This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/308179-be69-4c10-8694-fbd399a4475e/1/f4nPS6ohtqHTChuoe7zsCtGbZk0.roa File: f4nPS6ohtqHTChuoe7zsCtGbZk0.roa (raw, json) Hash identifier: sDMFZIqzqP0HnmKISKRvCr3JlZX4SyHrkPjSdRU5xGI= Subject key identifier: 7F:89:CF:4B:AA:21:B6:A1:D3:0A:1B:A8:7B:BC:EC:0A:D1:9B:66:4D Certificate issuer: /CN=34d519247402bcfbdf0ece9020ad64622e9d3bae Certificate serial: 019B7B36879FB14E6891E7CEDD64BE884C8A Authority key identifier: 34:D5:19:24:74:02:BC:FB:DF:0E:CE:90:20:AD:64:62:2E:9D:3B:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NNUZJHQCvPvfDs6QIK1kYi6dO64.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/308179-be69-4c10-8694-fbd399a4475e/1/f4nPS6ohtqHTChuoe7zsCtGbZk0.roa Signing time: Thu 01 Jan 2026 20:18:49 +0000 ROA not before: Thu 01 Jan 2026 20:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204144 IP address blocks: 185.41.204.0/23 maxlen: 23 185.107.252.0/22 maxlen: 22 185.108.212.0/22 maxlen: 22 185.111.164.0/22 maxlen: 22 185.112.236.0/22 maxlen: 22 185.113.72.0/22 maxlen: 22 185.113.76.0/22 maxlen: 22 185.163.236.0/22 maxlen: 22 185.236.216.0/23 maxlen: 23 185.236.218.0/23 maxlen: 23 188.114.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/308179-be69-4c10-8694-fbd399a4475e/1/NNUZJHQCvPvfDs6QIK1kYi6dO64.crl rsync://rpki.ripe.net/repository/DEFAULT/22/308179-be69-4c10-8694-fbd399a4475e/1/NNUZJHQCvPvfDs6QIK1kYi6dO64.mft rsync://rpki.ripe.net/repository/DEFAULT/NNUZJHQCvPvfDs6QIK1kYi6dO64.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:87:9f:b1:4e:68:91:e7:ce:dd:64:be:88:4c:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34d519247402bcfbdf0ece9020ad64622e9d3bae Validity Not Before: Jan 1 20:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7f89cf4baa21b6a1d30a1ba87bbcec0ad19b664d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:55:95:ea:a8:87:21:ce:cf:1d:a5:a5:5f:bf: ed:06:14:7c:4a:ce:2b:9b:c3:5d:f0:47:25:32:19: dc:3a:0d:ee:b1:b7:b7:9f:27:b1:e8:2f:26:a9:06: 7f:dd:9a:d7:eb:4a:52:d6:6b:7a:22:67:ce:e6:56: 14:00:13:cb:e6:0a:e5:bc:0f:2b:a0:cf:e9:c4:71: e5:dc:ce:7b:d5:83:5d:7f:f8:95:3b:63:d0:7a:8c: a7:d1:6a:fe:2d:11:c5:71:76:0b:e3:66:20:30:5e: 74:d2:d8:54:9a:4f:46:21:6f:6a:73:ee:e3:07:27: 5b:31:de:86:1d:b2:41:b2:04:30:9d:67:09:77:66: 4c:d2:ae:37:0e:ab:57:c5:d3:d7:4c:ae:f1:65:a3: 93:5b:61:97:c0:b6:07:cd:40:75:16:57:98:dc:12: 25:b5:2d:f6:e3:58:9e:26:03:8f:ad:75:15:34:d8: 96:fe:74:a4:65:ed:ab:27:e8:fd:59:13:30:d7:04: df:bf:a1:66:92:5a:06:56:dd:8b:78:80:eb:61:bb: ac:85:a1:0e:be:86:67:82:88:85:ae:b0:8a:cd:05: cf:c2:f1:64:92:e7:06:36:5d:04:27:82:e2:0c:ca: e4:ef:79:f6:0e:db:c0:3b:ec:9b:ce:2d:41:6d:19: 18:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:89:CF:4B:AA:21:B6:A1:D3:0A:1B:A8:7B:BC:EC:0A:D1:9B:66:4D X509v3 Authority Key Identifier: keyid:34:D5:19:24:74:02:BC:FB:DF:0E:CE:90:20:AD:64:62:2E:9D:3B:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NNUZJHQCvPvfDs6QIK1kYi6dO64.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/308179-be69-4c10-8694-fbd399a4475e/1/f4nPS6ohtqHTChuoe7zsCtGbZk0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/308179-be69-4c10-8694-fbd399a4475e/1/NNUZJHQCvPvfDs6QIK1kYi6dO64.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.41.204.0/23 185.107.252.0/22 185.108.212.0/22 185.111.164.0/22 185.112.236.0/22 185.113.72.0/21 185.163.236.0/22 185.236.216.0/22 188.114.208.0/20 Signature Algorithm: sha256WithRSAEncryption 43:51:0f:bc:25:0e:45:a1:22:9c:5a:6e:69:0b:45:69:8b:ae: 89:e4:c0:20:07:6f:3a:d9:93:b4:6f:97:d2:0c:13:92:6b:02: 7d:ff:be:7c:1e:ce:5a:97:1b:68:88:bb:c6:79:67:8f:4c:e6: 66:2b:13:07:f2:0f:c4:f4:d6:d6:48:73:48:51:b6:bd:5b:83: eb:ef:62:b9:fa:99:58:74:4a:17:ab:04:6d:55:20:1b:51:96: d3:cc:8e:19:aa:a8:b8:4b:a3:24:3a:6d:f7:f9:fc:83:6f:ed: ac:51:c2:e9:dd:00:65:83:54:a0:7b:bb:13:62:fe:88:f3:9d: 2a:f3:64:19:a1:62:23:a7:02:c9:d2:23:a9:60:5f:c2:f9:73: fe:46:db:4a:ef:fe:60:07:e8:3b:71:00:db:62:a5:3f:67:b4: ba:79:18:3e:4c:41:99:f0:fa:e3:0a:f8:0b:d5:2e:90:ae:57: 09:db:ab:81:ae:b6:df:3f:f6:8f:af:03:3a:dd:2d:47:ae:ea: e7:c7:f0:c7:56:27:30:e2:c6:bf:61:4f:68:0d:ca:ab:8a:c5: 05:6d:e3:3d:a8:ed:b9:4c:f5:b2:ba:1c:36:e6:32:19:b5:be: 12:da:4e:af:8b:8c:80:53:74:d7:17:7e:38:62:72:17:6a:24: 74:da:26:5e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt7NoefsU5okefO3WS+iEyKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZDUxOTI0NzQwMmJjZmJkZjBlY2U5MDIwYWQ2NDYyMmU5 ZDNiYWUwHhcNMjYwMTAxMjAxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Zjg5Y2Y0YmFhMjFiNmExZDMwYTFiYTg3YmJjZWMwYWQxOWI2NjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlWV6qiHIc7PHaWlX7/tBhR8Ss4r m8Nd8EclMhncOg3usbe3nyex6C8mqQZ/3ZrX60pS1mt6ImfO5lYUABPL5grlvA8r oM/pxHHl3M571YNdf/iVO2PQeoyn0Wr+LRHFcXYL42YgMF500thUmk9GIW9qc+7j BydbMd6GHbJBsgQwnWcJd2ZM0q43DqtXxdPXTK7xZaOTW2GXwLYHzUB1FleY3BIl tS3241ieJgOPrXUVNNiW/nSkZe2rJ+j9WRMw1wTfv6FmkloGVt2LeIDrYbushaEO voZngoiFrrCKzQXPwvFkkucGNl0EJ4LiDMrk73n2DtvAO+ybzi1BbRkYYwIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFH+Jz0uqIbah0wobqHu87ArRm2ZNMB8GA1UdIwQY MBaAFDTVGSR0Arz73w7OkCCtZGIunTuuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk5VWkpIUUN2UHZmRHM2UUlLMWtZaTZkTzY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zMDgxNzktYmU2OS00YzEwLTg2OTQt ZmJkMzk5YTQ0NzVlLzEvZjRuUFM2b2h0cUhUQ2h1b2U3enNDdEdiWmswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zMDgxNzktYmU2OS00YzEwLTg2OTQtZmJkMzk5YTQ0NzVl LzEvTk5VWkpIUUN2UHZmRHM2UUlLMWtZaTZkTzY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQBuSnMAwQC uWv8AwQCuWzUAwQCuW+kAwQCuXDsAwQDuXFIAwQCuaPsAwQCuezYAwQEvHLQMA0G CSqGSIb3DQEBCwUAA4IBAQBDUQ+8JQ5FoSKcWm5pC0Vpi66J5MAgB2862ZO0b5fS DBOSawJ9/758Hs5alxtoiLvGeWePTOZmKxMH8g/E9NbWSHNIUba9W4Pr72K5+plY dEoXqwRtVSAbUZbTzI4Zqqi4S6MkOm33+fyDb+2sUcLp3QBlg1Sge7sTYv6I850q 82QZoWIjpwLJ0iOpYF/C+XP+RttK7/5gB+g7cQDbYqU/Z7S6eRg+TEGZ8PrjCvgL 1S6QrlcJ26uBrrbfP/aPrwM63S1Hrurnx/DHVicw4sa/YU9oDcqrisUFbeM9qO25 TPWyuhw25jIZtb4S2k6vi4yAU3TXF344YnIXaiR02iZe -----END CERTIFICATE-----Generated at Sat Jan 3 02:49:10 2026 by rpki-client