This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/An-h4kooPrBUGMT-6Nj0QudqGKE.roa File: An-h4kooPrBUGMT-6Nj0QudqGKE.roa (raw, json) Hash identifier: 4VG1kUHyYf9yb01HKQwY97RZCAJU3VqeDAxr07wG4w0= Subject key identifier: 02:7F:A1:E2:4A:28:3E:B0:54:18:C4:FE:E8:D8:F4:42:E7:6A:18:A1 Certificate issuer: /CN=8533ef46116fd9d21bfb533e44bde517890c24dc Certificate serial: 019B7BA3C3C1258C442D93252D59DE8179C1 Authority key identifier: 85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/An-h4kooPrBUGMT-6Nj0QudqGKE.roa Signing time: Thu 01 Jan 2026 22:18:08 +0000 ROA not before: Thu 01 Jan 2026 22:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7979 IP address blocks: 45.14.83.0/24 maxlen: 24 45.85.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.mft rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:c3:c1:25:8c:44:2d:93:25:2d:59:de:81:79:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8533ef46116fd9d21bfb533e44bde517890c24dc Validity Not Before: Jan 1 22:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=027fa1e24a283eb05418c4fee8d8f442e76a18a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7b:45:5c:6c:7a:24:54:c1:c0:b6:a3:2c:31: a2:fd:5e:7e:26:bf:63:fa:86:2a:a3:88:fb:91:51: 1d:b2:7d:dd:5e:e5:0d:e0:7d:bc:46:46:94:dd:5f: 71:95:99:0b:23:18:12:29:1b:e0:35:35:34:2e:c1: f4:ec:f5:3a:d5:f6:0a:23:57:67:6a:b8:38:ad:6e: db:95:5a:86:60:e8:c1:6a:57:07:a6:a3:f4:0f:a0: 39:75:02:9c:27:99:0c:a3:6c:14:68:1e:0a:35:32: 06:75:db:45:a1:01:8e:b9:91:59:27:d8:24:e8:94: 5b:69:a6:0c:1a:e5:ff:22:60:6c:a4:55:bc:23:2d: 5a:8f:b1:f2:21:44:9f:00:c5:b9:b7:20:af:97:6e: 53:20:cc:37:07:67:f2:21:92:fe:91:43:e2:ef:46: d3:85:b9:f2:b0:f2:07:d8:1f:61:89:6a:f2:7f:8f: dc:05:5a:94:57:9a:84:27:4e:f8:d9:c3:a3:df:3b: a3:7d:af:09:e3:22:59:79:68:51:92:26:da:d0:b5: 85:09:d2:1a:22:22:89:5e:72:f7:b9:b4:61:fc:34: ab:56:f7:04:d7:90:c6:fe:88:be:c2:3a:ac:a2:18: 59:a4:b5:85:bf:07:f8:0a:11:bb:1c:68:82:29:64: c2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:7F:A1:E2:4A:28:3E:B0:54:18:C4:FE:E8:D8:F4:42:E7:6A:18:A1 X509v3 Authority Key Identifier: keyid:85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/An-h4kooPrBUGMT-6Nj0QudqGKE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.14.83.0/24 45.85.129.0/24 Signature Algorithm: sha256WithRSAEncryption 27:98:ba:f6:b3:a2:74:b9:03:31:78:ad:3d:03:eb:a3:54:53: 5d:f7:80:25:f1:6c:fe:9d:28:03:96:33:8f:e1:f6:11:dd:ff: 65:43:99:08:9b:a3:d6:20:61:e0:be:53:a5:d4:98:22:59:be: 72:3f:be:1d:aa:eb:66:ac:c1:f5:c2:78:f3:9c:f6:02:03:d5: c7:22:27:55:37:89:24:1e:dc:33:c6:4c:6a:c3:b3:51:91:bf: 29:eb:5c:fd:05:5e:0d:7e:c2:37:b2:e2:79:78:1d:92:06:7c: 78:e4:5e:10:b9:5c:a7:0d:b4:46:f3:48:8d:30:e1:bb:b9:29: 31:c1:37:e9:74:91:a8:61:ff:39:18:87:9e:4b:d2:77:c1:57: 91:74:cd:bc:ec:26:aa:3b:9e:fa:91:8f:49:47:93:73:2a:3b: 35:01:47:ce:cd:3b:be:5e:23:60:ed:3a:bd:c8:37:20:b5:87: 24:c6:e6:4d:55:e2:ba:a5:6a:5c:51:aa:cc:c5:a9:c0:07:32: ca:95:7f:5a:fd:b5:08:73:4e:62:74:6d:fa:f9:71:c7:53:87: 3d:a9:25:1b:08:90:d3:c6:05:e9:e8:60:a5:7e:b9:ca:99:21: ea:47:02:2b:c4:5f:b8:3e:50:ba:84:05:c5:1a:e3:6a:d2:e6: ed:95:ae:fc -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7o8PBJYxELZMlLVnegXnBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MzNlZjQ2MTE2ZmQ5ZDIxYmZiNTMzZTQ0YmRlNTE3ODkw YzI0ZGMwHhcNMjYwMTAxMjIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjdmYTFlMjRhMjgzZWIwNTQxOGM0ZmVlOGQ4ZjQ0MmU3NmExOGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnntFXGx6JFTBwLajLDGi/V5+Jr9j +oYqo4j7kVEdsn3dXuUN4H28RkaU3V9xlZkLIxgSKRvgNTU0LsH07PU61fYKI1dn arg4rW7blVqGYOjBalcHpqP0D6A5dQKcJ5kMo2wUaB4KNTIGddtFoQGOuZFZJ9gk 6JRbaaYMGuX/ImBspFW8Iy1aj7HyIUSfAMW5tyCvl25TIMw3B2fyIZL+kUPi70bT hbnysPIH2B9hiWryf4/cBVqUV5qEJ0742cOj3zujfa8J4yJZeWhRkiba0LWFCdIa IiKJXnL3ubRh/DSrVvcE15DG/oi+wjqsohhZpLWFvwf4ChG7HGiCKWTCaQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAJ/oeJKKD6wVBjE/ujY9ELnahihMB8GA1UdIwQY MBaAFIUz70YRb9nSG/tTPkS95ReJDCTcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAt NzM5MjNkYWVmMTE0LzEvQW4taDRrb29QckJVR01ULTZOajBRdWRxR0tFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAtNzM5MjNkYWVmMTE0 LzEvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQ5TAwQA LVWBMA0GCSqGSIb3DQEBCwUAA4IBAQAnmLr2s6J0uQMxeK09A+ujVFNd94Al8Wz+ nSgDljOP4fYR3f9lQ5kIm6PWIGHgvlOl1JgiWb5yP74dqutmrMH1wnjznPYCA9XH IidVN4kkHtwzxkxqw7NRkb8p61z9BV4NfsI3suJ5eB2SBnx45F4QuVynDbRG80iN MOG7uSkxwTfpdJGoYf85GIeeS9J3wVeRdM287CaqO576kY9JR5NzKjs1AUfOzTu+ XiNg7Tq9yDcgtYckxuZNVeK6pWpcUarMxanABzLKlX9a/bUIc05idG36+XHHU4c9 qSUbCJDTxgXp6GClfrnKmSHqRwIrxF+4PlC6hAXFGuNq0ubtla78 -----END CERTIFICATE-----Generated at Wed Jan 21 04:05:02 2026 by rpki-client