This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/S-RMQEkkwvfYfawnBJNoX94LUrE.roa File: S-RMQEkkwvfYfawnBJNoX94LUrE.roa (raw, json) Hash identifier: nIoc7KRI4N/DJ2IEhEzxl+cIg51XEYc6Xl/2RODy9Qc= Subject key identifier: 4B:E4:4C:40:49:24:C2:F7:D8:7D:AC:27:04:93:68:5F:DE:0B:52:B1 Certificate issuer: /CN=a1a55bf2888753e44675b61dda30394d90156c0a Certificate serial: 019B7CED06E87E5E89AB2ED26E95F62AE3DB Authority key identifier: A1:A5:5B:F2:88:87:53:E4:46:75:B6:1D:DA:30:39:4D:90:15:6C:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaVb8oiHU-RGdbYd2jA5TZAVbAo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/S-RMQEkkwvfYfawnBJNoX94LUrE.roa Signing time: Fri 02 Jan 2026 04:17:47 +0000 ROA not before: Fri 02 Jan 2026 04:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208919 IP address blocks: 45.138.188.0/24 maxlen: 24 194.147.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/oaVb8oiHU-RGdbYd2jA5TZAVbAo.crl rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/oaVb8oiHU-RGdbYd2jA5TZAVbAo.mft rsync://rpki.ripe.net/repository/DEFAULT/oaVb8oiHU-RGdbYd2jA5TZAVbAo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:06:e8:7e:5e:89:ab:2e:d2:6e:95:f6:2a:e3:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1a55bf2888753e44675b61dda30394d90156c0a Validity Not Before: Jan 2 04:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4be44c404924c2f7d87dac270493685fde0b52b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:de:c2:0e:9a:0b:61:53:38:14:5e:38:62: 77:03:90:a0:17:bd:1a:26:9a:00:45:72:ee:0e:6c: 23:fd:56:43:c6:b4:a4:9b:dd:7a:58:33:6b:4f:5f: f8:a2:01:f3:d7:18:d6:8a:ce:2e:7f:48:53:d9:03: 7d:0b:a0:ef:8e:ff:8d:20:fb:3e:54:7b:bc:f8:e7: 38:de:f8:4b:7e:47:0c:52:66:64:c2:ee:be:0e:29: 7d:3f:46:df:21:ff:6f:c3:10:6e:36:4a:fd:5a:a6: d3:74:0c:44:b6:b2:38:e9:27:d2:84:5f:44:3d:4d: c7:fb:9d:05:f8:74:f1:86:f4:21:18:4f:0e:d4:ea: ec:7a:7f:31:ce:39:75:f3:eb:c9:10:d4:35:e9:5e: b1:03:8b:33:e3:a0:3f:78:ba:f1:80:be:e7:3f:ca: 36:a4:2f:a1:89:16:6c:15:3a:c4:55:6b:2c:7d:c8: 3b:d3:96:ec:1f:d3:fb:d0:b7:1c:86:40:db:b7:34: bb:ec:77:04:6e:6a:bd:cf:f0:48:10:f4:e1:df:e1: 7c:21:13:bc:24:42:31:51:fa:00:00:32:e1:60:8e: 3c:a9:03:8a:8a:be:83:d2:ea:45:0e:d3:9a:c6:69: 68:24:18:43:ee:5b:86:d8:f5:3a:39:2e:20:48:12: 42:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:E4:4C:40:49:24:C2:F7:D8:7D:AC:27:04:93:68:5F:DE:0B:52:B1 X509v3 Authority Key Identifier: keyid:A1:A5:5B:F2:88:87:53:E4:46:75:B6:1D:DA:30:39:4D:90:15:6C:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaVb8oiHU-RGdbYd2jA5TZAVbAo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/S-RMQEkkwvfYfawnBJNoX94LUrE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/oaVb8oiHU-RGdbYd2jA5TZAVbAo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.138.188.0/24 194.147.219.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:ff:d6:b9:e8:2c:2b:02:8e:c6:7b:25:29:93:26:ac:65:4d: 98:31:fd:cd:c3:51:0b:6d:df:30:fd:f1:6f:64:a5:fd:e6:42: 77:43:d2:97:04:95:94:9f:36:96:41:17:de:e2:1e:75:a6:11: 8d:75:d9:de:ed:e7:9e:aa:73:a1:b2:4f:92:42:df:23:ef:43: 86:bf:32:ae:09:2e:61:08:82:5c:89:86:98:0d:39:87:54:8e: 87:3e:23:16:b6:d7:c2:b2:9f:84:20:28:5f:ae:02:3b:7e:cb: 86:0d:87:3f:d7:ee:1a:94:2c:46:42:c0:6c:84:f8:ed:63:a8: c0:b0:bc:a4:ee:63:67:cd:04:66:80:4c:e4:41:b9:e3:3b:1f: a2:fc:27:28:a1:b7:ab:6e:98:0a:bf:94:69:58:d7:9d:44:60: f3:2a:e3:d5:10:b8:67:c9:61:b0:25:39:0c:a2:80:d1:70:bf: 10:ed:cd:8c:a3:26:5e:54:ee:c0:8c:a9:22:0c:33:a7:2f:0f: 90:e5:38:05:a4:e3:c4:b4:05:e7:f6:5d:3c:a1:5f:81:1e:2b: 57:be:df:d2:5b:e5:8d:b9:a9:6d:aa:36:e0:43:38:93:37:e2: 84:c1:bd:18:05:44:ce:73:dc:60:20:38:26:62:b3:77:7e:bd: 59:74:84:ed -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87Qbofl6Jqy7SbpX2KuPbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYTU1YmYyODg4NzUzZTQ0Njc1YjYxZGRhMzAzOTRkOTAx NTZjMGEwHhcNMjYwMTAyMDQxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YmU0NGM0MDQ5MjRjMmY3ZDg3ZGFjMjcwNDkzNjg1ZmRlMGI1MmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzszewg6aC2FTOBReOGJ3A5CgF70a JpoARXLuDmwj/VZDxrSkm916WDNrT1/4ogHz1xjWis4uf0hT2QN9C6Dvjv+NIPs+ VHu8+Oc43vhLfkcMUmZkwu6+Dil9P0bfIf9vwxBuNkr9WqbTdAxEtrI46SfShF9E PU3H+50F+HTxhvQhGE8O1Orsen8xzjl18+vJENQ16V6xA4sz46A/eLrxgL7nP8o2 pC+hiRZsFTrEVWssfcg705bsH9P70LcchkDbtzS77HcEbmq9z/BIEPTh3+F8IRO8 JEIxUfoAADLhYI48qQOKir6D0upFDtOaxmloJBhD7luG2PU6OS4gSBJC/wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEvkTEBJJML32H2sJwSTaF/eC1KxMB8GA1UdIwQY MBaAFKGlW/KIh1PkRnW2HdowOU2QFWwKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2FWYjhvaUhVLVJHZGJZZDJqQTVUWkFWYkFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yZGFiMTgtN2JiNy00YWExLTk4YWQt MjdjOWQ5MTE0MjM4LzEvUy1STVFFa2t3dmZZZmF3bkJKTm9YOTRMVXJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8yZGFiMTgtN2JiNy00YWExLTk4YWQtMjdjOWQ5MTE0MjM4 LzEvb2FWYjhvaUhVLVJHZGJZZDJqQTVUWkFWYkFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYq8AwQA wpPbMA0GCSqGSIb3DQEBCwUAA4IBAQBK/9a56CwrAo7GeyUpkyasZU2YMf3Nw1EL bd8w/fFvZKX95kJ3Q9KXBJWUnzaWQRfe4h51phGNddne7eeeqnOhsk+SQt8j70OG vzKuCS5hCIJciYaYDTmHVI6HPiMWttfCsp+EIChfrgI7fsuGDYc/1+4alCxGQsBs hPjtY6jAsLyk7mNnzQRmgEzkQbnjOx+i/CcooberbpgKv5RpWNedRGDzKuPVELhn yWGwJTkMooDRcL8Q7c2MoyZeVO7AjKkiDDOnLw+Q5TgFpOPEtAXn9l08oV+BHitX vt/SW+WNualtqjbgQziTN+KEwb0YBUTOc9xgIDgmYrN3fr1ZdITt -----END CERTIFICATE-----Generated at Mon Jan 19 08:01:13 2026 by rpki-client