This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/9d4ee9-a29c-4859-819a-8cceeed62cd5/1/82t5-hxlbBokWJ95cU6-iNwwzGE.roa File: 82t5-hxlbBokWJ95cU6-iNwwzGE.roa (raw, json) Hash identifier: /vM2wNO4llhGTKJMkB3GroMrqeVphHqzb5ESd4v5N4Q= Subject key identifier: F3:6B:79:FA:1C:65:6C:1A:24:58:9F:79:71:4E:BE:88:DC:30:CC:61 Certificate issuer: /CN=842e1583c6d2b94878c5a9839ef67f56144b8565 Certificate serial: 019B77C6B1A076C1C6CB17A7E3F8CE056142 Authority key identifier: 84:2E:15:83:C6:D2:B9:48:78:C5:A9:83:9E:F6:7F:56:14:4B:85:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4Vg8bSuUh4xamDnvZ_VhRLhWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/9d4ee9-a29c-4859-819a-8cceeed62cd5/1/82t5-hxlbBokWJ95cU6-iNwwzGE.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206218 IP address blocks: 74.209.165.0/24 maxlen: 24 2001:678:bc4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/9d4ee9-a29c-4859-819a-8cceeed62cd5/1/hC4Vg8bSuUh4xamDnvZ_VhRLhWU.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/9d4ee9-a29c-4859-819a-8cceeed62cd5/1/hC4Vg8bSuUh4xamDnvZ_VhRLhWU.mft rsync://rpki.ripe.net/repository/DEFAULT/hC4Vg8bSuUh4xamDnvZ_VhRLhWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b1:a0:76:c1:c6:cb:17:a7:e3:f8:ce:05:61:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=842e1583c6d2b94878c5a9839ef67f56144b8565 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f36b79fa1c656c1a24589f79714ebe88dc30cc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ff:78:3d:3a:61:46:e9:6d:f3:a3:e4:ca:90: 57:01:1f:27:63:6c:21:41:1b:46:51:93:c3:d7:13: 32:5a:73:25:8f:5f:4e:df:6b:82:4f:85:47:ba:e6: f4:11:d1:b3:6c:76:09:1e:5f:00:76:c8:37:83:cb: 30:29:13:fe:5b:a6:c2:b9:98:e1:3e:bd:fa:74:fb: 67:98:fc:00:d1:6c:b2:ec:cc:96:81:ef:95:77:c5: 2c:7a:ae:e3:12:20:a7:82:91:52:46:47:55:0c:6c: 22:78:44:f6:af:de:43:56:93:6a:88:be:8f:72:2f: 39:73:4e:9f:8e:5f:e4:44:6c:a1:0c:75:1a:23:67: c3:12:e6:21:ea:32:95:b2:8e:7a:07:0d:a1:11:70: 18:94:7b:1f:d7:3d:7e:62:8d:27:fc:ef:fd:34:25: ef:1c:13:e4:ba:14:a0:e1:db:fc:19:57:22:99:01: d9:5c:0b:44:71:83:74:61:6c:72:a2:ac:6c:e2:21: 8c:66:d6:f7:a1:d8:b2:fe:c0:38:e0:05:ad:fe:b6: fb:77:cf:65:13:ed:74:dd:77:c8:4c:09:54:74:30: 18:0f:ec:f0:e9:c3:cd:6a:ea:bc:37:5c:c3:04:aa: bd:06:fb:55:9a:53:55:2b:a3:72:dc:ac:c9:4f:da: 23:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6B:79:FA:1C:65:6C:1A:24:58:9F:79:71:4E:BE:88:DC:30:CC:61 X509v3 Authority Key Identifier: keyid:84:2E:15:83:C6:D2:B9:48:78:C5:A9:83:9E:F6:7F:56:14:4B:85:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4Vg8bSuUh4xamDnvZ_VhRLhWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9d4ee9-a29c-4859-819a-8cceeed62cd5/1/82t5-hxlbBokWJ95cU6-iNwwzGE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9d4ee9-a29c-4859-819a-8cceeed62cd5/1/hC4Vg8bSuUh4xamDnvZ_VhRLhWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.209.165.0/24 IPv6: 2001:678:bc4::/48 Signature Algorithm: sha256WithRSAEncryption 5e:1b:45:64:16:0b:15:d9:9f:3b:82:06:cb:42:3a:eb:51:81: 3c:49:7b:15:2c:b7:0c:ab:6b:80:db:ba:4d:b9:0d:3a:42:da: 86:f1:91:e0:18:1b:e2:72:4c:fb:99:da:db:4d:d4:bc:67:90: 87:11:79:33:5c:8a:cb:e8:3c:b3:0e:72:1d:98:44:cf:8d:19: 1a:fa:39:bf:94:53:0b:9f:ab:f1:bf:a9:bd:3d:11:02:61:84: bc:ae:47:39:a0:b0:cd:ac:68:0f:ee:be:48:9b:46:25:ed:d8: e8:a3:8d:5b:1c:e0:c0:ed:3d:fa:d9:e8:38:ce:9e:6d:b1:95: 4f:0b:e5:d2:96:d3:98:ab:97:5f:0f:1e:88:99:49:88:7f:7a: e6:87:a1:14:5b:b1:73:4e:b2:22:bf:f8:f6:d4:41:75:0b:49: 38:88:1c:ec:ea:18:41:b4:ce:bc:d9:b6:3e:92:9c:2d:cd:df: 52:69:1e:25:5f:af:52:8e:ff:de:83:ee:4b:f2:6f:08:18:58: 66:22:59:0c:e8:f3:89:13:8e:4c:c4:8a:5e:f9:dc:73:d8:5f: f2:2c:86:88:68:74:f2:0c:2c:2c:b7:91:35:ba:de:74:f4:55: 25:5b:e1:49:59:45:40:6a:d1:84:a1:36:ef:05:85:a2:fb:07: b5:71:69:cc -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3xrGgdsHGyxen4/jOBWFCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MmUxNTgzYzZkMmI5NDg3OGM1YTk4MzllZjY3ZjU2MTQ0 Yjg1NjUwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMzZiNzlmYTFjNjU2YzFhMjQ1ODlmNzk3MTRlYmU4OGRjMzBjYzYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5P94PTphRult86PkypBXAR8nY2wh QRtGUZPD1xMyWnMlj19O32uCT4VHuub0EdGzbHYJHl8Adsg3g8swKRP+W6bCuZjh Pr36dPtnmPwA0Wyy7MyWge+Vd8Useq7jEiCngpFSRkdVDGwieET2r95DVpNqiL6P ci85c06fjl/kRGyhDHUaI2fDEuYh6jKVso56Bw2hEXAYlHsf1z1+Yo0n/O/9NCXv HBPkuhSg4dv8GVcimQHZXAtEcYN0YWxyoqxs4iGMZtb3odiy/sA44AWt/rb7d89l E+103XfITAlUdDAYD+zw6cPNauq8N1zDBKq9BvtVmlNVK6Ny3KzJT9ojywIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFPNrefocZWwaJFifeXFOvojcMMxhMB8GA1UdIwQY MBaAFIQuFYPG0rlIeMWpg572f1YUS4VlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEM0Vmc4YlN1VWg0eGFtRG52Wl9WaFJMaFdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85ZDRlZTktYTI5Yy00ODU5LTgxOWEt OGNjZWVlZDYyY2Q1LzEvODJ0NS1oeGxiQm9rV0o5NWNVNi1pTnd3ekdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85ZDRlZTktYTI5Yy00ODU5LTgxOWEtOGNjZWVlZDYyY2Q1 LzEvaEM0Vmc4YlN1VWg0eGFtRG52Wl9WaFJMaFdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAStGlMA8E AgACMAkDBwAgAQZ4C8QwDQYJKoZIhvcNAQELBQADggEBAF4bRWQWCxXZnzuCBstC OutRgTxJexUstwyra4Dbuk25DTpC2obxkeAYG+JyTPuZ2ttN1LxnkIcReTNcisvo PLMOch2YRM+NGRr6Ob+UUwufq/G/qb09EQJhhLyuRzmgsM2saA/uvkibRiXt2Oij jVsc4MDtPfrZ6DjOnm2xlU8L5dKW05irl18PHoiZSYh/euaHoRRbsXNOsiK/+PbU QXULSTiIHOzqGEG0zrzZtj6SnC3N31JpHiVfr1KO/96D7kvybwgYWGYiWQzo84kT jkzEil753HPYX/IshohodPIMLCy3kTW63nT0VSVb4UlZRUBq0YShNu8FhaL7B7Vx acw= -----END CERTIFICATE-----Generated at Sun Jan 25 21:39:41 2026 by rpki-client