This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/35b4c5-297b-420c-822a-169e537a890c/1/0N508Xe1lkHiB3GV4gBTEAMYSg0.roa File: 0N508Xe1lkHiB3GV4gBTEAMYSg0.roa (raw, json) Hash identifier: 9ysDCSkav8KkWk0caqcKxtu4CxhKYt/csAkRzD0sTbY= Subject key identifier: D0:DE:74:F1:77:B5:96:41:E2:07:71:95:E2:00:53:10:03:18:4A:0D Certificate issuer: /CN=03049604737c78bd24dbb25eb336f4a416e645f6 Certificate serial: 019B77587B73EEB6B97891A657D5AC94B9B9 Authority key identifier: 03:04:96:04:73:7C:78:BD:24:DB:B2:5E:B3:36:F4:A4:16:E6:45:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AwSWBHN8eL0k27Jeszb0pBbmRfY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/35b4c5-297b-420c-822a-169e537a890c/1/0N508Xe1lkHiB3GV4gBTEAMYSg0.roa Signing time: Thu 01 Jan 2026 02:17:25 +0000 ROA not before: Thu 01 Jan 2026 02:17:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202270 IP address blocks: 45.130.44.0/24 maxlen: 24 185.207.225.0/24 maxlen: 24 2a13:6c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/35b4c5-297b-420c-822a-169e537a890c/1/AwSWBHN8eL0k27Jeszb0pBbmRfY.crl rsync://rpki.ripe.net/repository/DEFAULT/25/35b4c5-297b-420c-822a-169e537a890c/1/AwSWBHN8eL0k27Jeszb0pBbmRfY.mft rsync://rpki.ripe.net/repository/DEFAULT/AwSWBHN8eL0k27Jeszb0pBbmRfY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:7b:73:ee:b6:b9:78:91:a6:57:d5:ac:94:b9:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03049604737c78bd24dbb25eb336f4a416e645f6 Validity Not Before: Jan 1 02:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0de74f177b59641e2077195e200531003184a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:68:1f:50:68:79:c3:40:c0:70:5d:7c:91:45: 8e:3c:55:e3:8d:0e:d5:8e:6c:ec:ca:fc:9b:36:20: 33:ca:9d:99:d5:db:78:69:52:da:bd:11:1d:af:df: 2b:84:41:f2:78:0a:18:c4:50:1f:bc:dd:34:b4:6e: bb:32:3f:90:5e:02:ec:2c:df:70:8c:41:9c:13:c4: cd:79:08:14:b3:70:d1:1b:73:b4:6c:89:b4:06:2c: 79:1a:b6:b5:65:4b:0f:35:5c:90:35:b1:7d:54:09: 1e:fb:5b:84:ed:47:fb:7c:a5:b0:40:87:fe:b5:59: 2a:6f:9b:6e:f2:9a:06:ba:e8:cb:c9:96:42:49:81: 87:81:e0:4d:ad:f9:c4:74:b5:d2:e6:cb:e5:f4:46: fe:f6:5e:1c:ab:4c:4f:ad:ab:2e:c4:a4:a6:75:10: c3:ec:65:20:5a:01:11:ef:0e:21:8a:2f:82:1a:c9: 52:ba:87:5b:d9:23:01:87:c3:03:b6:5f:7b:5d:de: 87:5b:80:93:12:e6:23:65:03:55:69:f2:e9:7a:bc: 71:f3:41:f9:c4:fd:e2:96:fe:88:eb:14:12:1a:21: 72:4a:5e:6d:cd:73:2a:b6:6f:95:03:24:43:6e:19: 02:e5:07:c4:12:43:5e:d8:cb:16:44:24:6b:93:5e: 8d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:DE:74:F1:77:B5:96:41:E2:07:71:95:E2:00:53:10:03:18:4A:0D X509v3 Authority Key Identifier: keyid:03:04:96:04:73:7C:78:BD:24:DB:B2:5E:B3:36:F4:A4:16:E6:45:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AwSWBHN8eL0k27Jeszb0pBbmRfY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/35b4c5-297b-420c-822a-169e537a890c/1/0N508Xe1lkHiB3GV4gBTEAMYSg0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/35b4c5-297b-420c-822a-169e537a890c/1/AwSWBHN8eL0k27Jeszb0pBbmRfY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.130.44.0/24 185.207.225.0/24 IPv6: 2a13:6c0::/29 Signature Algorithm: sha256WithRSAEncryption 95:b8:7f:9e:93:72:58:a1:a5:cc:a8:43:30:b3:56:19:3f:71: 99:fc:bf:3b:f6:a3:c8:b4:74:96:0e:8f:60:1b:e0:50:8f:50: 19:f6:36:82:c3:cb:6d:dd:c6:d7:f3:52:73:46:b0:52:d8:94: 04:5b:22:2d:b8:fd:e3:0f:5a:27:44:3d:e9:95:72:42:35:d3: 3b:a9:4e:24:f1:a2:d8:55:4f:6d:37:1a:b9:67:20:06:79:35: d3:89:e8:da:99:bd:6e:3f:a9:13:84:84:e5:2e:56:ae:c7:fd: bb:bb:47:86:9c:e5:89:b3:6c:57:13:50:dc:e7:52:9c:d5:81: 17:01:2a:11:cc:87:48:41:0c:d2:20:44:0c:36:e1:2c:f3:73: 33:da:0d:2b:6e:56:67:c5:a1:fa:49:5f:ca:9c:f8:05:a6:28: e1:db:bb:2e:29:eb:1b:8d:59:b5:34:a3:be:00:0e:32:34:1e: e2:9d:c1:88:6f:74:e5:44:89:d3:86:da:37:3c:47:9f:2f:71: ae:b4:02:81:5a:5a:d5:87:7c:5d:de:ae:09:71:1f:8a:d6:6a: e2:53:dd:c5:82:d7:91:c5:1b:d6:96:32:b5:bd:5a:2e:42:7b: 15:2b:31:3c:10:c1:04:20:18:35:78:a0:d7:89:5b:6d:6f:a2: ff:bd:fe:97 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt3WHtz7ra5eJGmV9WslLm5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMDQ5NjA0NzM3Yzc4YmQyNGRiYjI1ZWIzMzZmNGE0MTZl NjQ1ZjYwHhcNMjYwMTAxMDIxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGRlNzRmMTc3YjU5NjQxZTIwNzcxOTVlMjAwNTMxMDAzMTg0YTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGgfUGh5w0DAcF18kUWOPFXjjQ7V jmzsyvybNiAzyp2Z1dt4aVLavREdr98rhEHyeAoYxFAfvN00tG67Mj+QXgLsLN9w jEGcE8TNeQgUs3DRG3O0bIm0Bix5Gra1ZUsPNVyQNbF9VAke+1uE7Uf7fKWwQIf+ tVkqb5tu8poGuujLyZZCSYGHgeBNrfnEdLXS5svl9Eb+9l4cq0xPrasuxKSmdRDD 7GUgWgER7w4hii+CGslSuodb2SMBh8MDtl97Xd6HW4CTEuYjZQNVafLperxx80H5 xP3ilv6I6xQSGiFySl5tzXMqtm+VAyRDbhkC5QfEEkNe2MsWRCRrk16NmQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFNDedPF3tZZB4gdxleIAUxADGEoNMB8GA1UdIwQY MBaAFAMElgRzfHi9JNuyXrM29KQW5kX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXdTV0JITjhlTDBrMjdKZXN6YjBwQmJtUmZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zNWI0YzUtMjk3Yi00MjBjLTgyMmEt MTY5ZTUzN2E4OTBjLzEvME41MDhYZTFsa0hpQjNHVjRnQlRFQU1ZU2cwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8zNWI0YzUtMjk3Yi00MjBjLTgyMmEtMTY5ZTUzN2E4OTBj LzEvQXdTV0JITjhlTDBrMjdKZXN6YjBwQmJtUmZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQALYIsAwQA uc/hMA0EAgACMAcDBQMqEwbAMA0GCSqGSIb3DQEBCwUAA4IBAQCVuH+ek3JYoaXM qEMws1YZP3GZ/L879qPItHSWDo9gG+BQj1AZ9jaCw8tt3cbX81JzRrBS2JQEWyIt uP3jD1onRD3plXJCNdM7qU4k8aLYVU9tNxq5ZyAGeTXTiejamb1uP6kThITlLlau x/27u0eGnOWJs2xXE1Dc51Kc1YEXASoRzIdIQQzSIEQMNuEs83Mz2g0rblZnxaH6 SV/KnPgFpijh27suKesbjVm1NKO+AA4yNB7incGIb3TlRInThto3PEefL3GutAKB WlrVh3xd3q4JcR+K1mriU93FgteRxRvWljK1vVouQnsVKzE8EMEEIBg1eKDXiVtt b6L/vf6X -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:05 2026 by rpki-client