This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/DEv1FvUmSePkFMEhaljbUGcilZE.roa File: DEv1FvUmSePkFMEhaljbUGcilZE.roa (raw, json) Hash identifier: 3t2C6MctWIGYUjMPxRGflM6h0JoZnmjQNKA/CZV7iqU= Subject key identifier: 0C:4B:F5:16:F5:26:49:E3:E4:14:C1:21:6A:58:DB:50:67:22:95:91 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA3FD10F1A7571EA2FF33E2E95DD1D9 Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/DEv1FvUmSePkFMEhaljbUGcilZE.roa Signing time: Thu 01 Jan 2026 22:18:23 +0000 ROA not before: Thu 01 Jan 2026 22:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42922 IP address blocks: 185.252.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:fd:10:f1:a7:57:1e:a2:ff:33:e2:e9:5d:d1:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c4bf516f52649e3e414c1216a58db5067229591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:64:ac:41:72:d1:d6:fd:97:c3:d9:59:b1:22: 62:c7:89:59:61:be:7b:c4:7a:e8:50:8b:e8:1e:8c: c0:67:a2:49:80:0b:3d:c1:b8:8b:9d:80:b5:dc:2d: 4b:4f:9a:fd:f7:b2:33:e4:db:de:7d:a3:f3:9c:82: cf:b6:8a:4f:02:7b:60:50:6b:94:b4:08:f4:f6:e3: 4c:c6:a5:0f:a9:ba:99:cb:13:62:8e:71:10:2f:4a: 5a:6e:1d:58:cf:2f:8c:0e:33:dc:2f:af:0f:ea:57: 14:4a:a4:32:50:9d:eb:a4:71:ee:c7:08:53:4b:dc: 0b:97:25:f9:33:32:4d:df:9b:b3:90:ea:a4:ea:e7: 12:17:0c:37:f7:a7:c6:cc:05:54:36:93:d6:4c:f2: 5b:06:a1:f4:fa:8d:42:9a:76:db:2a:54:29:62:42: db:94:c4:41:b8:a5:2a:f9:1f:91:cf:dd:d5:e4:8a: bd:26:b7:7e:8a:58:58:71:b0:39:e7:c0:2c:a5:77: 5d:9e:16:a7:fc:b4:b5:4d:39:e9:e7:24:34:04:80: 37:a3:96:1f:e4:92:58:eb:88:76:f3:d0:05:1b:10: 7b:1b:49:1a:aa:0f:9c:7b:15:41:99:4a:c5:8c:72: 36:0f:0e:ed:2f:5e:1f:05:6b:d2:dc:4a:74:f5:7e: a5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4B:F5:16:F5:26:49:E3:E4:14:C1:21:6A:58:DB:50:67:22:95:91 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/DEv1FvUmSePkFMEhaljbUGcilZE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.252.145.0/24 Signature Algorithm: sha256WithRSAEncryption 18:9d:35:4c:89:9d:52:e8:f4:a2:98:2c:18:42:49:a5:58:2b: 12:7b:2a:e1:b5:0b:69:a0:55:41:01:87:22:7d:b0:22:f7:da: 7e:b3:da:e5:80:0f:9e:9a:f6:ed:d6:48:5c:86:79:10:da:1c: 6c:ae:bf:a9:82:0e:8f:a1:44:e5:03:c2:10:e9:d2:1b:bf:a7: 79:e5:0d:a7:1c:04:16:20:6d:85:69:9f:0e:ba:5e:95:6a:5e: f6:ea:fc:a1:4c:46:f2:ae:cc:76:8a:9c:81:33:6e:a7:9c:cc: 64:ac:e8:05:70:a6:e8:40:9e:a3:42:6f:57:d8:f6:c0:1c:1c: 53:1c:45:eb:c4:ef:b8:13:86:ea:87:19:23:eb:8d:66:b9:87: ff:c1:cc:af:12:20:b2:12:66:06:51:68:c8:40:bc:e1:50:7c: 32:26:bf:f5:3d:79:f5:06:35:58:2a:ef:8b:93:55:5a:db:56: 20:ca:e8:f7:d8:0d:de:8e:74:cc:49:96:b2:2e:ef:b9:df:ae: b9:30:de:59:e8:e1:a3:32:79:68:27:6c:cd:18:01:17:a6:ca: ce:74:dc:69:cd:64:e3:d2:26:cd:fa:f7:e8:75:f7:8f:7d:28: 5f:72:6e:d0:a7:95:7b:e3:1f:02:12:44:ac:a7:b1:a4:cc:d4: 36:03:f2:28 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o/0Q8adXHqL/M+LpXdHZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzRiZjUxNmY1MjY0OWUzZTQxNGMxMjE2YTU4ZGI1MDY3MjI5NTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWSsQXLR1v2Xw9lZsSJix4lZYb57 xHroUIvoHozAZ6JJgAs9wbiLnYC13C1LT5r997Iz5NvefaPznILPtopPAntgUGuU tAj09uNMxqUPqbqZyxNijnEQL0pabh1Yzy+MDjPcL68P6lcUSqQyUJ3rpHHuxwhT S9wLlyX5MzJN35uzkOqk6ucSFww396fGzAVUNpPWTPJbBqH0+o1CmnbbKlQpYkLb lMRBuKUq+R+Rz93V5Iq9Jrd+ilhYcbA558AspXddnhan/LS1TTnp5yQ0BIA3o5Yf 5JJY64h289AFGxB7G0kaqg+cexVBmUrFjHI2Dw7tL14fBWvS3Ep09X6lLQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAxL9Rb1Jknj5BTBIWpY21BnIpWRMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvREV2MUZ2VW1TZVBrRk1FaGFsamJVR2NpbFpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufyRMA0G CSqGSIb3DQEBCwUAA4IBAQAYnTVMiZ1S6PSimCwYQkmlWCsSeyrhtQtpoFVBAYci fbAi99p+s9rlgA+emvbt1khchnkQ2hxsrr+pgg6PoUTlA8IQ6dIbv6d55Q2nHAQW IG2FaZ8Oul6Val726vyhTEbyrsx2ipyBM26nnMxkrOgFcKboQJ6jQm9X2PbAHBxT HEXrxO+4E4bqhxkj641muYf/wcyvEiCyEmYGUWjIQLzhUHwyJr/1PXn1BjVYKu+L k1Va21Ygyuj32A3ejnTMSZayLu+53665MN5Z6OGjMnloJ2zNGAEXpsrOdNxpzWTj 0ibN+vfodfePfShfcm7Qp5V74x8CEkSsp7GkzNQ2A/Io -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:04 2026 by rpki-client