This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Cq7eODIfTAqTC91oZLyq1E8gm8Q.roa File: Cq7eODIfTAqTC91oZLyq1E8gm8Q.roa (raw, json) Hash identifier: rvoxivwUurnvhrx3Cd+DTL0Rv0MnZueVYuaAI8rHOkc= Subject key identifier: 0A:AE:DE:38:32:1F:4C:0A:93:0B:DD:68:64:BC:AA:D4:4F:20:9B:C4 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A3065E12D7FB2C28CCAA9B479262E8 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Cq7eODIfTAqTC91oZLyq1E8gm8Q.roa Signing time: Thu 01 Jan 2026 08:18:28 +0000 ROA not before: Thu 01 Jan 2026 08:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50053 IP address blocks: 45.128.96.0/24 maxlen: 24 45.128.232.0/24 maxlen: 24 45.144.154.0/24 maxlen: 24 45.149.234.0/24 maxlen: 24 79.110.48.0/24 maxlen: 24 185.222.161.0/24 maxlen: 24 193.222.97.0/24 maxlen: 24 194.31.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 17:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:06:5e:12:d7:fb:2c:28:cc:aa:9b:47:92:62:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0aaede38321f4c0a930bdd6864bcaad44f209bc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cc:02:e2:26:06:cd:45:08:5d:c3:cb:af:d6: d9:ef:1f:e6:51:b4:aa:a6:35:8f:13:6b:99:21:3b: 5c:7c:9a:6d:7d:d3:84:ef:36:74:28:b5:e1:57:7d: d4:12:de:d0:f6:1a:00:83:7a:0c:68:37:91:65:da: 7f:45:fe:5a:20:1b:5b:c3:02:e6:76:9b:c7:c6:7b: 6c:3a:34:ef:72:59:83:38:dc:e9:d0:19:b4:ba:48: 2d:9e:54:36:c9:63:d2:9f:7e:5d:04:8d:e5:d0:fe: b9:2b:35:f3:bd:f6:5b:f7:f3:e9:fa:a9:d1:87:be: d1:ee:bb:44:6f:fa:1c:01:e5:de:9f:74:f1:61:a1: 9c:6f:5e:4f:da:b0:ec:69:a3:96:ed:53:6f:a4:ae: 0a:93:2d:8f:84:75:f9:ad:24:89:90:46:e4:2f:92: 36:65:e0:f1:ca:5f:dd:2a:27:b2:ee:47:fd:33:b3: 40:d1:f2:f0:07:d6:8a:ab:c2:c8:5f:93:23:ff:72: 0c:3a:85:85:5a:4f:03:8b:20:05:d4:3d:f2:02:5f: ae:50:7f:6c:d3:70:f3:ad:24:92:3b:a0:90:66:62: 68:b5:98:2a:61:02:70:7f:15:19:a0:a1:6c:8b:1f: 70:1e:1b:57:30:dc:37:43:b8:88:ef:74:4a:96:81: c3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AE:DE:38:32:1F:4C:0A:93:0B:DD:68:64:BC:AA:D4:4F:20:9B:C4 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Cq7eODIfTAqTC91oZLyq1E8gm8Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.128.96.0/24 45.128.232.0/24 45.144.154.0/24 45.149.234.0/24 79.110.48.0/24 185.222.161.0/24 193.222.97.0/24 194.31.204.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:dd:b1:4e:bc:2b:38:de:b8:31:3e:06:f3:dd:39:a5:a3:4a: 09:d1:5e:a6:8a:1f:d5:83:d4:42:96:45:6d:ec:3e:8a:67:1f: c6:18:d5:fc:89:f8:79:ac:bd:aa:aa:1f:1e:12:2a:c5:17:a1: 2a:48:f9:2b:41:bb:c3:21:cf:65:8e:14:c2:30:b8:54:5f:b9: 37:9b:94:9e:5f:69:76:93:dd:5b:29:97:f1:b2:ac:68:a3:6c: 88:b2:4a:4f:78:49:15:6d:a0:3c:eb:cd:88:b1:fb:cb:56:de: 89:5e:ec:5e:f1:37:21:18:3c:04:e7:80:4b:4d:27:1a:88:e6: 51:4c:78:71:b4:c2:78:1a:f3:91:a7:14:d3:f6:67:59:ad:df: 0d:50:25:25:0a:85:80:cb:7e:f1:83:cc:a2:d5:88:69:2a:ac: d7:4a:cf:16:8b:1e:00:f1:8b:dd:52:bb:8b:59:69:52:15:63: 0d:3d:db:e1:2c:84:52:8a:b7:82:5b:37:39:b6:36:3b:f2:cd: 3f:db:c2:03:ef:34:86:c5:07:0e:82:65:a3:09:3a:23:f6:12: da:ed:5a:e9:00:6f:9e:f7:98:c2:4b:30:2a:d6:dd:01:be:c1: c2:83:93:0d:c2:27:09:8b:9e:17:4d:7a:d5:fc:ee:f2:e4:6a: 29:8c:fa:f9 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt4owZeEtf7LCjMqptHkmLoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYWFlZGUzODMyMWY0YzBhOTMwYmRkNjg2NGJjYWFkNDRmMjA5YmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMwC4iYGzUUIXcPLr9bZ7x/mUbSq pjWPE2uZITtcfJptfdOE7zZ0KLXhV33UEt7Q9hoAg3oMaDeRZdp/Rf5aIBtbwwLm dpvHxntsOjTvclmDONzp0Bm0ukgtnlQ2yWPSn35dBI3l0P65KzXzvfZb9/Pp+qnR h77R7rtEb/ocAeXen3TxYaGcb15P2rDsaaOW7VNvpK4Kky2PhHX5rSSJkEbkL5I2 ZeDxyl/dKiey7kf9M7NA0fLwB9aKq8LIX5Mj/3IMOoWFWk8DiyAF1D3yAl+uUH9s 03DzrSSSO6CQZmJotZgqYQJwfxUZoKFsix9wHhtXMNw3Q7iI73RKloHDGQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFAqu3jgyH0wKkwvdaGS8qtRPIJvEMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvQ3E3ZU9ESWZUQXFUQzkxb1pMeXExRThnbThRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQALYBgAwQA LYDoAwQALZCaAwQALZXqAwQAT24wAwQAud6hAwQAwd5hAwQAwh/MMA0GCSqGSIb3 DQEBCwUAA4IBAQA83bFOvCs43rgxPgbz3Tmlo0oJ0V6mih/Vg9RClkVt7D6KZx/G GNX8ifh5rL2qqh8eEirFF6EqSPkrQbvDIc9ljhTCMLhUX7k3m5SeX2l2k91bKZfx sqxoo2yIskpPeEkVbaA8682IsfvLVt6JXuxe8TchGDwE54BLTScaiOZRTHhxtMJ4 GvORpxTT9mdZrd8NUCUlCoWAy37xg8yi1YhpKqzXSs8Wix4A8YvdUruLWWlSFWMN PdvhLIRSireCWzc5tjY78s0/28ID7zSGxQcOgmWjCToj9hLa7VrpAG+e95jCSzAq 1t0BvsHCg5MNwicJi54XTXrV/O7y5GopjPr5 -----END CERTIFICATE-----Generated at Thu Jan 1 21:37:32 2026 by rpki-client