This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/k4Ty00vW-Mz9vPvcOZ23ox0H6kU.roa File: k4Ty00vW-Mz9vPvcOZ23ox0H6kU.roa (raw, json) Hash identifier: Hp1EXNjMbh6L6PMiyCI3K99QvfaWVLoaMdZebP34RrI= Subject key identifier: 93:84:F2:D3:4B:D6:F8:CC:FD:BC:FB:DC:39:9D:B7:A3:1D:07:EA:45 Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86 Certificate serial: 019B7B369D28C9FC382D449E808991B1D18A Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/k4Ty00vW-Mz9vPvcOZ23ox0H6kU.roa Signing time: Thu 01 Jan 2026 20:18:55 +0000 ROA not before: Thu 01 Jan 2026 20:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41932 IP address blocks: 31.135.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:9d:28:c9:fc:38:2d:44:9e:80:89:91:b1:d1:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86 Validity Not Before: Jan 1 20:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9384f2d34bd6f8ccfdbcfbdc399db7a31d07ea45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ef:ab:ab:c6:c2:2a:49:52:b6:58:af:b6:aa: d7:47:96:43:fe:ed:d1:f9:2c:05:97:63:ea:72:e5: 92:a9:8b:67:18:58:8a:2c:91:08:5d:c3:0c:a7:c0: 0e:9c:3f:f3:bd:6d:89:35:12:61:a8:bb:d5:0a:d5: 62:21:8d:b6:34:9e:a4:1f:a1:2b:da:20:45:0e:31: c0:bf:d8:a9:b3:86:36:89:b6:eb:23:3a:86:95:c9: 82:34:a4:a3:59:79:78:15:0d:b2:03:7e:a5:5b:2f: cb:7e:ed:65:6f:cd:4c:5f:f3:59:a0:20:83:66:d9: f6:80:04:d7:3b:2c:ee:12:c2:66:0e:2f:4f:26:f4: 9a:5b:3f:17:a7:77:10:1b:04:cf:c5:da:0b:18:9b: 0c:d9:d1:23:be:d7:86:08:92:10:18:c7:33:dc:a0: 16:d9:ac:ae:57:e2:3f:19:84:1d:62:da:ad:05:ea: fe:35:6d:f6:b4:5f:ce:38:bc:23:23:40:87:95:85: 19:ff:27:ed:7d:d6:e6:a4:c1:c3:8b:e2:46:46:85: f1:e3:85:69:4d:fa:a1:5e:30:cc:d8:b6:69:2f:7e: cd:03:39:56:43:06:65:c5:e1:13:62:7b:5f:46:0d: 0f:c2:40:09:91:5f:b2:c7:0d:0b:c9:71:87:ec:32: da:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:84:F2:D3:4B:D6:F8:CC:FD:BC:FB:DC:39:9D:B7:A3:1D:07:EA:45 X509v3 Authority Key Identifier: keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/k4Ty00vW-Mz9vPvcOZ23ox0H6kU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.135.180.0/23 Signature Algorithm: sha256WithRSAEncryption 01:51:a7:b4:81:bc:ed:b7:a5:d6:0d:04:f2:fb:8a:4f:a8:97: 41:ff:f0:21:ec:43:25:19:7b:e2:15:11:f6:8e:fd:28:01:64: 80:ce:e9:69:06:e7:7d:c4:53:fd:e5:1d:c7:87:3c:0d:89:75: 40:67:10:4a:24:4d:5c:b9:fe:a3:68:5e:9e:1d:e5:d1:42:f0: 07:56:2d:9b:dd:02:f4:82:76:ef:d7:9d:b8:61:27:f2:f7:0f: 11:d3:85:7c:af:f6:2d:ef:ce:5b:c8:e4:2a:95:1b:17:a0:2c: 10:f1:f5:59:aa:ea:f9:dc:70:6e:b4:73:6d:ad:e7:a5:f0:29: cb:d6:20:04:14:e2:12:07:51:da:15:63:ac:74:bd:33:c7:e9: cb:04:a5:c0:75:0d:26:27:9d:2d:3f:f5:20:a9:a5:45:8c:b2: 90:69:c8:35:7f:c9:19:17:ac:f6:2c:46:e7:31:2a:26:82:18: bd:95:34:38:8b:5c:9a:9d:3e:6a:28:58:52:9a:de:d4:5c:67: f1:27:15:16:9e:70:44:2f:2d:09:f8:75:07:ed:95:bc:30:dc: b1:ed:e9:c4:0f:1a:b8:52:49:7d:84:04:18:c7:27:47:aa:e1: eb:6e:07:d9:6a:b5:db:78:98:ac:8c:60:13:13:ae:44:da:97: d4:f9:ae:3d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Np0oyfw4LUSegImRsdGKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwMDc1MzRlYjc3Y2FhODM2ZjhmMTE4NjMwMTY0ZTAyMzZl NWZlODYwHhcNMjYwMTAxMjAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Mzg0ZjJkMzRiZDZmOGNjZmRiY2ZiZGMzOTlkYjdhMzFkMDdlYTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwu+rq8bCKklStlivtqrXR5ZD/u3R +SwFl2PqcuWSqYtnGFiKLJEIXcMMp8AOnD/zvW2JNRJhqLvVCtViIY22NJ6kH6Er 2iBFDjHAv9ips4Y2ibbrIzqGlcmCNKSjWXl4FQ2yA36lWy/Lfu1lb81MX/NZoCCD Ztn2gATXOyzuEsJmDi9PJvSaWz8Xp3cQGwTPxdoLGJsM2dEjvteGCJIQGMcz3KAW 2ayuV+I/GYQdYtqtBer+NW32tF/OOLwjI0CHlYUZ/yftfdbmpMHDi+JGRoXx44Vp TfqhXjDM2LZpL37NAzlWQwZlxeETYntfRg0PwkAJkV+yxw0LyXGH7DLaNwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJOE8tNL1vjM/bz73Dmdt6MdB+pFMB8GA1UdIwQY MBaAFAAHU063fKqDb48RhjAWTgI25f6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgt NmQxYzliMTUzY2YwLzEvazRUeTAwdlctTXo5dlB2Y09aMjNveDBINmtVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgtNmQxYzliMTUzY2Yw LzEvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBH4e0MA0G CSqGSIb3DQEBCwUAA4IBAQABUae0gbztt6XWDQTy+4pPqJdB//Ah7EMlGXviFRH2 jv0oAWSAzulpBud9xFP95R3HhzwNiXVAZxBKJE1cuf6jaF6eHeXRQvAHVi2b3QL0 gnbv1524YSfy9w8R04V8r/Yt785byOQqlRsXoCwQ8fVZqur53HButHNtreel8CnL 1iAEFOISB1HaFWOsdL0zx+nLBKXAdQ0mJ50tP/UgqaVFjLKQacg1f8kZF6z2LEbn MSomghi9lTQ4i1yanT5qKFhSmt7UXGfxJxUWnnBELy0J+HUH7ZW8MNyx7enEDxq4 Ukl9hAQYxydHquHrbgfZarXbeJisjGATE65E2pfU+a49 -----END CERTIFICATE-----Generated at Mon Jan 26 13:46:24 2026 by rpki-client