This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/T_8hNj_SKqTA98bpmmQ-5Dbi-Rw.roa File: T_8hNj_SKqTA98bpmmQ-5Dbi-Rw.roa (raw, json) Hash identifier: b98yRYxr+4ANkB6Gqa5JZVreKnsU/rJ10+XjyRCXAXA= Subject key identifier: 4F:FF:21:36:3F:D2:2A:A4:C0:F7:C6:E9:9A:64:3E:E4:36:E2:F9:1C Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Certificate serial: 019B7F15E6B0D7C9BC382B8A85E1CABC5522 Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/T_8hNj_SKqTA98bpmmQ-5Dbi-Rw.roa Signing time: Fri 02 Jan 2026 14:21:40 +0000 ROA not before: Fri 02 Jan 2026 14:21:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60446 IP address blocks: 45.138.183.0/24 maxlen: 24 45.144.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.mft rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:e6:b0:d7:c9:bc:38:2b:8a:85:e1:ca:bc:55:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Validity Not Before: Jan 2 14:21:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4fff21363fd22aa4c0f7c6e99a643ee436e2f91c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a8:22:b4:08:20:3f:44:61:e0:90:16:e8:23: fd:54:18:94:6d:3f:db:64:df:f8:43:73:42:15:bb: 20:5b:9f:3c:bb:77:ca:59:eb:3f:8a:a8:1f:5b:e7: 15:60:52:2d:c2:0c:3d:c9:54:42:c2:4e:67:e8:ef: ca:d3:26:75:d1:9b:f0:8b:ff:2b:51:dd:a1:8f:63: 5a:bc:cd:3a:8c:62:99:55:f3:6d:e4:7d:03:cf:45: 8d:72:90:57:f5:01:c6:80:94:1f:e3:8d:e9:2b:a2: 64:2f:78:14:72:ff:3b:d7:0a:6f:33:0c:ca:ef:c5: 7b:0b:32:af:15:6e:95:0b:f4:7a:b3:a2:ad:f9:84: 8a:fd:23:c5:ea:19:f4:87:fb:d5:e8:0b:f8:ff:76: dc:03:9f:da:fb:0b:dc:c4:9e:33:ea:bb:f9:fd:e0: 41:7b:8f:0d:9f:a3:0c:b2:a3:38:3b:c5:56:d9:d0: 12:dc:94:27:3c:ac:bf:be:a2:05:8a:cc:ac:5c:a7: 3e:a4:b0:e3:89:b7:31:84:f3:60:ed:dc:6d:66:30: 34:45:67:f1:a4:3e:d3:d5:e1:c5:42:e7:dd:49:a3: 49:1d:4c:63:4d:94:de:ff:b5:ec:06:57:93:23:8c: ca:4c:eb:26:b8:fa:44:18:eb:b3:45:9e:a5:92:49: 59:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FF:21:36:3F:D2:2A:A4:C0:F7:C6:E9:9A:64:3E:E4:36:E2:F9:1C X509v3 Authority Key Identifier: keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/T_8hNj_SKqTA98bpmmQ-5Dbi-Rw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.138.183.0/24 45.144.214.0/24 Signature Algorithm: sha256WithRSAEncryption 38:c7:24:8b:d2:9b:92:b0:3a:1c:12:2c:7f:04:1e:2e:99:c2: 2e:74:68:1e:7b:59:cf:6c:0e:5f:df:65:7a:cf:23:6b:59:57: 34:55:17:3e:1a:02:ca:a9:24:98:ff:3a:3c:9a:cf:0d:74:4c: 27:bb:35:7e:38:1e:a2:d8:c8:33:2c:83:42:9c:c8:90:05:c8: 20:9a:27:fb:e2:b1:5b:b1:8b:ac:f7:a1:d7:94:e3:5e:4d:8c: 0f:47:b7:38:48:a5:8d:30:be:47:8d:a2:50:06:9c:a7:1d:69: c3:21:86:04:2d:99:88:ea:dd:de:5b:99:dc:8a:7d:56:21:45: 7e:c1:15:c8:58:d5:14:f6:b8:bb:d4:fa:bc:d3:9d:7d:2e:e1: e0:83:48:4b:20:1d:1f:3d:ec:0d:1a:8e:de:c9:97:91:1e:dd: 9b:58:12:a3:d5:3a:a4:8c:23:64:98:63:1a:28:34:15:06:1c: 87:2e:0a:6e:23:4b:8e:11:f0:5a:8b:86:75:c6:b4:c0:3b:13: 1d:a7:b4:32:18:2d:4c:fd:d0:09:23:8c:21:55:9a:b1:5e:78: ce:93:55:74:14:1a:b1:ee:e7:48:b6:3f:2e:a8:b7:fd:89:c0: 28:8a:91:58:d8:66:46:0d:fc:bd:c6:11:bd:92:f5:1b:36:dc: ed:55:70:1e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/Feaw18m8OCuKheHKvFUiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy YTI4YTEwHhcNMjYwMTAyMTQyMTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZmZmMjEzNjNmZDIyYWE0YzBmN2M2ZTk5YTY0M2VlNDM2ZTJmOTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKgitAggP0Rh4JAW6CP9VBiUbT/b ZN/4Q3NCFbsgW588u3fKWes/iqgfW+cVYFItwgw9yVRCwk5n6O/K0yZ10Zvwi/8r Ud2hj2NavM06jGKZVfNt5H0Dz0WNcpBX9QHGgJQf443pK6JkL3gUcv871wpvMwzK 78V7CzKvFW6VC/R6s6Kt+YSK/SPF6hn0h/vV6Av4/3bcA5/a+wvcxJ4z6rv5/eBB e48Nn6MMsqM4O8VW2dAS3JQnPKy/vqIFisysXKc+pLDjibcxhPNg7dxtZjA0RWfx pD7T1eHFQufdSaNJHUxjTZTe/7XsBleTI4zKTOsmuPpEGOuzRZ6lkklZqQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFE//ITY/0iqkwPfG6ZpkPuQ24vkcMB8GA1UdIwQY MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt ZWVmMzUxMWY2YzYwLzEvVF84aE5qX1NLcVRBOThicG1tUS01RGJpLVJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYq3AwQA LZDWMA0GCSqGSIb3DQEBCwUAA4IBAQA4xySL0puSsDocEix/BB4umcIudGgee1nP bA5f32V6zyNrWVc0VRc+GgLKqSSY/zo8ms8NdEwnuzV+OB6i2MgzLINCnMiQBcgg mif74rFbsYus96HXlONeTYwPR7c4SKWNML5HjaJQBpynHWnDIYYELZmI6t3eW5nc in1WIUV+wRXIWNUU9ri71Pq80519LuHgg0hLIB0fPewNGo7eyZeRHt2bWBKj1Tqk jCNkmGMaKDQVBhyHLgpuI0uOEfBai4Z1xrTAOxMdp7QyGC1M/dAJI4whVZqxXnjO k1V0FBqx7udItj8uqLf9icAoipFY2GZGDfy9xhG9kvUbNtztVXAe -----END CERTIFICATE-----Generated at Tue Jan 6 20:49:57 2026 by rpki-client