This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/_yFrTYVVOzem6SAvOPOzP_wE_MM.roa File: _yFrTYVVOzem6SAvOPOzP_wE_MM.roa (raw, json) Hash identifier: 5prdT05UIi7fhKfl8B0EiaHRzoodJuHLB7r7onONbos= Subject key identifier: FF:21:6B:4D:85:55:3B:37:A6:E9:20:2F:38:F3:B3:3F:FC:04:FC:C3 Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Certificate serial: 019B79ECD5C8631E2EC5537B1A85EE2C710B Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/_yFrTYVVOzem6SAvOPOzP_wE_MM.roa Signing time: Thu 01 Jan 2026 14:18:42 +0000 ROA not before: Thu 01 Jan 2026 14:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212238 IP address blocks: 45.147.164.0/24 maxlen: 24 45.147.165.0/24 maxlen: 24 45.147.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 05:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:d5:c8:63:1e:2e:c5:53:7b:1a:85:ee:2c:71:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Validity Not Before: Jan 1 14:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff216b4d85553b37a6e9202f38f3b33ffc04fcc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b5:3c:84:10:7b:a4:c9:0e:ce:5a:d0:c8:08: 30:88:b4:21:90:14:05:6d:ca:e1:a5:48:78:58:4e: bd:15:2c:21:58:47:1d:3b:5a:25:53:fd:82:47:15: 3c:bf:f7:22:50:b1:05:a0:42:c4:83:c6:00:b3:fd: 0b:7f:38:de:38:1f:d3:38:d5:75:c2:b2:84:df:25: f4:eb:79:88:ce:f0:84:2a:8c:a7:c8:ce:74:c7:3c: 3d:a0:5b:3f:dc:19:fd:5b:ef:84:49:6a:88:2d:6d: 88:0a:a7:fc:6f:6f:9d:92:78:45:b0:99:fa:35:9a: 1c:2c:e3:6e:be:08:be:33:c5:8e:c0:22:3c:10:6c: 1a:0a:e6:ac:82:83:d5:21:f5:4a:30:94:c8:4d:be: f6:7e:b5:ed:69:df:5c:2e:5c:d8:15:2d:83:66:fa: 73:ab:40:76:19:1f:22:6b:68:1c:65:ed:0e:32:71: 28:50:47:1f:c2:56:67:b0:28:6a:41:ff:b6:7a:96: 89:f5:2e:58:da:b1:9e:b0:5f:94:88:4b:31:05:51: 92:58:eb:0e:a5:57:11:08:55:8d:4c:c7:89:f7:0b: 73:21:eb:67:17:3d:82:1f:4c:2a:39:13:4e:a8:aa: 68:56:3b:72:cb:65:76:97:bd:df:bc:9c:66:c4:22: 55:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:21:6B:4D:85:55:3B:37:A6:E9:20:2F:38:F3:B3:3F:FC:04:FC:C3 X509v3 Authority Key Identifier: keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/_yFrTYVVOzem6SAvOPOzP_wE_MM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.147.164.0/23 45.147.167.0/24 Signature Algorithm: sha256WithRSAEncryption b1:40:23:41:91:35:1b:6a:47:fe:de:5d:cf:98:c6:c4:29:39: 3a:b4:7a:0c:27:28:a5:c4:aa:3c:65:40:36:9e:41:be:dd:eb: 7a:3b:c2:ef:39:5a:fc:56:52:83:9e:08:b1:33:4f:a7:be:55: 21:ea:81:1a:8e:b5:55:69:3c:61:44:a9:bb:8a:5a:ec:3c:d3: 0c:b2:36:cf:da:79:36:5c:75:3b:3e:c8:3e:f8:54:01:56:31: b6:79:0b:aa:42:21:49:df:4b:16:65:a0:9d:36:45:31:62:7d: c7:c5:ee:38:c8:45:ef:df:9d:d1:25:86:f3:cc:11:bd:2a:13: be:7a:21:93:26:c7:4a:a6:e4:ea:1b:e6:3a:48:af:bf:1f:04: bb:24:6b:54:5c:98:bd:5b:6e:be:cf:30:14:83:1d:c1:77:87: ef:f3:e2:47:65:de:11:17:5a:71:5d:b3:7c:0b:fe:69:92:f4: 08:1e:80:6d:56:2b:91:14:1a:bb:f5:d6:41:74:00:43:cb:e7: d2:95:2b:3f:4b:49:3e:92:bb:2d:10:1f:42:6c:9d:d7:37:b1: f1:f9:ca:c4:1f:f3:76:9c:67:dd:c4:d6:13:b4:8e:d0:0f:9d: 03:26:7a:f1:b0:89:e7:bd:56:71:c3:89:74:26:6e:7a:1d:41: ed:37:85:7a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57NXIYx4uxVN7GoXuLHELMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MjFhMzlhZWQ5ZGE0ZWUzYWI2NjM5ZDI0NDUwOGZhMWU4 ZDIwZjYwHhcNMjYwMTAxMTQxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjIxNmI0ZDg1NTUzYjM3YTZlOTIwMmYzOGYzYjMzZmZjMDRmY2MzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLU8hBB7pMkOzlrQyAgwiLQhkBQF bcrhpUh4WE69FSwhWEcdO1olU/2CRxU8v/ciULEFoELEg8YAs/0LfzjeOB/TONV1 wrKE3yX063mIzvCEKoynyM50xzw9oFs/3Bn9W++ESWqILW2ICqf8b2+dknhFsJn6 NZocLONuvgi+M8WOwCI8EGwaCuasgoPVIfVKMJTITb72frXtad9cLlzYFS2DZvpz q0B2GR8ia2gcZe0OMnEoUEcfwlZnsChqQf+2epaJ9S5Y2rGesF+UiEsxBVGSWOsO pVcRCFWNTMeJ9wtzIetnFz2CH0wqORNOqKpoVjtyy2V2l73fvJxmxCJVPwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFP8ha02FVTs3pukgLzjzsz/8BPzDMB8GA1UdIwQY MBaAFIgho5rtnaTuOrZjnSRFCPoejSD2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAt ZjYwZDZmNzE4MmExLzEvX3lGclRZVlZPemVtNlNBdk9QT3pQX3dFX01NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAtZjYwZDZmNzE4MmEx LzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLZOkAwQA LZOnMA0GCSqGSIb3DQEBCwUAA4IBAQCxQCNBkTUbakf+3l3PmMbEKTk6tHoMJyil xKo8ZUA2nkG+3et6O8LvOVr8VlKDngixM0+nvlUh6oEajrVVaTxhRKm7ilrsPNMM sjbP2nk2XHU7Psg++FQBVjG2eQuqQiFJ30sWZaCdNkUxYn3Hxe44yEXv353RJYbz zBG9KhO+eiGTJsdKpuTqG+Y6SK+/HwS7JGtUXJi9W26+zzAUgx3Bd4fv8+JHZd4R F1pxXbN8C/5pkvQIHoBtViuRFBq79dZBdABDy+fSlSs/S0k+krstEB9CbJ3XN7Hx +crEH/N2nGfdxNYTtI7QD50DJnrxsInnvVZxw4l0Jm56HUHtN4V6 -----END CERTIFICATE-----Generated at Sat Jan 10 15:21:55 2026 by rpki-client