This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/cDTj5s606sVgmgpZ3n6Z3dU4zwA.roa File: cDTj5s606sVgmgpZ3n6Z3dU4zwA.roa (raw, json) Hash identifier: Tz/Xa89Xe7rgKjUL5hIFqnaSfDilwgGaKsizO4oAEvI= Subject key identifier: 70:34:E3:E6:CE:B4:EA:C5:60:9A:0A:59:DE:7E:99:DD:D5:38:CF:00 Certificate issuer: /CN=5c61dcd3eb50c83d68060bcba4af152204193503 Certificate serial: 019B7F152A1F38E90825582C84745A21B79D Authority key identifier: 5C:61:DC:D3:EB:50:C8:3D:68:06:0B:CB:A4:AF:15:22:04:19:35:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGHc0-tQyD1oBgvLpK8VIgQZNQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/cDTj5s606sVgmgpZ3n6Z3dU4zwA.roa Signing time: Fri 02 Jan 2026 14:20:52 +0000 ROA not before: Fri 02 Jan 2026 14:20:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204798 IP address blocks: 45.128.120.0/22 maxlen: 24 45.128.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/XGHc0-tQyD1oBgvLpK8VIgQZNQM.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/XGHc0-tQyD1oBgvLpK8VIgQZNQM.mft rsync://rpki.ripe.net/repository/DEFAULT/XGHc0-tQyD1oBgvLpK8VIgQZNQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 18:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:2a:1f:38:e9:08:25:58:2c:84:74:5a:21:b7:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c61dcd3eb50c83d68060bcba4af152204193503 Validity Not Before: Jan 2 14:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7034e3e6ceb4eac5609a0a59de7e99ddd538cf00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:29:da:a7:3a:fe:a8:54:9d:f3:91:8e:8f:d7: 39:92:be:83:8b:e3:34:00:70:57:a2:51:a5:70:f0: c7:7a:57:f4:0a:3d:c0:38:70:a3:7e:52:0a:d9:39: ef:6b:82:f6:19:fd:a7:16:03:0b:f0:01:ca:07:0e: 3a:21:76:a4:43:7d:4e:9b:07:ce:3f:14:9d:02:d2: 4e:0a:4f:7d:fe:5b:9e:07:bd:dd:87:ea:80:f5:9a: 9f:a9:24:15:12:28:fe:e7:b8:c4:2f:04:84:1d:b2: ed:25:4b:dd:bf:39:de:69:f7:36:df:ca:ec:0b:5f: 76:b2:8e:46:18:d7:15:a2:36:5f:fe:01:f7:b2:57: 4a:ce:56:e3:e6:f3:35:11:af:3e:f9:0c:bb:e7:ae: 6b:23:84:e8:69:98:1c:d5:2e:6d:cd:98:b7:55:cc: 24:1c:c4:5c:0a:75:01:6e:bc:33:08:2c:7d:59:f2: e5:f4:aa:ec:4d:61:31:a2:3b:54:2d:98:be:e9:b8: a7:33:9a:db:02:95:0e:f9:44:f4:61:b1:43:83:7c: ee:10:d7:10:ba:78:65:50:5e:22:70:14:3e:dc:1b: dc:84:0e:8b:3a:b9:c5:31:6e:af:81:70:37:dc:77: 56:00:3e:70:48:39:bf:25:32:9c:7b:fb:f8:0f:dc: 48:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:34:E3:E6:CE:B4:EA:C5:60:9A:0A:59:DE:7E:99:DD:D5:38:CF:00 X509v3 Authority Key Identifier: keyid:5C:61:DC:D3:EB:50:C8:3D:68:06:0B:CB:A4:AF:15:22:04:19:35:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGHc0-tQyD1oBgvLpK8VIgQZNQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/cDTj5s606sVgmgpZ3n6Z3dU4zwA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/XGHc0-tQyD1oBgvLpK8VIgQZNQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.128.120.0/22 Signature Algorithm: sha256WithRSAEncryption 62:ab:17:29:2b:56:c1:38:1b:ff:a2:fc:f7:82:dd:8d:8f:b3: b4:e8:3e:c8:68:02:92:80:79:66:de:b4:dc:17:ee:94:9e:b0: d3:0d:45:10:de:e9:95:7c:6a:e0:86:6c:ff:32:76:49:92:5d: 47:34:ae:b0:a7:1b:e9:96:69:c8:20:4f:5a:95:96:4b:14:e6: 60:83:a3:ea:c1:8e:f7:4d:49:dc:35:0a:a3:67:83:19:38:f1: 94:c6:27:8f:2b:cc:c7:c0:c5:a6:02:e7:0d:a0:b1:fe:9a:0c: 1f:12:14:8d:e1:1e:a7:02:54:95:74:15:a3:4b:f9:6f:58:be: 96:fa:4f:97:1d:09:40:40:9b:0b:d2:20:5d:96:8a:cd:d5:39: 2d:27:a9:a1:32:71:66:c9:6d:5d:d4:e0:7b:32:50:b9:98:0b: 33:4c:30:f0:55:d9:ab:86:f5:30:e8:19:20:a9:f7:59:b5:5e: 86:b3:a1:d2:82:d9:b4:c5:a0:f9:98:9d:d4:9d:61:65:09:58: 24:5a:46:d6:18:53:37:7b:e1:71:ff:49:e0:4f:d8:e5:c6:f2: 65:d8:88:04:2c:0f:8a:54:f9:88:2e:e2:31:e2:fc:3b:9e:fd: 9e:18:b2:38:02:e0:1b:22:d8:ec:92:fb:0d:37:86:09:7f:fe: 44:3a:d8:5a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FSofOOkIJVgshHRaIbedMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNjFkY2QzZWI1MGM4M2Q2ODA2MGJjYmE0YWYxNTIyMDQx OTM1MDMwHhcNMjYwMTAyMTQyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDM0ZTNlNmNlYjRlYWM1NjA5YTBhNTlkZTdlOTlkZGQ1MzhjZjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCnapzr+qFSd85GOj9c5kr6Di+M0 AHBXolGlcPDHelf0Cj3AOHCjflIK2Tnva4L2Gf2nFgML8AHKBw46IXakQ31OmwfO PxSdAtJOCk99/lueB73dh+qA9ZqfqSQVEij+57jELwSEHbLtJUvdvzneafc238rs C192so5GGNcVojZf/gH3sldKzlbj5vM1Ea8++Qy7565rI4ToaZgc1S5tzZi3Vcwk HMRcCnUBbrwzCCx9WfLl9KrsTWExojtULZi+6binM5rbApUO+UT0YbFDg3zuENcQ unhlUF4icBQ+3BvchA6LOrnFMW6vgXA33HdWAD5wSDm/JTKce/v4D9xIKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHA04+bOtOrFYJoKWd5+md3VOM8AMB8GA1UdIwQY MBaAFFxh3NPrUMg9aAYLy6SvFSIEGTUDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEdIYzAtdFF5RDFvQmd2THBLOFZJZ1FaTlFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80NGExNTUtNGQwMi00MDAyLThmM2Qt YzM2ZDFjNDYwZTJmLzEvY0RUajVzNjA2c1ZnbWdwWjNuNlozZFU0endBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS80NGExNTUtNGQwMi00MDAyLThmM2QtYzM2ZDFjNDYwZTJm LzEvWEdIYzAtdFF5RDFvQmd2THBLOFZJZ1FaTlFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYB4MA0G CSqGSIb3DQEBCwUAA4IBAQBiqxcpK1bBOBv/ovz3gt2Nj7O06D7IaAKSgHlm3rTc F+6UnrDTDUUQ3umVfGrghmz/MnZJkl1HNK6wpxvplmnIIE9alZZLFOZgg6PqwY73 TUncNQqjZ4MZOPGUxiePK8zHwMWmAucNoLH+mgwfEhSN4R6nAlSVdBWjS/lvWL6W +k+XHQlAQJsL0iBdlorN1TktJ6mhMnFmyW1d1OB7MlC5mAszTDDwVdmrhvUw6Bkg qfdZtV6Gs6HSgtm0xaD5mJ3UnWFlCVgkWkbWGFM3e+Fx/0ngT9jlxvJl2IgELA+K VPmILuIx4vw7nv2eGLI4AuAbItjskvsNN4YJf/5EOtha -----END CERTIFICATE-----Generated at Wed Jan 28 23:55:39 2026 by rpki-client