This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/b9vcmhhWmTdDD16HAHP6D8RbDkA.roa File: b9vcmhhWmTdDD16HAHP6D8RbDkA.roa (raw, json) Hash identifier: FBfH9P35YtWY9xE6pYzf6Mz1MG4bSL4q1phGJQRtJTw= Subject key identifier: 6F:DB:DC:9A:18:56:99:37:43:0F:5E:87:00:73:FA:0F:C4:5B:0E:40 Certificate issuer: /CN=95923420ccfee038cdcaeb4392310a0598af7a3e Certificate serial: 019B791037A1BC7B8448DEC5934D531CDC70 Authority key identifier: 95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/b9vcmhhWmTdDD16HAHP6D8RbDkA.roa Signing time: Thu 01 Jan 2026 10:17:44 +0000 ROA not before: Thu 01 Jan 2026 10:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210976 IP address blocks: 45.139.76.0/24 maxlen: 24 45.139.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 07:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:37:a1:bc:7b:84:48:de:c5:93:4d:53:1c:dc:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95923420ccfee038cdcaeb4392310a0598af7a3e Validity Not Before: Jan 1 10:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6fdbdc9a18569937430f5e870073fa0fc45b0e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:66:5d:23:44:93:87:98:b7:13:1b:dc:7a:ab: 9b:64:38:dd:97:c8:56:47:3f:5b:71:b0:19:c7:ea: 85:54:17:95:b4:3c:df:99:2b:ef:63:7c:bc:d5:26: c0:a9:08:7f:9c:eb:81:4f:9a:68:32:36:79:49:0d: 95:38:0c:17:ff:93:bc:98:8f:15:3f:6b:55:6e:56: b8:50:39:c3:f6:75:58:1a:e1:5d:31:9a:1c:44:4e: 62:3f:fb:8e:41:00:3a:22:36:64:7f:e4:ac:07:4a: 01:09:2e:00:de:7a:bc:96:86:ba:fe:c7:c1:39:f4: ee:08:62:b6:70:07:15:fe:d6:5a:92:2d:40:be:c1: 44:c3:60:e7:51:d0:78:3b:0c:7a:4d:cd:b3:e9:30: 98:ae:4a:0a:03:99:79:5d:d0:f4:83:90:56:ee:07: 71:5e:e0:05:aa:2d:69:49:28:79:f3:55:9a:0a:8d: 47:0f:98:87:03:4c:97:40:07:ca:14:a8:50:dd:57: 5b:b0:50:2b:7d:a6:67:52:1b:98:c4:45:82:2a:c9: d8:12:ae:49:0c:84:ad:93:12:aa:03:1b:70:03:3c: f1:22:c7:05:bd:92:a0:93:ea:94:a9:63:77:e0:ea: 4e:78:26:6e:36:64:36:b3:e3:ab:29:93:5c:eb:67: 07:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:DB:DC:9A:18:56:99:37:43:0F:5E:87:00:73:FA:0F:C4:5B:0E:40 X509v3 Authority Key Identifier: keyid:95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/b9vcmhhWmTdDD16HAHP6D8RbDkA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.139.76.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:46:cf:82:ff:a0:4a:7e:71:d7:72:9e:70:6a:24:c6:04:ea: 3b:13:70:60:6e:0a:86:4d:f5:80:2b:4c:36:58:98:b1:14:a9: 14:15:9e:bc:fa:26:30:9f:11:03:03:0e:92:78:cd:28:55:57: 31:a5:bd:05:1f:6f:94:72:83:db:db:6b:76:d2:43:d6:b6:73: 2e:64:ad:65:cf:c7:26:d0:e5:91:2c:86:ad:7c:70:d7:50:d6: d8:b5:b1:e7:55:73:24:e6:22:a2:54:23:ee:d1:27:46:df:24: f8:a7:bc:22:14:8c:6e:96:91:56:c4:cc:ac:b8:77:f5:e4:a4: 50:e5:80:2d:34:e4:18:11:4e:23:9d:cf:e7:50:26:75:8b:86: e9:05:b1:6c:64:f0:76:84:ac:69:75:cc:fd:53:c5:e1:8c:3d: c2:1b:0c:fa:a8:46:14:90:bf:5a:f5:1b:01:8c:b5:1c:00:61: 82:ba:20:d2:95:8d:0d:96:51:77:03:19:2b:36:43:e6:0e:b1: 70:b4:e6:4c:89:5a:be:20:0a:17:61:b6:66:07:a4:8f:d6:c0: 21:95:53:56:ff:fe:ef:4b:9d:26:e8:5d:84:c8:20:bc:19:28: ae:be:90:b2:cc:07:60:cf:25:cd:3c:5f:ef:55:b9:a7:49:aa: e1:c7:c4:4d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EDehvHuESN7Fk01THNxwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1OTIzNDIwY2NmZWUwMzhjZGNhZWI0MzkyMzEwYTA1OThh ZjdhM2UwHhcNMjYwMTAxMTAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZmRiZGM5YTE4NTY5OTM3NDMwZjVlODcwMDczZmEwZmM0NWIwZTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWZdI0STh5i3ExvcequbZDjdl8hW Rz9bcbAZx+qFVBeVtDzfmSvvY3y81SbAqQh/nOuBT5poMjZ5SQ2VOAwX/5O8mI8V P2tVbla4UDnD9nVYGuFdMZocRE5iP/uOQQA6IjZkf+SsB0oBCS4A3nq8loa6/sfB OfTuCGK2cAcV/tZaki1AvsFEw2DnUdB4Owx6Tc2z6TCYrkoKA5l5XdD0g5BW7gdx XuAFqi1pSSh581WaCo1HD5iHA0yXQAfKFKhQ3VdbsFArfaZnUhuYxEWCKsnYEq5J DIStkxKqAxtwAzzxIscFvZKgk+qUqWN34OpOeCZuNmQ2s+OrKZNc62cHRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG/b3JoYVpk3Qw9ehwBz+g/EWw5AMB8GA1UdIwQY MBaAFJWSNCDM/uA4zcrrQ5IxCgWYr3o+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iODA0MDUtZDE5Yi00ZTBmLWFjMzct NTIwMGZjMTZmZjhjLzEvYjl2Y21oaFdtVGRERDE2SEFIUDZEOFJiRGtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iODA0MDUtZDE5Yi00ZTBmLWFjMzctNTIwMGZjMTZmZjhj LzEvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLYtMMA0G CSqGSIb3DQEBCwUAA4IBAQA7Rs+C/6BKfnHXcp5waiTGBOo7E3BgbgqGTfWAK0w2 WJixFKkUFZ68+iYwnxEDAw6SeM0oVVcxpb0FH2+UcoPb22t20kPWtnMuZK1lz8cm 0OWRLIatfHDXUNbYtbHnVXMk5iKiVCPu0SdG3yT4p7wiFIxulpFWxMysuHf15KRQ 5YAtNOQYEU4jnc/nUCZ1i4bpBbFsZPB2hKxpdcz9U8XhjD3CGwz6qEYUkL9a9RsB jLUcAGGCuiDSlY0NllF3AxkrNkPmDrFwtOZMiVq+IAoXYbZmB6SP1sAhlVNW//7v S50m6F2EyCC8GSiuvpCyzAdgzyXNPF/vVbmnSarhx8RN -----END CERTIFICATE-----Generated at Wed Jan 21 11:13:35 2026 by rpki-client