This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/c4ahaHsukLLB4PSCOCfFNdWCdcE.roa File: c4ahaHsukLLB4PSCOCfFNdWCdcE.roa (raw, json) Hash identifier: Yt3A4CDu1o39+YBnfZrTftDyMKVSHyQjmamk7+SSlUo= Subject key identifier: 73:86:A1:68:7B:2E:90:B2:C1:E0:F4:82:38:27:C5:35:D5:82:75:C1 Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56 Certificate serial: 019B7C8056432E06CE0A0DBC1BA1744E829D Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/c4ahaHsukLLB4PSCOCfFNdWCdcE.roa Signing time: Fri 02 Jan 2026 02:19:04 +0000 ROA not before: Fri 02 Jan 2026 02:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48031 IP address blocks: 2.57.150.0/24 maxlen: 24 80.64.18.0/24 maxlen: 24 80.64.19.0/24 maxlen: 24 91.213.29.0/24 maxlen: 24 91.220.223.0/24 maxlen: 24 91.239.238.0/24 maxlen: 24 92.63.182.0/24 maxlen: 24 92.63.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:56:43:2e:06:ce:0a:0d:bc:1b:a1:74:4e:82:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56 Validity Not Before: Jan 2 02:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7386a1687b2e90b2c1e0f4823827c535d58275c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:78:1c:0c:6e:00:06:1c:e0:62:93:1b:06:c8: a2:1c:72:2f:cf:b1:31:d9:24:9b:68:fd:04:c2:f9: 3e:80:39:a1:d1:39:1b:35:69:64:f2:74:7f:ad:e2: be:9c:f9:5a:86:37:a9:ca:4f:87:ad:ff:e4:ab:2d: 04:58:a9:cd:47:d8:dd:a4:25:e4:43:17:e7:09:82: be:62:1a:f3:07:48:88:d1:76:10:83:c5:fb:f1:83: ca:32:24:57:e2:5a:9f:af:99:e9:ab:6f:cb:44:c2: 59:b9:c7:46:3e:02:8e:7c:8a:b0:97:81:6f:e8:20: 36:39:5f:36:29:4c:24:13:cc:f0:51:01:47:a5:7d: 35:64:ec:9a:e4:ef:b5:ac:d8:57:78:bb:9a:ae:84: 5c:90:a2:75:bf:22:73:4e:50:f1:d9:8c:eb:cc:38: 8b:dc:00:c8:16:2d:f0:b0:bd:b9:7c:06:cb:b2:1c: 1f:5a:16:41:9c:bb:d0:0e:00:e1:72:dd:8b:72:61: b7:51:9b:82:e7:1b:97:5e:9f:e4:51:16:40:fc:a5: 97:da:de:6e:ae:b3:69:0f:f8:39:00:c8:cf:cb:3c: f8:9d:5b:5a:92:ab:36:0b:29:c9:71:df:21:9e:fb: 97:0a:9a:e7:9e:fc:ba:50:c6:d9:ff:e8:c9:8c:31: 92:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:86:A1:68:7B:2E:90:B2:C1:E0:F4:82:38:27:C5:35:D5:82:75:C1 X509v3 Authority Key Identifier: keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/c4ahaHsukLLB4PSCOCfFNdWCdcE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.150.0/24 80.64.18.0/23 91.213.29.0/24 91.220.223.0/24 91.239.238.0/24 92.63.182.0/23 Signature Algorithm: sha256WithRSAEncryption 77:8d:86:10:22:8d:a0:6d:76:fa:7c:58:43:83:a2:54:a0:a1: 1d:1e:f2:dc:95:b0:5b:5f:3b:b6:d5:1a:fb:74:27:61:0f:22: 16:a2:5e:e6:9f:14:4f:f9:76:52:f9:4c:41:1d:22:75:b8:1a: 94:93:d4:73:81:a7:ac:23:49:48:52:1e:5c:18:79:7a:ac:34: 7f:31:2e:6b:5d:63:5b:c0:ea:5a:4b:a0:e9:16:2d:d7:bb:0f: a0:c0:f4:e0:23:f4:aa:58:8c:a0:08:3e:3d:7f:43:d6:5e:1e: d6:7a:bf:26:44:fe:ef:26:65:03:e1:13:9a:72:fc:95:eb:d0: 6e:46:89:89:3d:7c:09:73:18:fb:b3:3e:c1:5a:0e:3d:36:80: fe:0e:62:b1:97:90:80:97:25:0f:09:68:ee:f2:bf:e9:78:82: 6c:d8:66:7e:e4:06:39:35:c1:a3:7e:d6:93:3e:30:eb:46:25: 5b:fd:89:a7:6c:f9:74:9f:84:62:42:cc:1c:9a:17:3d:dd:83: d6:99:c5:ab:a7:0c:b5:e7:1a:cc:dd:93:b9:bd:a1:b8:9c:89: 9c:07:45:ae:fb:60:ce:ca:e0:30:37:8e:4b:e5:c8:14:bd:da: 39:3e:1c:11:a7:88:65:f5:68:52:c6:5f:12:d0:62:f8:6a:3d: f0:0f:d7:b7 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt8gFZDLgbOCg28G6F0ToKdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0 ZjVlNTYwHhcNMjYwMTAyMDIxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Mzg2YTE2ODdiMmU5MGIyYzFlMGY0ODIzODI3YzUzNWQ1ODI3NWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3gcDG4ABhzgYpMbBsiiHHIvz7Ex 2SSbaP0Ewvk+gDmh0TkbNWlk8nR/reK+nPlahjepyk+Hrf/kqy0EWKnNR9jdpCXk QxfnCYK+YhrzB0iI0XYQg8X78YPKMiRX4lqfr5npq2/LRMJZucdGPgKOfIqwl4Fv 6CA2OV82KUwkE8zwUQFHpX01ZOya5O+1rNhXeLuaroRckKJ1vyJzTlDx2YzrzDiL 3ADIFi3wsL25fAbLshwfWhZBnLvQDgDhct2LcmG3UZuC5xuXXp/kURZA/KWX2t5u rrNpD/g5AMjPyzz4nVtakqs2CynJcd8hnvuXCprnnvy6UMbZ/+jJjDGS2wIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFHOGoWh7LpCyweD0gjgnxTXVgnXBMB8GA1UdIwQY MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt YmE5OGYxMTIyMTIxLzEvYzRhaGFIc3VrTExCNFBTQ09DZkZOZFdDZGNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAAjmWAwQB UEASAwQAW9UdAwQAW9zfAwQAW+/uAwQBXD+2MA0GCSqGSIb3DQEBCwUAA4IBAQB3 jYYQIo2gbXb6fFhDg6JUoKEdHvLclbBbXzu21Rr7dCdhDyIWol7mnxRP+XZS+UxB HSJ1uBqUk9RzgaesI0lIUh5cGHl6rDR/MS5rXWNbwOpaS6DpFi3Xuw+gwPTgI/Sq WIygCD49f0PWXh7Wer8mRP7vJmUD4ROacvyV69BuRomJPXwJcxj7sz7BWg49NoD+ DmKxl5CAlyUPCWju8r/peIJs2GZ+5AY5NcGjftaTPjDrRiVb/YmnbPl0n4RiQswc mhc93YPWmcWrpwy15xrM3ZO5vaG4nImcB0Wu+2DOyuAwN45L5cgUvdo5PhwRp4hl 9WhSxl8S0GL4aj3wD9e3 -----END CERTIFICATE-----Generated at Sat Jan 10 03:55:23 2026 by rpki-client