This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/00t4JlUtr46G1pEHPfG8CoCTEhg.roa File: 00t4JlUtr46G1pEHPfG8CoCTEhg.roa (raw, json) Hash identifier: SZsJbSiNkf6okAugBnwQT5cRtnNGeqe0R2EQOpPuW0s= Subject key identifier: D3:4B:78:26:55:2D:AF:8E:86:D6:91:07:3D:F1:BC:0A:80:93:12:18 Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24 Certificate serial: 019B78A32C891190EE349C163A93DCF16FFF Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/00t4JlUtr46G1pEHPfG8CoCTEhg.roa Signing time: Thu 01 Jan 2026 08:18:38 +0000 ROA not before: Thu 01 Jan 2026 08:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23422 IP address blocks: 147.189.143.0/24 maxlen: 24 176.111.220.0/24 maxlen: 24 185.215.225.0/24 maxlen: 24 185.215.226.0/24 maxlen: 24 193.8.195.0/24 maxlen: 24 2a0b:ae40:5::/48 maxlen: 48 2a0b:ae40:6::/48 maxlen: 48 2a0b:ae40:7::/48 maxlen: 48 2a0b:ae40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:2c:89:11:90:ee:34:9c:16:3a:93:dc:f1:6f:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24 Validity Not Before: Jan 1 08:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d34b7826552daf8e86d691073df1bc0a80931218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:18:f7:0d:32:c4:29:b3:f6:44:51:92:3a:12: 30:17:e5:ec:21:86:61:a0:ba:9d:fd:4d:2f:72:98: a7:17:ac:3d:65:3d:f6:df:92:4e:70:cd:02:40:1d: 43:f1:4e:b0:ea:80:38:45:da:f3:67:fe:7c:34:f0: 37:0d:44:44:f0:e5:48:f3:31:02:19:3a:3f:6f:03: b5:ad:cf:09:47:c1:b4:28:ce:4b:5f:73:79:80:1a: ef:fc:a1:a7:ca:e5:89:e1:57:18:98:80:31:0e:8b: c3:a1:86:ba:26:33:d8:bc:a8:50:08:71:51:f1:00: e8:43:80:e2:86:ce:72:e0:12:57:a2:34:05:81:05: 1c:f1:ca:e0:32:63:34:d1:0e:83:84:13:bc:33:a7: 0e:83:66:ef:86:88:90:46:9e:1c:24:e9:68:bb:ec: 78:0c:46:0c:be:8f:b1:c7:bd:95:14:d3:03:f3:27: cf:19:86:2f:9b:a4:ca:2b:da:19:d8:97:08:7b:ee: b2:dc:31:11:fd:4b:49:09:16:fe:b5:48:6a:24:f4: ed:97:ea:3d:a2:63:30:a0:5e:b4:88:e8:85:4e:14: 33:5e:a0:d8:95:68:18:61:b4:2f:2d:43:5a:84:4f: 0e:1d:35:87:c4:3b:76:ab:0b:e8:9e:a1:4e:fc:3a: 1b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:4B:78:26:55:2D:AF:8E:86:D6:91:07:3D:F1:BC:0A:80:93:12:18 X509v3 Authority Key Identifier: keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/00t4JlUtr46G1pEHPfG8CoCTEhg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.189.143.0/24 176.111.220.0/24 185.215.225.0-185.215.226.255 193.8.195.0/24 IPv6: 2a0b:ae40:5::-2a0b:ae40:8:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3c:1c:38:49:b8:b5:a2:43:fc:75:0d:84:46:11:55:cc:c3:47: 2f:e9:24:5b:5f:61:e8:af:4d:be:61:ed:a4:90:d0:f9:a9:64: d1:f3:60:aa:98:ab:2a:ae:30:a7:44:5b:b8:07:b0:ae:78:ee: 57:3e:88:43:07:05:1c:a6:7e:9d:2f:1a:85:e5:39:07:49:db: 00:6b:1f:0a:5e:9d:ee:76:2d:8a:00:cd:77:bb:31:d3:a3:78: e7:4f:ff:19:5a:76:3c:14:07:90:9e:7f:18:77:f0:93:86:62: 93:c2:86:a9:d5:3c:6a:6d:59:b0:7d:0e:a5:8d:91:a1:8b:b2: 06:87:b1:65:b7:6a:8e:12:20:aa:fe:45:a3:00:7b:7c:d4:16: c6:76:3d:6d:05:dc:83:27:a8:90:b7:c5:0d:03:8b:b4:66:1c: 89:71:64:56:1c:3e:04:f4:d2:9f:7e:43:d6:7b:8b:3b:10:5e: ae:bc:12:7d:09:f1:b3:4b:21:a1:4b:ca:13:27:6e:db:fa:fc: 43:3f:c4:19:49:c6:de:49:b7:13:53:18:9b:35:a9:b8:ad:87: 0e:f6:69:8a:ee:86:99:ab:3c:66:81:34:2b:de:42:19:eb:51: d6:19:2a:f6:19:66:90:f0:49:89:44:00:ad:89:74:37:b8:b3: 62:74:d7:70 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt4oyyJEZDuNJwWOpPc8W//MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5M2FjNmNkMjI0MDI0OWJiYTYwMTcxZjA4NmU5MTAxY2M4 N2NhMjQwHhcNMjYwMTAxMDgxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzRiNzgyNjU1MmRhZjhlODZkNjkxMDczZGYxYmMwYTgwOTMxMjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhj3DTLEKbP2RFGSOhIwF+XsIYZh oLqd/U0vcpinF6w9ZT3235JOcM0CQB1D8U6w6oA4RdrzZ/58NPA3DURE8OVI8zEC GTo/bwO1rc8JR8G0KM5LX3N5gBrv/KGnyuWJ4VcYmIAxDovDoYa6JjPYvKhQCHFR 8QDoQ4Dihs5y4BJXojQFgQUc8crgMmM00Q6DhBO8M6cOg2bvhoiQRp4cJOlou+x4 DEYMvo+xx72VFNMD8yfPGYYvm6TKK9oZ2JcIe+6y3DER/UtJCRb+tUhqJPTtl+o9 omMwoF60iOiFThQzXqDYlWgYYbQvLUNahE8OHTWHxDt2qwvonqFO/Dob1QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNNLeCZVLa+OhtaRBz3xvAqAkxIYMB8GA1UdIwQY MBaAFPk6xs0iQCSbumAXHwhukQHMh8okMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1Uckd6U0pBSkp1NllCY2ZDRzZSQWN5SHlpUS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvYjAzMjEzLTVlODAtNDkzMS04MWNl LWY3NTJkODE2MDVmYi8xLzAwdDRKbFV0cjQ2RzFwRUhQZkc4Q29DVEVoZy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOTgvYjAzMjEzLTVlODAtNDkzMS04MWNlLWY3NTJkODE2MDVm Yi8xLzEtVHJHelNKQUpKdTZZQmNmQ0c2UkFjeUh5aVEuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwVQYIKwYBBQUHAQcBAf8ERjBEMCYEAgABMCADBACTvY8D BACwb9wwDAMEALnX4QMEALnX4gMEAMEIwzAaBAIAAjAUMBIDBwAqC65AAAUDBwAq C65AAAgwDQYJKoZIhvcNAQELBQADggEBADwcOEm4taJD/HUNhEYRVczDRy/pJFtf YeivTb5h7aSQ0PmpZNHzYKqYqyquMKdEW7gHsK547lc+iEMHBRymfp0vGoXlOQdJ 2wBrHwpene52LYoAzXe7MdOjeOdP/xladjwUB5Cefxh38JOGYpPChqnVPGptWbB9 DqWNkaGLsgaHsWW3ao4SIKr+RaMAe3zUFsZ2PW0F3IMnqJC3xQ0Di7RmHIlxZFYc PgT00p9+Q9Z7izsQXq68En0J8bNLIaFLyhMnbtv6/EM/xBlJxt5JtxNTGJs1qbit hw72aYruhpmrPGaBNCveQhnrUdYZKvYZZpDwSYlEAK2JdDe4s2J013A= -----END CERTIFICATE-----Generated at Sun Jan 25 07:20:39 2026 by rpki-client