This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/ziPECi56XWvOBSk7jFhCDI6bu7M.roa File: ziPECi56XWvOBSk7jFhCDI6bu7M.roa (raw, json) Hash identifier: GtmGk+9Vj+/ONt8GKGTxXSgpLCYGnOP8KSMdgsMgpmI= Subject key identifier: CE:23:C4:0A:2E:7A:5D:6B:CE:05:29:3B:8C:58:42:0C:8E:9B:BB:B3 Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Certificate serial: 019B78A31B93E76E73BCC38C2D330F24160B Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/ziPECi56XWvOBSk7jFhCDI6bu7M.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208949 IP address blocks: 45.88.0.0/24 maxlen: 24 45.148.145.0/24 maxlen: 24 45.148.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.mft rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1b:93:e7:6e:73:bc:c3:8c:2d:33:0f:24:16:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce23c40a2e7a5d6bce05293b8c58420c8e9bbbb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dd:8c:bb:90:54:b7:c0:df:57:28:b2:dd:83: 46:b7:50:93:37:d8:39:13:18:98:6d:ad:9c:5b:2e: 28:01:7c:f1:28:b8:74:eb:3f:cb:53:f1:53:08:78: c1:1d:46:be:b4:c4:db:90:ff:3b:ad:66:0d:a6:66: 57:9a:a5:28:22:ae:84:9e:61:19:f6:ab:27:94:83: 72:92:18:22:61:3a:02:5c:33:06:09:da:17:59:78: 9f:c0:a5:de:9b:91:11:11:b4:3d:5c:5e:88:df:e9: 80:3a:94:e2:73:c3:d5:46:0c:87:ba:8f:f2:d8:83: f7:86:93:b0:71:ec:ea:5f:ca:7e:31:24:ee:2e:3b: 4e:ec:be:0d:8b:fb:dd:3c:a6:e2:9c:77:8b:fb:f4: e3:69:c7:08:25:a2:61:cc:06:7a:14:93:b6:9d:ec: 69:e5:af:8f:2e:0c:7b:85:6a:87:fa:97:a7:7f:2c: 62:ba:af:b5:a5:7b:34:5d:63:7a:91:88:a1:70:35: c6:f3:d7:9c:61:09:23:60:64:85:05:36:1c:65:9b: 72:54:81:4d:01:37:08:3d:c9:d8:8a:86:d0:4a:52: b7:af:8b:74:d0:63:64:4c:04:4f:d4:1b:49:be:25: 96:83:f8:99:d1:4d:d1:56:f2:17:49:e0:f7:89:b3: 83:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:23:C4:0A:2E:7A:5D:6B:CE:05:29:3B:8C:58:42:0C:8E:9B:BB:B3 X509v3 Authority Key Identifier: keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/ziPECi56XWvOBSk7jFhCDI6bu7M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.0.0/24 45.148.145.0-45.148.146.255 Signature Algorithm: sha256WithRSAEncryption ac:7b:c4:6c:b0:fb:f7:82:53:15:59:f0:05:01:9c:ab:fe:d2: 2f:a5:63:8d:13:73:fb:44:38:bb:4d:53:47:76:e4:8b:10:86: 16:ad:0d:67:c3:89:2a:34:8d:17:c1:f7:e2:2a:bf:ca:27:a0: 97:b3:88:ba:b3:07:82:5f:1d:f6:be:bf:58:a0:21:ed:4c:4d: 02:e9:17:4e:a8:d2:44:d9:e4:59:33:67:ba:af:bf:94:82:6f: bd:6f:89:37:cb:ee:e3:ac:00:63:16:fb:c2:33:c9:dc:21:c5: 75:53:37:43:f6:cc:7f:0b:37:1b:ac:d5:be:8a:25:bf:02:14: d7:0e:9c:8d:2b:5a:93:2a:25:f5:40:da:5f:dc:c0:5a:5a:44: c0:c2:16:59:fc:49:e6:ba:26:60:f9:95:35:1d:de:96:5c:59: df:13:b5:45:2b:af:91:27:34:b4:32:2c:46:18:c0:0c:db:08: 37:e3:33:d2:3e:3c:ee:30:f4:f2:de:20:92:0a:a2:c8:ae:59: a3:f2:8e:ad:e2:45:8f:0a:6a:3b:b8:97:ef:6c:ce:6d:29:46: 11:dd:c4:ab:ac:b7:96:16:ea:e6:3b:7f:96:40:9c:11:76:cc: 3a:2a:d4:1a:cf:aa:8e:67:63:65:77:18:33:51:21:8a:c2:f9: 48:67:e3:c2 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt4oxuT525zvMOMLTMPJBYLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxYmRkZWFmMGYzMGZiZGFmOWU3NWI5MmFjN2Q1YmQxM2Yy ODVkZTcwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTIzYzQwYTJlN2E1ZDZiY2UwNTI5M2I4YzU4NDIwYzhlOWJiYmIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1N2Mu5BUt8DfVyiy3YNGt1CTN9g5 ExiYba2cWy4oAXzxKLh06z/LU/FTCHjBHUa+tMTbkP87rWYNpmZXmqUoIq6EnmEZ 9qsnlINykhgiYToCXDMGCdoXWXifwKXem5EREbQ9XF6I3+mAOpTic8PVRgyHuo/y 2IP3hpOwcezqX8p+MSTuLjtO7L4Ni/vdPKbinHeL+/TjaccIJaJhzAZ6FJO2nexp 5a+PLgx7hWqH+penfyxiuq+1pXs0XWN6kYihcDXG89ecYQkjYGSFBTYcZZtyVIFN ATcIPcnYiobQSlK3r4t00GNkTARP1BtJviWWg/iZ0U3RVvIXSeD3ibOD6QIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFM4jxAouel1rzgUpO4xYQgyOm7uzMB8GA1UdIwQY MBaAFHG93q8PMPva+edbkqx9W9E/KF3nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUt NDc3MjMxMTkxYTM1LzEvemlQRUNpNTZYV3ZPQlNrN2pGaENESTZidTdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUtNDc3MjMxMTkxYTM1 LzEvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQALVgAMAwD BAAtlJEDBAAtlJIwDQYJKoZIhvcNAQELBQADggEBAKx7xGyw+/eCUxVZ8AUBnKv+ 0i+lY40Tc/tEOLtNU0d25IsQhhatDWfDiSo0jRfB9+Iqv8onoJeziLqzB4JfHfa+ v1igIe1MTQLpF06o0kTZ5FkzZ7qvv5SCb71viTfL7uOsAGMW+8IzydwhxXVTN0P2 zH8LNxus1b6KJb8CFNcOnI0rWpMqJfVA2l/cwFpaRMDCFln8Sea6JmD5lTUd3pZc Wd8TtUUrr5EnNLQyLEYYwAzbCDfjM9I+PO4w9PLeIJIKosiuWaPyjq3iRY8Kaju4 l+9szm0pRhHdxKust5YW6uY7f5ZAnBF2zDoq1BrPqo5nY2V3GDNRIYrC+Uhn48I= -----END CERTIFICATE-----Generated at Wed Jan 21 13:24:53 2026 by rpki-client