This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ii1wrV6MH0Od9I-EvZmz4tIZ0YU.roa File: ii1wrV6MH0Od9I-EvZmz4tIZ0YU.roa (raw, json) Hash identifier: QsmP7YoZAPOJBFrEDm/rD4hR/aKn34unfeCi9/KcoPA= Subject key identifier: 8A:2D:70:AD:5E:8C:1F:43:9D:F4:8F:84:BD:99:B3:E2:D2:19:D1:85 Certificate issuer: /CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75 Certificate serial: 019B78A2B153488E77062C90114684D0DECE Authority key identifier: 8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ii1wrV6MH0Od9I-EvZmz4tIZ0YU.roa Signing time: Thu 01 Jan 2026 08:18:06 +0000 ROA not before: Thu 01 Jan 2026 08:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35489 IP address blocks: 45.133.100.0/24 maxlen: 24 45.133.101.0/24 maxlen: 24 193.8.4.0/23 maxlen: 23 193.8.4.0/24 maxlen: 24 193.8.5.0/24 maxlen: 24 193.8.6.0/24 maxlen: 24 193.8.7.0/24 maxlen: 24 2a0c:7cc0::/29 maxlen: 29 2a0c:7cc0::/48 maxlen: 48 2a0c:7cc2:297::/48 maxlen: 48 2a0c:7cc7::/32 maxlen: 32 2a0c:7cc7::/48 maxlen: 48 2a0c:7cc7:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 11:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:b1:53:48:8e:77:06:2c:90:11:46:84:d0:de:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75 Validity Not Before: Jan 1 08:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a2d70ad5e8c1f439df48f84bd99b3e2d219d185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:21:8b:b6:00:b6:0c:55:87:fa:f1:c3:3c:35: 57:2b:fb:6f:ee:6a:98:a6:b8:92:2f:31:b8:7b:b0: 7f:10:04:b0:85:9b:e7:58:69:bd:ca:14:94:d4:81: ad:dd:2d:e6:9a:15:ba:f0:67:0a:36:65:4a:dd:85: a7:30:f3:c0:fc:0a:7b:db:ea:41:5a:28:66:71:52: 56:bb:0d:69:b2:ac:13:cb:1b:23:53:16:d6:3a:d9: 6c:0c:58:e6:7a:43:c1:5e:94:80:09:ff:b4:7b:17: 28:f9:3f:96:ca:8d:2b:77:7f:08:37:05:cb:87:eb: f6:7a:df:be:e6:85:48:ff:ac:c2:b8:1e:cd:a7:8f: c5:d3:e1:d7:53:b7:71:54:22:01:a3:3b:e9:3e:d2: 64:c6:00:34:5e:11:80:59:b3:0e:ab:29:48:64:6e: 26:c0:5a:9c:9c:c1:08:dd:91:82:68:07:10:40:31: d5:d9:c8:a0:f6:c4:93:bb:68:d1:a2:04:02:79:bb: a7:34:85:06:d3:6f:e5:bf:06:fd:ac:12:3d:18:64: d8:04:a9:f0:d9:52:cf:bc:78:9e:76:9a:13:da:12: c8:fd:1b:8d:d1:85:35:0b:1a:48:d3:5f:d0:fb:59: 5c:50:0a:79:b1:6e:20:87:4b:bf:15:8c:9b:72:5e: 09:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:2D:70:AD:5E:8C:1F:43:9D:F4:8F:84:BD:99:B3:E2:D2:19:D1:85 X509v3 Authority Key Identifier: keyid:8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ii1wrV6MH0Od9I-EvZmz4tIZ0YU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.133.100.0/23 193.8.4.0/22 IPv6: 2a0c:7cc0::/29 Signature Algorithm: sha256WithRSAEncryption 56:31:4f:61:1b:f0:67:aa:0a:2a:7c:65:05:4a:71:39:68:76: 62:8a:ab:66:b2:3c:ce:3a:ff:3c:8b:bf:7f:5e:8f:c6:06:46: 1a:ad:3c:52:3a:e8:c9:a0:e6:2f:52:5e:01:77:ac:9f:43:97: 14:9f:4e:0b:35:e4:56:6f:b7:05:e3:87:6f:2f:5d:9d:77:7b: a0:12:51:4c:73:28:94:cc:09:6a:fb:56:4b:87:1e:92:75:42: 14:ee:4e:22:eb:fe:74:25:8a:c4:2c:4e:60:09:c7:14:41:28: f6:c8:3e:97:23:07:1c:3d:0b:57:d4:2a:15:0f:90:d1:06:77: c9:a5:75:c2:7e:57:d1:42:73:ec:3f:aa:93:b8:be:b6:e1:51: ca:b1:74:d4:e3:20:17:41:ac:29:46:98:e7:90:32:03:37:0b: 53:c0:ab:4c:b5:6b:3c:53:36:5c:ac:e6:93:ef:9f:72:1d:b9: 9d:18:a8:7d:cc:b5:ea:43:34:e3:da:9f:a7:32:7f:35:5c:81: 03:d2:42:31:11:8e:25:1f:10:d1:a6:97:94:c0:af:fd:79:b5: 55:d0:4b:42:33:37:ac:d5:18:8f:21:da:85:0b:35:81:a4:11: cb:96:52:6a:f0:72:e6:d0:e6:26:e1:a2:b4:fa:03:79:cd:eb: 8b:b6:2c:ea -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4orFTSI53BiyQEUaE0N7OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMWNlMWQxMzViZjJjZjhlOGMxM2YzM2VjMTFjODUyMzcw M2RjNzUwHhcNMjYwMTAxMDgxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTJkNzBhZDVlOGMxZjQzOWRmNDhmODRiZDk5YjNlMmQyMTlkMTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCGLtgC2DFWH+vHDPDVXK/tv7mqY priSLzG4e7B/EASwhZvnWGm9yhSU1IGt3S3mmhW68GcKNmVK3YWnMPPA/Ap72+pB WihmcVJWuw1psqwTyxsjUxbWOtlsDFjmekPBXpSACf+0exco+T+Wyo0rd38INwXL h+v2et++5oVI/6zCuB7Np4/F0+HXU7dxVCIBozvpPtJkxgA0XhGAWbMOqylIZG4m wFqcnMEI3ZGCaAcQQDHV2cig9sSTu2jRogQCebunNIUG02/lvwb9rBI9GGTYBKnw 2VLPvHiedpoT2hLI/RuN0YU1CxpI01/Q+1lcUAp5sW4gh0u/FYybcl4JhwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFIotcK1ejB9DnfSPhL2Zs+LSGdGFMB8GA1UdIwQY MBaAFIoc4dE1vyz46ME/M+wRyFI3A9x1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDIt ZGVlMjkyZWE4N2EzLzEvaWkxd3JWNk1IME9kOUktRXZabXo0dElaMFlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDItZGVlMjkyZWE4N2Ez LzEvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBLYVkAwQC wQgEMA0EAgACMAcDBQMqDHzAMA0GCSqGSIb3DQEBCwUAA4IBAQBWMU9hG/Bnqgoq fGUFSnE5aHZiiqtmsjzOOv88i79/Xo/GBkYarTxSOujJoOYvUl4Bd6yfQ5cUn04L NeRWb7cF44dvL12dd3ugElFMcyiUzAlq+1ZLhx6SdUIU7k4i6/50JYrELE5gCccU QSj2yD6XIwccPQtX1CoVD5DRBnfJpXXCflfRQnPsP6qTuL624VHKsXTU4yAXQawp RpjnkDIDNwtTwKtMtWs8UzZcrOaT759yHbmdGKh9zLXqQzTj2p+nMn81XIED0kIx EY4lHxDRppeUwK/9ebVV0EtCMzes1RiPIdqFCzWBpBHLllJq8HLm0OYm4aK0+gN5 zeuLtizq -----END CERTIFICATE-----Generated at Mon Jan 26 17:25:27 2026 by rpki-client