This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/4QHBn9ucdlKQY-OkJvc7Ig6NIBo.roa File: 4QHBn9ucdlKQY-OkJvc7Ig6NIBo.roa (raw, json) Hash identifier: 7wIOmcrsKNPm1pT+25Dr7MjY3mEMyojJiBNkSyV1lM0= Subject key identifier: E1:01:C1:9F:DB:9C:76:52:90:63:E3:A4:26:F7:3B:22:0E:8D:20:1A Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2 Certificate serial: 019B7E37A5691AE1624A422F8C941C288EF3 Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/4QHBn9ucdlKQY-OkJvc7Ig6NIBo.roa Signing time: Fri 02 Jan 2026 10:18:54 +0000 ROA not before: Fri 02 Jan 2026 10:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41881 IP address blocks: 89.221.84.0/22 maxlen: 22 89.221.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.mft rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a5:69:1a:e1:62:4a:42:2f:8c:94:1c:28:8e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2 Validity Not Before: Jan 2 10:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e101c19fdb9c76529063e3a426f73b220e8d201a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0f:a6:3d:2a:10:79:12:8d:62:11:45:43:54: c9:68:35:0c:bf:4a:2d:ba:98:99:d7:3f:93:a2:b8: 7a:0b:c1:05:1e:bb:3d:d2:f0:5d:90:66:21:93:6d: 9c:87:c0:e3:0e:ce:c2:ad:2a:8f:df:38:e1:06:78: ca:15:24:87:67:9f:58:e5:6b:63:20:6f:b1:3e:f4: 7c:cd:f7:8c:ea:e1:af:ce:1c:07:fb:bc:24:c5:a1: 36:bd:71:91:ec:65:9c:cb:13:d5:75:03:c6:e5:09: 14:b1:74:92:c7:65:b8:15:8c:3d:aa:22:be:83:2f: 92:4e:0b:c4:48:d0:eb:21:01:20:25:ca:7a:90:e1: 39:56:01:7a:86:61:2c:97:cb:53:29:31:45:9a:8c: b2:c1:98:fe:94:0b:a2:bf:d7:8c:f0:29:c2:a3:b7: 0e:de:08:23:03:32:87:22:80:23:96:b7:fa:73:b7: 85:9a:6a:8f:fb:39:7d:51:6c:6f:e5:b7:4e:dc:aa: e6:07:9b:4b:54:54:1d:e0:01:ab:84:fd:04:63:3c: 10:ca:81:fd:ee:ab:11:f7:69:61:0f:f1:9b:34:86: 4d:3f:0a:ae:73:0f:9f:06:13:60:fe:02:64:be:77: ab:e2:f4:bc:69:d0:03:48:ca:02:08:81:1e:46:db: 36:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:01:C1:9F:DB:9C:76:52:90:63:E3:A4:26:F7:3B:22:0E:8D:20:1A X509v3 Authority Key Identifier: keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/4QHBn9ucdlKQY-OkJvc7Ig6NIBo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.221.84.0/22 89.221.95.0/24 Signature Algorithm: sha256WithRSAEncryption b0:69:58:af:86:94:4e:69:fb:fd:32:2d:60:d2:6a:c6:23:ba: bc:f5:59:fe:62:00:00:ca:fe:fd:c4:00:3a:64:05:24:dc:78: 65:d8:47:14:11:1b:5a:28:34:12:8a:1a:99:a5:f3:56:86:d6: 63:a3:27:85:89:2b:7f:f2:7e:2e:6a:2b:21:f2:1b:6b:2b:fe: 77:38:77:f6:44:be:d1:49:0a:af:c0:c4:bf:49:e7:e6:5e:14: bb:b4:0a:2f:9e:4b:bd:a8:33:30:2a:45:46:69:71:f5:7a:c1: ba:25:46:66:ff:64:a3:ec:e5:f1:e8:90:cd:c9:fc:e7:8e:c7: 01:69:1f:50:e3:f1:90:f6:ca:ab:be:92:82:38:bb:b6:c8:97: b2:cb:6f:59:15:46:d4:d6:bd:d7:ba:0e:a9:ca:d1:ee:60:c4: 74:30:39:67:91:a2:14:01:d4:96:a8:51:23:e3:1f:9d:4f:2d: 4f:9b:b9:59:32:34:97:28:ea:a7:3f:55:fe:48:71:a7:19:dc: 91:b0:fa:0c:27:28:42:6f:d7:99:3d:c5:0d:9c:7d:33:c6:90: 4f:1f:2f:54:c0:3e:17:3d:9e:5a:57:fa:73:dd:fa:85:c2:95: 4b:e6:f7:68:45:cd:3f:ef:0d:9c:b6:49:ac:94:44:85:39:42: 5b:32:05:0b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N6VpGuFiSkIvjJQcKI7zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkOTY4MWYxNDRkYjE0MzBhYzMxNWM4MzA2ZTFjMTQ3MzBj NWZlYzIwHhcNMjYwMTAyMTAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTAxYzE5ZmRiOWM3NjUyOTA2M2UzYTQyNmY3M2IyMjBlOGQyMDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmw+mPSoQeRKNYhFFQ1TJaDUMv0ot upiZ1z+Torh6C8EFHrs90vBdkGYhk22ch8DjDs7CrSqP3zjhBnjKFSSHZ59Y5Wtj IG+xPvR8zfeM6uGvzhwH+7wkxaE2vXGR7GWcyxPVdQPG5QkUsXSSx2W4FYw9qiK+ gy+STgvESNDrIQEgJcp6kOE5VgF6hmEsl8tTKTFFmoyywZj+lAuiv9eM8CnCo7cO 3ggjAzKHIoAjlrf6c7eFmmqP+zl9UWxv5bdO3KrmB5tLVFQd4AGrhP0EYzwQyoH9 7qsR92lhD/GbNIZNPwqucw+fBhNg/gJkvner4vS8adADSMoCCIEeRts2UwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOEBwZ/bnHZSkGPjpCb3OyIOjSAaMB8GA1UdIwQY MBaAFK2WgfFE2xQwrDFcgwbhwUcwxf7CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2Yt YTNhMTNlM2E3ZDgwLzEvNFFIQm45dWNkbEtRWS1Pa0p2YzdJZzZOSUJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2YtYTNhMTNlM2E3ZDgw LzEvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCWd1UAwQA Wd1fMA0GCSqGSIb3DQEBCwUAA4IBAQCwaVivhpROafv9Mi1g0mrGI7q89Vn+YgAA yv79xAA6ZAUk3Hhl2EcUERtaKDQSihqZpfNWhtZjoyeFiSt/8n4uaish8htrK/53 OHf2RL7RSQqvwMS/SefmXhS7tAovnku9qDMwKkVGaXH1esG6JUZm/2Sj7OXx6JDN yfznjscBaR9Q4/GQ9sqrvpKCOLu2yJeyy29ZFUbU1r3Xug6pytHuYMR0MDlnkaIU AdSWqFEj4x+dTy1Pm7lZMjSXKOqnP1X+SHGnGdyRsPoMJyhCb9eZPcUNnH0zxpBP Hy9UwD4XPZ5aV/pz3fqFwpVL5vdoRc0/7w2ctkmslESFOUJbMgUL -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:42 2026 by rpki-client