This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/4i8l1Q-FIgnv4ElEMlL-rxdJK5Q.roa File: 4i8l1Q-FIgnv4ElEMlL-rxdJK5Q.roa (raw, json) Hash identifier: FSXcacLcS9NFl9QL5QX0dsKZrr4j/cA0RvIb9VXgClE= Subject key identifier: E2:2F:25:D5:0F:85:22:09:EF:E0:49:44:32:52:FE:AF:17:49:2B:94 Certificate issuer: /CN=b872da0f9c6c5686a3db9ee124a99042b0a882d1 Certificate serial: 019B7834A9E758C6D722AC193E7C21345AF1 Authority key identifier: B8:72:DA:0F:9C:6C:56:86:A3:DB:9E:E1:24:A9:90:42:B0:A8:82:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHLaD5xsVoaj257hJKmQQrCogtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/4i8l1Q-FIgnv4ElEMlL-rxdJK5Q.roa Signing time: Thu 01 Jan 2026 06:17:55 +0000 ROA not before: Thu 01 Jan 2026 06:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58291 IP address blocks: 185.102.68.0/22 maxlen: 22 213.156.28.0/22 maxlen: 24 2a01:4c01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/uHLaD5xsVoaj257hJKmQQrCogtE.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/uHLaD5xsVoaj257hJKmQQrCogtE.mft rsync://rpki.ripe.net/repository/DEFAULT/uHLaD5xsVoaj257hJKmQQrCogtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:a9:e7:58:c6:d7:22:ac:19:3e:7c:21:34:5a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b872da0f9c6c5686a3db9ee124a99042b0a882d1 Validity Not Before: Jan 1 06:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e22f25d50f852209efe049443252feaf17492b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b4:ed:7c:51:e6:0c:9c:1c:5e:e8:f8:b0:b0: 4c:ff:d7:ec:a1:7d:c4:54:22:8b:a6:92:3a:e7:23: 0a:cf:09:1c:81:d1:d6:eb:ab:b5:ef:c4:9e:be:44: 1f:e8:8e:3f:f7:12:00:b7:3e:11:79:39:72:14:cc: 51:18:2f:a5:e7:7f:86:7a:7c:ae:d9:ff:72:6a:bb: 08:92:03:94:df:64:48:2d:48:57:27:a5:27:dc:ae: 85:31:7a:7e:3b:d6:6b:57:de:95:0e:db:66:55:6f: 57:83:9d:f7:c5:56:29:98:06:40:64:c7:2c:a9:ba: be:1b:e0:19:af:db:83:6b:92:2e:13:7d:c9:2d:c8: 52:e8:a1:3f:d8:7b:41:92:d8:ce:1d:b7:e3:83:32: 53:6a:b2:5c:93:6a:7b:9b:e3:61:4b:9b:6e:45:f0: 44:53:88:bc:bd:e6:7d:e9:94:f7:ff:64:25:4e:de: 04:8b:04:aa:9e:f4:82:7c:8a:94:0a:d2:0f:91:a6: d1:bf:a7:e0:dc:55:d6:61:ac:99:1b:22:cc:92:62: 37:c0:32:39:3b:45:18:7d:23:08:19:c2:2d:e8:f4: 92:0e:35:20:65:61:58:64:8c:98:f2:2c:0f:21:44: d7:3c:ff:f6:b3:7f:aa:0b:8c:e9:46:e1:98:b9:97: fb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2F:25:D5:0F:85:22:09:EF:E0:49:44:32:52:FE:AF:17:49:2B:94 X509v3 Authority Key Identifier: keyid:B8:72:DA:0F:9C:6C:56:86:A3:DB:9E:E1:24:A9:90:42:B0:A8:82:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHLaD5xsVoaj257hJKmQQrCogtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/4i8l1Q-FIgnv4ElEMlL-rxdJK5Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/uHLaD5xsVoaj257hJKmQQrCogtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.102.68.0/22 213.156.28.0/22 IPv6: 2a01:4c01::/32 Signature Algorithm: sha256WithRSAEncryption 51:a2:f1:13:71:31:9d:50:42:54:3f:14:7e:39:bc:c2:0f:c4: 8a:74:e2:93:4b:c0:05:ee:95:ef:57:15:2a:55:9d:31:09:82: 02:09:bd:3b:7a:16:c9:dd:79:3a:7c:c3:43:73:6a:1e:f2:5f: c6:fd:39:35:d9:da:53:b0:a9:c0:db:e9:b8:4a:7f:40:e2:d4: 78:12:e9:b7:a1:03:61:e5:d9:03:42:7a:49:2c:46:98:0c:78: ea:50:04:4b:eb:5b:10:19:27:f2:96:6c:c9:fb:f2:57:5a:54: b4:80:d7:63:71:fd:92:87:8c:0a:85:dd:33:b0:a2:47:c7:15: 85:ec:4e:84:56:90:67:01:e2:d7:a1:ae:4e:44:72:6b:6b:e0: bf:2d:c6:d0:ab:88:3a:e1:76:94:08:d0:bf:df:5d:02:3d:e4: 08:8a:9b:d3:ff:9b:ba:7f:78:e7:2f:a3:b1:98:14:ba:c0:fa: be:32:80:9f:8c:37:27:fe:61:65:49:d5:4c:bc:f9:65:5b:55: 5d:10:29:d9:bf:2d:c9:fd:21:ab:63:6c:72:2c:37:5f:ac:8c: e4:8e:07:b6:ae:3b:63:e7:98:c8:15:83:7f:3a:6a:24:fb:e8: c5:ad:80:d5:8e:ab:8a:83:a8:64:fd:11:43:33:df:7f:c1:15: 2d:19:50:cc -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4NKnnWMbXIqwZPnwhNFrxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NzJkYTBmOWM2YzU2ODZhM2RiOWVlMTI0YTk5MDQyYjBh ODgyZDEwHhcNMjYwMTAxMDYxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjJmMjVkNTBmODUyMjA5ZWZlMDQ5NDQzMjUyZmVhZjE3NDkyYjk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7TtfFHmDJwcXuj4sLBM/9fsoX3E VCKLppI65yMKzwkcgdHW66u178SevkQf6I4/9xIAtz4ReTlyFMxRGC+l53+Genyu 2f9yarsIkgOU32RILUhXJ6Un3K6FMXp+O9ZrV96VDttmVW9Xg533xVYpmAZAZMcs qbq+G+AZr9uDa5IuE33JLchS6KE/2HtBktjOHbfjgzJTarJck2p7m+NhS5tuRfBE U4i8veZ96ZT3/2QlTt4EiwSqnvSCfIqUCtIPkabRv6fg3FXWYayZGyLMkmI3wDI5 O0UYfSMIGcIt6PSSDjUgZWFYZIyY8iwPIUTXPP/2s3+qC4zpRuGYuZf7wwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFOIvJdUPhSIJ7+BJRDJS/q8XSSuUMB8GA1UdIwQY MBaAFLhy2g+cbFaGo9ue4SSpkEKwqILRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUhMYUQ1eHNWb2FqMjU3aEpLbVFRckNvZ3RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8yNzE2ZWMtNTY1Ny00ZjU2LThmNDMt ZTIzMTAzYTg4MDUyLzEvNGk4bDFRLUZJZ252NEVsRU1sTC1yeGRKSzVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy8yNzE2ZWMtNTY1Ny00ZjU2LThmNDMtZTIzMTAzYTg4MDUy LzEvdUhMYUQ1eHNWb2FqMjU3aEpLbVFRckNvZ3RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuWZEAwQC 1ZwcMA0EAgACMAcDBQAqAUwBMA0GCSqGSIb3DQEBCwUAA4IBAQBRovETcTGdUEJU PxR+ObzCD8SKdOKTS8AF7pXvVxUqVZ0xCYICCb07ehbJ3Xk6fMNDc2oe8l/G/Tk1 2dpTsKnA2+m4Sn9A4tR4Eum3oQNh5dkDQnpJLEaYDHjqUARL61sQGSfylmzJ+/JX WlS0gNdjcf2Sh4wKhd0zsKJHxxWF7E6EVpBnAeLXoa5ORHJra+C/LcbQq4g64XaU CNC/310CPeQIipvT/5u6f3jnL6OxmBS6wPq+MoCfjDcn/mFlSdVMvPllW1VdECnZ vy3J/SGrY2xyLDdfrIzkjge2rjtj55jIFYN/Omok++jFrYDVjquKg6hk/RFDM99/ wRUtGVDM -----END CERTIFICATE-----Generated at Mon Jan 26 16:23:58 2026 by rpki-client