This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/UdOK24rX42pM0mffUIAyGxdh1jE.roa File: UdOK24rX42pM0mffUIAyGxdh1jE.roa (raw, json) Hash identifier: ge3c0pE7ZRxzrWSr8Lljan5nhFZFuIJr7TBmymDbjSA= Subject key identifier: 51:D3:8A:DB:8A:D7:E3:6A:4C:D2:67:DF:50:80:32:1B:17:61:D6:31 Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a Certificate serial: 019B7EA536EDCB6407823DD821647C12D45D Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/UdOK24rX42pM0mffUIAyGxdh1jE.roa Signing time: Fri 02 Jan 2026 12:18:35 +0000 ROA not before: Fri 02 Jan 2026 12:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401838 IP address blocks: 45.134.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.mft rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:36:ed:cb:64:07:82:3d:d8:21:64:7c:12:d4:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a Validity Not Before: Jan 2 12:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51d38adb8ad7e36a4cd267df5080321b1761d631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:99:6f:1f:4c:46:f2:fd:c1:ad:c3:f1:d3:65: 9d:7a:ec:66:99:b2:a9:b9:14:92:c2:91:6d:ff:06: b4:cd:f9:a1:16:d2:39:5c:f1:2c:97:a7:61:14:7f: 81:6a:3e:df:93:14:36:22:0d:05:d9:39:0d:67:23: 47:23:67:e7:e6:58:b8:84:98:41:ec:9f:8b:5b:59: b9:58:38:d8:6a:b0:99:e9:a2:48:8b:e3:ce:e6:ec: 0e:eb:de:4f:31:c2:1c:63:6d:a3:5f:2e:9f:5f:5d: 83:77:7e:8e:8e:3b:93:56:0f:16:19:71:7c:07:c4: 3e:0a:f7:b4:72:c2:5c:94:a2:47:7a:0f:61:b8:67: 40:c7:03:6a:a3:fc:06:0c:8c:5b:1a:b6:00:ac:7e: 05:08:ce:5f:1d:02:6a:72:a0:12:2a:6e:4e:c7:6c: 57:74:b4:3d:5f:f1:d2:35:2f:5f:aa:12:d4:44:87: 8e:75:e4:a8:16:02:d7:49:26:1f:c7:28:35:47:ec: 9c:e5:ef:65:61:2e:18:e9:5c:ff:c5:f0:10:63:0c: fa:95:1c:21:55:c7:3d:7b:39:47:e9:08:25:e0:07: 97:1a:ad:f8:53:bb:bc:42:d5:0a:db:78:0e:68:22: cf:78:9a:fa:30:55:9c:a2:26:55:35:a1:97:7f:89: 39:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D3:8A:DB:8A:D7:E3:6A:4C:D2:67:DF:50:80:32:1B:17:61:D6:31 X509v3 Authority Key Identifier: keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/UdOK24rX42pM0mffUIAyGxdh1jE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.134.8.0/24 Signature Algorithm: sha256WithRSAEncryption 48:89:fe:11:cd:00:12:6d:72:cf:ff:98:cb:17:35:bf:f8:fd: 7f:d8:c7:f2:3f:6b:b7:8f:68:76:0f:b0:8a:6e:26:c0:45:cc: ba:ab:98:7c:b7:5c:a0:bd:5b:76:9f:52:c3:b7:64:50:8e:53: 77:da:ed:92:0f:f8:43:03:c0:6f:0c:bd:96:05:b1:06:cf:5f: 76:20:f1:f7:b3:44:f6:f7:46:75:7d:7d:1e:3c:4a:a2:79:4f: 04:34:fe:ae:96:0e:f3:b9:55:22:38:57:65:e9:51:f8:35:e5: e5:fb:fb:0c:24:c0:ee:35:4a:23:eb:bc:c8:05:e9:60:28:f1: 73:0a:6f:fe:c2:eb:56:4b:8e:04:8a:68:5e:b6:50:46:e7:79: c1:7a:21:94:b9:04:d7:d1:87:12:33:74:06:ba:4e:80:11:97: 11:73:8e:0f:aa:f5:31:77:f1:81:99:67:8c:f5:3d:89:38:a5: 3d:a3:89:58:4c:96:00:14:59:10:29:5b:27:c3:8f:14:87:f4: 31:e7:27:f9:95:b8:31:f1:82:9a:85:8b:75:e4:03:24:fd:b8: 48:2b:ae:65:11:99:ff:19:af:75:de:38:bf:7e:c6:bd:99:ed: ff:1a:96:3b:7d:fa:eb:5d:5a:fb:cd:50:38:d7:53:7f:da:9e: ab:a8:0a:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pTbty2QHgj3YIWR8EtRdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMTlkNDUzNWM3ZTYyYjkyMWU4NTllNjU1N2I4MjFmMjc4 ZTcxNmEwHhcNMjYwMTAyMTIxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWQzOGFkYjhhZDdlMzZhNGNkMjY3ZGY1MDgwMzIxYjE3NjFkNjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZlvH0xG8v3BrcPx02WdeuxmmbKp uRSSwpFt/wa0zfmhFtI5XPEsl6dhFH+Baj7fkxQ2Ig0F2TkNZyNHI2fn5li4hJhB 7J+LW1m5WDjYarCZ6aJIi+PO5uwO695PMcIcY22jXy6fX12Dd36OjjuTVg8WGXF8 B8Q+Cve0csJclKJHeg9huGdAxwNqo/wGDIxbGrYArH4FCM5fHQJqcqASKm5Ox2xX dLQ9X/HSNS9fqhLURIeOdeSoFgLXSSYfxyg1R+yc5e9lYS4Y6Vz/xfAQYwz6lRwh Vcc9ezlH6Qgl4AeXGq34U7u8QtUK23gOaCLPeJr6MFWcoiZVNaGXf4k50QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFHTituK1+NqTNJn31CAMhsXYdYxMB8GA1UdIwQY MBaAFL0Z1FNcfmK5IehZ5lV7gh8njnFqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlJuVVUxeC1ZcmtoNkZubVZYdUNIeWVPY1dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8yNTk5ZjktNmY3Ni00ZGI2LWJjYTct YzEzMzFmNDlmYzA5LzEvVWRPSzI0clg0MnBNMG1mZlVJQXlHeGRoMWpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy8yNTk5ZjktNmY3Ni00ZGI2LWJjYTctYzEzMzFmNDlmYzA5 LzEvdlJuVVUxeC1ZcmtoNkZubVZYdUNIeWVPY1dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYYIMA0G CSqGSIb3DQEBCwUAA4IBAQBIif4RzQASbXLP/5jLFzW/+P1/2MfyP2u3j2h2D7CK bibARcy6q5h8t1ygvVt2n1LDt2RQjlN32u2SD/hDA8BvDL2WBbEGz192IPH3s0T2 90Z1fX0ePEqieU8ENP6ulg7zuVUiOFdl6VH4NeXl+/sMJMDuNUoj67zIBelgKPFz Cm/+wutWS44EimhetlBG53nBeiGUuQTX0YcSM3QGuk6AEZcRc44PqvUxd/GBmWeM 9T2JOKU9o4lYTJYAFFkQKVsnw48Uh/Qx5yf5lbgx8YKahYt15AMk/bhIK65lEZn/ Ga913ji/fsa9me3/GpY7ffrrXVr7zVA411N/2p6rqAr5 -----END CERTIFICATE-----Generated at Wed Jan 21 05:19:27 2026 by rpki-client