This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/c4gKUGJIMgEyuId7ul08tWyPN-I.roa File: c4gKUGJIMgEyuId7ul08tWyPN-I.roa (raw, json) Hash identifier: chucr3d4TvCMayMn3vPGpeF00MZgFV7fyC/x5QhhCZQ= Subject key identifier: 73:88:0A:50:62:48:32:01:32:B8:87:7B:BA:5D:3C:B5:6C:8F:37:E2 Certificate issuer: /CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba Certificate serial: 019B77C6701FB32440278C23744606284697 Authority key identifier: A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/c4gKUGJIMgEyuId7ul08tWyPN-I.roa Signing time: Thu 01 Jan 2026 04:17:32 +0000 ROA not before: Thu 01 Jan 2026 04:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15577 IP address blocks: 217.9.0.0/24 maxlen: 24 2a06:64c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.mft rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:70:1f:b3:24:40:27:8c:23:74:46:06:28:46:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba Validity Not Before: Jan 1 04:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=73880a506248320132b8877bba5d3cb56c8f37e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ac:d9:e0:e0:23:cf:46:d5:d3:24:e8:a9:32: ba:9c:e3:e0:de:b5:82:69:b3:49:bd:e7:e3:b1:69: 17:8c:33:54:30:90:27:d0:9b:7b:9e:47:5a:29:0a: 76:be:9f:2d:8b:55:ba:c5:9e:a2:60:26:ca:f9:d0: d0:5c:88:77:5a:71:f7:b8:b4:9a:2b:5c:1a:05:7c: 25:1b:72:ff:44:7d:a6:15:4a:87:f6:b5:3a:ea:fe: 29:56:a3:61:fc:38:11:c4:81:cb:6a:26:cb:68:a9: 88:d2:98:6b:64:7a:f5:c9:23:2b:27:bc:c4:f2:b5: 80:c3:77:a8:01:70:66:5a:1c:5a:be:76:6b:d2:c6: 5e:9e:2a:8b:b1:78:fb:ba:93:c2:a7:25:c0:b6:2f: df:ef:27:c0:47:2d:0b:a0:f6:c9:7e:04:7a:a2:93: d4:5d:a1:c6:48:7e:a7:37:c6:36:a9:0e:06:ac:b1: 7d:fa:5f:8b:38:7b:41:d3:ea:dd:06:4a:a6:ba:41: 81:11:b0:55:7c:da:99:b9:e0:a0:5c:d9:aa:28:79: 63:bf:dd:a5:90:c0:54:3d:f5:f1:01:2b:36:eb:37: 5c:04:9f:d9:f5:f6:a8:cc:3a:ca:37:c6:ff:2c:36: a7:a3:63:62:21:6f:bf:be:2c:a5:dd:79:db:e6:d7: 65:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:88:0A:50:62:48:32:01:32:B8:87:7B:BA:5D:3C:B5:6C:8F:37:E2 X509v3 Authority Key Identifier: keyid:A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/c4gKUGJIMgEyuId7ul08tWyPN-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.9.0.0/24 IPv6: 2a06:64c0::/48 Signature Algorithm: sha256WithRSAEncryption 70:0b:53:7b:a1:dc:5a:81:a9:87:5f:ac:d1:62:26:23:75:3c: fb:7a:e4:d5:f6:56:e6:89:8a:f0:e3:67:83:36:94:4e:49:bc: 81:76:cd:97:0e:8c:45:54:2a:b5:27:a5:88:c6:48:94:e8:5f: 15:47:22:ae:46:c0:8c:8b:61:24:36:52:5b:ab:61:c8:b3:de: 52:12:60:d6:8b:f1:37:5f:35:89:50:13:0b:37:6b:e9:cf:b6: f5:b6:1b:d7:1f:19:70:ab:be:37:f0:7e:b0:05:8a:3b:e1:d3: d7:35:c5:c2:c5:fa:7c:08:50:34:e3:0e:c3:7d:2f:8b:f2:78: c1:b9:94:16:4c:77:ba:1d:8d:12:1f:4e:d3:65:5f:58:8b:75: f4:af:e2:6c:65:ef:70:ff:d0:11:46:39:56:ac:e3:db:e5:72: 1f:2b:5f:36:0a:00:12:1a:93:80:21:a2:6d:81:cb:eb:5c:29: 03:cc:26:a4:6d:f4:6f:a7:86:2e:32:77:c6:8a:f6:20:e7:1a: 0b:2d:86:ec:da:b5:7c:f1:b6:a7:a3:bf:5b:1e:9b:5c:2a:26: f0:3b:84:7c:3c:00:bf:c6:f3:de:08:47:43:8b:c8:34:f3:3c: 20:5d:8b:80:17:8b:05:60:64:77:7d:db:aa:6e:8b:d1:59:d0: 9d:b4:86:58 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3xnAfsyRAJ4wjdEYGKEaXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3ZWUxODJkOWM0M2E1Y2U3MDY4ZGZkOWJhN2FhOGVkOTBl NWUwYmEwHhcNMjYwMTAxMDQxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Mzg4MGE1MDYyNDgzMjAxMzJiODg3N2JiYTVkM2NiNTZjOGYzN2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5azZ4OAjz0bV0yToqTK6nOPg3rWC abNJvefjsWkXjDNUMJAn0Jt7nkdaKQp2vp8ti1W6xZ6iYCbK+dDQXIh3WnH3uLSa K1waBXwlG3L/RH2mFUqH9rU66v4pVqNh/DgRxIHLaibLaKmI0phrZHr1ySMrJ7zE 8rWAw3eoAXBmWhxavnZr0sZeniqLsXj7upPCpyXAti/f7yfARy0LoPbJfgR6opPU XaHGSH6nN8Y2qQ4GrLF9+l+LOHtB0+rdBkqmukGBEbBVfNqZueCgXNmqKHljv92l kMBUPfXxASs26zdcBJ/Z9faozDrKN8b/LDano2NiIW+/viyl3Xnb5tdlCwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFHOIClBiSDIBMriHe7pdPLVsjzfiMB8GA1UdIwQY MBaAFKfuGC2cQ6XOcGjf2bp6qO2Q5eC6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcC00WUxaeERwYzV3YU5fWnVucW83WkRsNExvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9kYWI0MjAtMGRlMy00MzIxLTljMDkt NmI1ZjY4NTIyYTdkLzEvYzRnS1VHSklNZ0V5dUlkN3VsMDh0V3lQTi1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9kYWI0MjAtMGRlMy00MzIxLTljMDktNmI1ZjY4NTIyYTdk LzEvcC00WUxaeERwYzV3YU5fWnVucW83WkRsNExvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQA2QkAMA8E AgACMAkDBwAqBmTAAAAwDQYJKoZIhvcNAQELBQADggEBAHALU3uh3FqBqYdfrNFi JiN1PPt65NX2VuaJivDjZ4M2lE5JvIF2zZcOjEVUKrUnpYjGSJToXxVHIq5GwIyL YSQ2UlurYciz3lISYNaL8TdfNYlQEws3a+nPtvW2G9cfGXCrvjfwfrAFijvh09c1 xcLF+nwIUDTjDsN9L4vyeMG5lBZMd7odjRIfTtNlX1iLdfSv4mxl73D/0BFGOVas 49vlch8rXzYKABIak4Ahom2By+tcKQPMJqRt9G+nhi4yd8aK9iDnGgsthuzatXzx tqejv1sem1wqJvA7hHw8AL/G894IR0OLyDTzPCBdi4AXiwVgZHd926pui9FZ0J20 hlg= -----END CERTIFICATE-----Generated at Sun Jan 25 15:36:12 2026 by rpki-client