This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/4IporOiK6JktRpGESiSAAQpMF7U.roa File: 4IporOiK6JktRpGESiSAAQpMF7U.roa (raw, json) Hash identifier: lg+Ex4UPGBW/ZbBLSg9owvXX4yPCqEFw5/NmsjkdpGk= Subject key identifier: E0:8A:68:AC:E8:8A:E8:99:2D:46:91:84:4A:24:80:01:0A:4C:17:B5 Certificate issuer: /CN=63d9d1d95c1eb716ee8195045a77cba2181d79ec Certificate serial: 019B7758DA352D5D28577FE67873AD289DF4 Authority key identifier: 63:D9:D1:D9:5C:1E:B7:16:EE:81:95:04:5A:77:CB:A2:18:1D:79:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y9nR2VwetxbugZUEWnfLohgdeew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/4IporOiK6JktRpGESiSAAQpMF7U.roa Signing time: Thu 01 Jan 2026 02:17:50 +0000 ROA not before: Thu 01 Jan 2026 02:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42005 IP address blocks: 92.240.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/Y9nR2VwetxbugZUEWnfLohgdeew.crl rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/Y9nR2VwetxbugZUEWnfLohgdeew.mft rsync://rpki.ripe.net/repository/DEFAULT/Y9nR2VwetxbugZUEWnfLohgdeew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:da:35:2d:5d:28:57:7f:e6:78:73:ad:28:9d:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63d9d1d95c1eb716ee8195045a77cba2181d79ec Validity Not Before: Jan 1 02:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e08a68ace88ae8992d4691844a2480010a4c17b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:41:ac:b5:44:b1:38:b9:f9:bd:e6:74:83:bf: b1:b7:c2:58:40:2f:7c:22:31:18:99:6e:13:d9:ad: ce:77:cd:01:57:cd:82:a2:ec:a7:b3:21:c0:e0:b2: e0:2a:e6:81:9e:01:8e:ed:24:82:5d:c4:79:31:3c: 9f:91:d4:37:73:39:20:7b:ec:b0:ea:92:ac:e1:ef: fd:e0:f9:c3:20:49:de:24:ab:45:4e:31:8c:73:39: 3d:a3:68:9f:22:19:de:be:b8:2d:0b:10:02:05:6a: c5:59:a9:7a:f9:0c:bd:e1:82:59:50:b9:7c:d5:4c: 8f:61:62:82:eb:c9:de:67:77:01:b8:78:b8:aa:87: c8:63:8d:f3:71:5c:12:ab:c7:42:c7:02:d6:35:34: 3b:63:00:b4:1d:d4:58:5c:2a:fb:68:15:61:de:85: 7c:05:e2:15:d2:51:5f:58:64:d3:aa:06:69:40:ea: b9:9b:69:5f:6c:2c:e5:ba:64:04:cc:17:b1:5e:8e: 58:76:60:10:9d:94:ae:60:ca:9a:b0:33:14:25:43: 33:28:b0:07:d2:2a:39:b1:db:f9:24:a5:22:c0:bc: 0d:3e:8e:e0:97:54:e2:6c:6e:0f:7a:1a:85:a9:7c: 87:38:7e:08:ee:9a:b1:a8:3b:44:a6:6a:1d:68:7c: 44:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8A:68:AC:E8:8A:E8:99:2D:46:91:84:4A:24:80:01:0A:4C:17:B5 X509v3 Authority Key Identifier: keyid:63:D9:D1:D9:5C:1E:B7:16:EE:81:95:04:5A:77:CB:A2:18:1D:79:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y9nR2VwetxbugZUEWnfLohgdeew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/4IporOiK6JktRpGESiSAAQpMF7U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/Y9nR2VwetxbugZUEWnfLohgdeew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.240.228.0/24 Signature Algorithm: sha256WithRSAEncryption 16:b2:58:31:a8:3c:ef:5c:4e:fb:54:9c:d7:37:ea:22:9f:29: 62:92:47:18:c0:9c:e2:d4:5d:e3:39:8d:2d:d6:9f:e5:f2:f6: 41:06:a6:ce:8b:07:f6:0b:3f:39:a1:7c:fb:52:c7:cc:c8:a0: ef:15:60:90:72:29:da:db:a9:d5:50:27:db:49:51:a9:09:ec: 52:70:21:65:15:04:50:6b:17:7a:ce:58:d7:5f:c7:21:01:5f: 29:d8:5e:89:88:03:bb:7c:66:6a:75:dd:4b:96:5f:e1:1c:85: 67:8a:d6:52:4e:00:6b:d8:61:47:b4:2e:82:aa:aa:44:21:fd: 37:49:0a:61:59:ab:c1:6c:80:20:91:e0:07:29:3c:49:01:a7: e8:6e:5a:55:ce:2c:7d:6e:b8:73:bf:3e:0e:46:a6:c9:18:db: f6:c0:51:09:ca:87:ee:61:22:41:dc:03:93:54:cc:ba:5f:13: 3f:18:01:0f:f5:ae:d4:37:93:c4:4b:9d:cc:c6:44:aa:65:1b: 9b:6d:5f:3c:12:57:9a:53:cb:83:f6:78:e3:70:ac:ad:2f:ff: b7:4d:a4:50:c8:05:91:e9:60:77:04:93:b8:06:e6:15:fb:5f: bc:c9:34:45:e6:d0:9a:8d:f0:3b:e6:63:99:1f:18:ab:b0:2e: 52:8a:58:e6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WNo1LV0oV3/meHOtKJ30MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZDlkMWQ5NWMxZWI3MTZlZTgxOTUwNDVhNzdjYmEyMTgx ZDc5ZWMwHhcNMjYwMTAxMDIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDhhNjhhY2U4OGFlODk5MmQ0NjkxODQ0YTI0ODAwMTBhNGMxN2I1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkGstUSxOLn5veZ0g7+xt8JYQC98 IjEYmW4T2a3Od80BV82CouynsyHA4LLgKuaBngGO7SSCXcR5MTyfkdQ3czkge+yw 6pKs4e/94PnDIEneJKtFTjGMczk9o2ifIhnevrgtCxACBWrFWal6+Qy94YJZULl8 1UyPYWKC68neZ3cBuHi4qofIY43zcVwSq8dCxwLWNTQ7YwC0HdRYXCr7aBVh3oV8 BeIV0lFfWGTTqgZpQOq5m2lfbCzlumQEzBexXo5YdmAQnZSuYMqasDMUJUMzKLAH 0io5sdv5JKUiwLwNPo7gl1TibG4PehqFqXyHOH4I7pqxqDtEpmodaHxEQwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOCKaKzoiuiZLUaRhEokgAEKTBe1MB8GA1UdIwQY MBaAFGPZ0dlcHrcW7oGVBFp3y6IYHXnsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTluUjJWd2V0eGJ1Z1pVRVduZkxvaGdkZWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8zZWQ4ZGQtZDM2ZS00NDBjLTgxNDIt ZDgwYzZiODVjZGE0LzEvNElwb3JPaUs2Smt0UnBHRVNpU0FBUXBNRjdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8zZWQ4ZGQtZDM2ZS00NDBjLTgxNDItZDgwYzZiODVjZGE0 LzEvWTluUjJWd2V0eGJ1Z1pVRVduZkxvaGdkZWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXPDkMA0G CSqGSIb3DQEBCwUAA4IBAQAWslgxqDzvXE77VJzXN+oinylikkcYwJzi1F3jOY0t 1p/l8vZBBqbOiwf2Cz85oXz7UsfMyKDvFWCQcina26nVUCfbSVGpCexScCFlFQRQ axd6zljXX8chAV8p2F6JiAO7fGZqdd1Lll/hHIVnitZSTgBr2GFHtC6CqqpEIf03 SQphWavBbIAgkeAHKTxJAafoblpVzix9brhzvz4ORqbJGNv2wFEJyofuYSJB3AOT VMy6XxM/GAEP9a7UN5PES53MxkSqZRubbV88EleaU8uD9njjcKytL/+3TaRQyAWR 6WB3BJO4BuYV+1+8yTRF5tCajfA75mOZHxirsC5Siljm -----END CERTIFICATE-----Generated at Mon Jan 26 18:43:38 2026 by rpki-client