoJexJYFMSihWJ9YWXG59JgVgORRcgbKqrLvDKJ+t 5aGPQsz8JLKxupw3tYc3WnhDlz+SHfmH1kCZjZqvvle793uHd2sqirLU0vAbCKKT Q3NueRgYAEHnFICn9zblF3iH/g== -----END CERTIFICATE-----Generated at Sun Jan 25 18:51:10 2026 by rpki-client