This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/WrDYm8Jh31zhJGTUC_dpiv-wj7I.roa File: WrDYm8Jh31zhJGTUC_dpiv-wj7I.roa (raw, json) Hash identifier: Ucgwy0q+o3gSpNAk4WImbGogRXtOj0bzgtNIS5Ghp7Q= Subject key identifier: 5A:B0:D8:9B:C2:61:DF:5C:E1:24:64:D4:0B:F7:69:8A:FF:B0:8F:B2 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA3FD609EB417AA99B5373293C68E3B Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/WrDYm8Jh31zhJGTUC_dpiv-wj7I.roa Signing time: Thu 01 Jan 2026 22:18:23 +0000 ROA not before: Thu 01 Jan 2026 22:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43077 IP address blocks: 45.142.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:fd:60:9e:b4:17:aa:99:b5:37:32:93:c6:8e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ab0d89bc261df5ce12464d40bf7698affb08fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:ca:ea:6c:4d:36:3e:63:08:0e:d4:d9:88: 7d:d9:29:37:34:27:7d:1e:5e:f6:b5:27:ce:7d:a4: 17:1d:1c:74:6c:0d:49:e8:75:a6:27:a7:f4:44:4d: da:49:d9:87:b2:a3:a0:ec:a2:1f:28:8a:72:e6:b1: ef:d8:45:ab:fd:c0:ea:f1:c0:4e:63:58:79:9e:5f: 1f:30:29:b4:35:68:f5:4b:89:6e:af:37:32:9f:8e: 3c:5b:c9:e1:bd:3b:f8:4d:4c:55:52:16:57:26:de: 2d:db:0f:6d:29:2a:0c:f0:71:5d:8a:f5:58:5f:db: b7:cb:28:b8:3c:91:8e:96:db:cf:5a:15:11:c0:51: 2f:da:d7:e2:18:d4:da:3e:7b:b0:db:32:1e:c2:9a: 77:a8:08:91:e3:de:79:f5:54:22:0b:7e:16:ed:99: 26:93:0f:97:0b:b3:a9:cc:fe:36:21:ea:c8:81:01: 62:2a:fc:93:df:2f:dd:fb:5a:d3:ff:32:92:0a:f1: 9a:68:d7:dd:c8:d2:75:e7:c0:74:25:16:61:bb:5b: df:c1:04:6b:e8:a5:d1:e1:35:64:b6:70:42:c1:9f: e2:15:97:7c:4f:57:5b:c3:5c:9d:27:5b:37:cf:d7: 55:89:b8:56:cf:03:26:14:5d:f2:f2:04:d6:cb:d5: ea:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B0:D8:9B:C2:61:DF:5C:E1:24:64:D4:0B:F7:69:8A:FF:B0:8F:B2 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/WrDYm8Jh31zhJGTUC_dpiv-wj7I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.142.121.0/24 Signature Algorithm: sha256WithRSAEncryption 97:a9:ca:1e:2f:c1:a9:6d:48:7b:1e:8c:bf:e7:45:9f:69:35: d1:eb:98:3e:b1:b1:7b:cb:56:99:37:2b:15:b0:88:01:df:50: 09:99:2c:b6:45:c7:ca:de:c7:89:2c:9d:53:4f:c2:f7:b3:3c: 98:d3:d9:c6:0b:d5:52:29:92:55:8b:a3:21:42:7f:86:f0:10: 42:44:a7:38:f4:0f:77:83:43:95:eb:a7:54:a8:67:e6:63:7c: 63:36:83:83:d6:b0:f3:ff:64:e7:14:cc:bb:4d:c9:20:6f:49: 6b:92:e7:c2:e5:4d:fa:b1:9e:03:57:00:59:e6:b5:11:3f:6f: ce:c6:23:fc:4b:e3:c2:4b:be:ff:2c:e8:d1:dd:8a:60:6d:5f: 4c:a5:33:d7:7b:74:6d:8e:f1:be:1c:74:7c:9b:40:ca:d6:d3: 6e:c7:68:72:ac:f6:d0:79:28:a1:df:cb:f1:09:79:25:15:3f: ce:5e:0e:3d:76:47:94:52:ba:63:ea:54:fc:c6:67:b5:ef:3f: e6:46:09:67:b4:e4:3b:d4:b6:29:ea:2f:16:3a:ab:c5:6a:03: 6f:c0:ca:d4:ea:1d:ca:2e:cf:9b:db:8e:ef:b1:da:60:3c:8d: a0:fa:f4:80:f9:a7:31:30:ec:07:e8:48:e9:c6:7f:09:e7:54: 8f:32:5d:8d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o/1gnrQXqpm1NzKTxo47MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YWIwZDg5YmMyNjFkZjVjZTEyNDY0ZDQwYmY3Njk4YWZmYjA4ZmIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBDK6mxNNj5jCA7U2Yh92Sk3NCd9 Hl72tSfOfaQXHRx0bA1J6HWmJ6f0RE3aSdmHsqOg7KIfKIpy5rHv2EWr/cDq8cBO Y1h5nl8fMCm0NWj1S4lurzcyn448W8nhvTv4TUxVUhZXJt4t2w9tKSoM8HFdivVY X9u3yyi4PJGOltvPWhURwFEv2tfiGNTaPnuw2zIewpp3qAiR49559VQiC34W7Zkm kw+XC7OpzP42IerIgQFiKvyT3y/d+1rT/zKSCvGaaNfdyNJ158B0JRZhu1vfwQRr 6KXR4TVktnBCwZ/iFZd8T1dbw1ydJ1s3z9dVibhWzwMmFF3y8gTWy9XqSwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFqw2JvCYd9c4SRk1Av3aYr/sI+yMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvV3JEWW04SmgzMXpoSkdUVUNfZHBpdi13ajdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY55MA0G CSqGSIb3DQEBCwUAA4IBAQCXqcoeL8GpbUh7Hoy/50WfaTXR65g+sbF7y1aZNysV sIgB31AJmSy2RcfK3seJLJ1TT8L3szyY09nGC9VSKZJVi6MhQn+G8BBCRKc49A93 g0OV66dUqGfmY3xjNoOD1rDz/2TnFMy7Tckgb0lrkufC5U36sZ4DVwBZ5rURP2/O xiP8S+PCS77/LOjR3YpgbV9MpTPXe3RtjvG+HHR8m0DK1tNux2hyrPbQeSih38vx CXklFT/OXg49dkeUUrpj6lT8xme17z/mRglntOQ71LYp6i8WOqvFagNvwMrU6h3K Ls+b247vsdpgPI2g+vSA+acxMOwH6Ejpxn8J51SPMl2N -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:42 2026 by rpki-client