This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/_TIXmesvlGTPURQH5oRstOo11QE.roa File: _TIXmesvlGTPURQH5oRstOo11QE.roa (raw, json) Hash identifier: RlmfGp0ycen5kiv0a/pbjgi9q8fc6hfr3EIeF0ZqNuU= Subject key identifier: FD:32:17:99:EB:2F:94:64:CF:51:14:07:E6:84:6C:B4:EA:35:D5:01 Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8 Certificate serial: 019B7F854B116CB5D247BEAD7EABBAC8A329 Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/_TIXmesvlGTPURQH5oRstOo11QE.roa Signing time: Fri 02 Jan 2026 16:23:20 +0000 ROA not before: Fri 02 Jan 2026 16:23:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209396 IP address blocks: 45.86.20.0/22 maxlen: 24 45.151.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.mft rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:4b:11:6c:b5:d2:47:be:ad:7e:ab:ba:c8:a3:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8 Validity Not Before: Jan 2 16:23:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd321799eb2f9464cf511407e6846cb4ea35d501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:53:38:d3:a6:46:8a:43:36:0a:47:1b:bb:b5: e3:5f:8e:32:48:1f:4e:53:86:57:02:25:95:8b:c9: fe:86:8e:8a:5d:cb:2b:75:3c:72:6a:e8:82:3d:f1: 86:97:6a:86:9d:7f:56:48:99:1b:42:39:c4:91:d1: 12:9d:ee:1a:4e:8b:dd:09:0e:36:5d:f9:e1:22:be: 3d:50:e7:0d:ee:a5:90:9a:a9:5b:58:3a:c0:19:e8: fd:c2:b3:34:3b:ce:96:d2:4d:27:60:97:a7:d9:61: d4:b9:77:8a:70:b1:1f:dc:27:51:89:7e:06:b4:ed: 47:9f:af:3d:b2:1a:c5:af:37:bf:bb:a7:21:15:17: 73:ff:f7:27:31:7d:9b:81:a7:0a:0a:4a:90:9d:5b: 9e:af:dc:d8:08:ce:c3:61:7c:79:46:04:91:1f:f9: 14:8d:79:77:43:31:e9:4a:af:58:37:d1:97:c1:b7: 7d:0a:7b:ca:96:84:21:bf:5e:17:29:90:5f:d2:41: 0a:7b:d0:40:ea:db:1f:38:bf:01:ff:34:4b:31:55: 1f:6a:30:f3:4c:4c:6d:4c:34:32:5b:f2:41:ed:1f: b4:f6:5d:f1:1e:f3:a1:79:0d:81:c2:67:e8:d9:57: 88:12:b4:64:e3:fa:3a:2b:d2:64:e6:48:83:d1:3d: 0c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:32:17:99:EB:2F:94:64:CF:51:14:07:E6:84:6C:B4:EA:35:D5:01 X509v3 Authority Key Identifier: keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/_TIXmesvlGTPURQH5oRstOo11QE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.86.20.0/22 45.151.196.0/22 Signature Algorithm: sha256WithRSAEncryption 38:41:ca:88:a3:9b:cc:65:3f:8b:8c:49:80:14:b3:41:c8:d1: ab:3a:83:6c:46:30:d8:cf:63:17:95:7b:b5:53:74:f6:ec:d5: 75:f5:96:b1:b8:23:df:47:6c:23:49:0f:cd:8a:4e:0e:eb:81: af:7e:9d:8e:06:b8:33:a1:ed:20:02:bb:c5:a4:d5:5f:3e:fe: be:9a:63:9e:4b:f2:30:f5:82:5e:bb:3a:35:3b:43:82:1f:6a: ad:22:cd:0a:23:24:91:f9:8f:a3:7b:11:15:c7:5f:1a:da:62: 82:e5:c9:b2:1d:1b:3a:2f:2d:33:11:37:ba:a5:96:07:f4:fe: c6:c2:9f:58:fb:24:dd:c5:ec:e1:07:b0:e2:4f:6e:d5:d1:6c: 01:c5:a9:68:be:87:47:19:f9:60:9d:5d:53:ab:1b:0f:5e:44: e9:ce:37:ff:ad:0d:0f:3c:0c:16:d6:5b:26:7e:e9:31:c7:f8: 81:c6:06:b1:aa:bb:bc:b4:78:71:14:b0:20:ce:46:52:7c:56: f8:19:1a:a9:58:af:d9:87:b7:65:2c:00:eb:8d:96:c6:0f:e3: 72:f2:9c:2a:b5:91:2d:ca:33:b5:4b:ca:f6:53:27:b2:43:42: 02:78:0a:2e:d6:63:eb:19:59:26:cb:19:00:e6:f3:f4:30:9e: 52:6f:ad:55 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hUsRbLXSR76tfqu6yKMpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYWIzMDY4Mzg1OWVjN2UwMjA2ZmU5MjY1MzYzZThlMzk3 MWE5YTgwHhcNMjYwMTAyMTYyMzIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDMyMTc5OWViMmY5NDY0Y2Y1MTE0MDdlNjg0NmNiNGVhMzVkNTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFM406ZGikM2Ckcbu7XjX44ySB9O U4ZXAiWVi8n+ho6KXcsrdTxyauiCPfGGl2qGnX9WSJkbQjnEkdESne4aTovdCQ42 XfnhIr49UOcN7qWQmqlbWDrAGej9wrM0O86W0k0nYJen2WHUuXeKcLEf3CdRiX4G tO1Hn689shrFrze/u6chFRdz//cnMX2bgacKCkqQnVuer9zYCM7DYXx5RgSRH/kU jXl3QzHpSq9YN9GXwbd9CnvKloQhv14XKZBf0kEKe9BA6tsfOL8B/zRLMVUfajDz TExtTDQyW/JB7R+09l3xHvOheQ2Bwmfo2VeIErRk4/o6K9Jk5kiD0T0McwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFP0yF5nrL5Rkz1EUB+aEbLTqNdUBMB8GA1UdIwQY MBaAFIurMGg4Wex+Agb+kmU2Po45camoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQt M2FjOWU1NmMzMDg5LzEvX1RJWG1lc3ZsR1RQVVJRSDVvUnN0T28xMVFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQtM2FjOWU1NmMzMDg5 LzEvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLVYUAwQC LZfEMA0GCSqGSIb3DQEBCwUAA4IBAQA4QcqIo5vMZT+LjEmAFLNByNGrOoNsRjDY z2MXlXu1U3T27NV19ZaxuCPfR2wjSQ/Nik4O64Gvfp2OBrgzoe0gArvFpNVfPv6+ mmOeS/Iw9YJeuzo1O0OCH2qtIs0KIySR+Y+jexEVx18a2mKC5cmyHRs6Ly0zETe6 pZYH9P7Gwp9Y+yTdxezhB7DiT27V0WwBxalovodHGflgnV1TqxsPXkTpzjf/rQ0P PAwW1lsmfukxx/iBxgaxqru8tHhxFLAgzkZSfFb4GRqpWK/Zh7dlLADrjZbGD+Ny 8pwqtZEtyjO1S8r2UyeyQ0ICeAou1mPrGVkmyxkA5vP0MJ5Sb61V -----END CERTIFICATE-----Generated at Sun Jan 25 19:58:56 2026 by rpki-client