This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/0kXS2WjCCmGHS0asFcjHjq0ESdA.roa File: 0kXS2WjCCmGHS0asFcjHjq0ESdA.roa (raw, json) Hash identifier: NcRJslp6Cst9ywqKbBrXM4eKGnOe3QAwekOYiXZ066c= Subject key identifier: D2:45:D2:D9:68:C2:0A:61:87:4B:46:AC:15:C8:C7:8E:AD:04:49:D0 Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8 Certificate serial: 019B77C72A055600167A6A4C4C24A497C83D Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/0kXS2WjCCmGHS0asFcjHjq0ESdA.roa Signing time: Thu 01 Jan 2026 04:18:19 +0000 ROA not before: Thu 01 Jan 2026 04:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49418 IP address blocks: 45.89.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.mft rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:2a:05:56:00:16:7a:6a:4c:4c:24:a4:97:c8:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8 Validity Not Before: Jan 1 04:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d245d2d968c20a61874b46ac15c8c78ead0449d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ed:32:51:c8:d5:d5:a1:91:eb:70:ac:26:4f: 97:ab:b0:e6:db:38:bc:20:e7:f0:ec:6e:bd:cf:b1: 44:94:c6:90:2b:43:c8:9d:4d:f3:ae:c4:dd:5b:7c: 96:e4:4a:3c:bf:4b:a2:48:b4:a9:0d:90:de:e1:35: 5b:2a:da:6f:70:38:2b:21:5c:b8:e5:ab:00:28:cc: 16:b1:e4:65:19:07:06:4d:34:12:a8:4c:3c:73:29: 83:d1:56:16:0a:2c:06:61:27:7f:8b:40:c0:97:6d: c9:7d:32:4b:8b:ce:90:95:d1:3e:20:70:1f:54:a6: 31:b4:40:8b:45:f3:d0:8f:48:dd:ce:53:d2:1f:2c: 3a:ca:71:69:6e:bd:06:19:3a:9c:9a:0e:77:98:97: 30:8a:61:6b:04:f0:ad:d8:14:6e:e9:16:29:c5:ca: e1:49:95:91:ab:46:28:c4:7c:25:49:0f:40:f3:b1: 73:32:c6:62:2f:7d:d1:2e:cb:39:00:61:43:ba:04: 85:bd:f6:1c:d7:ff:c3:eb:d1:e6:54:d1:e1:f1:4c: b1:dc:2a:0d:ca:87:0b:35:cc:33:36:25:8c:69:00: 24:19:90:9d:92:b0:3a:b5:a8:25:9e:0e:70:6c:97: d6:ca:ea:55:a1:e6:b3:97:5f:a4:16:b8:87:c4:a9: df:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:45:D2:D9:68:C2:0A:61:87:4B:46:AC:15:C8:C7:8E:AD:04:49:D0 X509v3 Authority Key Identifier: keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/0kXS2WjCCmGHS0asFcjHjq0ESdA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.62.0/24 Signature Algorithm: sha256WithRSAEncryption 70:4e:fc:91:80:67:81:20:ef:db:0a:dd:0c:b5:ed:5d:38:7a: e2:de:c6:62:cb:0e:c9:25:56:86:11:96:41:d7:69:a4:03:ae: 4e:6f:79:6c:f4:60:0a:9e:05:eb:88:86:a3:06:cc:a4:8c:82: 69:f3:f4:3d:53:ee:85:3c:db:b2:ff:0f:ac:76:96:7a:da:26: a5:35:38:af:26:7f:5f:d4:1c:9e:8a:7d:dd:12:18:0c:9b:93: 47:84:df:f5:2e:01:45:07:7d:30:3a:78:c0:e6:67:ca:30:56: f6:f7:1a:e5:21:10:5d:6b:e2:9c:a5:00:c3:b3:e2:00:d7:50: 9e:70:97:74:30:a2:5b:f8:1d:41:1e:66:77:f3:45:8b:da:70: b8:4a:86:e8:42:e3:1e:6d:f0:7c:03:69:ef:34:53:d5:af:de: 6c:af:8b:9f:20:f9:f7:9c:42:2b:fd:62:44:5b:da:2c:d8:1d: 7c:7f:57:48:6d:ce:c0:60:4d:e3:70:b5:a2:4b:81:46:4a:2f: f6:d7:fc:05:9a:ab:55:66:95:a4:af:e7:ca:0b:14:78:59:7e: c1:7a:8a:a2:36:02:91:93:ef:22:a3:d1:7e:5d:d0:3a:db:22: dd:7b:e4:82:e1:b4:6f:77:ad:b8:81:2e:a3:ad:9b:c9:7f:7c: 1d:28:15:00 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xyoFVgAWempMTCSkl8g9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl OTU5ZDgwHhcNMjYwMTAxMDQxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjQ1ZDJkOTY4YzIwYTYxODc0YjQ2YWMxNWM4Yzc4ZWFkMDQ0OWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoe0yUcjV1aGR63CsJk+Xq7Dm2zi8 IOfw7G69z7FElMaQK0PInU3zrsTdW3yW5Eo8v0uiSLSpDZDe4TVbKtpvcDgrIVy4 5asAKMwWseRlGQcGTTQSqEw8cymD0VYWCiwGYSd/i0DAl23JfTJLi86QldE+IHAf VKYxtECLRfPQj0jdzlPSHyw6ynFpbr0GGTqcmg53mJcwimFrBPCt2BRu6RYpxcrh SZWRq0YoxHwlSQ9A87FzMsZiL33RLss5AGFDugSFvfYc1//D69HmVNHh8Uyx3CoN yocLNcwzNiWMaQAkGZCdkrA6taglng5wbJfWyupVoeazl1+kFriHxKnfWQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNJF0tlowgphh0tGrBXIx46tBEnQMB8GA1UdIwQY MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt NGJkNjNhZGM3MzU0LzEvMGtYUzJXakNDbUdIUzBhc0ZjakhqcTBFU2RBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0 LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVk+MA0G CSqGSIb3DQEBCwUAA4IBAQBwTvyRgGeBIO/bCt0Mte1dOHri3sZiyw7JJVaGEZZB 12mkA65Ob3ls9GAKngXriIajBsykjIJp8/Q9U+6FPNuy/w+sdpZ62ialNTivJn9f 1Byein3dEhgMm5NHhN/1LgFFB30wOnjA5mfKMFb29xrlIRBda+KcpQDDs+IA11Ce cJd0MKJb+B1BHmZ380WL2nC4SoboQuMebfB8A2nvNFPVr95sr4ufIPn3nEIr/WJE W9os2B18f1dIbc7AYE3jcLWiS4FGSi/21/wFmqtVZpWkr+fKCxR4WX7BeoqiNgKR k+8io9F+XdA62yLde+SC4bRvd624gS6jrZvJf3wdKBUA -----END CERTIFICATE-----Generated at Wed Jan 21 06:47:35 2026 by rpki-client