This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/r45G67-96LJpADDZJVJ0gLKO_X4.roa File: r45G67-96LJpADDZJVJ0gLKO_X4.roa (raw, json) Hash identifier: xLucZhj5eosliNF0R5ZBpKqpdmf4rFaViGwVRkuYRmo= Subject key identifier: AF:8E:46:EB:BF:BD:E8:B2:69:00:30:D9:25:52:74:80:B2:8E:FD:7E Certificate issuer: /CN=2cf6136315a52d5247124b7cf369aafb8312227e Certificate serial: 019B7C12A0C6D7628C0BB97C4C4F172BCD3E Authority key identifier: 2C:F6:13:63:15:A5:2D:52:47:12:4B:7C:F3:69:AA:FB:83:12:22:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPYTYxWlLVJHEkt882mq-4MSIn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/r45G67-96LJpADDZJVJ0gLKO_X4.roa Signing time: Fri 02 Jan 2026 00:19:14 +0000 ROA not before: Fri 02 Jan 2026 00:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196954 IP address blocks: 85.208.238.0/24 maxlen: 24 85.208.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/LPYTYxWlLVJHEkt882mq-4MSIn4.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/LPYTYxWlLVJHEkt882mq-4MSIn4.mft rsync://rpki.ripe.net/repository/DEFAULT/LPYTYxWlLVJHEkt882mq-4MSIn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 06:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:a0:c6:d7:62:8c:0b:b9:7c:4c:4f:17:2b:cd:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cf6136315a52d5247124b7cf369aafb8312227e Validity Not Before: Jan 2 00:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af8e46ebbfbde8b2690030d925527480b28efd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1e:cd:77:10:3b:e1:48:aa:99:9c:84:5f:fb: 53:5e:a1:e5:82:de:b3:49:55:6e:c3:bf:79:a5:64: 15:d9:e0:be:e5:0f:1c:a7:b7:20:70:96:cf:14:44: d7:06:24:4b:50:ce:7d:43:d8:a7:a3:fe:08:09:db: 4c:b1:2a:f0:71:46:c7:a7:6a:29:db:ae:75:2c:2d: dc:52:8b:07:69:09:5e:fd:d5:45:25:5f:4f:51:b9: 4f:fa:c2:4b:61:3d:bb:ee:dc:47:7c:d7:91:d1:42: 8b:02:f5:d1:35:60:88:ca:df:1b:aa:0b:07:7f:34: 81:f2:9e:04:5a:cf:55:90:37:4d:13:21:b1:e0:05: e1:63:e1:48:83:28:d6:59:cf:7e:ed:a7:f4:5c:67: 6d:15:33:2e:c7:77:f9:76:ae:22:02:91:03:1b:90: 7e:0c:79:eb:c2:89:62:cf:af:40:47:28:ed:72:22: 11:3e:80:f0:00:a4:33:8a:f3:52:23:83:dc:83:ab: ef:14:58:b0:1c:31:b0:86:8c:f7:72:6e:c2:64:58: 86:54:60:cb:d0:64:6a:b7:b3:55:22:28:6c:ba:40: b4:ad:5e:05:00:5b:8e:6c:94:0c:41:7f:22:c8:8e: 3d:d0:3a:da:c4:11:ce:a5:9a:b9:a4:f5:6c:6e:93: 0d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8E:46:EB:BF:BD:E8:B2:69:00:30:D9:25:52:74:80:B2:8E:FD:7E X509v3 Authority Key Identifier: keyid:2C:F6:13:63:15:A5:2D:52:47:12:4B:7C:F3:69:AA:FB:83:12:22:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPYTYxWlLVJHEkt882mq-4MSIn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/r45G67-96LJpADDZJVJ0gLKO_X4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/LPYTYxWlLVJHEkt882mq-4MSIn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.208.238.0/23 Signature Algorithm: sha256WithRSAEncryption 61:8e:a6:94:6e:7a:f4:1f:0c:e1:b2:ed:17:3f:54:5e:02:81: ca:da:66:4b:4e:b8:ec:3a:f1:09:14:0e:4a:ae:1c:17:33:db: 35:64:8f:eb:26:54:d6:f5:48:ed:16:cd:ff:42:23:aa:4a:9a: 4f:25:bc:b6:82:28:4e:4b:2f:23:4b:a9:fb:1b:e7:9d:cc:e3: 0e:2e:5d:b7:f1:02:fb:f9:f0:2f:99:98:ee:df:c2:d7:69:73: d2:9b:1c:50:58:d3:04:99:2e:e8:76:51:59:41:83:d2:ec:e3: be:6a:ad:8a:63:ec:96:88:9a:2e:56:2e:5c:14:76:bd:37:f4: 62:05:5b:39:7e:59:9d:cb:37:99:b1:89:22:eb:d3:a7:78:be: de:d6:c2:c8:71:90:27:10:34:39:13:f7:22:6d:58:4e:1a:39: 84:a8:e9:c2:36:cb:b8:8f:3a:1d:5c:eb:da:4a:2f:25:df:3b: 5c:46:bd:38:ec:b7:7c:4d:4e:b3:bb:72:c6:15:eb:7e:a0:7b: d7:cf:27:bb:6e:d8:0a:d1:a6:16:9b:bf:a9:06:47:a7:45:87: b9:fe:87:81:83:60:ba:16:8b:83:e7:c0:ab:38:e3:f7:b2:8d: 4d:8d:8a:e8:35:bf:fc:5e:da:6a:37:2d:fd:d8:a4:5b:0b:86: 0e:83:5c:0a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EqDG12KMC7l8TE8XK80+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjZjYxMzYzMTVhNTJkNTI0NzEyNGI3Y2YzNjlhYWZiODMx MjIyN2UwHhcNMjYwMTAyMDAxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjhlNDZlYmJmYmRlOGIyNjkwMDMwZDkyNTUyNzQ4MGIyOGVmZDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxx7NdxA74UiqmZyEX/tTXqHlgt6z SVVuw795pWQV2eC+5Q8cp7cgcJbPFETXBiRLUM59Q9ino/4ICdtMsSrwcUbHp2op 2651LC3cUosHaQle/dVFJV9PUblP+sJLYT277txHfNeR0UKLAvXRNWCIyt8bqgsH fzSB8p4EWs9VkDdNEyGx4AXhY+FIgyjWWc9+7af0XGdtFTMux3f5dq4iApEDG5B+ DHnrwoliz69ARyjtciIRPoDwAKQzivNSI4Pcg6vvFFiwHDGwhoz3cm7CZFiGVGDL 0GRqt7NVIihsukC0rV4FAFuObJQMQX8iyI490DraxBHOpZq5pPVsbpMNVwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK+ORuu/veiyaQAw2SVSdICyjv1+MB8GA1UdIwQY MBaAFCz2E2MVpS1SRxJLfPNpqvuDEiJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFBZVFl4V2xMVkpIRWt0ODgybXEtNE1TSW40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9jYTIyMTMtZTVhMS00YWQyLThhMjIt NzY4ZDNmYjA4ZTcwLzEvcjQ1RzY3LTk2TEpwQUREWkpWSjBnTEtPX1g0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9jYTIyMTMtZTVhMS00YWQyLThhMjItNzY4ZDNmYjA4ZTcw LzEvTFBZVFl4V2xMVkpIRWt0ODgybXEtNE1TSW40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVdDuMA0G CSqGSIb3DQEBCwUAA4IBAQBhjqaUbnr0Hwzhsu0XP1ReAoHK2mZLTrjsOvEJFA5K rhwXM9s1ZI/rJlTW9UjtFs3/QiOqSppPJby2gihOSy8jS6n7G+edzOMOLl238QL7 +fAvmZju38LXaXPSmxxQWNMEmS7odlFZQYPS7OO+aq2KY+yWiJouVi5cFHa9N/Ri BVs5flmdyzeZsYki69OneL7e1sLIcZAnEDQ5E/cibVhOGjmEqOnCNsu4jzodXOva Si8l3ztcRr047Ld8TU6zu3LGFet+oHvXzye7btgK0aYWm7+pBkenRYe5/oeBg2C6 FouD58CrOOP3so1NjYroNb/8XtpqNy392KRbC4YOg1wK -----END CERTIFICATE-----Generated at Wed Jan 28 17:03:30 2026 by rpki-client