This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa File: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (raw, json) Hash identifier: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o= Subject key identifier: 77:86:7C:77:21:30:59:59:4A:FB:3D:4C:B7:CD:95:75:16:5A:21:C6 Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f Certificate serial: 019B7F15E1D19009C85B9EFA716B31FC84B4 Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa Signing time: Fri 02 Jan 2026 14:21:39 +0000 ROA not before: Fri 02 Jan 2026 14:21:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43668 IP address blocks: 91.197.184.0/22 maxlen: 22 185.225.196.0/24 maxlen: 24 194.116.141.0/24 maxlen: 24 2001:67c:15d8::/48 maxlen: 48 2a0d:5d00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:e1:d1:90:09:c8:5b:9e:fa:71:6b:31:fc:84:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f Validity Not Before: Jan 2 14:21:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=77867c77213059594afb3d4cb7cd9575165a21c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f0:e8:3a:c5:f5:4e:61:26:1c:6f:34:0f:9b: dc:10:5e:f0:08:8a:98:a6:fd:0a:1b:d1:ff:55:05: 3e:08:7d:fc:ba:ac:d3:af:75:1b:03:21:d1:92:25: c8:b4:45:1c:6a:45:35:cd:c9:73:7e:37:38:41:28: 84:c4:17:4d:b9:6e:86:c5:3e:3e:c5:f4:3c:fd:db: 2d:5b:8c:57:fa:ef:20:c8:a5:1e:61:e1:61:7a:e4: ca:26:21:46:92:50:f7:8a:fe:56:6c:7a:35:35:6e: e4:17:e9:b8:ca:b9:7d:b5:7c:45:79:43:61:4e:6e: 89:80:71:05:a1:64:e8:e4:a1:a6:0d:16:b7:d7:af: a5:d9:37:87:f3:ef:74:dc:ff:2e:51:48:3e:d7:8a: b1:52:43:aa:53:86:a5:e7:18:87:45:33:6a:aa:3b: 16:1c:77:d5:47:e0:ca:62:15:0b:23:1d:2d:63:2f: 69:a3:34:ba:01:c4:6c:86:ee:26:21:27:c8:10:e1: 94:ae:c8:fb:d6:fa:55:4d:76:a1:1c:e0:d9:25:56: ee:f0:1d:ad:13:11:c4:64:27:29:ec:47:8f:2a:49: f3:94:45:da:6b:50:84:0d:87:64:97:41:78:6b:1d: fa:26:f1:c6:72:c3:a8:3f:5c:99:59:c9:15:57:43: 09:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:86:7C:77:21:30:59:59:4A:FB:3D:4C:B7:CD:95:75:16:5A:21:C6 X509v3 Authority Key Identifier: keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.197.184.0/22 185.225.196.0/24 194.116.141.0/24 IPv6: 2001:67c:15d8::/48 2a0d:5d00::/29 Signature Algorithm: sha256WithRSAEncryption bf:a5:ad:2b:ac:17:d8:06:50:41:6e:2f:ce:c2:da:be:cd:df: bc:26:f4:6b:04:38:f9:f7:e2:8f:b6:f3:04:13:95:7a:d9:72: 81:e6:42:d2:38:eb:c2:cd:31:57:97:cd:3e:ac:01:0b:b5:7e: 73:b1:b5:27:f9:8b:e9:ab:37:09:8b:7f:44:e9:d8:66:d4:41: 85:fe:4d:00:f6:f7:83:85:f8:cd:f4:88:78:56:d1:ac:ae:a2: 65:f8:df:19:6a:df:52:51:1b:3f:16:72:b4:b0:d2:47:a8:e8: 50:c4:e0:0a:74:95:60:ce:84:ea:c7:e1:ba:cc:cf:13:54:45: c7:58:99:69:1c:91:1a:1c:f6:7a:a2:d8:18:87:5d:a9:bc:b8: 31:26:00:12:0b:02:1b:0c:b4:df:8a:c0:d1:1f:e1:e6:44:25: c4:17:ef:f6:b9:7a:a7:0b:5f:d5:b5:26:a1:20:0c:03:dd:c8: 2f:d2:85:55:c9:76:d7:da:70:75:68:4d:bb:4f:4c:53:2c:d9: 4a:4f:43:8e:61:42:24:c1:64:15:8a:77:bb:12:e7:ed:ee:d3: 5b:c5:aa:66:61:d9:dc:83:61:53:dc:42:b7:d9:85:cf:bd:12: d8:0b:e5:d1:17:ec:c2:f5:45:54:c6:e6:a1:36:6a:49:dd:a7: ac:6a:e6:ca -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt/FeHRkAnIW576cWsx/IS0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2 NjFhNWYwHhcNMjYwMTAyMTQyMTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Nzg2N2M3NzIxMzA1OTU5NGFmYjNkNGNiN2NkOTU3NTE2NWEyMWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/DoOsX1TmEmHG80D5vcEF7wCIqY pv0KG9H/VQU+CH38uqzTr3UbAyHRkiXItEUcakU1zclzfjc4QSiExBdNuW6GxT4+ xfQ8/dstW4xX+u8gyKUeYeFheuTKJiFGklD3iv5WbHo1NW7kF+m4yrl9tXxFeUNh Tm6JgHEFoWTo5KGmDRa316+l2TeH8+903P8uUUg+14qxUkOqU4al5xiHRTNqqjsW HHfVR+DKYhULIx0tYy9pozS6AcRshu4mISfIEOGUrsj71vpVTXahHODZJVbu8B2t ExHEZCcp7EePKknzlEXaa1CEDYdkl0F4ax36JvHGcsOoP1yZWckVV0MJtQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFHeGfHchMFlZSvs9TLfNlXUWWiHGMB8GA1UdIwQY MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt YTdkOTQ1YWYxNGU1LzEvZDRaOGR5RXdXVmxLLXoxTXQ4MlZkUlphSWNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1 LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAYBAIAATASAwQCW8W4AwQA ueHEAwQAwnSNMBYEAgACMBADBwAgAQZ8FdgDBQMqDV0AMA0GCSqGSIb3DQEBCwUA A4IBAQC/pa0rrBfYBlBBbi/Owtq+zd+8JvRrBDj59+KPtvMEE5V62XKB5kLSOOvC zTFXl80+rAELtX5zsbUn+YvpqzcJi39E6dhm1EGF/k0A9veDhfjN9Ih4VtGsrqJl +N8Zat9SURs/FnK0sNJHqOhQxOAKdJVgzoTqx+G6zM8TVEXHWJlpHJEaHPZ6otgY h12pvLgxJgASCwIbDLTfisDRH+HmRCXEF+/2uXqnC1/VtSahIAwD3cgv0oVVyXbX 2nB1aE27T0xTLNlKT0OOYUIkwWQVine7Euft7tNbxapmYdncg2FT3EK32YXPvRLY C+XRF+zC9UVUxuahNmpJ3aesaubK -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:38 2026 by rpki-client