This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/4Y87uPBcnzqu7SnpFpvG_1ta_nU.roa File: 4Y87uPBcnzqu7SnpFpvG_1ta_nU.roa (raw, json) Hash identifier: aGjAdNp1IYIeMxxZUmsm+FreTr38XN+ZcPTTAQemfpE= Subject key identifier: E1:8F:3B:B8:F0:5C:9F:3A:AE:ED:29:E9:16:9B:C6:FF:5B:5A:FE:75 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B7834903261159083F10AFDBFEDEE64E2 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/4Y87uPBcnzqu7SnpFpvG_1ta_nU.roa Signing time: Thu 01 Jan 2026 06:17:49 +0000 ROA not before: Thu 01 Jan 2026 06:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209837 IP address blocks: 194.132.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:90:32:61:15:90:83:f1:0a:fd:bf:ed:ee:64:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e18f3bb8f05c9f3aaeed29e9169bc6ff5b5afe75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7d:f2:f9:87:23:09:d5:15:f3:e1:10:39:45: b5:b5:e8:56:79:ea:88:8e:c6:c4:b0:b8:c2:c2:16: 47:41:e9:39:62:9a:a4:c3:2d:4c:b6:01:ef:d3:d3: ad:45:a9:8e:99:15:d7:c2:02:e7:2c:07:64:b3:65: bf:70:4f:6a:f0:a1:a1:bd:6b:45:e8:63:ee:cc:59: 97:0f:79:c6:f5:70:3d:a0:9e:f0:1c:37:f2:43:cd: ac:12:22:2e:3d:8f:99:df:7e:88:5b:bb:20:a3:4b: ef:cd:aa:88:36:51:a5:d1:16:77:2c:15:11:e0:30: 14:18:32:94:15:3f:36:63:95:bd:62:c0:87:df:49: ce:74:a4:ba:a2:75:0a:b4:c8:30:e8:09:0d:d1:68: a0:ed:ea:56:10:2f:aa:5e:14:cf:6d:ea:5a:50:af: 1f:8c:fd:66:3a:b6:aa:a7:6c:9a:99:98:03:89:94: 49:5d:b9:11:5d:48:f4:72:15:89:c1:c0:98:fa:b4: b8:5f:5e:b0:ce:56:f3:bb:41:ac:72:46:c9:22:6f: d7:a0:51:11:05:ee:7f:6c:02:9f:7f:91:ba:ed:7e: 82:51:b2:87:6d:37:04:06:c8:1c:3d:e5:e9:dc:9c: a0:6b:39:92:b5:65:05:c8:aa:c2:42:4f:d4:c3:8d: 46:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8F:3B:B8:F0:5C:9F:3A:AE:ED:29:E9:16:9B:C6:FF:5B:5A:FE:75 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/4Y87uPBcnzqu7SnpFpvG_1ta_nU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.132.215.0/24 Signature Algorithm: sha256WithRSAEncryption b3:f7:1f:8f:6f:ab:e6:c4:d4:74:9c:22:e3:77:78:55:5e:80: 6c:54:57:44:0b:9a:c3:b5:8f:4d:69:4e:32:44:73:29:9f:5a: 36:06:75:0f:95:60:7c:37:d1:18:d3:bd:ea:75:40:12:29:a5: b8:fa:8a:f6:94:a8:46:1c:22:5a:ce:d4:26:2a:64:f0:a1:72: 25:13:54:f8:f2:b2:ed:1a:58:bb:6f:00:37:7f:0b:9e:42:8e: 9d:03:38:66:e9:94:9c:4d:99:b6:cb:dc:73:26:00:57:0b:b7: a7:18:d1:d5:b2:4e:0c:4c:6d:2f:f5:6a:88:e5:a4:5e:04:ed: ce:43:0f:87:1e:3d:b5:f6:8a:52:3d:83:96:ab:40:37:1d:f5: f0:f7:28:ac:bf:e1:70:e1:f7:26:92:aa:0a:fa:33:ee:2a:19: fc:de:89:3e:2e:b1:8c:6d:2b:34:18:f4:77:06:5a:68:46:4b: 6c:17:80:1c:e4:d7:13:fa:c0:9c:4d:20:62:69:dd:11:f3:0d: 76:87:a9:90:a9:08:80:ad:4a:84:f0:cb:3c:79:8d:e3:de:4b: f8:53:2e:8d:5b:a0:6e:2a:94:82:b6:8b:c0:92:d4:cf:32:4c: cd:6e:a8:be:74:2a:bd:da:c8:d1:99:3f:70:cd:46:47:94:b2: 46:4f:fb:6a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NJAyYRWQg/EK/b/t7mTiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMThmM2JiOGYwNWM5ZjNhYWVlZDI5ZTkxNjliYzZmZjViNWFmZTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvX3y+YcjCdUV8+EQOUW1tehWeeqI jsbEsLjCwhZHQek5Ypqkwy1MtgHv09OtRamOmRXXwgLnLAdks2W/cE9q8KGhvWtF 6GPuzFmXD3nG9XA9oJ7wHDfyQ82sEiIuPY+Z336IW7sgo0vvzaqINlGl0RZ3LBUR 4DAUGDKUFT82Y5W9YsCH30nOdKS6onUKtMgw6AkN0Wig7epWEC+qXhTPbepaUK8f jP1mOraqp2yamZgDiZRJXbkRXUj0chWJwcCY+rS4X16wzlbzu0GsckbJIm/XoFER Be5/bAKff5G67X6CUbKHbTcEBsgcPeXp3JygazmStWUFyKrCQk/Uw41G1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOGPO7jwXJ86ru0p6Rabxv9bWv51MB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvNFk4N3VQQmNuenF1N1NucEZwdkdfMXRhX25VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwoTXMA0G CSqGSIb3DQEBCwUAA4IBAQCz9x+Pb6vmxNR0nCLjd3hVXoBsVFdEC5rDtY9NaU4y RHMpn1o2BnUPlWB8N9EY073qdUASKaW4+or2lKhGHCJaztQmKmTwoXIlE1T48rLt Gli7bwA3fwueQo6dAzhm6ZScTZm2y9xzJgBXC7enGNHVsk4MTG0v9WqI5aReBO3O Qw+HHj219opSPYOWq0A3HfXw9yisv+Fw4fcmkqoK+jPuKhn83ok+LrGMbSs0GPR3 BlpoRktsF4Ac5NcT+sCcTSBiad0R8w12h6mQqQiArUqE8Ms8eY3j3kv4Uy6NW6Bu KpSCtovAktTPMkzNbqi+dCq92sjRmT9wzUZHlLJGT/tq -----END CERTIFICATE-----Generated at Sun Jan 25 10:32:39 2026 by rpki-client