This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/r_1SBfNhdBcm7JVeR9X_A84AJes.roa File: r_1SBfNhdBcm7JVeR9X_A84AJes.roa (raw, json) Hash identifier: 5FQO7eCKudZ+J7HgNfZUcYEMcJXj0nI8UpKfM1ybpwI= Subject key identifier: AF:FD:52:05:F3:61:74:17:26:EC:95:5E:47:D5:FF:03:CE:00:25:EB Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388 Certificate serial: 019B7D5ACB1D5B80D44D1E210D52BDD1836A Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/r_1SBfNhdBcm7JVeR9X_A84AJes.roa Signing time: Fri 02 Jan 2026 06:17:40 +0000 ROA not before: Fri 02 Jan 2026 06:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216151 IP address blocks: 45.142.200.0/24 maxlen: 24 45.142.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 15:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:cb:1d:5b:80:d4:4d:1e:21:0d:52:bd:d1:83:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388 Validity Not Before: Jan 2 06:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=affd5205f361741726ec955e47d5ff03ce0025eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9b:59:92:48:ef:ff:18:74:f1:88:96:9f:8d: 2f:5a:91:1a:54:99:7c:3a:f7:92:fe:7d:b3:b2:ad: 9e:4b:ca:b2:be:77:35:63:1d:e3:c5:50:d1:75:fc: b6:43:6c:99:be:e1:05:fb:0d:88:f7:1a:ec:44:9f: 58:7d:85:a5:cb:51:71:18:81:c5:16:55:00:f7:12: b0:7c:1e:e6:af:a9:93:c9:a5:eb:38:1a:41:ff:79: 56:ed:57:cd:8b:b3:01:20:93:dc:99:07:9d:7f:20: 5f:d3:ec:45:3f:ab:ff:1f:c4:e4:2a:06:51:9f:06: 9c:ed:7f:66:4d:8c:5f:de:fd:62:16:31:67:98:e7: af:6e:9d:88:5c:8d:68:fe:2e:45:c3:11:93:ee:5b: a5:81:4d:57:cd:25:dc:b8:5e:aa:35:fa:97:5c:fb: c5:23:60:67:5b:1a:69:2a:00:d0:0c:2b:fd:63:54: 3e:b3:d4:12:f9:3d:eb:26:e2:c3:c4:1f:f3:c6:7d: 17:a5:a7:b7:b7:83:db:67:f1:d9:aa:07:8f:73:69: f9:85:bd:9f:92:5b:aa:c5:95:7b:e2:7e:42:46:5a: ed:92:e5:9b:d7:09:93:90:43:86:3e:c4:2d:70:16: bf:29:e1:4e:74:14:18:c9:c1:a3:21:8e:34:2a:6c: fd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FD:52:05:F3:61:74:17:26:EC:95:5E:47:D5:FF:03:CE:00:25:EB X509v3 Authority Key Identifier: keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/r_1SBfNhdBcm7JVeR9X_A84AJes.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.142.200.0/24 45.142.202.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:95:66:82:98:04:f8:80:5a:9e:d3:f1:c7:f0:13:82:f8:51: 7b:2a:6d:b5:39:f7:a6:36:6e:fe:69:02:e4:bd:85:37:c3:c5: 3e:25:5e:7b:54:c3:32:38:7d:05:a5:ff:f9:d7:3c:44:27:d8: d8:fd:54:b4:ea:13:13:5d:42:6c:f8:33:48:f0:1d:5a:39:3d: 1b:06:eb:79:57:c2:cd:54:ed:95:a4:2a:ac:35:6f:00:d5:e4: 06:f3:b1:74:e3:fa:2a:18:6f:dd:c4:79:d1:1b:bf:d5:9e:52: 0a:f5:55:f3:f2:c2:93:d5:63:01:16:33:86:b3:f6:4d:03:94: db:d6:1e:31:2a:65:e6:39:7b:ba:87:ab:46:5c:6d:75:9c:ee: 61:02:b5:92:e3:9f:89:09:ba:88:32:44:0b:13:df:8c:ae:2f: c4:dc:c6:68:9b:c0:16:ed:69:64:a2:38:05:f9:ab:2e:dd:bd: 2b:c9:a0:a0:1a:1a:b2:81:1d:78:ba:1c:ca:fd:eb:c6:24:dc: d9:25:d8:1d:a8:d9:30:ea:a2:29:f8:60:24:6c:54:d9:43:3e: 73:40:c5:e3:9d:80:7d:4b:3a:1d:3f:fe:ae:86:48:b5:0e:bc: 8a:97:6f:72:8e:96:9e:86:4d:a9:2a:5e:a9:65:0b:8d:c2:75: 95:93:e3:8d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9WssdW4DUTR4hDVK90YNqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ZjgwNjk3ZmUyZTJkOTdiNTkxYWQ1YjkxNTgwNTU1YTQ0 ZDAzODgwHhcNMjYwMTAyMDYxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZmZkNTIwNWYzNjE3NDE3MjZlYzk1NWU0N2Q1ZmYwM2NlMDAyNWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZtZkkjv/xh08YiWn40vWpEaVJl8 OveS/n2zsq2eS8qyvnc1Yx3jxVDRdfy2Q2yZvuEF+w2I9xrsRJ9YfYWly1FxGIHF FlUA9xKwfB7mr6mTyaXrOBpB/3lW7VfNi7MBIJPcmQedfyBf0+xFP6v/H8TkKgZR nwac7X9mTYxf3v1iFjFnmOevbp2IXI1o/i5FwxGT7lulgU1XzSXcuF6qNfqXXPvF I2BnWxppKgDQDCv9Y1Q+s9QS+T3rJuLDxB/zxn0Xpae3t4PbZ/HZqgePc2n5hb2f kluqxZV74n5CRlrtkuWb1wmTkEOGPsQtcBa/KeFOdBQYycGjIY40Kmz9EQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFK/9UgXzYXQXJuyVXkfV/wPOACXrMB8GA1UdIwQY MBaAFEn4Bpf+Li2XtZGtW5FYBVWkTQOIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUt MWE2NGE4MDc3YjE0LzEvcl8xU0JmTmhkQmNtN0pWZVI5WF9BODRBSmVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUtMWE2NGE4MDc3YjE0 LzEvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALY7IAwQA LY7KMA0GCSqGSIb3DQEBCwUAA4IBAQANlWaCmAT4gFqe0/HH8BOC+FF7Km21Ofem Nm7+aQLkvYU3w8U+JV57VMMyOH0Fpf/51zxEJ9jY/VS06hMTXUJs+DNI8B1aOT0b But5V8LNVO2VpCqsNW8A1eQG87F04/oqGG/dxHnRG7/VnlIK9VXz8sKT1WMBFjOG s/ZNA5Tb1h4xKmXmOXu6h6tGXG11nO5hArWS45+JCbqIMkQLE9+Mri/E3MZom8AW 7WlkojgF+asu3b0ryaCgGhqygR14uhzK/evGJNzZJdgdqNkw6qIp+GAkbFTZQz5z QMXjnYB9SzodP/6uhki1DryKl29yjpaehk2pKl6pZQuNwnWVk+ON -----END CERTIFICATE-----Generated at Fri Jan 23 21:18:24 2026 by rpki-client