This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/a3OP59qaoel0KY5YC_OwvXykZ7M.roa File: a3OP59qaoel0KY5YC_OwvXykZ7M.roa (raw, json) Hash identifier: unK8d1U55loW8yeZgDAIwgpMKxR/S2RnhBL3kuT7YpY= Subject key identifier: 6B:73:8F:E7:DA:9A:A1:E9:74:29:8E:58:0B:F3:B0:BD:7C:A4:67:B3 Certificate issuer: /CN=ed624c590027a5a8c9eeb369726e4a630cdf414c Certificate serial: 019B7E37AA37C457E48D301257BA07D0DF4A Authority key identifier: ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/a3OP59qaoel0KY5YC_OwvXykZ7M.roa Signing time: Fri 02 Jan 2026 10:18:55 +0000 ROA not before: Fri 02 Jan 2026 10:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 45.89.128.0/22 maxlen: 22 2a0b:a200::/48 maxlen: 48 2a0b:a200:1::/48 maxlen: 48 2a0b:a200:2::/48 maxlen: 48 2a0b:a200:3::/48 maxlen: 48 2a0b:a200:4::/48 maxlen: 48 2a0b:a200:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.mft rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 01:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:aa:37:c4:57:e4:8d:30:12:57:ba:07:d0:df:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed624c590027a5a8c9eeb369726e4a630cdf414c Validity Not Before: Jan 2 10:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b738fe7da9aa1e974298e580bf3b0bd7ca467b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6e:52:06:e8:93:f9:4c:f5:e7:d4:47:11:e3: 6a:be:1b:2e:20:bd:2f:18:24:99:af:f4:26:53:a7: 3e:cd:00:9b:9e:e0:e5:01:81:da:10:b2:bd:54:88: 03:a0:4f:26:1a:d3:d3:3c:af:a0:b4:30:2a:dd:2a: 76:0b:7d:6d:8a:5a:6a:50:39:aa:be:7b:7d:d4:7d: 3d:ab:6b:e8:2e:59:7d:5f:a2:8b:8e:e1:41:15:7c: 57:de:d9:ed:86:1b:27:14:fa:29:5b:ce:31:98:a4: 79:5a:be:9c:4a:b5:ca:8e:4d:dd:bd:61:72:b3:f0: 61:a4:81:c5:95:11:52:60:85:2f:38:e5:11:86:17: 2b:9d:be:bd:24:cf:1a:23:90:a5:67:7e:3b:47:fe: 7c:91:e4:85:12:30:98:ba:ce:b4:bf:c6:fc:db:39: bd:c5:63:14:fc:cc:ee:49:7b:5a:63:fc:8c:dd:ac: ca:ee:dd:16:fd:92:a6:ab:a4:19:d5:89:2a:aa:a9: 4f:41:f9:9c:7f:9b:a6:3e:70:6a:63:63:7c:11:70: bb:4e:a7:da:d6:03:dd:ed:d3:01:8e:b5:82:1d:92: e4:a8:65:b2:ec:a1:1e:b5:99:bb:6e:66:51:34:51: ef:c3:6f:e3:89:ca:63:64:b0:89:4d:5a:6c:40:71: fd:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:73:8F:E7:DA:9A:A1:E9:74:29:8E:58:0B:F3:B0:BD:7C:A4:67:B3 X509v3 Authority Key Identifier: keyid:ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/a3OP59qaoel0KY5YC_OwvXykZ7M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.128.0/22 IPv6: 2a0b:a200::-2a0b:a200:5:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 57:8f:06:0a:b4:b6:4d:0a:e6:8c:f1:2f:28:29:83:2b:b3:64: 5d:7b:53:1b:bc:ee:15:65:9c:16:d6:ef:b4:43:7e:be:b8:6c: a6:a1:ee:0e:eb:05:88:c6:8b:30:c3:b5:85:e9:4d:7f:ec:5a: 29:8b:d0:7e:c1:82:ea:3c:e0:3b:9f:c1:d6:f7:20:e6:de:be: 41:bd:f5:a2:04:40:31:68:70:c4:31:f0:ba:80:a9:6e:ae:9a: 0f:8c:ef:53:ee:13:c4:47:8e:81:21:b2:ad:04:41:77:3a:b2: e0:b9:15:51:4b:9b:6e:f7:22:42:a0:4d:1e:c7:ab:d2:10:e4: 8d:20:3d:05:98:4b:08:d7:9a:7e:f8:d6:55:c0:2b:74:c2:36: 87:f5:7f:03:b6:ce:c9:48:4e:97:97:1a:2d:42:0b:54:a8:dc: e1:48:a9:3e:a4:93:80:83:02:f6:c7:23:2a:74:9b:7c:78:43: f0:15:43:4a:b8:c0:be:11:a6:ad:04:11:45:3b:24:7e:4f:9c: c5:be:2b:4e:15:d6:c9:38:94:a1:87:8c:30:4f:9c:01:fd:3e: df:fe:a6:ac:97:d0:78:fd:46:37:01:6b:1e:40:a7:0f:d3:a6: 62:e7:c5:0d:88:c7:e5:81:3f:81:b5:24:b2:8b:67:3d:c6:36: 28:d1:1f:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt+N6o3xFfkjTASV7oH0N9KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkNjI0YzU5MDAyN2E1YThjOWVlYjM2OTcyNmU0YTYzMGNk ZjQxNGMwHhcNMjYwMTAyMTAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YjczOGZlN2RhOWFhMWU5NzQyOThlNTgwYmYzYjBiZDdjYTQ2N2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5W5SBuiT+Uz159RHEeNqvhsuIL0v GCSZr/QmU6c+zQCbnuDlAYHaELK9VIgDoE8mGtPTPK+gtDAq3Sp2C31tilpqUDmq vnt91H09q2voLll9X6KLjuFBFXxX3tnthhsnFPopW84xmKR5Wr6cSrXKjk3dvWFy s/BhpIHFlRFSYIUvOOURhhcrnb69JM8aI5ClZ347R/58keSFEjCYus60v8b82zm9 xWMU/MzuSXtaY/yM3azK7t0W/ZKmq6QZ1YkqqqlPQfmcf5umPnBqY2N8EXC7Tqfa 1gPd7dMBjrWCHZLkqGWy7KEetZm7bmZRNFHvw2/jicpjZLCJTVpsQHH9mwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGtzj+famqHpdCmOWAvzsL18pGezMB8GA1UdIwQY MBaAFO1iTFkAJ6Woye6zaXJuSmMM30FMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1dKTVdRQW5wYWpKN3JOcGNtNUtZd3pmUVV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy84ZGI2N2EtYzRmYy00YzJjLTk5Nzgt YTdiZTVmYTBmZjY1LzEvYTNPUDU5cWFvZWwwS1k1WUNfT3d2WHlrWjdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy84ZGI2N2EtYzRmYy00YzJjLTk5NzgtYTdiZTVmYTBmZjY1 LzEvN1dKTVdRQW5wYWpKN3JOcGNtNUtZd3pmUVV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAMBAIAATAGAwQCLVmAMBcE AgACMBEwDwMEASoLogMHASoLogAABDANBgkqhkiG9w0BAQsFAAOCAQEAV48GCrS2 TQrmjPEvKCmDK7NkXXtTG7zuFWWcFtbvtEN+vrhspqHuDusFiMaLMMO1helNf+xa KYvQfsGC6jzgO5/B1vcg5t6+Qb31ogRAMWhwxDHwuoCpbq6aD4zvU+4TxEeOgSGy rQRBdzqy4LkVUUubbvciQqBNHser0hDkjSA9BZhLCNeafvjWVcArdMI2h/V/A7bO yUhOl5caLUILVKjc4UipPqSTgIMC9scjKnSbfHhD8BVDSrjAvhGmrQQRRTskfk+c xb4rThXWyTiUoYeMME+cAf0+3/6mrJfQeP1GNwFrHkCnD9OmYufFDYjH5YE/gbUk sotnPcY2KNEf0A== -----END CERTIFICATE-----Generated at Sat Jan 17 08:23:59 2026 by rpki-client