This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/axcATIOsEbV9qEHFR_BgJI8InRc.roa File: axcATIOsEbV9qEHFR_BgJI8InRc.roa (raw, json) Hash identifier: nhsbsi/hDL4AYgein99xctG644QzrEf5lgLkARRpWaU= Subject key identifier: 6B:17:00:4C:83:AC:11:B5:7D:A8:41:C5:47:F0:60:24:8F:08:9D:17 Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69 Certificate serial: 019B7AC8090782CD2EE666B382815C284AA6 Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/axcATIOsEbV9qEHFR_BgJI8InRc.roa Signing time: Thu 01 Jan 2026 18:18:08 +0000 ROA not before: Thu 01 Jan 2026 18:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 45.88.100.0/24 maxlen: 24 45.95.128.0/23 maxlen: 24 45.95.128.0/24 maxlen: 24 45.95.130.0/23 maxlen: 24 78.41.84.0/22 maxlen: 24 185.246.218.0/23 maxlen: 23 185.253.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.mft rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:09:07:82:cd:2e:e6:66:b3:82:81:5c:28:4a:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69 Validity Not Before: Jan 1 18:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b17004c83ac11b57da841c547f060248f089d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:50:7f:3e:f6:04:0e:04:c3:6b:9a:65:9b:21: db:7a:b3:b9:75:88:00:5c:af:e4:5e:e4:87:95:2c: 70:24:29:eb:3f:cf:3e:61:32:c9:08:15:8b:37:9c: d2:70:a3:a1:28:4d:5f:48:e4:63:e5:00:ac:f3:3b: dd:b8:17:fa:60:27:d9:ea:17:a1:85:06:28:86:15: 05:c5:69:ee:bb:c2:28:7f:09:31:69:ce:6f:ed:83: 08:c2:64:bb:2e:2a:c7:ca:69:58:6f:48:bc:88:a9: 47:d3:1d:d5:61:30:3a:d6:f1:85:f0:2a:12:cd:10: 0a:ea:41:21:95:8d:35:2b:2d:0c:59:0a:93:b5:37: b3:a5:f6:f9:28:59:e9:69:57:fc:3c:65:64:9a:ab: 4d:72:89:eb:df:70:5a:e2:98:f5:92:67:21:0d:ac: 7e:0c:3e:c2:17:c5:c9:cd:d3:71:70:cf:31:3b:87: a7:5b:8b:4a:9c:8d:64:71:97:e3:3c:7f:fb:aa:89: 2c:f5:14:33:1d:03:e2:bd:ee:25:05:25:8a:0a:45: c6:d6:33:b2:35:1b:28:3f:29:c1:27:9d:94:3b:dc: 81:d6:ba:a6:0a:74:ec:f6:aa:57:a1:89:b5:ad:d1: ac:b1:ef:d0:5d:b2:cb:6a:a4:e3:06:f0:f4:71:46: a1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:17:00:4C:83:AC:11:B5:7D:A8:41:C5:47:F0:60:24:8F:08:9D:17 X509v3 Authority Key Identifier: keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/axcATIOsEbV9qEHFR_BgJI8InRc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.100.0/24 45.95.128.0/22 78.41.84.0/22 185.246.218.0/23 185.253.26.0/23 Signature Algorithm: sha256WithRSAEncryption c2:1b:4f:70:c9:c5:bd:41:fe:0a:4a:fd:f0:2b:6f:85:37:32: 27:31:f0:b6:6d:c9:88:1c:89:b8:ef:88:1b:28:1e:01:15:5e: 1c:2d:32:1f:da:45:06:f8:f2:dc:07:f8:28:5e:e3:36:a4:7a: cc:c7:38:98:1d:95:6e:84:26:9c:ed:74:d5:5c:7b:fd:85:d6: 61:b6:f5:21:07:19:da:1c:69:34:bd:38:a7:32:53:ad:62:aa: 7d:d7:ed:e3:2d:1d:75:ca:df:ed:85:46:bc:a9:bf:88:2c:43: d7:4f:31:dd:c7:4e:61:c1:b6:f8:19:b0:54:2a:f5:e8:20:d1: bb:0a:40:37:8c:7e:b6:4e:2c:b1:39:92:8e:41:2d:87:16:b7: 3c:e8:8e:4d:ea:97:cf:87:fe:fc:92:73:45:f4:85:3d:3e:82: 5d:03:e2:f5:a9:f8:bd:f1:dc:4e:06:86:50:17:7e:61:86:7f: 64:f7:1e:68:03:9b:dc:57:97:4c:29:b1:5f:dd:79:00:80:b5: d5:85:f0:a8:58:7f:51:6c:2f:08:f1:c3:4f:53:5f:a2:c8:66: ab:3a:1c:8f:24:55:b3:b7:1e:fb:e5:a1:f1:92:f0:93:b1:67: 52:7b:03:e0:01:da:85:4e:e4:37:ce:5b:da:75:01:7c:c1:a0: bf:16:98:94 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt6yAkHgs0u5mazgoFcKEqmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOWZkYzdmYjM5ZWJiYmVkNGVlNTRmNzAzZDNhYzYxNTNk ZGVlNjkwHhcNMjYwMTAxMTgxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YjE3MDA0YzgzYWMxMWI1N2RhODQxYzU0N2YwNjAyNDhmMDg5ZDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFB/PvYEDgTDa5plmyHberO5dYgA XK/kXuSHlSxwJCnrP88+YTLJCBWLN5zScKOhKE1fSORj5QCs8zvduBf6YCfZ6heh hQYohhUFxWnuu8Iofwkxac5v7YMIwmS7LirHymlYb0i8iKlH0x3VYTA61vGF8CoS zRAK6kEhlY01Ky0MWQqTtTezpfb5KFnpaVf8PGVkmqtNconr33Ba4pj1kmchDax+ DD7CF8XJzdNxcM8xO4enW4tKnI1kcZfjPH/7qoks9RQzHQPive4lBSWKCkXG1jOy NRsoPynBJ52UO9yB1rqmCnTs9qpXoYm1rdGsse/QXbLLaqTjBvD0cUahvQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFGsXAEyDrBG1fahBxUfwYCSPCJ0XMB8GA1UdIwQY MBaAFB6f3H+znru+1O5U9wPTrGFT3e5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgt NjkxZmY1YjQ0YjAxLzEvYXhjQVRJT3NFYlY5cUVIRlJfQmdKSThJblJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgtNjkxZmY1YjQ0YjAx LzEvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALVhkAwQC LV+AAwQCTilUAwQBufbaAwQBuf0aMA0GCSqGSIb3DQEBCwUAA4IBAQDCG09wycW9 Qf4KSv3wK2+FNzInMfC2bcmIHIm474gbKB4BFV4cLTIf2kUG+PLcB/goXuM2pHrM xziYHZVuhCac7XTVXHv9hdZhtvUhBxnaHGk0vTinMlOtYqp91+3jLR11yt/thUa8 qb+ILEPXTzHdx05hwbb4GbBUKvXoING7CkA3jH62TiyxOZKOQS2HFrc86I5N6pfP h/78knNF9IU9PoJdA+L1qfi98dxOBoZQF35hhn9k9x5oA5vcV5dMKbFf3XkAgLXV hfCoWH9RbC8I8cNPU1+iyGarOhyPJFWztx775aHxkvCTsWdSewPgAdqFTuQ3zlva dQF8waC/FpiU -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:44 2026 by rpki-client