This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Ye5jZ2gZWy9pNVPIWBHuy-bcKGE.roa File: Ye5jZ2gZWy9pNVPIWBHuy-bcKGE.roa (raw, json) Hash identifier: nck8S5JvXb7+vXH8ax0zQIvKp3PkJGHcoJ0ySdHQedI= Subject key identifier: 61:EE:63:67:68:19:5B:2F:69:35:53:C8:58:11:EE:CB:E6:DC:28:61 Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Certificate serial: 019B7F15E9F98D16010F3C359566820BD2D2 Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Ye5jZ2gZWy9pNVPIWBHuy-bcKGE.roa Signing time: Fri 02 Jan 2026 14:21:41 +0000 ROA not before: Fri 02 Jan 2026 14:21:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197450 IP address blocks: 45.138.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.mft rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:e9:f9:8d:16:01:0f:3c:35:95:66:82:0b:d2:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Validity Not Before: Jan 2 14:21:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61ee636768195b2f693553c85811eecbe6dc2861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:6b:fc:15:d2:97:2f:72:fb:3e:ee:fe:38: 3a:4c:b0:7b:c8:16:8b:5e:9d:c5:dd:46:f4:f3:4d: ea:5c:12:9b:b9:c5:1a:f8:b1:68:0b:dd:66:03:0f: 15:f7:e7:4e:a5:2a:46:24:de:7e:3d:c9:eb:5a:61: 5c:1c:ed:57:dc:d7:45:8c:4e:e1:98:72:cf:d1:1d: 87:8e:5e:8f:e6:6e:0a:a8:d4:08:85:21:14:cd:fb: 4c:f8:2f:d3:bd:7d:3c:37:48:95:cb:58:64:d4:f6: 42:9f:ed:7a:34:a3:ee:5a:88:36:20:a0:84:2a:97: 00:f9:9f:e3:cc:51:4a:85:d1:26:ad:bc:fd:89:fc: 3a:d4:51:f2:a2:f8:94:d0:06:4b:90:e7:7a:40:9a: 7d:6d:36:4b:bc:46:4e:24:05:bd:5d:74:16:6e:a5: 6c:bd:d8:44:33:c7:52:31:ab:c5:0e:fc:8d:b7:a1: 69:a6:c1:08:25:7f:76:44:63:f2:d7:7a:d2:95:83: 8d:14:e0:09:69:1b:19:8d:0f:9f:86:27:a3:3b:a2: ea:9b:df:d6:d4:4c:55:6e:30:c9:6e:29:04:f4:2a: 3a:8d:d4:e6:53:d4:18:e8:15:f2:8b:00:1d:2f:5a: 0a:0c:a2:e6:af:66:6f:71:0c:ed:1d:71:21:e0:2f: ad:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:EE:63:67:68:19:5B:2F:69:35:53:C8:58:11:EE:CB:E6:DC:28:61 X509v3 Authority Key Identifier: keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Ye5jZ2gZWy9pNVPIWBHuy-bcKGE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.138.180.0/24 Signature Algorithm: sha256WithRSAEncryption 38:f3:ee:e5:e8:fa:df:a1:97:83:49:b1:1b:87:08:b9:50:7d: a9:4c:fc:13:3b:27:8a:4c:c0:5a:76:e2:d5:b8:5a:13:06:05: 7d:c8:40:fc:6d:92:b2:06:0f:61:78:56:d9:38:4a:89:a6:83: 84:fa:79:33:f9:66:15:c8:09:26:d0:6f:03:0a:55:d6:0e:44: 86:2c:41:ee:2a:61:f3:69:c5:ee:54:c6:13:a0:56:7a:02:ce: d0:7f:c9:e3:10:ec:ae:ee:1b:f4:e6:27:91:30:d5:9d:04:77: b0:d0:83:a2:0a:4e:44:11:f7:61:bc:e7:b8:e9:ec:aa:59:c3: 72:25:b3:3b:aa:d7:bb:12:87:66:f7:e6:c6:56:7e:29:ea:16: 16:88:54:15:d3:aa:e7:eb:c5:d8:4c:69:d8:5c:ea:2a:fb:8a: d7:6d:c6:48:33:82:a9:08:83:36:67:ca:c5:ab:20:80:b7:46: 45:3a:4c:39:9a:03:4c:f4:c7:85:e2:f5:37:fd:17:66:e1:ec: 9d:ce:63:9f:c5:d9:3b:8b:eb:3f:04:0c:11:c6:6f:f3:c8:fc: 00:2f:7f:55:a4:9f:ad:7b:db:bf:25:b0:58:0f:48:bd:9a:d3: d9:80:f2:eb:51:5a:f3:8d:37:3f:26:63:0c:77:fc:ae:02:44: 4b:fb:54:6d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/Fen5jRYBDzw1lWaCC9LSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy YTI4YTEwHhcNMjYwMTAyMTQyMTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWVlNjM2NzY4MTk1YjJmNjkzNTUzYzg1ODExZWVjYmU2ZGMyODYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEFr/BXSly9y+z7u/jg6TLB7yBaL Xp3F3Ub0803qXBKbucUa+LFoC91mAw8V9+dOpSpGJN5+PcnrWmFcHO1X3NdFjE7h mHLP0R2Hjl6P5m4KqNQIhSEUzftM+C/TvX08N0iVy1hk1PZCn+16NKPuWog2IKCE KpcA+Z/jzFFKhdEmrbz9ifw61FHyoviU0AZLkOd6QJp9bTZLvEZOJAW9XXQWbqVs vdhEM8dSMavFDvyNt6FppsEIJX92RGPy13rSlYONFOAJaRsZjQ+fhiejO6Lqm9/W 1ExVbjDJbikE9Co6jdTmU9QY6BXyiwAdL1oKDKLmr2ZvcQztHXEh4C+t8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGHuY2doGVsvaTVTyFgR7svm3ChhMB8GA1UdIwQY MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt ZWVmMzUxMWY2YzYwLzEvWWU1aloyZ1pXeTlwTlZQSVdCSHV5LWJjS0dFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYq0MA0G CSqGSIb3DQEBCwUAA4IBAQA48+7l6PrfoZeDSbEbhwi5UH2pTPwTOyeKTMBaduLV uFoTBgV9yED8bZKyBg9heFbZOEqJpoOE+nkz+WYVyAkm0G8DClXWDkSGLEHuKmHz acXuVMYToFZ6As7Qf8njEOyu7hv05ieRMNWdBHew0IOiCk5EEfdhvOe46eyqWcNy JbM7qte7Eodm9+bGVn4p6hYWiFQV06rn68XYTGnYXOoq+4rXbcZIM4KpCIM2Z8rF qyCAt0ZFOkw5mgNM9MeF4vU3/Rdm4eydzmOfxdk7i+s/BAwRxm/zyPwAL39VpJ+t e9u/JbBYD0i9mtPZgPLrUVrzjTc/JmMMd/yuAkRL+1Rt -----END CERTIFICATE-----Generated at Tue Jan 6 20:52:12 2026 by rpki-client