This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/OrYKnFPsUAmm_qzJ0Ky3Qw4j1lc.roa File: OrYKnFPsUAmm_qzJ0Ky3Qw4j1lc.roa (raw, json) Hash identifier: s4Zk7MbAkwK34NP/gAiRv0GkJqPZuycbYvKYGWIwXEc= Subject key identifier: 3A:B6:0A:9C:53:EC:50:09:A6:FE:AC:C9:D0:AC:B7:43:0E:23:D6:57 Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA53155680FE925B2D972766207B4E6 Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/OrYKnFPsUAmm_qzJ0Ky3Qw4j1lc.roa Signing time: Thu 01 Jan 2026 22:19:42 +0000 ROA not before: Thu 01 Jan 2026 22:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34295 IP address blocks: 46.10.217.0/24 maxlen: 24 62.176.118.0/24 maxlen: 24 87.126.120.0/22 maxlen: 24 90.154.144.0/21 maxlen: 24 90.154.152.0/22 maxlen: 22 90.154.152.0/24 maxlen: 24 90.154.153.0/24 maxlen: 24 90.154.154.0/24 maxlen: 24 90.154.155.0/24 maxlen: 24 95.43.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:31:55:68:0f:e9:25:b2:d9:72:76:62:07:b4:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ab60a9c53ec5009a6feacc9d0acb7430e23d657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:6f:72:a6:30:3c:89:33:3f:45:5c:07:51:d3: 7c:26:e0:b5:2b:c6:3b:78:57:84:77:20:be:e5:04: e3:14:1a:e0:74:6a:85:24:f1:69:48:19:66:ff:5a: 76:ae:de:ef:5b:e4:21:de:8c:ae:e0:35:b7:9b:3c: 8d:c7:6c:84:27:69:fa:c2:b5:ab:d1:3e:27:7e:12: 38:b7:34:e1:52:2d:a1:17:5d:c2:e3:74:28:55:e7: 66:02:8e:44:a3:ac:86:f5:95:99:d9:6b:a8:bb:b0: 2d:b6:94:4e:bc:3f:32:69:17:fd:9d:4b:1a:43:95: 13:af:14:e7:8a:06:cf:b7:36:50:63:cb:f9:4b:88: 1b:62:6e:d3:eb:88:1c:1d:1b:60:ca:fc:43:87:a6: ae:0c:2f:77:42:47:78:5d:df:d5:4c:69:fb:90:12: ff:1f:18:a7:a3:40:e7:0c:7c:b7:9b:d6:07:66:8b: b2:9f:eb:c5:ad:37:dd:62:c0:7f:9e:12:e2:0e:74: 6c:36:82:3c:54:de:9f:95:94:b3:da:60:8a:39:ea: 55:f6:0b:40:5a:c5:61:bd:79:87:d0:f0:3c:f6:f3: 9d:a2:e1:c1:b3:f1:f8:b0:e2:53:f7:be:82:f3:bc: e4:e1:11:c8:19:b6:1b:cd:bd:8f:8f:61:d4:f0:39: a3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B6:0A:9C:53:EC:50:09:A6:FE:AC:C9:D0:AC:B7:43:0E:23:D6:57 X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/OrYKnFPsUAmm_qzJ0Ky3Qw4j1lc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.10.217.0/24 62.176.118.0/24 87.126.120.0/22 90.154.144.0-90.154.155.255 95.43.128.0/20 Signature Algorithm: sha256WithRSAEncryption a6:e1:8c:58:dd:cf:92:d4:2c:a0:10:b8:bf:6b:4d:c2:a7:b6: e4:16:ae:e5:66:8b:5f:aa:fe:b1:71:13:40:47:cb:79:c9:dc: 77:d5:11:9b:aa:44:97:3e:d9:7d:b5:d3:05:77:23:25:1e:1f: 78:75:7d:db:a2:4e:1d:60:c4:a6:59:68:8d:95:9c:65:d7:06: 4a:a6:3c:d3:f6:9c:ee:3e:ce:d0:06:99:9d:22:cc:86:60:da: 03:dc:89:89:19:86:9e:50:15:00:ae:31:25:94:64:4f:24:69: d2:86:bb:17:db:81:08:e8:dc:ff:57:bf:c2:c1:c0:c4:35:08: 6e:20:78:a1:82:05:8f:e9:e1:af:8b:19:fa:fc:26:88:d7:66: d9:23:ee:29:93:ae:36:54:3e:28:f8:69:94:5f:33:96:74:3c: a9:c1:d6:31:89:49:81:10:d6:04:d1:be:7a:34:ba:8c:41:b1: 37:d2:ad:90:e3:24:dc:eb:71:41:e7:b4:01:76:74:8b:20:67: 97:89:2c:b2:73:f9:5a:8e:17:93:65:d9:c6:bd:81:2e:5f:05: bf:6d:ba:c7:9c:5a:30:42:03:5b:3f:9d:18:bb:46:60:42:fc: 1f:fe:19:59:ba:31:31:11:9f:b9:8b:e4:fc:0c:74:3f:d7:9b: b5:ea:9e:ae -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt7pTFVaA/pJbLZcnZiB7TmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYWI2MGE5YzUzZWM1MDA5YTZmZWFjYzlkMGFjYjc0MzBlMjNkNjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg29ypjA8iTM/RVwHUdN8JuC1K8Y7 eFeEdyC+5QTjFBrgdGqFJPFpSBlm/1p2rt7vW+Qh3oyu4DW3mzyNx2yEJ2n6wrWr 0T4nfhI4tzThUi2hF13C43QoVedmAo5Eo6yG9ZWZ2Wuou7AttpROvD8yaRf9nUsa Q5UTrxTnigbPtzZQY8v5S4gbYm7T64gcHRtgyvxDh6auDC93Qkd4Xd/VTGn7kBL/ Hxino0DnDHy3m9YHZouyn+vFrTfdYsB/nhLiDnRsNoI8VN6flZSz2mCKOepV9gtA WsVhvXmH0PA89vOdouHBs/H4sOJT976C87zk4RHIGbYbzb2Pj2HU8Dmj+QIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFDq2CpxT7FAJpv6sydCst0MOI9ZXMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvT3JZS25GUHNVQW1tX3F6SjBLeTNRdzRqMWxjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQALgrZAwQA PrB2AwQCV354MAwDBARampADBAJampgDBARfK4AwDQYJKoZIhvcNAQELBQADggEB AKbhjFjdz5LULKAQuL9rTcKntuQWruVmi1+q/rFxE0BHy3nJ3HfVEZuqRJc+2X21 0wV3IyUeH3h1fduiTh1gxKZZaI2VnGXXBkqmPNP2nO4+ztAGmZ0izIZg2gPciYkZ hp5QFQCuMSWUZE8kadKGuxfbgQjo3P9Xv8LBwMQ1CG4geKGCBY/p4a+LGfr8JojX Ztkj7imTrjZUPij4aZRfM5Z0PKnB1jGJSYEQ1gTRvno0uoxBsTfSrZDjJNzrcUHn tAF2dIsgZ5eJLLJz+VqOF5Nl2ca9gS5fBb9tusecWjBCA1s/nRi7RmBC/B/+GVm6 MTERn7mL5PwMdD/Xm7Xqnq4= -----END CERTIFICATE-----Generated at Sun Jan 25 20:49:23 2026 by rpki-client