This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/a-4CKpObY5cKeSuMoMgMffjvfWQ.roa File: a-4CKpObY5cKeSuMoMgMffjvfWQ.roa (raw, json) Hash identifier: SXxBaVwsAs/dLbHjv4oplsKiiaVfa0F06dRrYRWo100= Subject key identifier: 6B:EE:02:2A:93:9B:63:97:0A:79:2B:8C:A0:C8:0C:7D:F8:EF:7D:64 Certificate issuer: /CN=d1010da3576242324cefb2c81c1339a6c0e3b403 Certificate serial: 019B77C71CAFB09C625556E7B42400F33D6D Authority key identifier: D1:01:0D:A3:57:62:42:32:4C:EF:B2:C8:1C:13:39:A6:C0:E3:B4:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QENo1diQjJM77LIHBM5psDjtAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/a-4CKpObY5cKeSuMoMgMffjvfWQ.roa Signing time: Thu 01 Jan 2026 04:18:16 +0000 ROA not before: Thu 01 Jan 2026 04:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24611 IP address blocks: 31.216.144.0/21 maxlen: 24 80.92.64.0/19 maxlen: 24 89.37.200.0/21 maxlen: 24 89.41.248.0/21 maxlen: 24 94.177.88.0/21 maxlen: 24 2001:b20::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/0QENo1diQjJM77LIHBM5psDjtAM.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/0QENo1diQjJM77LIHBM5psDjtAM.mft rsync://rpki.ripe.net/repository/DEFAULT/0QENo1diQjJM77LIHBM5psDjtAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:1c:af:b0:9c:62:55:56:e7:b4:24:00:f3:3d:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1010da3576242324cefb2c81c1339a6c0e3b403 Validity Not Before: Jan 1 04:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6bee022a939b63970a792b8ca0c80c7df8ef7d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3f:54:f6:00:f6:f0:e3:5c:cb:ad:7d:2c:a2: fa:7b:88:c7:b1:9c:90:59:1b:3d:0b:16:ab:3d:03: 4a:85:28:6c:b9:be:7e:41:0c:51:41:38:e2:50:bf: 0c:2f:9b:f0:8a:f4:53:e4:f3:2d:6e:43:72:a3:6f: c0:5a:e7:a7:52:7e:78:20:1c:80:d2:f8:34:5a:43: 97:a9:df:7d:70:ce:bb:85:33:13:a8:05:7d:25:d0: 21:98:4b:94:48:d6:a4:3b:9b:45:e2:0c:98:7d:21: 28:14:c3:94:09:4b:dc:69:35:96:40:73:f0:9b:2e: a5:56:9a:74:cc:c9:4e:9b:22:ba:7b:92:42:ed:de: f9:4b:69:aa:ad:c6:f0:70:c5:8e:11:d7:9d:0a:d4: dc:d7:75:e8:32:43:69:9a:78:5f:58:14:97:a9:72: 07:75:cf:79:80:38:b8:e0:b8:b8:6c:20:ec:f6:49: 2f:e1:d2:4a:a0:22:b3:dd:8b:a0:b4:a6:50:a9:57: f2:70:c8:25:37:3c:b6:e7:46:78:3f:5d:d1:38:8e: e6:b8:28:2e:36:79:e1:43:16:0f:0a:d1:da:ab:8c: 14:b6:c0:33:a8:a0:49:82:ec:35:ac:71:e9:4a:3e: a3:fe:c3:55:4e:1e:b1:c5:a9:36:93:41:fb:27:bb: 9a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EE:02:2A:93:9B:63:97:0A:79:2B:8C:A0:C8:0C:7D:F8:EF:7D:64 X509v3 Authority Key Identifier: keyid:D1:01:0D:A3:57:62:42:32:4C:EF:B2:C8:1C:13:39:A6:C0:E3:B4:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QENo1diQjJM77LIHBM5psDjtAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/a-4CKpObY5cKeSuMoMgMffjvfWQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/0QENo1diQjJM77LIHBM5psDjtAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.216.144.0/21 80.92.64.0/19 89.37.200.0/21 89.41.248.0/21 94.177.88.0/21 IPv6: 2001:b20::/29 Signature Algorithm: sha256WithRSAEncryption 0e:43:3f:fe:ab:ab:12:b9:e7:0c:b3:5b:63:b1:34:99:a7:e6: d6:00:3d:f6:73:f8:76:70:7d:0e:d0:9d:ed:2a:30:ff:4f:e0: 26:2e:a7:e5:0d:2e:aa:41:48:83:9e:e0:e3:eb:99:9c:03:14: be:08:ab:e4:e3:a0:f2:5f:8c:e0:e0:30:e7:91:23:5d:40:47: 8c:ae:47:67:11:9b:58:7e:6b:c4:03:b9:32:c3:51:d9:ad:6a: 87:bd:ce:1c:b7:f5:1c:bb:f4:e8:bc:76:48:3a:0b:3d:5c:91: 67:84:9c:84:8e:d4:51:fd:0a:18:98:08:c4:9b:f7:e1:49:4a: 07:6e:db:25:a9:15:1b:cb:ce:aa:ce:a7:f4:84:bd:43:2b:a5: 22:7e:9e:c4:31:ad:e4:d0:18:8c:ed:6d:20:32:ed:29:4f:6a: 3d:7f:ce:f6:74:30:dc:a7:8c:a3:c7:98:b9:01:a8:a6:77:45: 5b:73:1e:01:c8:73:09:f4:ea:1a:87:45:c9:7c:1d:58:3e:d4: b1:0f:c9:19:99:16:d9:16:9a:d8:92:d0:cb:74:2b:33:b9:8e: 72:96:26:24:4d:fb:53:ed:ae:f7:ee:d2:45:d7:5d:dc:07:93: 34:48:93:91:d3:cc:b3:d6:a4:a4:ac:86:32:4d:bb:bb:cc:02: 30:b9:75:20 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt3xxyvsJxiVVbntCQA8z1tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxMDEwZGEzNTc2MjQyMzI0Y2VmYjJjODFjMTMzOWE2YzBl M2I0MDMwHhcNMjYwMTAxMDQxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YmVlMDIyYTkzOWI2Mzk3MGE3OTJiOGNhMGM4MGM3ZGY4ZWY3ZDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0z9U9gD28ONcy619LKL6e4jHsZyQ WRs9CxarPQNKhShsub5+QQxRQTjiUL8ML5vwivRT5PMtbkNyo2/AWuenUn54IByA 0vg0WkOXqd99cM67hTMTqAV9JdAhmEuUSNakO5tF4gyYfSEoFMOUCUvcaTWWQHPw my6lVpp0zMlOmyK6e5JC7d75S2mqrcbwcMWOEdedCtTc13XoMkNpmnhfWBSXqXIH dc95gDi44Li4bCDs9kkv4dJKoCKz3YugtKZQqVfycMglNzy250Z4P13ROI7muCgu NnnhQxYPCtHaq4wUtsAzqKBJguw1rHHpSj6j/sNVTh6xxak2k0H7J7uaHwIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFGvuAiqTm2OXCnkrjKDIDH34731kMB8GA1UdIwQY MBaAFNEBDaNXYkIyTO+yyBwTOabA47QDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFFFTm8xZGlRakpNNzdMSUhCTTVwc0RqdEFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi81NzdiMTEtNzAwOS00ODZjLTkwMTAt YTcwNDEyZmJjODMyLzEvYS00Q0twT2JZNWNLZVN1TW9NZ01mZmp2ZldRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi81NzdiMTEtNzAwOS00ODZjLTkwMTAtYTcwNDEyZmJjODMy LzEvMFFFTm8xZGlRakpNNzdMSUhCTTVwc0RqdEFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDH9iQAwQF UFxAAwQDWSXIAwQDWSn4AwQDXrFYMA0EAgACMAcDBQMgAQsgMA0GCSqGSIb3DQEB CwUAA4IBAQAOQz/+q6sSuecMs1tjsTSZp+bWAD32c/h2cH0O0J3tKjD/T+AmLqfl DS6qQUiDnuDj65mcAxS+CKvk46DyX4zg4DDnkSNdQEeMrkdnEZtYfmvEA7kyw1HZ rWqHvc4ct/Ucu/TovHZIOgs9XJFnhJyEjtRR/QoYmAjEm/fhSUoHbtslqRUby86q zqf0hL1DK6Uifp7EMa3k0BiM7W0gMu0pT2o9f872dDDcp4yjx5i5Aaimd0Vbcx4B yHMJ9Ooah0XJfB1YPtSxD8kZmRbZFprYktDLdCszuY5yliYkTftT7a737tJF113c B5M0SJOR08yz1qSkrIYyTbu7zAIwuXUg -----END CERTIFICATE-----Generated at Mon Jan 26 06:17:48 2026 by rpki-client