This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/Rtf3Ok46m4V-jUnqVqrnK78wScU.roa File: Rtf3Ok46m4V-jUnqVqrnK78wScU.roa (raw, json) Hash identifier: 5UDxCVwkQxutl6l/6ucW6O+828gQteGd8WnS/oyBd0U= Subject key identifier: 46:D7:F7:3A:4E:3A:9B:85:7E:8D:49:EA:56:AA:E7:2B:BF:30:49:C5 Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Certificate serial: 019A793CC73CB12F44A94A5221854F6697B2 Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/Rtf3Ok46m4V-jUnqVqrnK78wScU.roa Signing time: Wed 12 Nov 2025 18:03:37 +0000 ROA not before: Wed 12 Nov 2025 18:03:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9009 IP address blocks: 45.147.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:79:3c:c7:3c:b1:2f:44:a9:4a:52:21:85:4f:66:97:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Validity Not Before: Nov 12 18:03:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=46d7f73a4e3a9b857e8d49ea56aae72bbf3049c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:65:a6:2e:1c:65:bb:29:10:9a:bf:e1:38: 83:2c:64:87:51:7d:05:80:5b:3c:95:76:71:5a:91: 6d:4b:af:33:59:7c:a1:f4:c0:93:29:e2:e1:cd:0d: 55:a5:86:5f:bc:12:5d:ea:0e:45:ba:7d:6f:4a:8e: 56:2d:ac:50:e5:9f:00:9b:df:70:03:d1:be:98:08: 2a:4f:ff:73:28:5d:67:8d:da:ac:1d:69:b6:9d:81: 86:c7:7a:3a:98:3b:a5:13:3a:de:19:41:ac:54:b6: b9:d2:1a:34:87:54:be:c2:8e:6b:cf:ca:4f:e9:3f: 01:f2:7e:18:d6:57:09:14:90:f1:31:f6:e3:35:7a: c5:7f:4c:5e:ca:b9:eb:6a:df:21:6b:e7:7e:90:33: 61:4d:82:ba:8f:84:d9:6c:1a:53:44:50:30:9b:4b: b0:1c:96:4c:e5:4e:cd:84:f7:d7:60:a6:79:ac:0c: ca:d8:44:55:6f:49:a2:70:9f:48:0f:ca:98:bd:cf: f6:29:ae:b2:f9:ad:bd:81:92:1c:e5:9d:2e:05:d2: bd:5d:97:b0:76:79:39:98:12:14:d1:49:bf:14:35: 50:10:67:fa:5a:a0:df:9b:03:20:17:20:eb:5a:3d: ff:8c:34:e1:6c:63:3f:b6:07:8e:44:d8:fd:8b:69: 1b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D7:F7:3A:4E:3A:9B:85:7E:8D:49:EA:56:AA:E7:2B:BF:30:49:C5 X509v3 Authority Key Identifier: keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/Rtf3Ok46m4V-jUnqVqrnK78wScU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.147.166.0/24 Signature Algorithm: sha256WithRSAEncryption 81:6e:93:61:e0:1b:cd:dc:5b:4d:8e:24:89:4d:50:e4:61:ea: b9:c2:c4:3d:4b:f3:d1:dd:8e:19:6d:5e:c4:3b:65:23:18:fb: c8:dd:2f:75:80:fe:58:00:24:05:fc:9f:22:d8:f1:22:25:3d: 77:00:d9:98:5e:59:ba:20:4b:bc:55:1e:c0:d7:34:69:b8:3c: b8:05:7e:b5:24:9e:a8:24:60:a1:2c:21:ad:ce:39:e5:90:91: a5:b7:03:e9:bc:7c:9c:9b:53:d8:b7:d4:2e:2d:ef:bf:81:98: 2e:c9:eb:00:88:d4:e8:20:08:14:6c:2f:c5:df:fb:6a:be:5f: b3:89:40:3e:b1:91:3c:63:15:e5:25:44:8b:48:aa:1e:1c:8c: 37:65:a4:bf:2c:30:cd:44:85:41:7f:18:b8:82:56:79:74:7b: c2:c8:d3:b9:8b:8c:d0:1a:8b:1e:23:c9:f8:d2:93:54:4d:d4: f0:a8:71:3c:f1:8a:4c:73:8f:ac:67:0f:9f:b9:01:b3:a5:ab: c4:21:f9:fb:bc:de:2a:8f:a6:3b:9c:e5:77:f0:5e:39:0b:c6: c9:4b:83:82:54:88:69:e9:91:35:51:15:9c:69:5f:1c:0a:63: 2a:63:1a:cf:eb:52:10:43:01:19:f1:5f:32:44:e4:f7:ad:61: 2e:bf:50:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZp5PMc8sS9EqUpSIYVPZpeyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MjFhMzlhZWQ5ZGE0ZWUzYWI2NjM5ZDI0NDUwOGZhMWU4 ZDIwZjYwHhcNMjUxMTEyMTgwMzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NmQ3ZjczYTRlM2E5Yjg1N2U4ZDQ5ZWE1NmFhZTcyYmJmMzA0OWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG5lpi4cZbspEJq/4TiDLGSHUX0F gFs8lXZxWpFtS68zWXyh9MCTKeLhzQ1VpYZfvBJd6g5Fun1vSo5WLaxQ5Z8Am99w A9G+mAgqT/9zKF1njdqsHWm2nYGGx3o6mDulEzreGUGsVLa50ho0h1S+wo5rz8pP 6T8B8n4Y1lcJFJDxMfbjNXrFf0xeyrnrat8ha+d+kDNhTYK6j4TZbBpTRFAwm0uw HJZM5U7NhPfXYKZ5rAzK2ERVb0micJ9ID8qYvc/2Ka6y+a29gZIc5Z0uBdK9XZew dnk5mBIU0Um/FDVQEGf6WqDfmwMgFyDrWj3/jDThbGM/tgeORNj9i2kb3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEbX9zpOOpuFfo1J6laq5yu/MEnFMB8GA1UdIwQY MBaAFIgho5rtnaTuOrZjnSRFCPoejSD2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAt ZjYwZDZmNzE4MmExLzEvUnRmM09rNDZtNFYtalVucVZxcm5LNzh3U2NVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAtZjYwZDZmNzE4MmEx LzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZOmMA0G CSqGSIb3DQEBCwUAA4IBAQCBbpNh4BvN3FtNjiSJTVDkYeq5wsQ9S/PR3Y4ZbV7E O2UjGPvI3S91gP5YACQF/J8i2PEiJT13ANmYXlm6IEu8VR7A1zRpuDy4BX61JJ6o JGChLCGtzjnlkJGltwPpvHycm1PYt9QuLe+/gZguyesAiNToIAgUbC/F3/tqvl+z iUA+sZE8YxXlJUSLSKoeHIw3ZaS/LDDNRIVBfxi4glZ5dHvCyNO5i4zQGoseI8n4 0pNUTdTwqHE88YpMc4+sZw+fuQGzpavEIfn7vN4qj6Y7nOV38F45C8bJS4OCVIhp 6ZE1URWcaV8cCmMqYxrP61IQQwEZ8V8yROT3rWEuv1Az -----END CERTIFICATE-----Generated at Sat Nov 22 21:04:08 2025 by rpki-client