This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/4Hbh9kgEtk0ETbC9Jsg3Fsu3-DI.roa File: 4Hbh9kgEtk0ETbC9Jsg3Fsu3-DI.roa (raw, json) Hash identifier: qkbQr2FGRu+j6lNNaiItQZd0nGSc0yYN6c1c29qls04= Subject key identifier: E0:76:E1:F6:48:04:B6:4D:04:4D:B0:BD:26:C8:37:16:CB:B7:F8:32 Certificate issuer: /CN=2292d96dfb66cb18069d8bd15c9e90cd9124f003 Certificate serial: 019B7F8572849977A42DD3B6CD4AF9412A47 Authority key identifier: 22:92:D9:6D:FB:66:CB:18:06:9D:8B:D1:5C:9E:90:CD:91:24:F0:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpLZbftmyxgGnYvRXJ6QzZEk8AM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/4Hbh9kgEtk0ETbC9Jsg3Fsu3-DI.roa Signing time: Fri 02 Jan 2026 16:23:30 +0000 ROA not before: Fri 02 Jan 2026 16:23:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207955 IP address blocks: 94.232.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/IpLZbftmyxgGnYvRXJ6QzZEk8AM.crl rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/IpLZbftmyxgGnYvRXJ6QzZEk8AM.mft rsync://rpki.ripe.net/repository/DEFAULT/IpLZbftmyxgGnYvRXJ6QzZEk8AM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:72:84:99:77:a4:2d:d3:b6:cd:4a:f9:41:2a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2292d96dfb66cb18069d8bd15c9e90cd9124f003 Validity Not Before: Jan 2 16:23:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e076e1f64804b64d044db0bd26c83716cbb7f832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:6c:96:4a:f6:4f:f7:eb:71:af:2f:18:d9: 25:f3:1d:4b:ac:39:ec:c2:e5:a8:8a:3d:00:03:a7: e5:70:70:b3:3c:63:49:c3:95:51:ea:c8:f8:0e:e9: 25:46:80:48:bc:ce:49:c2:f6:27:59:2e:49:b9:33: 27:42:cb:36:88:85:81:76:34:89:be:4d:5c:06:1d: f4:ba:87:12:25:40:4a:78:3e:b8:5c:84:e2:a0:63: 8f:27:ab:39:cd:0e:2f:99:dd:59:b4:22:31:92:da: 4d:47:09:dd:e1:a4:92:53:ad:d8:b2:bb:2b:23:19: 9e:0c:17:1f:e0:4b:ba:99:85:e7:d9:3d:b3:c3:30: 4f:50:de:ab:8a:35:42:47:3f:4f:62:4c:95:0f:29: 03:6b:1e:a3:02:ce:26:f5:03:dc:71:f3:94:36:50: d8:2f:94:a0:37:42:62:20:5d:d7:11:f1:16:91:88: 4a:d9:07:88:36:3c:94:7d:ab:a8:86:0f:42:c9:1a: 1d:c0:fb:da:47:8a:a2:f2:f5:7c:b4:bd:fd:5d:fe: c7:14:bf:01:80:9d:bd:55:c2:70:19:2d:82:cc:3a: 00:53:e2:f1:6c:bd:9e:41:c4:73:fd:a8:e9:88:6f: d3:a7:9c:54:e0:82:b7:78:08:6a:86:1d:95:be:43: 6d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:76:E1:F6:48:04:B6:4D:04:4D:B0:BD:26:C8:37:16:CB:B7:F8:32 X509v3 Authority Key Identifier: keyid:22:92:D9:6D:FB:66:CB:18:06:9D:8B:D1:5C:9E:90:CD:91:24:F0:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpLZbftmyxgGnYvRXJ6QzZEk8AM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/4Hbh9kgEtk0ETbC9Jsg3Fsu3-DI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/IpLZbftmyxgGnYvRXJ6QzZEk8AM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.232.83.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:37:6a:56:f2:61:e9:c7:42:22:83:a2:18:24:1e:9f:b7:a7: 02:55:53:1c:22:38:ff:8b:a6:55:c5:d7:69:68:95:2a:71:b4: c3:44:6e:00:08:58:7c:20:4e:79:7e:2a:29:ac:05:1a:f7:5c: ab:21:36:70:5b:12:0f:ec:75:28:92:65:36:f1:b2:3c:dd:ea: 43:45:6a:a8:9a:e2:0b:01:2b:6b:98:d0:83:80:30:a4:30:4a: 29:46:18:36:76:d2:de:27:8d:45:c0:00:28:89:64:94:a2:be: e6:66:69:91:ab:35:37:ef:ed:28:d8:38:15:11:4e:de:23:a4: e8:18:c9:80:f7:c1:db:fe:d6:fc:21:79:9b:4c:40:a4:9d:83: cd:3c:2d:7e:f5:bf:e4:e9:e2:bd:e1:bd:b2:94:4a:e1:19:21: a6:87:c4:93:de:6a:16:f1:ec:f7:3f:43:a1:a1:ba:75:04:d7: 30:f1:5b:76:02:93:85:cd:74:be:23:6d:69:35:94:ab:07:38: ed:a2:79:a0:ef:25:53:14:66:82:28:cc:69:eb:20:b8:4b:e1: f5:35:45:06:b2:d6:eb:fe:72:37:38:86:13:f7:2b:9d:ce:a2: 43:0e:52:23:a6:75:5b:56:07:a1:08:57:bf:d0:6e:d6:68:03: 00:90:2d:3b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hXKEmXekLdO2zUr5QSpHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyOTJkOTZkZmI2NmNiMTgwNjlkOGJkMTVjOWU5MGNkOTEy NGYwMDMwHhcNMjYwMTAyMTYyMzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDc2ZTFmNjQ4MDRiNjRkMDQ0ZGIwYmQyNmM4MzcxNmNiYjdmODMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsORslkr2T/frca8vGNkl8x1LrDns wuWoij0AA6flcHCzPGNJw5VR6sj4DuklRoBIvM5JwvYnWS5JuTMnQss2iIWBdjSJ vk1cBh30uocSJUBKeD64XITioGOPJ6s5zQ4vmd1ZtCIxktpNRwnd4aSSU63Ysrsr IxmeDBcf4Eu6mYXn2T2zwzBPUN6rijVCRz9PYkyVDykDax6jAs4m9QPccfOUNlDY L5SgN0JiIF3XEfEWkYhK2QeINjyUfauohg9CyRodwPvaR4qi8vV8tL39Xf7HFL8B gJ29VcJwGS2CzDoAU+LxbL2eQcRz/ajpiG/Tp5xU4IK3eAhqhh2VvkNt1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOB24fZIBLZNBE2wvSbINxbLt/gyMB8GA1UdIwQY MBaAFCKS2W37ZssYBp2L0VyekM2RJPADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXBMWmJmdG15eGdHbll2UlhKNlF6WkVrOEFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9lNzc0MTItYjBkNy00MTA0LTkyNmEt OTllZTYxNmNhODViLzEvNEhiaDlrZ0V0azBFVGJDOUpzZzNGc3UzLURJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9lNzc0MTItYjBkNy00MTA0LTkyNmEtOTllZTYxNmNhODVi LzEvSXBMWmJmdG15eGdHbll2UlhKNlF6WkVrOEFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXuhTMA0G CSqGSIb3DQEBCwUAA4IBAQCNN2pW8mHpx0Iig6IYJB6ft6cCVVMcIjj/i6ZVxddp aJUqcbTDRG4ACFh8IE55fioprAUa91yrITZwWxIP7HUokmU28bI83epDRWqomuIL AStrmNCDgDCkMEopRhg2dtLeJ41FwAAoiWSUor7mZmmRqzU37+0o2DgVEU7eI6To GMmA98Hb/tb8IXmbTECknYPNPC1+9b/k6eK94b2ylErhGSGmh8ST3moW8ez3P0Oh obp1BNcw8Vt2ApOFzXS+I21pNZSrBzjtonmg7yVTFGaCKMxp6yC4S+H1NUUGstbr /nI3OIYT9yudzqJDDlIjpnVbVgehCFe/0G7WaAMAkC07 -----END CERTIFICATE-----Generated at Mon Jan 26 01:15:03 2026 by rpki-client