This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hz4V0CV84ctKaJqMdFzUaj-PwiU.roa File: hz4V0CV84ctKaJqMdFzUaj-PwiU.roa (raw, json) Hash identifier: rzFc5W6Och0rtSTngyGEx5nnwIf5sqsEk3YJQ3786aw= Subject key identifier: 87:3E:15:D0:25:7C:E1:CB:4A:68:9A:8C:74:5C:D4:6A:3F:8F:C2:25 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A2F3801FD038D28E6B5C7241F1118C Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hz4V0CV84ctKaJqMdFzUaj-PwiU.roa Signing time: Thu 01 Jan 2026 08:18:23 +0000 ROA not before: Thu 01 Jan 2026 08:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35793 IP address blocks: 45.9.208.0/22 maxlen: 24 2a00:1728:48::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:f3:80:1f:d0:38:d2:8e:6b:5c:72:41:f1:11:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=873e15d0257ce1cb4a689a8c745cd46a3f8fc225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2b:5a:0a:29:0f:3e:4c:f3:23:e4:ae:cb:c5: 44:a5:9e:ad:29:12:30:47:af:da:ac:df:7c:1c:db: 39:ab:d5:ac:56:e8:27:9e:0c:13:41:22:d5:a0:0a: 30:2b:68:df:b2:ca:00:a2:53:8c:f0:71:54:9b:82: 1a:5f:68:2d:87:ac:ee:81:89:c3:3f:29:fa:ae:c9: 72:5c:1d:10:51:d5:d7:ca:ad:43:30:30:06:e7:95: 2a:90:5b:6b:1d:2b:36:89:21:b6:7d:28:70:7a:81: ff:25:2f:b6:be:dd:d6:a6:5f:e5:e2:16:32:76:83: 35:09:69:75:f4:45:39:31:af:01:69:f6:a5:9b:af: b5:a0:cd:4d:bc:bf:10:86:d2:b9:5c:77:ee:0f:eb: 7e:bc:40:32:61:3f:f9:59:91:3c:30:34:bc:2a:c2: 85:6e:ba:3e:04:2f:03:20:60:a6:44:a5:b5:82:15: b2:94:d1:74:dd:f9:f9:6e:8e:ed:6f:c3:da:43:33: 5f:92:1b:13:3e:9f:ab:ab:fe:9e:57:a7:61:f4:92: 48:31:b3:0c:6e:54:6b:f3:60:3a:14:a6:f1:9c:71: 26:72:ab:fb:d2:84:d5:99:7c:f9:a6:bc:e3:65:74: 16:90:80:cd:4e:06:89:e5:fb:f2:58:ce:7e:49:33: ad:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3E:15:D0:25:7C:E1:CB:4A:68:9A:8C:74:5C:D4:6A:3F:8F:C2:25 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hz4V0CV84ctKaJqMdFzUaj-PwiU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.9.208.0/22 IPv6: 2a00:1728:48::/46 Signature Algorithm: sha256WithRSAEncryption 5b:ee:eb:32:ab:fc:7f:90:07:5d:a5:2b:9a:17:32:09:60:ce: a4:b4:a2:fc:d6:90:7a:6c:4f:28:72:dc:a4:cf:fa:72:53:54: 33:5e:b2:f4:a0:db:7a:88:96:02:18:42:06:2c:b5:28:cd:a4: a5:4e:e3:be:6f:ef:f9:bb:40:f8:31:0a:06:8b:b4:46:e4:5b: a9:b6:7a:ac:11:a9:87:68:1d:fc:f7:6f:e3:3d:df:f6:01:a7: 52:96:78:52:5f:70:6a:13:d8:8e:4b:df:e6:8e:94:74:cd:52: c8:ee:87:0d:75:68:1e:13:26:ea:d4:29:df:18:22:a3:34:1f: 17:44:d0:c1:d8:d4:8d:80:77:6b:c7:59:57:c9:49:80:cf:11: 74:1b:48:f2:35:01:2c:78:8a:6e:9e:82:76:1e:63:39:fe:08: a5:d9:40:79:ca:7c:9e:cc:61:8b:5b:5b:2e:eb:5e:f5:0d:7e: b2:79:f9:10:6a:fe:5f:81:0b:75:0b:4e:b8:ae:9e:55:e1:26: d1:58:15:44:f0:67:eb:e2:a7:e5:bf:41:61:4e:ac:c5:66:2d: 7e:b7:6a:c4:2b:cc:97:56:84:15:23:b3:1e:7d:1f:81:1e:0d: c2:d2:e1:a6:ab:d9:52:d5:c4:8e:49:c2:8f:f9:23:4d:73:25: b8:14:c1:3b -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4ovOAH9A40o5rXHJB8RGMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzNlMTVkMDI1N2NlMWNiNGE2ODlhOGM3NDVjZDQ2YTNmOGZjMjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtytaCikPPkzzI+Suy8VEpZ6tKRIw R6/arN98HNs5q9WsVugnngwTQSLVoAowK2jfssoAolOM8HFUm4IaX2gth6zugYnD Pyn6rslyXB0QUdXXyq1DMDAG55UqkFtrHSs2iSG2fShweoH/JS+2vt3Wpl/l4hYy doM1CWl19EU5Ma8Bafalm6+1oM1NvL8QhtK5XHfuD+t+vEAyYT/5WZE8MDS8KsKF bro+BC8DIGCmRKW1ghWylNF03fn5bo7tb8PaQzNfkhsTPp+rq/6eV6dh9JJIMbMM blRr82A6FKbxnHEmcqv70oTVmXz5przjZXQWkIDNTgaJ5fvyWM5+STOttQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIc+FdAlfOHLSmiajHRc1Go/j8IlMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvaHo0VjBDVjg0Y3RLYUpxTWRGelVhai1Qd2lVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCLQnQMA8E AgACMAkDBwIqABcoAEgwDQYJKoZIhvcNAQELBQADggEBAFvu6zKr/H+QB12lK5oX MglgzqS0ovzWkHpsTyhy3KTP+nJTVDNesvSg23qIlgIYQgYstSjNpKVO475v7/m7 QPgxCgaLtEbkW6m2eqwRqYdoHfz3b+M93/YBp1KWeFJfcGoT2I5L3+aOlHTNUsju hw11aB4TJurUKd8YIqM0HxdE0MHY1I2Ad2vHWVfJSYDPEXQbSPI1ASx4im6egnYe Yzn+CKXZQHnKfJ7MYYtbWy7rXvUNfrJ5+RBq/l+BC3ULTriunlXhJtFYFUTwZ+vi p+W/QWFOrMVmLX63asQrzJdWhBUjsx59H4EeDcLS4aar2VLVxI5Jwo/5I01zJbgU wTs= -----END CERTIFICATE-----Generated at Fri Jan 2 12:08:24 2026 by rpki-client