This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/4IwzD6JWssSfDrS7OsowJYf8F3g.roa File: 4IwzD6JWssSfDrS7OsowJYf8F3g.roa (raw, json) Hash identifier: 3STzPQwFjgmuSyiPKC+VcXtn9kHY3QHNznY54Mamy30= Subject key identifier: E0:8C:33:0F:A2:56:B2:C4:9F:0E:B4:BB:3A:CA:30:25:87:FC:17:78 Certificate issuer: /CN=8536146119b044539082e326cca903200b8d4b1a Certificate serial: 019B7C808EDD2E23915D9187BCFE6EF76E67 Authority key identifier: 85:36:14:61:19:B0:44:53:90:82:E3:26:CC:A9:03:20:0B:8D:4B:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTYUYRmwRFOQguMmzKkDIAuNSxo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/4IwzD6JWssSfDrS7OsowJYf8F3g.roa Signing time: Fri 02 Jan 2026 02:19:18 +0000 ROA not before: Fri 02 Jan 2026 02:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212552 IP address blocks: 91.216.104.0/24 maxlen: 24 91.228.186.0/24 maxlen: 24 141.98.210.0/24 maxlen: 24 146.19.130.0/24 maxlen: 24 185.110.191.0/24 maxlen: 24 185.221.237.0/24 maxlen: 24 185.231.59.0/24 maxlen: 24 193.163.201.0/24 maxlen: 24 194.146.123.0/24 maxlen: 24 217.197.97.0/24 maxlen: 24 2a14:7981::/32 maxlen: 32 2a14:7981:467::/48 maxlen: 48 2a14:7981:470::/48 maxlen: 48 2a14:7981:471::/48 maxlen: 48 2a14:7981:472::/48 maxlen: 48 2a14:7981:473::/48 maxlen: 48 2a14:7981:2002::/48 maxlen: 48 2a14:7981:3008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/hTYUYRmwRFOQguMmzKkDIAuNSxo.crl rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/hTYUYRmwRFOQguMmzKkDIAuNSxo.mft rsync://rpki.ripe.net/repository/DEFAULT/hTYUYRmwRFOQguMmzKkDIAuNSxo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:8e:dd:2e:23:91:5d:91:87:bc:fe:6e:f7:6e:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8536146119b044539082e326cca903200b8d4b1a Validity Not Before: Jan 2 02:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e08c330fa256b2c49f0eb4bb3aca302587fc1778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a9:50:e1:41:b3:95:d6:4f:3f:7a:f2:e9:65: c4:61:d7:14:50:c8:e3:b2:f2:38:6e:54:d4:04:4e: a7:91:9b:f2:bb:2b:6c:0c:a0:79:b0:51:86:d6:56: 91:b4:cb:bd:e6:e2:a1:19:35:50:67:b3:98:f0:5d: b1:27:b7:37:f4:99:00:3c:b9:14:13:a0:ad:87:c6: ee:be:e7:05:3d:4c:7e:9a:8e:8b:79:37:e4:19:3f: 84:6a:52:ae:cc:f7:90:68:b5:a8:e9:f0:ce:4b:f9: fd:49:f1:e9:dd:25:f8:79:20:23:93:e0:2d:6e:dd: 94:7a:91:07:dd:c5:56:5b:8b:9b:ca:74:c2:d9:28: 3f:9a:c6:b8:f5:0e:9c:7d:52:dc:2d:bd:e4:0a:c9: 6a:b5:54:a3:09:ce:1b:2e:1e:55:5b:9b:1b:1e:e2: d9:20:ec:c3:6f:61:4c:9f:df:97:74:40:6d:26:03: ad:6d:11:f2:03:ef:05:10:b9:cf:f1:af:2a:0b:90: 81:19:d2:7c:42:8c:b8:e1:36:c9:ab:1b:6f:7a:93: f0:ea:2d:ab:5e:e0:3c:8d:0b:b5:c3:b2:8e:b3:0a: 34:72:e4:6b:b5:1f:ba:78:4b:4b:19:97:8f:69:99: c2:db:27:71:38:c8:3a:8c:d7:b1:0e:14:20:e2:a4: d0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8C:33:0F:A2:56:B2:C4:9F:0E:B4:BB:3A:CA:30:25:87:FC:17:78 X509v3 Authority Key Identifier: keyid:85:36:14:61:19:B0:44:53:90:82:E3:26:CC:A9:03:20:0B:8D:4B:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTYUYRmwRFOQguMmzKkDIAuNSxo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/4IwzD6JWssSfDrS7OsowJYf8F3g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/hTYUYRmwRFOQguMmzKkDIAuNSxo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.104.0/24 91.228.186.0/24 141.98.210.0/24 146.19.130.0/24 185.110.191.0/24 185.221.237.0/24 185.231.59.0/24 193.163.201.0/24 194.146.123.0/24 217.197.97.0/24 IPv6: 2a14:7981::/32 Signature Algorithm: sha256WithRSAEncryption 30:fb:91:3b:05:2c:6a:b1:9f:0b:ab:65:b1:85:de:d4:c4:9e: 97:42:f2:52:ce:4b:3a:b4:f4:1a:00:97:83:0e:1d:75:86:64: 6b:74:95:60:73:1c:68:53:47:61:68:71:f6:a5:6d:12:01:e8: fb:c4:cb:bc:e1:9a:15:6b:b6:dc:f0:d9:ac:95:8b:14:0a:ed: 51:93:2f:47:4c:bc:7f:6c:83:a3:7a:10:fb:2a:eb:aa:a8:9a: 1f:a9:dc:a5:5e:92:11:3a:db:1f:5c:7f:6a:90:f4:19:4e:2b: f1:58:6e:c2:e3:03:ce:ff:47:cf:e4:93:d0:e8:91:e6:08:81: e9:b0:85:9a:d0:10:7a:86:fb:12:a1:64:cf:05:a3:82:6b:2e: 4c:e3:20:24:7b:39:89:be:b7:31:b3:87:3f:5c:4d:e1:15:48: 3a:3c:04:73:15:be:c0:5c:ae:4a:32:d8:77:c3:95:6d:4c:f6: d6:3b:63:f2:26:ea:53:d2:88:82:de:9f:2e:c2:78:2c:89:ae: fd:5d:b1:ad:cb:10:b8:e0:4a:c2:8b:12:3b:a9:27:ea:7e:dc: af:e3:17:04:11:a5:7d:6b:fa:e3:9f:c1:17:91:34:fc:10:ce: 0d:77:b6:b7:eb:10:7d:fd:1a:f8:62:eb:9c:82:d7:31:8e:52: 41:9c:c9:6b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgISAZt8gI7dLiORXZGHvP5u925nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MzYxNDYxMTliMDQ0NTM5MDgyZTMyNmNjYTkwMzIwMGI4 ZDRiMWEwHhcNMjYwMTAyMDIxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDhjMzMwZmEyNTZiMmM0OWYwZWI0YmIzYWNhMzAyNTg3ZmMxNzc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKlQ4UGzldZPP3ry6WXEYdcUUMjj svI4blTUBE6nkZvyuytsDKB5sFGG1laRtMu95uKhGTVQZ7OY8F2xJ7c39JkAPLkU E6Cth8buvucFPUx+mo6LeTfkGT+EalKuzPeQaLWo6fDOS/n9SfHp3SX4eSAjk+At bt2UepEH3cVWW4ubynTC2Sg/msa49Q6cfVLcLb3kCslqtVSjCc4bLh5VW5sbHuLZ IOzDb2FMn9+XdEBtJgOtbRHyA+8FELnP8a8qC5CBGdJ8Qoy44TbJqxtvepPw6i2r XuA8jQu1w7KOswo0cuRrtR+6eEtLGZePaZnC2ydxOMg6jNexDhQg4qTQ9wIDAQAB o4ICTjCCAkowHQYDVR0OBBYEFOCMMw+iVrLEnw60uzrKMCWH/Bd4MB8GA1UdIwQY MBaAFIU2FGEZsERTkILjJsypAyALjUsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFRZVVlSbXdSRk9RZ3VNbXpLa0RJQXVOU3hvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81ZDVmOTMtYWM1YS00MWUzLTgwYzMt MGM2NzIxN2NjOTZiLzEvNEl3ekQ2Sldzc1NmRHJTN09zb3dKWWY4RjNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni81ZDVmOTMtYWM1YS00MWUzLTgwYzMtMGM2NzIxN2NjOTZi LzEvaFRZVVlSbXdSRk9RZ3VNbXpLa0RJQXVOU3hvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBCBAIAATA8AwQAW9hoAwQA W+S6AwQAjWLSAwQAkhOCAwQAuW6/AwQAud3tAwQAuec7AwQAwaPJAwQAwpJ7AwQA 2cVhMA0EAgACMAcDBQAqFHmBMA0GCSqGSIb3DQEBCwUAA4IBAQAw+5E7BSxqsZ8L q2Wxhd7UxJ6XQvJSzks6tPQaAJeDDh11hmRrdJVgcxxoU0dhaHH2pW0SAej7xMu8 4ZoVa7bc8NmslYsUCu1Rky9HTLx/bIOjehD7KuuqqJofqdylXpIROtsfXH9qkPQZ TivxWG7C4wPO/0fP5JPQ6JHmCIHpsIWa0BB6hvsSoWTPBaOCay5M4yAkezmJvrcx s4c/XE3hFUg6PARzFb7AXK5KMth3w5VtTPbWO2PyJupT0oiC3p8uwngsia79XbGt yxC44ErCixI7qSfqftyv4xcEEaV9a/rjn8EXkTT8EM4Nd7a36xB9/Rr4Yuucgtcx jlJBnMlr -----END CERTIFICATE-----Generated at Sun Jan 25 22:32:00 2026 by rpki-client