This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/404ba5-c466-43c3-a616-9e0407626667/1/d4KrySsXtgR3TbJYSM5N4Uqx4KU.roa File: d4KrySsXtgR3TbJYSM5N4Uqx4KU.roa (raw, json) Hash identifier: EHWSR+qUf6znYV7HsqlNW+Vcbs+/lAqwQEe/T0CiYVo= Subject key identifier: 77:82:AB:C9:2B:17:B6:04:77:4D:B2:58:48:CE:4D:E1:4A:B1:E0:A5 Certificate issuer: /CN=f7a4a6fa0fc3e3b93657eef10aedac0fb2c4538c Certificate serial: 019B78350CFA5815489CC44468A75A890EDD Authority key identifier: F7:A4:A6:FA:0F:C3:E3:B9:36:57:EE:F1:0A:ED:AC:0F:B2:C4:53:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96Sm-g_D47k2V-7xCu2sD7LEU4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/404ba5-c466-43c3-a616-9e0407626667/1/d4KrySsXtgR3TbJYSM5N4Uqx4KU.roa Signing time: Thu 01 Jan 2026 06:18:21 +0000 ROA not before: Thu 01 Jan 2026 06:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201896 IP address blocks: 185.59.40.0/22 maxlen: 24 2a02:68e0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/404ba5-c466-43c3-a616-9e0407626667/1/96Sm-g_D47k2V-7xCu2sD7LEU4w.crl rsync://rpki.ripe.net/repository/DEFAULT/28/404ba5-c466-43c3-a616-9e0407626667/1/96Sm-g_D47k2V-7xCu2sD7LEU4w.mft rsync://rpki.ripe.net/repository/DEFAULT/96Sm-g_D47k2V-7xCu2sD7LEU4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:0c:fa:58:15:48:9c:c4:44:68:a7:5a:89:0e:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7a4a6fa0fc3e3b93657eef10aedac0fb2c4538c Validity Not Before: Jan 1 06:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7782abc92b17b604774db25848ce4de14ab1e0a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:1e:14:f1:9e:88:9b:c0:a1:85:4b:aa:d7: fe:78:52:e2:f5:fc:77:dd:e7:a1:35:ef:2a:ea:eb: 30:5a:eb:05:86:fc:a8:71:77:e8:1d:28:10:c9:04: cb:b7:ba:5d:e2:2d:ae:d5:92:55:70:c6:70:2c:62: c9:d3:46:18:65:65:9d:e4:3c:94:c1:c9:8c:29:71: 6a:44:fd:fb:44:40:b2:bf:6f:9f:4f:63:ed:ea:a9: c3:bd:33:0a:09:f3:17:bf:25:e4:d9:6e:66:0b:aa: ba:2c:21:58:02:dd:5a:07:26:67:34:74:21:4c:c4: fe:fe:d8:09:f1:d2:c0:25:73:f2:52:c4:93:91:53: 00:43:ef:52:25:57:cc:b3:30:da:f5:cb:fc:86:c9: b1:f8:b9:c3:bc:0b:3d:a0:2f:79:db:ce:c9:bd:39: a4:e1:56:b6:03:8d:53:c9:27:8c:1b:f1:da:03:5d: bf:05:4c:4a:59:77:78:79:df:4c:82:63:ae:e1:bb: 26:77:30:5b:b9:9a:0e:31:17:8c:90:c8:02:64:ac: 23:2a:76:3e:b0:79:18:a8:83:a8:ac:94:50:74:9f: c4:ea:7c:35:ed:c0:32:c8:f4:42:c5:d9:32:44:d7: 6b:f9:ab:1e:69:f9:76:7a:bc:9c:ae:44:0c:fb:b9: b3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:82:AB:C9:2B:17:B6:04:77:4D:B2:58:48:CE:4D:E1:4A:B1:E0:A5 X509v3 Authority Key Identifier: keyid:F7:A4:A6:FA:0F:C3:E3:B9:36:57:EE:F1:0A:ED:AC:0F:B2:C4:53:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96Sm-g_D47k2V-7xCu2sD7LEU4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/404ba5-c466-43c3-a616-9e0407626667/1/d4KrySsXtgR3TbJYSM5N4Uqx4KU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/404ba5-c466-43c3-a616-9e0407626667/1/96Sm-g_D47k2V-7xCu2sD7LEU4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.59.40.0/22 IPv6: 2a02:68e0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:51:66:0f:27:2a:dc:66:96:ef:a7:8d:fa:57:2e:6f:63:7b: 77:43:1c:d4:ec:54:31:be:e9:30:05:07:da:b5:a1:37:68:1c: 3e:6f:dd:97:d3:f4:92:39:f4:d7:2b:33:41:d1:17:52:a4:3f: b2:e0:66:a2:e3:b9:af:0e:b1:df:6c:e7:84:0c:e5:46:2b:39: 5b:fd:1e:19:04:1e:ef:5f:4a:46:fe:fd:cf:a8:41:46:56:e0: 50:6e:cd:13:58:f8:f7:29:a5:a5:98:61:0e:6f:2c:c3:7e:21: b2:d2:7a:a4:45:6f:56:5d:46:5c:37:d3:4f:a0:c3:71:36:f6: 72:b2:e5:16:ac:46:23:0d:69:95:af:fa:1e:57:dc:d1:fb:61: bd:83:c9:e7:a3:80:4b:e5:38:73:34:04:bf:3a:36:c3:1d:08: 4a:84:44:84:90:b8:72:4e:46:26:a0:8b:f9:d4:a0:3d:b0:1b: ed:ba:b4:1e:13:f7:0d:f5:af:b9:2b:0f:00:11:c0:f5:76:63: 0c:15:81:3a:bb:d7:8d:84:2e:53:45:e0:3e:ee:0e:72:73:d5: d3:16:73:e9:c3:11:1e:c6:3f:cd:4b:27:e6:91:e2:c6:48:ae: 36:ae:13:0f:49:19:f6:8a:49:e1:c9:73:32:eb:a0:ac:75:97: 3a:ac:a6:ec -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NQz6WBVInMREaKdaiQ7dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YTRhNmZhMGZjM2UzYjkzNjU3ZWVmMTBhZWRhYzBmYjJj NDUzOGMwHhcNMjYwMTAxMDYxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzgyYWJjOTJiMTdiNjA0Nzc0ZGIyNTg0OGNlNGRlMTRhYjFlMGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmQeFPGeiJvAoYVLqtf+eFLi9fx3 3eehNe8q6uswWusFhvyocXfoHSgQyQTLt7pd4i2u1ZJVcMZwLGLJ00YYZWWd5DyU wcmMKXFqRP37RECyv2+fT2Pt6qnDvTMKCfMXvyXk2W5mC6q6LCFYAt1aByZnNHQh TMT+/tgJ8dLAJXPyUsSTkVMAQ+9SJVfMszDa9cv8hsmx+LnDvAs9oC95287JvTmk 4Va2A41TySeMG/HaA12/BUxKWXd4ed9MgmOu4bsmdzBbuZoOMReMkMgCZKwjKnY+ sHkYqIOorJRQdJ/E6nw17cAyyPRCxdkyRNdr+aseafl2erycrkQM+7mzswIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHeCq8krF7YEd02yWEjOTeFKseClMB8GA1UdIwQY MBaAFPekpvoPw+O5Nlfu8QrtrA+yxFOMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTZTbS1nX0Q0N2syVi03eEN1MnNEN0xFVTR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC80MDRiYTUtYzQ2Ni00M2MzLWE2MTYt OWUwNDA3NjI2NjY3LzEvZDRLcnlTc1h0Z1IzVGJKWVNNNU40VXF4NEtVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC80MDRiYTUtYzQ2Ni00M2MzLWE2MTYtOWUwNDA3NjI2NjY3 LzEvOTZTbS1nX0Q0N2syVi03eEN1MnNEN0xFVTR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTsoMA0E AgACMAcDBQAqAmjgMA0GCSqGSIb3DQEBCwUAA4IBAQBtUWYPJyrcZpbvp436Vy5v Y3t3QxzU7FQxvukwBQfataE3aBw+b92X0/SSOfTXKzNB0RdSpD+y4Gai47mvDrHf bOeEDOVGKzlb/R4ZBB7vX0pG/v3PqEFGVuBQbs0TWPj3KaWlmGEObyzDfiGy0nqk RW9WXUZcN9NPoMNxNvZysuUWrEYjDWmVr/oeV9zR+2G9g8nno4BL5ThzNAS/OjbD HQhKhESEkLhyTkYmoIv51KA9sBvturQeE/cN9a+5Kw8AEcD1dmMMFYE6u9eNhC5T ReA+7g5yc9XTFnPpwxEexj/NSyfmkeLGSK42rhMPSRn2iknhyXMy66CsdZc6rKbs -----END CERTIFICATE-----Generated at Sat Jan 10 01:15:34 2026 by rpki-client