This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/f36wSuri4isgGvRNSVH6JQhVoXQ.roa File: f36wSuri4isgGvRNSVH6JQhVoXQ.roa (raw, json) Hash identifier: yoPRFfkeY6wwCb2HhFYtsNc5bsYeGXcwftlwYv52l3Q= Subject key identifier: 7F:7E:B0:4A:EA:E2:E2:2B:20:1A:F4:4D:49:51:FA:25:08:55:A1:74 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019B7B35EF70015DFBC0A1F28A49577117EC Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/f36wSuri4isgGvRNSVH6JQhVoXQ.roa Signing time: Thu 01 Jan 2026 20:18:10 +0000 ROA not before: Thu 01 Jan 2026 20:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212219 IP address blocks: 45.10.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ef:70:01:5d:fb:c0:a1:f2:8a:49:57:71:17:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Jan 1 20:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7f7eb04aeae2e22b201af44d4951fa250855a174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:83:49:54:e0:aa:66:de:ba:d6:9b:a8:e8:b6: aa:a2:31:92:90:b6:01:b6:1c:51:66:bc:80:97:43: d4:3a:cb:d2:cb:c2:9c:d9:a9:d3:00:f9:58:ee:4c: f1:71:79:8b:40:4f:73:e2:a6:d6:ae:68:16:27:fd: 50:82:39:7b:55:30:09:c3:94:26:73:6d:12:c8:7f: 50:29:1d:fd:12:42:6c:2b:28:46:af:48:6b:9e:f8: d0:6f:74:f9:11:fb:a4:f3:ca:af:76:ec:d8:e4:ca: 18:24:2b:8f:0c:c2:c1:73:5b:45:37:4e:93:65:35: 17:b5:59:5d:e3:23:d8:d6:d3:f9:e1:c6:a1:1a:2d: 5e:9b:95:e4:17:67:8d:f0:11:01:6e:95:01:b6:b3: 72:8a:2e:0a:b6:c1:41:41:d6:01:72:06:e6:ec:77: 52:00:9c:34:87:28:70:8b:5e:33:1c:a0:a2:01:6b: 67:56:7f:dd:41:ea:68:1f:ad:b1:ea:40:04:b1:e0: e3:1b:ce:11:92:61:47:28:06:33:25:8b:6b:79:49: 33:3a:2c:e2:d7:64:74:49:bd:27:c1:50:aa:24:0a: 4b:aa:d5:35:32:ae:a5:8b:05:7b:d2:b6:47:24:c5: 74:4d:98:a5:f6:95:ac:92:d1:1d:b2:21:40:76:46: 5d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7E:B0:4A:EA:E2:E2:2B:20:1A:F4:4D:49:51:FA:25:08:55:A1:74 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/f36wSuri4isgGvRNSVH6JQhVoXQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.148.0/24 Signature Algorithm: sha256WithRSAEncryption a7:dd:20:51:10:92:4e:39:76:db:e4:dc:e7:2e:5a:39:25:61: cb:70:59:84:39:95:80:d0:20:b2:39:8c:9d:c2:fa:43:dd:5d: ff:5c:23:ea:c0:8c:60:64:e8:13:8a:4a:93:32:61:35:92:0d: f5:1c:2b:3e:fc:9f:4e:76:8a:67:95:1f:3a:b0:d1:ed:de:27: 5a:cd:90:80:cb:68:96:ce:f9:b3:f0:c0:95:05:58:b6:13:81: 26:b4:8f:00:3b:10:74:93:dd:a8:85:15:7f:58:be:c4:b3:8f: c3:bb:32:e8:bc:5f:11:46:3d:ff:d9:61:77:f7:0e:00:2f:d1: 49:0f:8d:73:4f:de:e3:5d:30:2c:2f:b6:bd:3c:cc:79:f8:26: 3d:3e:73:36:74:5d:f2:e0:e0:8b:32:66:27:ff:eb:0e:5e:dd: af:cc:de:59:68:9a:74:29:bb:4e:c0:ad:2c:04:f3:a5:79:55: 7f:d8:c2:b8:80:e1:e1:e7:33:c2:88:c1:40:c1:45:7d:11:8d: c9:84:42:33:15:0c:ed:87:df:a8:91:27:b1:96:fb:1d:35:0b: dc:b8:07:31:9d:81:be:68:5f:93:f8:f3:72:65:a3:ce:34:85: 50:7f:88:c5:21:49:51:21:46:a7:10:56:91:c2:19:b5:19:be: c9:dc:65:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Ne9wAV37wKHyiklXcRfsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjYwMTAxMjAxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZjdlYjA0YWVhZTJlMjJiMjAxYWY0NGQ0OTUxZmEyNTA4NTVhMTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+4NJVOCqZt661puo6LaqojGSkLYB thxRZryAl0PUOsvSy8Kc2anTAPlY7kzxcXmLQE9z4qbWrmgWJ/1Qgjl7VTAJw5Qm c20SyH9QKR39EkJsKyhGr0hrnvjQb3T5Efuk88qvduzY5MoYJCuPDMLBc1tFN06T ZTUXtVld4yPY1tP54cahGi1em5XkF2eN8BEBbpUBtrNyii4KtsFBQdYBcgbm7HdS AJw0hyhwi14zHKCiAWtnVn/dQepoH62x6kAEseDjG84RkmFHKAYzJYtreUkzOizi 12R0Sb0nwVCqJApLqtU1Mq6liwV70rZHJMV0TZil9pWsktEdsiFAdkZdLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH9+sErq4uIrIBr0TUlR+iUIVaF0MB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvZjM2d1N1cmk0aXNnR3ZSTlNWSDZKUWhWb1hRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQqUMA0G CSqGSIb3DQEBCwUAA4IBAQCn3SBREJJOOXbb5NznLlo5JWHLcFmEOZWA0CCyOYyd wvpD3V3/XCPqwIxgZOgTikqTMmE1kg31HCs+/J9OdopnlR86sNHt3idazZCAy2iW zvmz8MCVBVi2E4EmtI8AOxB0k92ohRV/WL7Es4/DuzLovF8RRj3/2WF39w4AL9FJ D41zT97jXTAsL7a9PMx5+CY9PnM2dF3y4OCLMmYn/+sOXt2vzN5ZaJp0KbtOwK0s BPOleVV/2MK4gOHh5zPCiMFAwUV9EY3JhEIzFQzth9+okSexlvsdNQvcuAcxnYG+ aF+T+PNyZaPONIVQf4jFIUlRIUanEFaRwhm1Gb7J3GXs -----END CERTIFICATE-----Generated at Wed Jan 21 16:16:42 2026 by rpki-client