This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/4i9ivIesCHsbnVrZP6Me_46hnOo.roa File: 4i9ivIesCHsbnVrZP6Me_46hnOo.roa (raw, json) Hash identifier: qu7/9ByyUg/pGlPFs771pDMBYsdYL5/jWLiIBXBq/us= Subject key identifier: E2:2F:62:BC:87:AC:08:7B:1B:9D:5A:D9:3F:A3:1E:FF:8E:A1:9C:EA Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce Certificate serial: 019B78354174AD9DB8C727F05E92276A9AAC Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/4i9ivIesCHsbnVrZP6Me_46hnOo.roa Signing time: Thu 01 Jan 2026 06:18:34 +0000 ROA not before: Thu 01 Jan 2026 06:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12389 IP address blocks: 83.217.10.0/24 maxlen: 32 185.134.120.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.mft rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:41:74:ad:9d:b8:c7:27:f0:5e:92:27:6a:9a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce Validity Not Before: Jan 1 06:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e22f62bc87ac087b1b9d5ad93fa31eff8ea19cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5a:98:9d:49:f3:c3:e1:87:7c:35:47:e0:a5: 9e:bd:31:27:82:8a:9b:5f:9c:a2:34:ed:43:f1:ff: e7:d9:4b:d4:ce:6f:80:90:0b:27:57:a9:ad:27:81: bc:de:59:4a:f4:5c:25:6f:ec:b6:09:94:12:a5:88: d1:90:d8:97:e3:b0:fd:32:36:ad:0f:b7:dd:1a:4c: 19:29:11:ca:a3:63:37:8a:6d:23:cf:51:60:e7:2f: 19:c9:af:99:29:49:68:a8:c2:e9:c3:6f:6d:dc:66: de:8e:d0:1b:a4:0e:0b:b7:33:ca:d6:9e:94:29:d6: 76:ae:28:26:c8:64:2f:45:c0:1b:b1:07:61:d6:cb: 1a:b0:fd:22:86:21:e5:e3:07:91:94:fc:4f:c4:7b: 23:7c:d1:85:e5:f2:a3:e4:d3:2f:38:8a:bc:ac:3c: 5b:87:57:fe:0f:8e:30:13:b8:af:5f:8c:95:e1:44: fe:45:fb:4e:15:b6:1d:ec:60:b1:2d:79:67:8b:e7: 2a:22:94:56:73:39:57:92:03:fd:09:97:6d:93:1e: 79:37:90:bc:58:5d:e5:35:eb:7c:4e:2f:dc:bb:0c: 0a:f5:6c:7a:31:de:c1:61:0c:b0:2a:cb:7f:05:44: ae:ac:91:00:13:2a:e2:78:e8:0a:50:d9:cd:fb:28: e1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2F:62:BC:87:AC:08:7B:1B:9D:5A:D9:3F:A3:1E:FF:8E:A1:9C:EA X509v3 Authority Key Identifier: keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/4i9ivIesCHsbnVrZP6Me_46hnOo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.217.10.0/24 185.134.120.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:45:ed:9d:a6:33:77:49:7c:f0:f2:0f:ad:c9:7c:5a:a8:f5: c9:3d:82:c2:68:67:6b:9b:47:85:79:c1:89:3d:10:b9:44:47: 6e:98:d8:44:f6:07:ad:b4:a3:0e:82:d1:a4:8f:dc:09:16:8e: 9c:7d:c5:c3:8b:b7:e8:10:50:25:54:74:db:a8:c3:5c:5e:e6: fa:b9:8c:bd:89:92:a8:e2:16:a9:50:a4:6e:11:39:9b:3d:98: 40:c6:8f:ff:da:fc:5c:01:83:11:26:da:d8:25:64:e1:a0:77: 9a:8d:2c:85:a0:59:f8:1f:9a:07:a0:4c:b9:ff:57:97:b4:e9: 05:d4:fa:b9:7c:a8:23:b5:49:33:58:53:64:4d:3d:a3:2e:5c: b7:a1:72:80:1e:89:36:d9:e7:7d:62:1a:05:3f:70:c3:31:bb: a2:1c:b4:22:d8:63:86:65:45:f8:d9:7c:19:a5:24:af:8c:d5: dd:2e:39:a4:e5:61:38:f8:72:73:32:2a:77:9f:1b:5b:1c:ae: 8e:fe:e6:86:e8:ef:dd:3a:52:2a:93:ae:58:7c:d8:fe:41:e9: 63:12:6f:ce:b4:48:12:80:c3:de:11:45:8e:a9:35:89:6e:9d: 96:f8:9c:05:89:15:94:8b:b4:99:d3:25:07:f9:68:20:32:cc: cb:4e:8e:60 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NUF0rZ24xyfwXpInapqsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NDBiNjk0YmJhMDk1MzQ0ZTRiZGI5OWY1MWUxZjEwMjNi ZTU3Y2UwHhcNMjYwMTAxMDYxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjJmNjJiYzg3YWMwODdiMWI5ZDVhZDkzZmEzMWVmZjhlYTE5Y2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFqYnUnzw+GHfDVH4KWevTEngoqb X5yiNO1D8f/n2UvUzm+AkAsnV6mtJ4G83llK9Fwlb+y2CZQSpYjRkNiX47D9Mjat D7fdGkwZKRHKo2M3im0jz1Fg5y8Zya+ZKUloqMLpw29t3GbejtAbpA4LtzPK1p6U KdZ2rigmyGQvRcAbsQdh1ssasP0ihiHl4weRlPxPxHsjfNGF5fKj5NMvOIq8rDxb h1f+D44wE7ivX4yV4UT+RftOFbYd7GCxLXlni+cqIpRWczlXkgP9CZdtkx55N5C8 WF3lNet8Ti/cuwwK9Wx6Md7BYQywKst/BUSurJEAEyrieOgKUNnN+yjhTwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOIvYryHrAh7G51a2T+jHv+OoZzqMB8GA1UdIwQY MBaAFClAtpS7oJU0TkvbmfUeHxAjvlfOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzIt MjdjMWEzNTk3NmRlLzEvNGk5aXZJZXNDSHNiblZyWlA2TWVfNDZobk9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzItMjdjMWEzNTk3NmRl LzEvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAU9kKAwQA uYZ4MA0GCSqGSIb3DQEBCwUAA4IBAQB/Re2dpjN3SXzw8g+tyXxaqPXJPYLCaGdr m0eFecGJPRC5REdumNhE9gettKMOgtGkj9wJFo6cfcXDi7foEFAlVHTbqMNcXub6 uYy9iZKo4hapUKRuETmbPZhAxo//2vxcAYMRJtrYJWThoHeajSyFoFn4H5oHoEy5 /1eXtOkF1Pq5fKgjtUkzWFNkTT2jLly3oXKAHok22ed9YhoFP3DDMbuiHLQi2GOG ZUX42XwZpSSvjNXdLjmk5WE4+HJzMip3nxtbHK6O/uaG6O/dOlIqk65YfNj+Qelj Em/OtEgSgMPeEUWOqTWJbp2W+JwFiRWUi7SZ0yUH+WggMszLTo5g -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:36 2026 by rpki-client