This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/4Yk_IaIMOFlSvQlmWzU3D7V9Ww0.roa File: 4Yk_IaIMOFlSvQlmWzU3D7V9Ww0.roa (raw, json) Hash identifier: 95l63lLqTUI0fetfFavGHFZZGMfnTIwSEKulFFxrxpc= Subject key identifier: E1:89:3F:21:A2:0C:38:59:52:BD:09:66:5B:35:37:0F:B5:7D:5B:0D Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c Certificate serial: 019B77C6F10230F099D65156227492226905 Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/4Yk_IaIMOFlSvQlmWzU3D7V9Ww0.roa Signing time: Thu 01 Jan 2026 04:18:05 +0000 ROA not before: Thu 01 Jan 2026 04:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48227 IP address blocks: 81.6.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.mft rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:f1:02:30:f0:99:d6:51:56:22:74:92:22:69:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c Validity Not Before: Jan 1 04:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e1893f21a20c385952bd09665b35370fb57d5b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:25:95:5c:a4:02:d8:5a:02:d6:d5:3a:3e:e0: 3a:dc:61:fb:dc:05:3e:1c:7b:23:fc:76:18:ca:63: de:04:3b:11:60:09:5b:5a:a5:80:65:17:02:fc:54: d0:e4:e3:5a:00:00:6e:0c:23:d9:a8:0b:ba:66:61: b6:e4:fe:f3:4b:83:b8:5e:88:40:83:f9:30:f0:90: 35:2a:51:be:7d:9e:44:9f:49:cf:7d:93:a4:de:0f: b4:54:22:cc:f7:1b:6e:42:68:17:03:06:15:4f:b9: 2c:42:a0:e0:11:f4:fa:d7:ba:e0:21:1c:ea:d0:0c: 32:2d:32:1d:66:a0:fa:26:6a:2d:70:86:fd:24:4a: 45:ba:1d:bd:95:5b:8a:da:ef:46:e7:3b:65:83:30: c1:23:10:77:d7:2d:58:c1:32:7d:de:26:1b:6c:81: 7b:24:c6:7e:3a:3d:0a:2c:77:73:fe:33:51:95:e5: 66:7c:0a:2e:bc:b3:17:c4:01:42:72:44:a0:58:35: ee:92:63:ee:1b:f9:b0:4d:09:81:d1:7b:21:11:12: 0c:d4:24:78:1b:be:fd:97:4d:a3:97:25:4d:47:aa: 1a:65:6e:30:c0:a0:dc:92:51:5d:3a:1b:f5:6b:7a: 79:d0:29:69:49:c4:58:12:43:2a:85:db:b2:76:58: 3d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:89:3F:21:A2:0C:38:59:52:BD:09:66:5B:35:37:0F:B5:7D:5B:0D X509v3 Authority Key Identifier: keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/4Yk_IaIMOFlSvQlmWzU3D7V9Ww0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.6.187.0/24 Signature Algorithm: sha256WithRSAEncryption 24:5f:b4:45:be:df:35:1c:d0:5a:57:22:e2:0e:24:b1:5c:b4: cc:19:f5:18:d0:f8:cb:ae:f2:39:0a:48:93:ea:fc:0c:49:8b: 81:c8:78:4e:40:66:3f:33:c4:a2:d3:f4:78:0a:10:7f:dc:c1: a7:c4:2d:f5:39:53:b7:26:29:ce:60:d8:59:6d:99:2b:a5:51: 1f:c8:d3:43:58:ea:57:20:8f:73:01:bf:51:6e:e3:29:77:19: b9:90:85:f4:73:b8:80:0f:c6:1f:f0:d3:d3:00:a5:2a:c4:b7: 2d:f9:8b:c9:0a:4b:be:3d:97:7a:c4:38:81:01:1f:1c:26:7e: c3:be:e7:5b:c0:60:08:b7:c7:03:fd:8c:06:43:5a:15:85:be: 00:39:48:6c:b1:2d:d2:c8:c0:46:c1:57:4c:ba:e9:4a:76:e2: 75:95:0e:5b:20:36:41:51:68:cc:4d:f2:03:64:3f:c1:b4:fd: 31:b9:3e:b0:11:79:c6:8d:5c:09:02:d4:77:b1:f4:e0:30:32: f8:e5:27:2e:73:cc:01:75:33:37:05:74:1d:e6:fa:17:6b:22: ac:4c:f2:69:64:f9:59:27:ea:c8:62:14:90:79:dd:e0:bc:4b: 66:0c:7b:4d:47:80:e6:85:4a:07:3a:9f:43:ac:3a:69:49:01: f5:34:fb:f5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xvECMPCZ1lFWInSSImkFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMDM0MGQyN2U0YjI0ZjkxMjQ5NzczMjJlZGIzNjk0MmUy ZDE2MGMwHhcNMjYwMTAxMDQxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTg5M2YyMWEyMGMzODU5NTJiZDA5NjY1YjM1MzcwZmI1N2Q1YjBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SWVXKQC2FoC1tU6PuA63GH73AU+ HHsj/HYYymPeBDsRYAlbWqWAZRcC/FTQ5ONaAABuDCPZqAu6ZmG25P7zS4O4XohA g/kw8JA1KlG+fZ5En0nPfZOk3g+0VCLM9xtuQmgXAwYVT7ksQqDgEfT617rgIRzq 0AwyLTIdZqD6JmotcIb9JEpFuh29lVuK2u9G5ztlgzDBIxB31y1YwTJ93iYbbIF7 JMZ+Oj0KLHdz/jNRleVmfAouvLMXxAFCckSgWDXukmPuG/mwTQmB0XshERIM1CR4 G779l02jlyVNR6oaZW4wwKDcklFdOhv1a3p50ClpScRYEkMqhduydlg9dQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOGJPyGiDDhZUr0JZls1Nw+1fVsNMB8GA1UdIwQY MBaAFCMDQNJ+SyT5Ekl3Mi7bNpQuLRYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAt YjU3MDkwN2I1OWViLzEvNFlrX0lhSU1PRmxTdlFsbVd6VTNEN1Y5V3cwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAtYjU3MDkwN2I1OWVi LzEvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUQa7MA0G CSqGSIb3DQEBCwUAA4IBAQAkX7RFvt81HNBaVyLiDiSxXLTMGfUY0PjLrvI5CkiT 6vwMSYuByHhOQGY/M8Si0/R4ChB/3MGnxC31OVO3JinOYNhZbZkrpVEfyNNDWOpX II9zAb9RbuMpdxm5kIX0c7iAD8Yf8NPTAKUqxLct+YvJCku+PZd6xDiBAR8cJn7D vudbwGAIt8cD/YwGQ1oVhb4AOUhssS3SyMBGwVdMuulKduJ1lQ5bIDZBUWjMTfID ZD/BtP0xuT6wEXnGjVwJAtR3sfTgMDL45Scuc8wBdTM3BXQd5voXayKsTPJpZPlZ J+rIYhSQed3gvEtmDHtNR4DmhUoHOp9DrDppSQH1NPv1 -----END CERTIFICATE-----Generated at Mon Jan 26 15:17:42 2026 by rpki-client