This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5687c1-df9f-4ae5-a4cc-ec03ebd19000/1/NU0khScwjPjv2Td0G2zhVpmilbA.roa File: NU0khScwjPjv2Td0G2zhVpmilbA.roa (raw, json) Hash identifier: AeqeiYhPTRBagvHIsxnzHVAbHQ3SfkNkz9Z07JIdpsg= Subject key identifier: 35:4D:24:85:27:30:8C:F8:EF:D9:37:74:1B:6C:E1:56:99:A2:95:B0 Certificate issuer: /CN=4c8a7886662254be39ea1add72728e000eb2c25a Certificate serial: 019B7AC924125C9407F74693F2743EA168ED Authority key identifier: 4C:8A:78:86:66:22:54:BE:39:EA:1A:DD:72:72:8E:00:0E:B2:C2:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TIp4hmYiVL456hrdcnKOAA6ywlo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5687c1-df9f-4ae5-a4cc-ec03ebd19000/1/NU0khScwjPjv2Td0G2zhVpmilbA.roa Signing time: Thu 01 Jan 2026 18:19:20 +0000 ROA not before: Thu 01 Jan 2026 18:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6805 IP address blocks: 82.113.96.0/19 maxlen: 19 82.113.96.0/20 maxlen: 20 82.113.112.0/20 maxlen: 20 89.204.128.0/19 maxlen: 19 89.204.128.0/21 maxlen: 21 89.204.130.0/24 maxlen: 24 89.204.135.0/24 maxlen: 24 89.204.136.0/21 maxlen: 21 89.204.144.0/21 maxlen: 21 89.204.152.0/21 maxlen: 21 89.204.153.0/24 maxlen: 24 185.98.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5687c1-df9f-4ae5-a4cc-ec03ebd19000/1/TIp4hmYiVL456hrdcnKOAA6ywlo.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/5687c1-df9f-4ae5-a4cc-ec03ebd19000/1/TIp4hmYiVL456hrdcnKOAA6ywlo.mft rsync://rpki.ripe.net/repository/DEFAULT/TIp4hmYiVL456hrdcnKOAA6ywlo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:24:12:5c:94:07:f7:46:93:f2:74:3e:a1:68:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c8a7886662254be39ea1add72728e000eb2c25a Validity Not Before: Jan 1 18:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=354d248527308cf8efd937741b6ce15699a295b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4a:7b:fd:72:85:b3:0e:39:a5:73:3b:9f:ed: 49:c2:4a:a1:0f:cb:b5:a4:b4:1a:57:59:24:2a:3f: 54:c5:ea:a2:91:a1:6e:6d:bc:75:a1:aa:ca:31:7e: 91:0e:72:ec:23:6c:6b:54:ef:a0:ca:da:64:df:b9: a3:9c:e0:b7:50:17:b6:2f:40:2b:ce:2d:88:15:9c: 87:b4:96:9d:79:f1:4c:cd:e6:fa:2c:9d:ae:1c:69: 0c:95:2b:98:24:b2:55:2a:ba:b0:0c:f3:10:f8:1d: d0:84:31:4d:13:64:99:51:ef:64:2f:3b:b9:24:28: 39:93:29:73:a2:6e:54:b9:72:ed:ea:b8:d1:e2:5b: 07:d9:bb:be:45:82:b4:31:83:51:28:d7:c3:db:4a: 6b:a6:82:20:c3:83:16:57:be:bc:16:18:30:80:3d: 60:e1:37:1e:3e:be:7e:8c:f6:18:ed:02:bc:01:35: 10:08:d1:27:d3:c1:c9:6c:c8:e6:5b:2c:42:50:4b: 22:a6:46:94:1c:1c:c7:ef:61:5a:44:4c:a4:a7:cb: 9f:7c:59:db:d3:ab:98:bc:27:18:4c:0a:f2:6d:08: 80:3f:c7:dd:8e:18:9f:f9:86:43:96:c2:1d:09:82: 7a:fc:6c:c1:97:12:35:24:15:3a:e6:33:72:63:53: d8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:4D:24:85:27:30:8C:F8:EF:D9:37:74:1B:6C:E1:56:99:A2:95:B0 X509v3 Authority Key Identifier: keyid:4C:8A:78:86:66:22:54:BE:39:EA:1A:DD:72:72:8E:00:0E:B2:C2:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TIp4hmYiVL456hrdcnKOAA6ywlo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5687c1-df9f-4ae5-a4cc-ec03ebd19000/1/NU0khScwjPjv2Td0G2zhVpmilbA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5687c1-df9f-4ae5-a4cc-ec03ebd19000/1/TIp4hmYiVL456hrdcnKOAA6ywlo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.113.96.0/19 89.204.128.0/19 185.98.140.0/22 Signature Algorithm: sha256WithRSAEncryption 69:61:be:d6:91:58:62:26:c0:7d:43:4f:50:a7:1b:d1:20:dc: 77:07:2e:2f:81:97:44:ba:69:98:1b:0c:d9:e4:79:a9:cd:4a: d5:8b:76:6e:c7:47:8f:a4:a3:cd:8e:1d:79:b6:71:86:88:9a: 22:ad:ba:c1:cb:8f:58:0a:37:24:33:69:55:2c:53:64:3d:67: bb:09:81:f7:53:db:20:15:d5:55:77:89:1d:05:21:ed:ed:6f: 0c:35:95:4c:ab:f9:15:cf:87:38:32:10:95:42:60:5e:1b:26: 90:9e:55:68:80:3a:45:09:7d:a1:13:87:b1:a4:77:2f:28:15: 80:32:c0:64:d0:1c:77:de:69:86:6a:e9:14:43:b2:f3:07:49: 8d:b9:3f:6d:a1:f8:98:d0:d9:f9:c7:ee:91:72:2d:7c:1b:13: d2:5a:a3:e5:25:48:49:0d:cd:56:f7:2d:a5:fc:2c:ea:68:b2: 37:b3:05:85:4f:b3:15:c4:2c:fc:d0:22:9f:b2:0c:bd:8a:fd: b8:03:d0:63:1f:75:e1:5a:70:0f:ba:bf:23:ea:2a:e2:36:4b: 16:eb:fa:12:c6:c1:76:d4:8f:df:4d:c4:7c:91:be:18:fc:d5: d5:62:9e:98:a8:c4:0c:aa:21:ed:8e:bd:b4:f9:5d:d0:bf:38: 45:b9:af:11 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt6ySQSXJQH90aT8nQ+oWjtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjOGE3ODg2NjYyMjU0YmUzOWVhMWFkZDcyNzI4ZTAwMGVi MmMyNWEwHhcNMjYwMTAxMTgxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTRkMjQ4NTI3MzA4Y2Y4ZWZkOTM3NzQxYjZjZTE1Njk5YTI5NWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0p7/XKFsw45pXM7n+1JwkqhD8u1 pLQaV1kkKj9UxeqikaFubbx1oarKMX6RDnLsI2xrVO+gytpk37mjnOC3UBe2L0Ar zi2IFZyHtJadefFMzeb6LJ2uHGkMlSuYJLJVKrqwDPMQ+B3QhDFNE2SZUe9kLzu5 JCg5kylzom5UuXLt6rjR4lsH2bu+RYK0MYNRKNfD20prpoIgw4MWV768FhgwgD1g 4TcePr5+jPYY7QK8ATUQCNEn08HJbMjmWyxCUEsipkaUHBzH72FaREykp8uffFnb 06uYvCcYTArybQiAP8fdjhif+YZDlsIdCYJ6/GzBlxI1JBU65jNyY1PY7QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFDVNJIUnMIz479k3dBts4VaZopWwMB8GA1UdIwQY MBaAFEyKeIZmIlS+Oeoa3XJyjgAOssJaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVElwNGhtWWlWTDQ1NmhyZGNuS09BQTZ5d2xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy81Njg3YzEtZGY5Zi00YWU1LWE0Y2Mt ZWMwM2ViZDE5MDAwLzEvTlUwa2hTY3dqUGp2MlRkMEcyemhWcG1pbGJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy81Njg3YzEtZGY5Zi00YWU1LWE0Y2MtZWMwM2ViZDE5MDAw LzEvVElwNGhtWWlWTDQ1NmhyZGNuS09BQTZ5d2xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQFUnFgAwQF WcyAAwQCuWKMMA0GCSqGSIb3DQEBCwUAA4IBAQBpYb7WkVhiJsB9Q09QpxvRINx3 By4vgZdEummYGwzZ5HmpzUrVi3Zux0ePpKPNjh15tnGGiJoirbrBy49YCjckM2lV LFNkPWe7CYH3U9sgFdVVd4kdBSHt7W8MNZVMq/kVz4c4MhCVQmBeGyaQnlVogDpF CX2hE4expHcvKBWAMsBk0Bx33mmGaukUQ7LzB0mNuT9tofiY0Nn5x+6Rci18GxPS WqPlJUhJDc1W9y2l/CzqaLI3swWFT7MVxCz80CKfsgy9iv24A9BjH3XhWnAPur8j 6iriNksW6/oSxsF21I/fTcR8kb4Y/NXVYp6YqMQMqiHtjr20+V3QvzhFua8R -----END CERTIFICATE-----Generated at Sun Jan 25 18:06:31 2026 by rpki-client