This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/b74aa2-25e0-4ad5-8cc3-69061ef2c499/1/4vljd6eS7xs98V4vbQdU27KIRbo.roa File: 4vljd6eS7xs98V4vbQdU27KIRbo.roa (raw, json) Hash identifier: p9Wr9nNkj4z/XeaCt1WGEIqENx+18d7M1y0DLvifYF0= Subject key identifier: E2:F9:63:77:A7:92:EF:1B:3D:F1:5E:2F:6D:07:54:DB:B2:88:45:BA Certificate issuer: /CN=b8d23b1e6c07e62af2d2e7eb6de0893b09119abb Certificate serial: 019B7910A6D5CB5A52BB26F88C23316304DF Authority key identifier: B8:D2:3B:1E:6C:07:E6:2A:F2:D2:E7:EB:6D:E0:89:3B:09:11:9A:BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNI7HmwH5iry0ufrbeCJOwkRmrs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/b74aa2-25e0-4ad5-8cc3-69061ef2c499/1/4vljd6eS7xs98V4vbQdU27KIRbo.roa Signing time: Thu 01 Jan 2026 10:18:12 +0000 ROA not before: Thu 01 Jan 2026 10:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204141 IP address blocks: 82.211.192.0/19 maxlen: 19 185.140.0.0/22 maxlen: 22 2a03:19c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/b74aa2-25e0-4ad5-8cc3-69061ef2c499/1/uNI7HmwH5iry0ufrbeCJOwkRmrs.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/b74aa2-25e0-4ad5-8cc3-69061ef2c499/1/uNI7HmwH5iry0ufrbeCJOwkRmrs.mft rsync://rpki.ripe.net/repository/DEFAULT/uNI7HmwH5iry0ufrbeCJOwkRmrs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 14:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:a6:d5:cb:5a:52:bb:26:f8:8c:23:31:63:04:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8d23b1e6c07e62af2d2e7eb6de0893b09119abb Validity Not Before: Jan 1 10:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e2f96377a792ef1b3df15e2f6d0754dbb28845ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:00:a2:81:b3:1c:ea:23:fc:84:dd:64:7a: 17:3c:cc:d1:2c:51:02:da:9f:b5:0b:cd:49:29:cd: 16:c2:7c:59:b0:55:8e:16:1b:ed:ed:c2:8f:0e:3e: d2:35:76:9e:da:bd:86:6c:92:34:84:83:c9:61:05: a4:ba:f4:db:ff:3a:ca:c5:0a:00:44:d8:b7:06:18: 84:32:9e:42:df:b1:bd:06:75:4e:bc:95:e2:37:1b: f2:d7:6b:3f:65:83:8b:46:12:8c:74:9d:6a:37:06: 53:ef:39:d1:ce:7f:0c:d4:ba:99:2f:9a:10:88:e1: 16:b4:d3:c1:42:84:df:8e:13:7b:bf:63:62:79:00: e6:c3:3b:8c:ce:ec:ea:98:f5:e1:3e:71:5e:ca:a6: e6:a3:a5:fe:ae:01:30:a1:4d:73:a1:6f:42:e1:15: 16:09:76:94:0d:46:f6:8a:1d:0e:ad:42:ba:49:60: f1:75:1e:a4:e7:68:d0:ec:34:6b:a5:41:36:db:22: 4c:ac:90:5b:52:f1:7d:66:d6:45:e5:2d:6c:c4:7e: 51:3a:05:79:33:f1:a9:94:88:7c:09:e5:e6:55:98: f2:ab:5b:80:4d:6c:5b:04:54:62:a3:7f:8d:3e:02: c8:45:19:4a:cc:64:21:6a:5e:6e:d3:75:31:14:83: 24:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F9:63:77:A7:92:EF:1B:3D:F1:5E:2F:6D:07:54:DB:B2:88:45:BA X509v3 Authority Key Identifier: keyid:B8:D2:3B:1E:6C:07:E6:2A:F2:D2:E7:EB:6D:E0:89:3B:09:11:9A:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNI7HmwH5iry0ufrbeCJOwkRmrs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b74aa2-25e0-4ad5-8cc3-69061ef2c499/1/4vljd6eS7xs98V4vbQdU27KIRbo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b74aa2-25e0-4ad5-8cc3-69061ef2c499/1/uNI7HmwH5iry0ufrbeCJOwkRmrs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.211.192.0/19 185.140.0.0/22 IPv6: 2a03:19c0::/32 Signature Algorithm: sha256WithRSAEncryption 2c:88:b4:2d:6e:83:01:c2:5e:dc:8e:ba:e6:bc:77:0c:d0:75: 88:62:14:54:13:49:f7:5b:a4:2e:22:1d:97:4d:e6:dc:0a:06: 71:a1:33:3a:93:00:f6:bf:75:a7:dc:93:48:9f:0a:79:de:96: 6c:b2:03:2c:46:59:f5:c0:09:59:5d:5a:ba:f9:d1:d7:02:89: cf:83:c2:d4:ad:d8:29:ae:95:7f:c6:85:71:5f:f5:db:26:d0: c4:a0:1a:db:02:cc:84:48:6f:33:d1:79:57:8e:fc:18:49:62: d4:7d:cf:ab:ee:2e:64:57:12:4e:dc:f1:12:05:cd:60:a2:0b: ed:12:6d:52:60:14:78:f2:06:b1:c2:89:3f:23:94:8a:36:54: 99:0e:79:23:69:9b:00:92:44:36:86:31:02:d8:88:e4:d7:b6: 94:e8:08:c5:79:44:6b:1f:45:be:9b:bd:d0:93:85:d4:40:a5: b3:72:9e:26:eb:0a:4f:b2:55:10:20:f1:9f:6b:de:4b:6d:07: 26:85:ad:8b:86:ba:5b:63:f7:4c:90:91:9f:db:35:a5:fc:90: 73:e0:0b:cf:22:f0:db:32:9a:6c:4d:69:24:75:8a:52:a6:f9: bf:81:29:37:f4:5e:4c:42:52:c2:36:81:a5:dc:57:ef:bf:6c: 13:77:9a:b2 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt5EKbVy1pSuyb4jCMxYwTfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4ZDIzYjFlNmMwN2U2MmFmMmQyZTdlYjZkZTA4OTNiMDkx MTlhYmIwHhcNMjYwMTAxMTAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMmY5NjM3N2E3OTJlZjFiM2RmMTVlMmY2ZDA3NTRkYmIyODg0NWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJkAooGzHOoj/ITdZHoXPMzRLFEC 2p+1C81JKc0WwnxZsFWOFhvt7cKPDj7SNXae2r2GbJI0hIPJYQWkuvTb/zrKxQoA RNi3BhiEMp5C37G9BnVOvJXiNxvy12s/ZYOLRhKMdJ1qNwZT7znRzn8M1LqZL5oQ iOEWtNPBQoTfjhN7v2NieQDmwzuMzuzqmPXhPnFeyqbmo6X+rgEwoU1zoW9C4RUW CXaUDUb2ih0OrUK6SWDxdR6k52jQ7DRrpUE22yJMrJBbUvF9ZtZF5S1sxH5ROgV5 M/GplIh8CeXmVZjyq1uATWxbBFRio3+NPgLIRRlKzGQhal5u03UxFIMkawIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFOL5Y3enku8bPfFeL20HVNuyiEW6MB8GA1UdIwQY MBaAFLjSOx5sB+Yq8tLn623giTsJEZq7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU5JN0htd0g1aXJ5MHVmcmJlQ0pPd2tSbXJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9iNzRhYTItMjVlMC00YWQ1LThjYzMt NjkwNjFlZjJjNDk5LzEvNHZsamQ2ZVM3eHM5OFY0dmJRZFUyN0tJUmJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9iNzRhYTItMjVlMC00YWQ1LThjYzMtNjkwNjFlZjJjNDk5 LzEvdU5JN0htd0g1aXJ5MHVmcmJlQ0pPd2tSbXJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQFUtPAAwQC uYwAMA0EAgACMAcDBQAqAxnAMA0GCSqGSIb3DQEBCwUAA4IBAQAsiLQtboMBwl7c jrrmvHcM0HWIYhRUE0n3W6QuIh2XTebcCgZxoTM6kwD2v3Wn3JNInwp53pZssgMs Rln1wAlZXVq6+dHXAonPg8LUrdgprpV/xoVxX/XbJtDEoBrbAsyESG8z0XlXjvwY SWLUfc+r7i5kVxJO3PESBc1gogvtEm1SYBR48gaxwok/I5SKNlSZDnkjaZsAkkQ2 hjEC2Ijk17aU6AjFeURrH0W+m73Qk4XUQKWzcp4m6wpPslUQIPGfa95LbQcmha2L hrpbY/dMkJGf2zWl/JBz4AvPIvDbMppsTWkkdYpSpvm/gSk39F5MQlLCNoGl3Ffv v2wTd5qy -----END CERTIFICATE-----Generated at Fri Jan 9 23:45:00 2026 by rpki-client