This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Ay4douIb7BJwQVzWxbmmqG7Hfao.roa File: Ay4douIb7BJwQVzWxbmmqG7Hfao.roa (raw, json) Hash identifier: 3oCGVyWgAiljQAJp/kmDP3Huhde0kRQHeQfueMB62BI= Subject key identifier: 03:2E:1D:A2:E2:1B:EC:12:70:41:5C:D6:C5:B9:A6:A8:6E:C7:7D:AA Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Certificate serial: 019B7C8023CCFC12C3B60DA4B9D7A58EFB0E Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Ay4douIb7BJwQVzWxbmmqG7Hfao.roa Signing time: Fri 02 Jan 2026 02:18:51 +0000 ROA not before: Fri 02 Jan 2026 02:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200019 IP address blocks: 45.90.97.0/24 maxlen: 24 45.152.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:23:cc:fc:12:c3:b6:0d:a4:b9:d7:a5:8e:fb:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Validity Not Before: Jan 2 02:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=032e1da2e21bec1270415cd6c5b9a6a86ec77daa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ae:e7:5b:f4:29:06:af:9c:c9:ff:70:61:66: e6:79:d3:55:8f:c8:5f:7c:fe:a9:3a:d8:23:ec:3e: ad:7b:84:64:3e:65:a8:26:a3:07:53:dd:9f:99:ea: 94:b7:03:42:71:bb:b0:6b:fc:f8:aa:95:84:f8:c3: 24:06:b2:81:ae:f2:d8:3c:fb:28:41:4f:57:07:3e: ad:94:11:8a:53:64:e1:0a:4a:05:bc:64:52:4b:43: 20:b3:f7:5f:ce:51:ef:0a:42:77:48:72:31:0e:f0: e4:4e:69:6b:19:df:ac:05:19:7d:7b:c5:4d:0b:ca: c8:ef:5e:88:17:62:e4:07:16:54:67:3c:f7:c7:49: ba:46:d0:6c:52:6d:f7:0d:04:55:95:d7:64:e1:aa: 65:44:ac:cf:c8:3d:69:82:41:80:28:d9:6a:66:d3: b8:13:3d:85:da:7b:11:51:10:46:17:aa:7a:01:1c: 8d:94:2e:8d:1a:01:c0:3c:e0:7c:51:5e:d9:98:90: 19:20:0d:de:09:49:12:69:f3:eb:28:13:40:24:54: ff:93:e0:54:94:30:0e:5c:2e:c4:21:60:f2:7f:9a: 99:dc:f5:1d:71:db:d7:6a:11:19:56:bc:a2:0f:01: 1e:49:31:95:eb:e2:4c:a7:98:1a:4e:6e:7c:82:fe: 44:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2E:1D:A2:E2:1B:EC:12:70:41:5C:D6:C5:B9:A6:A8:6E:C7:7D:AA X509v3 Authority Key Identifier: keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Ay4douIb7BJwQVzWxbmmqG7Hfao.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.97.0/24 45.152.162.0/24 Signature Algorithm: sha256WithRSAEncryption a0:74:42:7e:a0:a0:38:3c:c7:d2:07:0b:a2:bf:cb:0b:d1:f7: 5d:7a:7f:69:fc:9c:2c:83:a1:aa:7e:d9:43:68:c3:48:1f:07: 54:1c:42:95:76:35:87:d0:ff:4f:e6:93:96:5b:99:35:c9:e1: b1:87:f5:e0:e1:6e:8a:24:6e:c5:7f:cc:0d:e6:a1:b8:cf:9a: 7e:3e:53:f7:6a:08:23:be:0f:64:2c:91:00:4d:f3:4d:bc:be: 2d:0b:8a:6d:df:f5:9a:82:7a:ea:fe:dc:ff:b6:c4:26:8b:36: 8c:08:bd:16:a8:0e:c8:ad:e2:2b:a6:5a:a7:01:32:1b:0d:61: e9:26:27:b5:03:ed:72:89:22:19:55:31:eb:6d:dd:bb:e8:a1: ce:64:21:19:3d:38:f1:17:af:d5:e4:13:11:f0:5b:79:f6:73: e4:80:4d:62:02:00:69:ea:e9:6d:5b:46:88:f5:de:fb:ed:6a: 14:03:ef:dc:7a:50:65:1e:98:76:66:ac:51:2f:86:db:e0:03: 44:4f:48:91:a8:64:15:62:52:a5:f1:33:3c:45:64:34:89:f8: 0f:63:5c:73:58:0e:50:1b:94:f5:cc:b6:c6:19:0c:70:e9:be: 52:87:23:6c:85:82:05:f5:8e:3d:7d:51:eb:71:98:e0:3d:58: ce:1f:b0:3e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gCPM/BLDtg2kudeljvsOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3 NTJmZGUwHhcNMjYwMTAyMDIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzJlMWRhMmUyMWJlYzEyNzA0MTVjZDZjNWI5YTZhODZlYzc3ZGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAra7nW/QpBq+cyf9wYWbmedNVj8hf fP6pOtgj7D6te4RkPmWoJqMHU92fmeqUtwNCcbuwa/z4qpWE+MMkBrKBrvLYPPso QU9XBz6tlBGKU2ThCkoFvGRSS0Mgs/dfzlHvCkJ3SHIxDvDkTmlrGd+sBRl9e8VN C8rI716IF2LkBxZUZzz3x0m6RtBsUm33DQRVlddk4aplRKzPyD1pgkGAKNlqZtO4 Ez2F2nsRURBGF6p6ARyNlC6NGgHAPOB8UV7ZmJAZIA3eCUkSafPrKBNAJFT/k+BU lDAOXC7EIWDyf5qZ3PUdcdvXahEZVryiDwEeSTGV6+JMp5gaTm58gv5EXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAMuHaLiG+wScEFc1sW5pqhux32qMB8GA1UdIwQY MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt YTNjYTBkYjgzMjU0LzEvQXk0ZG91SWI3Qkp3UVZ6V3hibW1xRzdIZmFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0 LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALVphAwQA LZiiMA0GCSqGSIb3DQEBCwUAA4IBAQCgdEJ+oKA4PMfSBwuiv8sL0fdden9p/Jws g6GqftlDaMNIHwdUHEKVdjWH0P9P5pOWW5k1yeGxh/Xg4W6KJG7Ff8wN5qG4z5p+ PlP3aggjvg9kLJEATfNNvL4tC4pt3/Wagnrq/tz/tsQmizaMCL0WqA7IreIrplqn ATIbDWHpJie1A+1yiSIZVTHrbd276KHOZCEZPTjxF6/V5BMR8Ft59nPkgE1iAgBp 6ultW0aI9d777WoUA+/celBlHph2ZqxRL4bb4ANET0iRqGQVYlKl8TM8RWQ0ifgP Y1xzWA5QG5T1zLbGGQxw6b5ShyNshYIF9Y49fVHrcZjgPVjOH7A+ -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:02 2026 by rpki-client