This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/4ph6tGmZ6gfm5-6sM7Nt4HjidYI.roa File: 4ph6tGmZ6gfm5-6sM7Nt4HjidYI.roa (raw, json) Hash identifier: qJHU1EWHTJVmwIlkDVQHWXhA/e+nkxvLdwBqQRm1UAk= Subject key identifier: E2:98:7A:B4:69:99:EA:07:E6:E7:EE:AC:33:B3:6D:E0:78:E2:75:82 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F849C83FC67FF06097A073C87581290 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/4ph6tGmZ6gfm5-6sM7Nt4HjidYI.roa Signing time: Fri 02 Jan 2026 16:22:35 +0000 ROA not before: Fri 02 Jan 2026 16:22:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41712 IP address blocks: 31.148.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:9c:83:fc:67:ff:06:09:7a:07:3c:87:58:12:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e2987ab46999ea07e6e7eeac33b36de078e27582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e6:4d:a0:0a:22:a0:c3:6d:0e:55:5d:a7:c6: 16:8f:5a:4a:a2:d3:39:df:7d:36:c5:de:c9:f5:b2: 6b:13:13:d1:68:78:4f:0c:51:25:89:8d:48:9e:f7: 34:5d:38:71:0c:9d:d4:e8:b9:c7:00:89:78:1e:7e: 3d:46:06:27:ea:2a:a9:c0:ad:cc:e0:35:82:47:c4: 51:07:ec:1e:a5:79:5a:4e:a9:4e:0c:96:0f:f8:89: cf:ba:fc:40:25:06:55:71:8e:ec:60:6e:86:64:6e: 56:d4:97:25:2d:3f:2d:4f:bf:67:28:e1:4f:a9:eb: f6:2d:c4:43:1f:dd:d6:e5:f9:75:a9:e9:94:5d:2c: 17:4b:99:58:fb:f2:c4:36:c0:c0:aa:24:83:81:1c: b7:7d:33:6e:82:4c:8a:df:b2:09:91:26:f4:c9:88: d7:57:ca:b3:fc:8c:9e:6c:c4:c9:59:9c:33:9b:a6: d8:4b:8f:1e:5b:6e:c4:b7:ae:97:a1:06:60:66:fd: 1c:0f:69:fa:60:b9:32:55:bb:df:20:70:ea:0c:c2: bc:54:9e:5d:73:bc:e0:f6:4e:d1:15:f0:b7:54:fc: ef:2d:f9:fe:dc:69:e6:e6:13:c4:fd:7e:34:00:72: d1:d1:22:71:b2:db:f0:ea:66:21:17:85:ad:8f:c1: 29:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:98:7A:B4:69:99:EA:07:E6:E7:EE:AC:33:B3:6D:E0:78:E2:75:82 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/4ph6tGmZ6gfm5-6sM7Nt4HjidYI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.148.132.0/23 Signature Algorithm: sha256WithRSAEncryption 88:69:ec:5b:d8:e9:77:a3:aa:e8:ac:76:54:1c:71:3b:9a:45: 9e:99:76:a1:3c:a1:7a:95:32:ca:c2:14:6f:17:7d:bf:64:2b: c3:0b:a3:8a:f6:ef:2d:ce:eb:86:d3:09:3c:57:9e:91:d4:33: 44:25:df:2c:2d:98:0a:ce:c3:0d:54:9f:b9:13:73:2b:94:d8: 9c:60:8b:6c:b5:ee:3e:0f:72:20:8e:1e:86:89:31:12:27:f1: a5:ca:1e:df:9a:46:56:7f:fb:07:91:d5:0d:00:98:02:f7:6d: ee:bc:c9:95:2e:00:fa:a3:5a:13:60:99:0a:8a:99:ca:e0:80: 84:57:56:d8:37:91:59:2f:3b:29:e9:e8:60:b8:15:31:94:09: f5:72:11:ca:e6:80:17:9e:f7:c7:a7:33:d2:07:e5:1d:45:52: aa:db:db:9e:54:05:e6:17:33:14:50:bf:9f:ca:62:2f:bb:49: 42:51:b8:14:9a:44:0e:92:b4:a2:0d:f9:5c:6a:6c:f8:d5:1a: 31:79:8f:39:e8:60:59:96:ea:12:d2:87:e4:f5:fc:6a:8b:e9: fc:57:43:c1:d2:77:92:55:fb:f4:0d:4b:83:9a:fc:55:31:60: 9c:da:f3:62:b8:93:11:4e:9e:cf:e3:1e:82:a3:6c:72:35:31: 5d:c7:02:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hJyD/Gf/Bgl6BzyHWBKQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjk4N2FiNDY5OTllYTA3ZTZlN2VlYWMzM2IzNmRlMDc4ZTI3NTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOZNoAoioMNtDlVdp8YWj1pKotM5 3302xd7J9bJrExPRaHhPDFEliY1Invc0XThxDJ3U6LnHAIl4Hn49RgYn6iqpwK3M 4DWCR8RRB+wepXlaTqlODJYP+InPuvxAJQZVcY7sYG6GZG5W1JclLT8tT79nKOFP qev2LcRDH93W5fl1qemUXSwXS5lY+/LENsDAqiSDgRy3fTNugkyK37IJkSb0yYjX V8qz/IyebMTJWZwzm6bYS48eW27Et66XoQZgZv0cD2n6YLkyVbvfIHDqDMK8VJ5d c7zg9k7RFfC3VPzvLfn+3Gnm5hPE/X40AHLR0SJxstvw6mYhF4Wtj8EpRwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOKYerRpmeoH5ufurDOzbeB44nWCMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvNHBoNnRHbVo2Z2ZtNS02c003TnQ0SGppZFlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBH5SEMA0G CSqGSIb3DQEBCwUAA4IBAQCIaexb2Ol3o6rorHZUHHE7mkWemXahPKF6lTLKwhRv F32/ZCvDC6OK9u8tzuuG0wk8V56R1DNEJd8sLZgKzsMNVJ+5E3MrlNicYItste4+ D3Igjh6GiTESJ/Glyh7fmkZWf/sHkdUNAJgC923uvMmVLgD6o1oTYJkKipnK4ICE V1bYN5FZLzsp6ehguBUxlAn1chHK5oAXnvfHpzPSB+UdRVKq29ueVAXmFzMUUL+f ymIvu0lCUbgUmkQOkrSiDflcamz41RoxeY856GBZluoS0ofk9fxqi+n8V0PB0neS Vfv0DUuDmvxVMWCc2vNiuJMRTp7P4x6Co2xyNTFdxwKF -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:54 2026 by rpki-client