This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/4Ffdv4KtJfFvxZLjqWGkVv74nAQ.roa File: 4Ffdv4KtJfFvxZLjqWGkVv74nAQ.roa (raw, json) Hash identifier: sdhLpSw3Nqp2sJtnjs2/xgyKEd+7ky/DZNBPyzQg5go= Subject key identifier: E0:57:DD:BF:82:AD:25:F1:6F:C5:92:E3:A9:61:A4:56:FE:F8:9C:04 Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30 Certificate serial: 019B7EA4586B7283D844AEC0DA19A3D3CC71 Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/4Ffdv4KtJfFvxZLjqWGkVv74nAQ.roa Signing time: Fri 02 Jan 2026 12:17:38 +0000 ROA not before: Fri 02 Jan 2026 12:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20546 IP address blocks: 195.253.64.0/24 maxlen: 24 195.253.88.0/24 maxlen: 24 195.253.92.0/24 maxlen: 24 195.253.118.0/24 maxlen: 24 2a01:5b0:4::/46 maxlen: 48 2a01:5b0:16::/48 maxlen: 48 2a01:5b0:36::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.mft rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:58:6b:72:83:d8:44:ae:c0:da:19:a3:d3:cc:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30 Validity Not Before: Jan 2 12:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e057ddbf82ad25f16fc592e3a961a456fef89c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f8:bd:21:23:ba:71:58:42:b6:3a:74:fc:10: 10:be:19:df:df:2c:bb:79:d8:5d:8f:13:dc:75:5e: 53:73:72:46:c4:fc:68:41:61:b9:16:06:fb:4e:da: 8b:d0:38:92:7d:ba:27:9e:77:fa:3f:54:66:aa:c0: 70:95:b9:fe:7c:c1:f4:7f:54:fa:ff:f9:45:c9:8d: 7d:2f:51:3c:44:e6:c8:92:a2:da:bc:5a:bd:27:b7: 1e:a2:1b:33:e2:47:6a:79:fe:63:49:d9:e5:f5:17: eb:c3:9b:fb:1a:81:95:53:10:e2:0b:e7:2f:32:22: 9d:5e:2a:1f:10:d1:cb:b4:80:ff:81:b6:a0:3d:d9: 9f:87:07:8b:98:44:6e:c7:35:26:ca:b6:f1:72:b1: 20:b7:86:96:08:6c:77:cb:72:ac:77:ba:f1:03:d4: 37:6f:6a:3b:8b:fe:e1:31:74:03:6c:95:29:20:7a: 96:d0:dc:b8:19:51:4a:bb:17:32:2c:55:a6:3b:9b: 69:f6:67:23:09:60:64:15:aa:0c:7d:ff:5b:60:9a: 63:1b:cd:69:58:c2:a0:66:75:97:a2:20:47:7f:ab: f7:8b:93:29:4a:fd:c8:6d:31:52:e7:cd:4d:99:92: 0b:fa:a7:e8:b1:37:f5:c9:6b:2e:c8:75:71:66:39: 4b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:57:DD:BF:82:AD:25:F1:6F:C5:92:E3:A9:61:A4:56:FE:F8:9C:04 X509v3 Authority Key Identifier: keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/4Ffdv4KtJfFvxZLjqWGkVv74nAQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.253.64.0/24 195.253.88.0/24 195.253.92.0/24 195.253.118.0/24 IPv6: 2a01:5b0:4::/46 2a01:5b0:16::/48 2a01:5b0:36::/48 Signature Algorithm: sha256WithRSAEncryption 82:d9:b0:ba:0d:e7:37:a3:d5:36:79:22:c1:52:b2:e1:e7:09: 48:c3:e4:6e:51:e4:97:84:e7:29:82:58:7e:b2:3c:dc:df:5c: 2b:0f:3f:81:e8:70:18:75:48:0b:d4:a0:d8:6e:12:e7:bd:a4: d5:70:19:c6:9f:32:2c:56:85:f5:15:9e:b6:dd:21:de:8e:c6: 3c:fe:20:ce:18:3f:41:61:3d:69:6e:95:69:bb:e7:ab:e3:3b: ce:41:2f:f8:86:68:73:f0:7d:2d:3e:d1:8f:e1:13:95:49:c9: 69:bf:64:e8:75:d5:a3:c5:7a:77:1e:ae:12:da:70:7a:15:29: a5:bf:ef:45:e5:df:ad:6b:e6:56:56:ec:0b:53:c9:c5:06:ea: 7b:57:2f:e3:ad:9f:3c:e6:97:b5:3c:72:ce:06:d5:a3:1f:20: 50:a3:e1:7b:fe:69:fc:70:ae:ef:2e:0d:f7:23:19:c3:52:53: 2e:f7:8a:9c:00:fb:56:15:92:24:29:ff:65:37:54:b7:21:36: f9:02:23:62:9f:d1:7c:55:8f:ae:31:60:41:96:3a:bd:36:68: f7:07:69:df:26:69:c3:ea:84:4b:4f:bd:ea:f0:7e:f5:66:2f: c8:29:1f:44:8a:c9:6a:09:dd:1b:60:d3:b6:b2:ee:27:81:66: f9:a5:89:ba -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt+pFhrcoPYRK7A2hmj08xxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwYzFlNDI2ZjU4ZTQyYWUzMGU1NmNkYjdmZjRkOGY5ZGRk ODViMzAwHhcNMjYwMTAyMTIxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDU3ZGRiZjgyYWQyNWYxNmZjNTkyZTNhOTYxYTQ1NmZlZjg5YzA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/i9ISO6cVhCtjp0/BAQvhnf3yy7 edhdjxPcdV5Tc3JGxPxoQWG5Fgb7TtqL0DiSfbonnnf6P1RmqsBwlbn+fMH0f1T6 //lFyY19L1E8RObIkqLavFq9J7ceohsz4kdqef5jSdnl9Rfrw5v7GoGVUxDiC+cv MiKdXiofENHLtID/gbagPdmfhweLmERuxzUmyrbxcrEgt4aWCGx3y3Ksd7rxA9Q3 b2o7i/7hMXQDbJUpIHqW0Ny4GVFKuxcyLFWmO5tp9mcjCWBkFaoMff9bYJpjG81p WMKgZnWXoiBHf6v3i5MpSv3IbTFS581NmZIL+qfosTf1yWsuyHVxZjlLkwIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFOBX3b+CrSXxb8WS46lhpFb++JwEMB8GA1UdIwQY MBaAFFDB5Cb1jkKuMOVs23/02Pnd2FswMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU1Ia0p2V09RcTR3NVd6YmZfVFktZDNZV3pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi85YzZkYWQtMzc3YS00NDRlLWIwZGMt MDYzY2U2Y2Y0NjBkLzEvNEZmZHY0S3RKZkZ2eFpManFXR2tWdjc0bkFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi85YzZkYWQtMzc3YS00NDRlLWIwZGMtMDYzY2U2Y2Y0NjBk LzEvVU1Ia0p2V09RcTR3NVd6YmZfVFktZDNZV3pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAeBAIAATAYAwQAw/1AAwQA w/1YAwQAw/1cAwQAw/12MCEEAgACMBsDBwIqAQWwAAQDBwAqAQWwABYDBwAqAQWw ADYwDQYJKoZIhvcNAQELBQADggEBAILZsLoN5zej1TZ5IsFSsuHnCUjD5G5R5JeE 5ymCWH6yPNzfXCsPP4HocBh1SAvUoNhuEue9pNVwGcafMixWhfUVnrbdId6Oxjz+ IM4YP0FhPWlulWm756vjO85BL/iGaHPwfS0+0Y/hE5VJyWm/ZOh11aPFencerhLa cHoVKaW/70Xl361r5lZW7AtTycUG6ntXL+Otnzzml7U8cs4G1aMfIFCj4Xv+afxw ru8uDfcjGcNSUy73ipwA+1YVkiQp/2U3VLchNvkCI2Kf0XxVj64xYEGWOr02aPcH ad8macPqhEtPverwfvVmL8gpH0SKyWoJ3Rtg07ay7ieBZvmlibo= -----END CERTIFICATE-----Generated at Sun Jan 25 12:01:29 2026 by rpki-client