This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/2d067c-df72-4040-bc43-19397fc76fec/1/25Z4VEtMdr8mirSyT68RGYIDnRA.roa File: 25Z4VEtMdr8mirSyT68RGYIDnRA.roa (raw, json) Hash identifier: lvnbo3XhmGJZhSdH7jyEy3U5ULLTyPw51UAj+VCuEeY= Subject key identifier: DB:96:78:54:4B:4C:76:BF:26:8A:B4:B2:4F:AF:11:19:82:03:9D:10 Certificate issuer: /CN=4d3c5f0aa141011ce2dbf18ccceaac8d23a80253 Certificate serial: 019B7CED5FADAFC403BFFD2E9DBCD3495890 Authority key identifier: 4D:3C:5F:0A:A1:41:01:1C:E2:DB:F1:8C:CC:EA:AC:8D:23:A8:02:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTxfCqFBARzi2_GMzOqsjSOoAlM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/2d067c-df72-4040-bc43-19397fc76fec/1/25Z4VEtMdr8mirSyT68RGYIDnRA.roa Signing time: Fri 02 Jan 2026 04:18:09 +0000 ROA not before: Fri 02 Jan 2026 04:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1759 IP address blocks: 185.81.91.0/24 maxlen: 24 2a03:62a0:3501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/2d067c-df72-4040-bc43-19397fc76fec/1/TTxfCqFBARzi2_GMzOqsjSOoAlM.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/2d067c-df72-4040-bc43-19397fc76fec/1/TTxfCqFBARzi2_GMzOqsjSOoAlM.mft rsync://rpki.ripe.net/repository/DEFAULT/TTxfCqFBARzi2_GMzOqsjSOoAlM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:5f:ad:af:c4:03:bf:fd:2e:9d:bc:d3:49:58:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d3c5f0aa141011ce2dbf18ccceaac8d23a80253 Validity Not Before: Jan 2 04:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db9678544b4c76bf268ab4b24faf111982039d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2b:cf:2d:c1:fa:57:b4:1b:81:e0:ed:7b:1f: 3b:e7:11:2c:63:62:af:ee:24:a9:4f:77:33:6c:6b: 53:3d:41:7c:74:f1:87:06:19:d4:b8:e7:bc:3b:c7: fc:67:8b:17:4a:69:0a:f9:62:c8:70:cd:8f:b8:ff: 1e:d3:b3:82:c4:b2:8e:b7:5a:2f:2c:6e:b1:fc:8b: e3:87:a1:b1:84:85:52:57:66:a8:07:01:50:83:59: 07:87:f1:18:35:cf:31:b0:b6:b4:ef:53:95:03:60: 26:c9:42:78:b0:3b:df:f8:8b:57:f0:d6:8c:ef:fa: 4f:d5:bd:09:6d:86:ac:a1:a5:e4:60:e6:75:cb:70: 81:f9:07:41:30:22:a3:76:89:c6:10:c1:d7:40:13: bc:88:bc:f7:b4:74:a8:1d:02:c4:c4:e3:b9:ed:d5: 26:db:ff:de:8b:af:36:78:82:82:65:34:30:b5:21: 30:b5:4a:66:26:ba:d7:75:08:75:29:6d:dc:b9:d0: 63:06:22:3f:d7:7a:bd:b1:0c:f2:c8:02:5e:5c:ae: 3b:c2:44:bd:71:c0:7b:13:51:b9:6f:6b:3f:e7:3b: 69:37:1d:a8:17:d4:46:b2:8b:d1:85:7b:13:4f:1a: b9:f3:fe:19:ba:8d:18:0d:31:71:38:89:36:de:59: a5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:96:78:54:4B:4C:76:BF:26:8A:B4:B2:4F:AF:11:19:82:03:9D:10 X509v3 Authority Key Identifier: keyid:4D:3C:5F:0A:A1:41:01:1C:E2:DB:F1:8C:CC:EA:AC:8D:23:A8:02:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTxfCqFBARzi2_GMzOqsjSOoAlM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/2d067c-df72-4040-bc43-19397fc76fec/1/25Z4VEtMdr8mirSyT68RGYIDnRA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/2d067c-df72-4040-bc43-19397fc76fec/1/TTxfCqFBARzi2_GMzOqsjSOoAlM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.81.91.0/24 IPv6: 2a03:62a0:3501::/48 Signature Algorithm: sha256WithRSAEncryption 63:c2:8a:46:f4:96:89:6b:4b:ea:dd:d9:5e:f3:06:60:e0:9c: 98:5d:fc:d0:78:2a:f4:bd:df:7a:40:80:b1:82:89:16:43:ea: bd:bd:c3:13:8e:3f:40:8c:be:20:c3:34:06:14:35:70:e9:a6: 28:f0:85:42:3e:05:89:7a:24:98:91:11:fe:35:56:51:84:91: 05:b8:a2:fe:ce:34:db:68:06:b7:1e:b2:16:f5:43:ec:02:9b: 0b:16:45:95:cb:e5:4a:74:34:84:14:6c:ab:de:8e:37:a3:25: 8b:05:82:18:75:30:97:73:d7:8f:22:f7:43:8e:c6:49:a2:9b: d8:95:79:27:96:05:ff:48:64:1f:15:08:7a:d5:09:ba:92:06: a1:a6:f9:96:6c:3c:27:f8:72:ab:a7:2e:b4:95:96:9a:09:87: 52:71:3b:b8:03:78:4c:e3:c6:ad:33:9d:2b:eb:4a:19:45:56: 37:8d:98:10:b0:e2:a7:63:48:02:dd:52:ac:15:31:f1:34:dc: 30:f3:73:ce:c8:03:5a:1a:cc:ad:cc:04:14:3e:ce:85:65:2f: 3b:c4:c1:93:f3:8a:0b:35:9e:3b:60:68:84:e5:3b:6b:d1:73: a5:0f:42:d7:c7:5a:c0:0f:5b:70:f1:34:24:49:ac:4d:dc:89: 05:1e:51:bf -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87V+tr8QDv/0unbzTSViQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkM2M1ZjBhYTE0MTAxMWNlMmRiZjE4Y2NjZWFhYzhkMjNh ODAyNTMwHhcNMjYwMTAyMDQxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjk2Nzg1NDRiNGM3NmJmMjY4YWI0YjI0ZmFmMTExOTgyMDM5ZDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyvPLcH6V7QbgeDtex875xEsY2Kv 7iSpT3czbGtTPUF8dPGHBhnUuOe8O8f8Z4sXSmkK+WLIcM2PuP8e07OCxLKOt1ov LG6x/Ivjh6GxhIVSV2aoBwFQg1kHh/EYNc8xsLa071OVA2AmyUJ4sDvf+ItX8NaM 7/pP1b0JbYasoaXkYOZ1y3CB+QdBMCKjdonGEMHXQBO8iLz3tHSoHQLExOO57dUm 2//ei682eIKCZTQwtSEwtUpmJrrXdQh1KW3cudBjBiI/13q9sQzyyAJeXK47wkS9 ccB7E1G5b2s/5ztpNx2oF9RGsovRhXsTTxq58/4Zuo0YDTFxOIk23lml5QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFNuWeFRLTHa/Joq0sk+vERmCA50QMB8GA1UdIwQY MBaAFE08XwqhQQEc4tvxjMzqrI0jqAJTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFR4ZkNxRkJBUnppMl9HTXpPcXNqU09vQWxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS8yZDA2N2MtZGY3Mi00MDQwLWJjNDMt MTkzOTdmYzc2ZmVjLzEvMjVaNFZFdE1kcjhtaXJTeVQ2OFJHWUlEblJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS8yZDA2N2MtZGY3Mi00MDQwLWJjNDMtMTkzOTdmYzc2ZmVj LzEvVFR4ZkNxRkJBUnppMl9HTXpPcXNqU09vQWxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuVFbMA8E AgACMAkDBwAqA2KgNQEwDQYJKoZIhvcNAQELBQADggEBAGPCikb0lolrS+rd2V7z BmDgnJhd/NB4KvS933pAgLGCiRZD6r29wxOOP0CMviDDNAYUNXDppijwhUI+BYl6 JJiREf41VlGEkQW4ov7ONNtoBrceshb1Q+wCmwsWRZXL5Up0NIQUbKvejjejJYsF ghh1MJdz148i90OOxkmim9iVeSeWBf9IZB8VCHrVCbqSBqGm+ZZsPCf4cqunLrSV lpoJh1JxO7gDeEzjxq0znSvrShlFVjeNmBCw4qdjSALdUqwVMfE03DDzc87IA1oa zK3MBBQ+zoVlLzvEwZPzigs1njtgaITlO2vRc6UPQtfHWsAPW3DxNCRJrE3ciQUe Ub8= -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:14 2026 by rpki-client