This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/4f2DxLMVStxmUYg88VDQQBtlZGE.roa File: 4f2DxLMVStxmUYg88VDQQBtlZGE.roa (raw, json) Hash identifier: Uz7D5fgERb2SSzXvqC8vei90mKOO6rRdvCUGo8Z1qrQ= Subject key identifier: E1:FD:83:C4:B3:15:4A:DC:66:51:88:3C:F1:50:D0:40:1B:65:64:61 Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89 Certificate serial: 019B7B358C55829770E8CF6E35D69CB9E599 Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/4f2DxLMVStxmUYg88VDQQBtlZGE.roa Signing time: Thu 01 Jan 2026 20:17:45 +0000 ROA not before: Thu 01 Jan 2026 20:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210020 IP address blocks: 188.124.3.0/24 maxlen: 24 188.124.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8c:55:82:97:70:e8:cf:6e:35:d6:9c:b9:e5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89 Validity Not Before: Jan 1 20:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e1fd83c4b3154adc6651883cf150d0401b656461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8b:6f:c0:f7:77:3c:c1:1f:d8:e3:db:2a:2c: b7:45:3d:95:06:fb:38:bc:a8:92:7f:75:2f:14:cd: 90:2e:9f:88:38:ef:04:46:37:a7:2a:6a:30:e4:ca: c9:b8:ad:8e:ec:16:73:69:6b:0e:56:10:eb:07:a9: 49:cf:9e:1c:fc:39:b2:18:8e:dd:62:4d:d6:9a:ac: 3e:38:06:26:0a:69:af:e7:11:89:d3:9e:38:c8:d0: 54:ff:17:3c:ff:08:ae:04:09:4f:df:b5:79:c8:ed: 44:c7:3e:59:4b:94:89:f4:19:2a:27:cb:0d:03:d3: d3:6e:19:fc:6b:49:0c:f5:95:48:b1:bd:12:d8:21: de:87:af:ed:d2:0e:a5:2a:51:c9:88:27:91:0a:de: c4:cc:9c:08:7d:7d:67:c7:52:85:45:d6:bb:ec:a0: 95:02:2f:9e:c0:a1:66:fc:69:df:e3:ab:da:82:c8: 5c:b4:80:cb:72:f8:fc:5b:89:7d:4a:55:df:25:3e: 16:69:ac:25:5a:78:fd:75:df:56:12:b7:7a:bb:0f: 46:6a:09:95:c4:3a:6b:00:c0:c1:3f:8c:54:0f:f1: 86:2f:a5:24:e9:96:f1:f5:0a:cd:76:c0:79:ee:36: 1f:3f:17:b0:aa:7a:7f:6e:48:9f:2d:77:0e:92:e5: b8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:FD:83:C4:B3:15:4A:DC:66:51:88:3C:F1:50:D0:40:1B:65:64:61 X509v3 Authority Key Identifier: keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/4f2DxLMVStxmUYg88VDQQBtlZGE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.124.3.0/24 188.124.5.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:a8:b5:40:ab:d6:a1:25:16:ec:68:69:ab:4a:e8:18:59:63: 15:08:63:ba:ab:90:3f:4b:d9:1d:8c:06:f3:55:be:af:5e:51: 7d:d3:10:06:d7:9a:d7:61:06:90:b9:43:58:6b:c1:ad:e6:f1: f6:4d:2c:82:a1:13:c6:42:ef:a7:f7:84:d7:33:c9:0b:d7:55: 36:d0:65:3f:ae:dc:da:76:38:6a:2a:cd:d9:a2:f1:a5:4b:2b: 9a:c8:3f:ed:f4:05:dc:c8:e2:60:a5:3b:84:09:00:71:7e:08: 6e:94:e0:3d:e2:74:a2:00:68:42:48:da:f0:41:ba:7c:50:e6: 24:79:6a:dd:91:24:7a:05:39:96:e3:d9:d9:6f:40:2b:1e:08: a2:03:d2:ce:0f:fb:6b:6b:2c:9b:e6:ae:1e:4e:48:e9:33:94: e0:87:5e:8b:42:91:30:42:91:95:63:61:5e:1f:70:7f:61:4c: f2:cf:40:07:89:a8:ef:38:79:c7:77:c6:c7:24:67:ad:6f:ac: 44:d5:fc:72:17:03:5e:90:7b:6b:b3:d3:c6:64:49:65:d7:44: 5b:18:3a:f6:34:af:e7:3f:9e:92:eb:ef:46:a8:30:84:75:d6: 11:84:09:68:2d:a8:99:74:57:7f:41:09:eb:fa:b3:f4:2a:9c: e0:52:52:ab -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NYxVgpdw6M9uNdacueWZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNGFiYThiNjA3NDkzOTM0NzhlODNjMzYwZTZjYmQ3NWQx NTZmODkwHhcNMjYwMTAxMjAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMWZkODNjNGIzMTU0YWRjNjY1MTg4M2NmMTUwZDA0MDFiNjU2NDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34tvwPd3PMEf2OPbKiy3RT2VBvs4 vKiSf3UvFM2QLp+IOO8ERjenKmow5MrJuK2O7BZzaWsOVhDrB6lJz54c/DmyGI7d Yk3Wmqw+OAYmCmmv5xGJ0544yNBU/xc8/wiuBAlP37V5yO1Exz5ZS5SJ9BkqJ8sN A9PTbhn8a0kM9ZVIsb0S2CHeh6/t0g6lKlHJiCeRCt7EzJwIfX1nx1KFRda77KCV Ai+ewKFm/Gnf46vagshctIDLcvj8W4l9SlXfJT4WaawlWnj9dd9WErd6uw9GagmV xDprAMDBP4xUD/GGL6Uk6Zbx9QrNdsB57jYfPxewqnp/bkifLXcOkuW4gwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOH9g8SzFUrcZlGIPPFQ0EAbZWRhMB8GA1UdIwQY MBaAFLFKuotgdJOTR46Dw2Dmy9ddFW+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYt Y2Y2YzMwNTIxMmViLzEvNGYyRHhMTVZTdHhtVVlnODhWRFFRQnRsWkdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYtY2Y2YzMwNTIxMmVi LzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAvHwDAwQA vHwFMA0GCSqGSIb3DQEBCwUAA4IBAQBNqLVAq9ahJRbsaGmrSugYWWMVCGO6q5A/ S9kdjAbzVb6vXlF90xAG15rXYQaQuUNYa8Gt5vH2TSyCoRPGQu+n94TXM8kL11U2 0GU/rtzadjhqKs3ZovGlSyuayD/t9AXcyOJgpTuECQBxfghulOA94nSiAGhCSNrw Qbp8UOYkeWrdkSR6BTmW49nZb0ArHgiiA9LOD/trayyb5q4eTkjpM5Tgh16LQpEw QpGVY2FeH3B/YUzyz0AHiajvOHnHd8bHJGetb6xE1fxyFwNekHtrs9PGZEll10Rb GDr2NK/nP56S6+9GqDCEddYRhAloLaiZdFd/QQnr+rP0KpzgUlKr -----END CERTIFICATE-----Generated at Mon Jan 26 00:39:25 2026 by rpki-client