This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/M4VIxAsjnWUbH6wj5hZONC0aLhc.roa File: M4VIxAsjnWUbH6wj5hZONC0aLhc.roa (raw, json) Hash identifier: gupzBjiIjp4MhIgh1kYK1O3xRS4nwuhoT78Vii8+xOk= Subject key identifier: 33:85:48:C4:0B:23:9D:65:1B:1F:AC:23:E6:16:4E:34:2D:1A:2E:17 Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6 Certificate serial: 019B7E388DDE27F4324E5AAE0C62C1B45E9C Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/M4VIxAsjnWUbH6wj5hZONC0aLhc.roa Signing time: Fri 02 Jan 2026 10:19:54 +0000 ROA not before: Fri 02 Jan 2026 10:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20559 IP address blocks: 213.249.72.0/24 maxlen: 24 2a01:448:72::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.mft rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:8d:de:27:f4:32:4e:5a:ae:0c:62:c1:b4:5e:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6 Validity Not Before: Jan 2 10:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=338548c40b239d651b1fac23e6164e342d1a2e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:38:4d:be:5b:a0:c1:81:f1:ed:ce:6a:4f:e3: d6:4c:99:93:0b:29:77:10:22:e4:f7:4b:67:06:9d: 01:b0:fd:ff:4c:ea:29:33:ed:68:9b:4c:3e:fe:fc: 86:27:81:d5:c4:e5:ea:1d:d3:bd:20:0f:d0:1f:d7: b8:06:ef:fe:d2:e6:c9:70:67:d2:df:9f:dc:5a:5b: e6:93:b1:51:44:20:75:04:be:3e:10:c0:66:95:f0: af:3d:43:ee:fd:72:af:2c:38:75:47:c2:ea:4d:fe: 15:ab:dc:49:f7:f1:13:8b:2a:e0:02:06:c9:10:cd: ae:8e:80:5b:21:1b:e2:75:a3:99:49:fa:cd:4e:5f: 01:0f:7e:86:71:6e:ca:26:68:21:dd:5e:f2:6e:3d: 92:44:84:15:d7:34:f3:9d:00:26:29:55:c6:46:1f: 2c:1e:e2:0e:21:c7:ed:14:b1:47:78:d2:c0:d8:69: cc:b4:35:b8:d0:29:bb:74:44:60:c5:35:a2:97:6d: 08:5e:9c:db:ed:40:63:ac:b6:b5:5a:93:9d:13:13: 5d:8f:ed:d9:71:23:08:78:03:3a:b5:8b:e6:f2:4d: a4:37:5c:2d:73:ed:3d:bb:ec:54:d6:e1:bc:c4:ce: b4:23:87:b3:bb:29:8d:df:2d:89:00:6c:84:aa:1c: 05:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:85:48:C4:0B:23:9D:65:1B:1F:AC:23:E6:16:4E:34:2D:1A:2E:17 X509v3 Authority Key Identifier: keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/M4VIxAsjnWUbH6wj5hZONC0aLhc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.249.72.0/24 IPv6: 2a01:448:72::/48 Signature Algorithm: sha256WithRSAEncryption 5e:fe:14:88:b1:ab:9f:44:b7:d0:d2:c0:28:cf:3e:dd:77:1c: d5:62:ad:06:4c:94:b1:fc:44:b9:c9:03:01:bb:27:bd:58:a1: 0f:7a:a5:14:7a:ae:07:d4:d1:2b:3d:4e:26:9b:a8:d6:66:20: 48:21:45:06:21:89:94:7a:eb:e6:a4:e0:ad:2a:4a:32:04:95: dc:97:f3:04:d4:93:6a:5e:9e:3b:5c:b6:f0:2a:e1:fb:32:7c: 60:53:0c:49:10:f9:87:1e:5c:45:77:d3:7f:1c:25:4d:bf:1f: b4:2f:7c:40:2b:c5:db:fe:fc:52:ab:e8:41:24:a5:0a:c6:20: 70:d7:aa:fc:7c:69:bd:1a:15:de:9d:8d:6b:b5:55:c0:7c:80: 7f:f1:5b:e4:d8:68:54:fd:10:49:02:a2:54:e5:a2:38:4d:cc: da:d8:74:d6:e7:24:0f:e1:5f:90:fa:95:05:e3:26:43:f8:f9: 4b:d3:e5:fc:df:c5:41:76:e2:8a:04:86:d4:4c:2b:0c:62:96: 1c:a9:83:a2:4e:53:2f:11:ea:49:20:92:f1:70:d1:d6:6c:eb: 06:21:e0:f2:35:c2:2e:41:4a:e8:5f:14:eb:48:8c:04:9f:89: 33:5c:73:c6:e3:ab:bc:28:53:6c:0c:87:1e:da:46:f9:ea:83: bd:72:24:d0 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+OI3eJ/QyTlquDGLBtF6cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YmVlMGViZDA2YjRiODEyZjllMTM3MTZlMjVmMWMzYzNk MTRjYzYwHhcNMjYwMTAyMTAxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzg1NDhjNDBiMjM5ZDY1MWIxZmFjMjNlNjE2NGUzNDJkMWEyZTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmThNvlugwYHx7c5qT+PWTJmTCyl3 ECLk90tnBp0BsP3/TOopM+1om0w+/vyGJ4HVxOXqHdO9IA/QH9e4Bu/+0ubJcGfS 35/cWlvmk7FRRCB1BL4+EMBmlfCvPUPu/XKvLDh1R8LqTf4Vq9xJ9/ETiyrgAgbJ EM2ujoBbIRvidaOZSfrNTl8BD36GcW7KJmgh3V7ybj2SRIQV1zTznQAmKVXGRh8s HuIOIcftFLFHeNLA2GnMtDW40Cm7dERgxTWil20IXpzb7UBjrLa1WpOdExNdj+3Z cSMIeAM6tYvm8k2kN1wtc+09u+xU1uG8xM60I4ezuymN3y2JAGyEqhwFdQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDOFSMQLI51lGx+sI+YWTjQtGi4XMB8GA1UdIwQY MBaAFBS+4OvQa0uBL54TcW4l8cPD0UzGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUt ZDFiYjZiNGRkNzAxLzEvTTRWSXhBc2puV1ViSDZ3ajVoWk9OQzBhTGhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUtZDFiYjZiNGRkNzAx LzEvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQA1flIMA8E AgACMAkDBwAqAQRIAHIwDQYJKoZIhvcNAQELBQADggEBAF7+FIixq59Et9DSwCjP Pt13HNVirQZMlLH8RLnJAwG7J71YoQ96pRR6rgfU0Ss9TiabqNZmIEghRQYhiZR6 6+ak4K0qSjIEldyX8wTUk2penjtctvAq4fsyfGBTDEkQ+YceXEV3038cJU2/H7Qv fEArxdv+/FKr6EEkpQrGIHDXqvx8ab0aFd6djWu1VcB8gH/xW+TYaFT9EEkColTl ojhNzNrYdNbnJA/hX5D6lQXjJkP4+UvT5fzfxUF24ooEhtRMKwxilhypg6JOUy8R 6kkgkvFw0dZs6wYh4PI1wi5BSuhfFOtIjASfiTNcc8bjq7woU2wMhx7aRvnqg71y JNA= -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:13 2026 by rpki-client