This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/4U2NUsf0Qd1y9Vvhr1xFfTUuJck.roa File: 4U2NUsf0Qd1y9Vvhr1xFfTUuJck.roa (raw, json) Hash identifier: mAlO9ajXw1RNH/+WvHwA5l47zCkevrHDHu5iANuJWrU= Subject key identifier: E1:4D:8D:52:C7:F4:41:DD:72:F5:5B:E1:AF:5C:45:7D:35:2E:25:C9 Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511 Certificate serial: 019B7C8023B12F7E164D18C1E1437D66DB18 Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/4U2NUsf0Qd1y9Vvhr1xFfTUuJck.roa Signing time: Fri 02 Jan 2026 02:18:51 +0000 ROA not before: Fri 02 Jan 2026 02:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212709 IP address blocks: 81.252.189.0/24 maxlen: 24 194.51.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.mft rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:23:b1:2f:7e:16:4d:18:c1:e1:43:7d:66:db:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511 Validity Not Before: Jan 2 02:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e14d8d52c7f441dd72f55be1af5c457d352e25c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:96:76:ab:93:0f:e4:b1:51:ee:87:3f:2e:a4: f4:25:47:9a:1f:63:7d:7f:ba:66:1f:e8:73:c3:b5: 49:7f:25:b9:07:a2:66:2b:51:b2:2f:e2:69:f4:0e: ee:b8:e7:13:4f:87:c5:f3:da:db:cc:24:63:ee:10: e9:1c:dc:44:5c:08:64:b2:8f:c7:03:a2:93:0f:7c: 91:5b:e8:9e:01:22:b5:f2:bf:94:cd:b0:dd:ef:12: 03:68:8d:bb:be:e2:9f:50:9c:9c:f7:e0:76:90:f4: 6c:54:f1:e6:76:5e:74:9f:ba:56:ca:dd:28:c6:ee: 2f:77:c8:7e:79:dc:a4:b9:bc:3e:46:8c:fb:cb:0b: bf:87:73:8b:f3:15:ab:67:47:0c:5c:ac:de:a6:c0: d7:ac:1e:93:d8:ef:bf:cc:f2:b9:ba:b8:fd:44:b5: 5d:4e:37:13:82:02:bd:6e:c1:e9:ce:0d:ab:5f:47: b3:58:86:26:7c:8e:b3:6e:3a:08:f8:f5:57:93:df: 7e:7b:b2:0c:20:c4:77:74:0c:4f:ff:8e:88:28:c7: 4f:b5:9b:a4:87:e8:f3:ea:a2:e4:4e:42:7d:ad:6d: 91:9b:a1:a4:2a:cb:94:6c:33:79:fa:aa:da:14:e7: 81:1f:ac:5d:34:0a:ba:40:c4:2e:2d:32:55:9b:a1: 28:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4D:8D:52:C7:F4:41:DD:72:F5:5B:E1:AF:5C:45:7D:35:2E:25:C9 X509v3 Authority Key Identifier: keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/4U2NUsf0Qd1y9Vvhr1xFfTUuJck.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.252.189.0/24 194.51.187.0/24 Signature Algorithm: sha256WithRSAEncryption a2:cf:63:d4:eb:0a:61:67:72:34:a0:54:21:7d:d9:d2:1b:50: 38:4d:52:57:37:89:bc:50:b7:b3:ac:fe:e3:1b:cd:f3:7f:f0: db:c7:93:cf:82:2b:16:e1:67:27:b8:17:c7:ac:ad:af:3b:fe: 11:5f:ec:39:6e:bd:26:f9:4a:d3:c0:46:fe:6d:98:fb:43:7b: 96:28:48:6f:a2:f4:39:75:d9:01:f4:13:9f:33:5f:dc:d5:05: 40:7e:76:68:bc:be:b3:4b:9f:4c:04:e1:c9:ef:5e:49:de:f7: 0d:c5:19:c0:79:b9:6e:61:b2:54:56:09:da:54:0b:7e:bd:0b: 18:98:93:b7:14:82:36:c6:39:f9:8f:36:62:35:a9:a3:66:ac: c8:ba:f6:10:43:86:aa:b5:01:53:fe:3c:e2:ca:59:60:5c:cb: 95:27:37:cc:c9:5c:bc:7d:a5:85:01:0a:04:5f:a2:35:35:a4: 26:4d:a9:42:90:1f:47:a5:49:3d:da:23:60:20:50:dd:49:4f: a5:33:34:4b:44:72:58:c3:ac:81:0a:e4:ee:f0:93:f4:53:79: 2e:8f:95:8e:bd:04:19:39:96:90:d0:32:ba:a0:52:1d:b6:d3: 33:58:ed:5d:07:a2:2d:7e:6e:99:fb:bd:f6:17:1f:a8:4e:bf: 97:30:a4:6c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gCOxL34WTRjB4UN9ZtsYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh MTA1MTEwHhcNMjYwMTAyMDIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTRkOGQ1MmM3ZjQ0MWRkNzJmNTViZTFhZjVjNDU3ZDM1MmUyNWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5Z2q5MP5LFR7oc/LqT0JUeaH2N9 f7pmH+hzw7VJfyW5B6JmK1GyL+Jp9A7uuOcTT4fF89rbzCRj7hDpHNxEXAhkso/H A6KTD3yRW+ieASK18r+UzbDd7xIDaI27vuKfUJyc9+B2kPRsVPHmdl50n7pWyt0o xu4vd8h+edykubw+Roz7ywu/h3OL8xWrZ0cMXKzepsDXrB6T2O+/zPK5urj9RLVd TjcTggK9bsHpzg2rX0ezWIYmfI6zbjoI+PVXk99+e7IMIMR3dAxP/46IKMdPtZuk h+jz6qLkTkJ9rW2Rm6GkKsuUbDN5+qraFOeBH6xdNAq6QMQuLTJVm6EocwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOFNjVLH9EHdcvVb4a9cRX01LiXJMB8GA1UdIwQY MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt NDU5MzVmNTA2YTEyLzEvNFUyTlVzZjBRZDF5OVZ2aHIxeEZmVFV1SmNrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUfy9AwQA wjO7MA0GCSqGSIb3DQEBCwUAA4IBAQCiz2PU6wphZ3I0oFQhfdnSG1A4TVJXN4m8 ULezrP7jG83zf/Dbx5PPgisW4WcnuBfHrK2vO/4RX+w5br0m+UrTwEb+bZj7Q3uW KEhvovQ5ddkB9BOfM1/c1QVAfnZovL6zS59MBOHJ715J3vcNxRnAebluYbJUVgna VAt+vQsYmJO3FII2xjn5jzZiNamjZqzIuvYQQ4aqtQFT/jziyllgXMuVJzfMyVy8 faWFAQoEX6I1NaQmTalCkB9HpUk92iNgIFDdSU+lMzRLRHJYw6yBCuTu8JP0U3ku j5WOvQQZOZaQ0DK6oFIdttMzWO1dB6Itfm6Z+732Fx+oTr+XMKRs -----END CERTIFICATE-----Generated at Sun Jan 25 19:02:00 2026 by rpki-client