This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/OciP2anWDYtq7R0ITV23Xo9QSTw.roa File: OciP2anWDYtq7R0ITV23Xo9QSTw.roa (raw, json) Hash identifier: TkY9F9NRmuhwjBY6ILQJ+WBuYl1S6NPWGD5CQ8StaL0= Subject key identifier: 39:C8:8F:D9:A9:D6:0D:8B:6A:ED:1D:08:4D:5D:B7:5E:8F:50:49:3C Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA410CC9F9D06C00F4464258A098E85 Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/OciP2anWDYtq7R0ITV23Xo9QSTw.roa Signing time: Thu 01 Jan 2026 22:18:28 +0000 ROA not before: Thu 01 Jan 2026 22:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205090 IP address blocks: 45.9.73.0/24 maxlen: 24 45.9.75.0/24 maxlen: 24 45.89.65.0/24 maxlen: 24 45.90.216.0/24 maxlen: 24 45.90.217.0/24 maxlen: 24 45.90.218.0/24 maxlen: 24 45.90.219.0/24 maxlen: 24 45.95.202.0/24 maxlen: 24 45.95.203.0/24 maxlen: 24 45.132.255.0/24 maxlen: 24 45.142.122.0/24 maxlen: 24 84.252.73.0/24 maxlen: 24 84.252.74.0/24 maxlen: 24 84.252.75.0/24 maxlen: 24 85.209.2.0/24 maxlen: 24 185.102.139.0/24 maxlen: 24 185.103.109.0/24 maxlen: 24 185.104.251.0/24 maxlen: 24 185.112.101.0/24 maxlen: 24 185.112.102.0/24 maxlen: 24 185.112.103.0/24 maxlen: 24 185.217.198.0/24 maxlen: 24 185.217.199.0/24 maxlen: 24 185.221.160.0/24 maxlen: 24 185.221.162.0/24 maxlen: 24 185.232.169.0/24 maxlen: 24 185.233.83.0/24 maxlen: 24 185.233.200.0/24 maxlen: 24 193.162.143.0/24 maxlen: 24 193.168.227.0/24 maxlen: 24 2a09:5302::/32 maxlen: 32 2a09:5302:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:10:cc:9f:9d:06:c0:0f:44:64:25:8a:09:8e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39c88fd9a9d60d8b6aed1d084d5db75e8f50493c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6b:e1:68:f1:07:68:b4:b5:47:75:8d:ee:6f: cc:2d:0e:73:e7:fd:95:32:8b:47:f6:ac:02:e3:cd: 9d:68:8c:5e:0a:e5:b3:65:cb:81:f4:d7:ff:de:8c: 33:28:af:d7:41:63:03:97:e0:54:91:67:b8:f6:39: e7:fc:91:ba:64:24:e4:75:a7:52:52:89:aa:1c:ae: 60:35:03:76:3b:24:75:f4:c5:f8:68:45:a6:d9:53: 6b:da:ce:a3:70:74:1b:cd:e8:98:29:7e:6c:25:a3: 2f:7e:11:ed:0f:26:1d:a1:72:e2:d8:ca:45:2f:b0: d6:c9:14:fd:a9:8c:a9:3f:b3:97:e1:a3:f5:31:c8: d0:8b:eb:74:a0:c0:60:10:59:ec:7b:09:0d:98:97: 28:85:7d:ed:10:f7:19:c7:6e:1c:5e:4c:ac:0f:12: 74:76:2b:76:6d:44:d2:c9:9e:a9:40:c5:3c:72:72: 93:b5:9f:2d:60:a4:1a:ab:22:47:01:d3:27:f7:61: 9f:62:f5:b5:74:98:c9:90:9a:dc:44:de:2a:b6:e0: eb:63:26:89:e5:1f:08:db:48:b6:7b:9c:8f:ab:2a: 37:ed:b6:eb:ba:81:81:38:3c:18:d8:dd:f7:cb:e6: 46:4f:89:ef:8e:89:5a:01:7f:7b:7d:7f:73:e9:49: 10:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C8:8F:D9:A9:D6:0D:8B:6A:ED:1D:08:4D:5D:B7:5E:8F:50:49:3C X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/OciP2anWDYtq7R0ITV23Xo9QSTw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.9.73.0/24 45.9.75.0/24 45.89.65.0/24 45.90.216.0/22 45.95.202.0/23 45.132.255.0/24 45.142.122.0/24 84.252.73.0-84.252.75.255 85.209.2.0/24 185.102.139.0/24 185.103.109.0/24 185.104.251.0/24 185.112.101.0-185.112.103.255 185.217.198.0/23 185.221.160.0/24 185.221.162.0/24 185.232.169.0/24 185.233.83.0/24 185.233.200.0/24 193.162.143.0/24 193.168.227.0/24 IPv6: 2a09:5302::/32 Signature Algorithm: sha256WithRSAEncryption 3d:d3:1f:04:62:4e:6d:57:fa:77:c4:40:5c:65:e3:6f:f4:ca: 1c:b5:e1:1b:45:ca:8e:52:0c:ee:71:bc:61:6e:52:53:e2:35: ea:e0:13:29:f3:98:37:b4:61:e3:0f:be:6a:57:46:d4:57:15: a2:91:56:3a:bc:02:b3:b1:08:af:49:b1:61:98:3d:90:7f:31: 94:94:d1:6b:27:b1:9c:c0:3c:82:56:21:c8:6f:9b:ee:9b:64: fe:bd:64:67:10:7d:26:61:5a:81:b3:ec:6f:09:81:1a:8b:cc: 28:dd:5e:0f:20:dc:6f:91:19:37:3b:50:d0:b3:0a:bc:94:9b: ab:41:8b:67:89:77:fe:87:fc:98:3d:d7:d0:0f:c9:65:0f:b9: 4d:99:b4:ca:7f:52:1b:82:b8:27:3f:7b:77:d5:af:bc:43:19: e5:a6:32:95:89:03:73:15:b0:7b:38:aa:af:91:05:20:c9:0a: 80:2e:3e:8e:44:71:80:94:df:57:e5:1d:93:9b:a7:d7:79:8e: 71:13:50:6e:0a:43:d3:4a:b7:f7:b2:4c:d8:85:f5:af:1a:68: 86:c8:0f:80:df:89:e2:c3:55:e0:b9:8f:42:e4:64:e2:3f:9f: df:65:d0:bc:df:34:55:72:b6:6b:7c:a8:c1:da:59:17:b9:3b: 8a:47:90:d9 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISAZt7pBDMn50GwA9EZCWKCY6FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWM4OGZkOWE5ZDYwZDhiNmFlZDFkMDg0ZDVkYjc1ZThmNTA0OTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmvhaPEHaLS1R3WN7m/MLQ5z5/2V MotH9qwC482daIxeCuWzZcuB9Nf/3owzKK/XQWMDl+BUkWe49jnn/JG6ZCTkdadS UomqHK5gNQN2OyR19MX4aEWm2VNr2s6jcHQbzeiYKX5sJaMvfhHtDyYdoXLi2MpF L7DWyRT9qYypP7OX4aP1McjQi+t0oMBgEFnsewkNmJcohX3tEPcZx24cXkysDxJ0 dit2bUTSyZ6pQMU8cnKTtZ8tYKQaqyJHAdMn92GfYvW1dJjJkJrcRN4qtuDrYyaJ 5R8I20i2e5yPqyo37bbruoGBODwY2N33y+ZGT4nvjolaAX97fX9z6UkQxwIDAQAB o4ICpTCCAqEwHQYDVR0OBBYEFDnIj9mp1g2Lau0dCE1dt16PUEk8MB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvT2NpUDJhbldEWXRxN1IwSVRWMjNYbzlRU1R3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIG6BggrBgEFBQcBBwEB/wSBqjCBpzCBlQQCAAEwgY4DBAAt CUkDBAAtCUsDBAAtWUEDBAItWtgDBAEtX8oDBAAthP8DBAAtjnowDAMEAFT8SQME AlT8SAMEAFXRAgMEALlmiwMEALlnbQMEALlo+zAMAwQAuXBlAwQDuXBgAwQBudnG AwQAud2gAwQAud2iAwQAueipAwQAuelTAwQAuenIAwQAwaKPAwQAwajjMA0EAgAC MAcDBQAqCVMCMA0GCSqGSIb3DQEBCwUAA4IBAQA90x8EYk5tV/p3xEBcZeNv9Moc teEbRcqOUgzucbxhblJT4jXq4BMp85g3tGHjD75qV0bUVxWikVY6vAKzsQivSbFh mD2QfzGUlNFrJ7GcwDyCViHIb5vum2T+vWRnEH0mYVqBs+xvCYEai8wo3V4PINxv kRk3O1DQswq8lJurQYtniXf+h/yYPdfQD8llD7lNmbTKf1IbgrgnP3t31a+8Qxnl pjKViQNzFbB7OKqvkQUgyQqALj6ORHGAlN9X5R2Tm6fXeY5xE1BuCkPTSrf3skzY hfWvGmiGyA+A34niw1XguY9C5GTiP5/fZdC83zRVcrZrfKjB2lkXuTuKR5DZ -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:55 2026 by rpki-client