This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/vDnbaMULxyIWaTcjKV6o0Kz5NsY.roa File: vDnbaMULxyIWaTcjKV6o0Kz5NsY.roa (raw, json) Hash identifier: VkMZI4XZflYr3OLO6/Yj7W9mzFRpu+Lxf4dzvpbX+Wk= Subject key identifier: BC:39:DB:68:C5:0B:C7:22:16:69:37:23:29:5E:A8:D0:AC:F9:36:C6 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA3FA88E90D223457A125EBA9DF1D14 Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/vDnbaMULxyIWaTcjKV6o0Kz5NsY.roa Signing time: Thu 01 Jan 2026 22:18:22 +0000 ROA not before: Thu 01 Jan 2026 22:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 45.86.44.0/24 maxlen: 24 45.86.45.0/24 maxlen: 24 45.86.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:fa:88:e9:0d:22:34:57:a1:25:eb:a9:df:1d:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc39db68c50bc72216693723295ea8d0acf936c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:97:4c:b8:e0:da:5e:27:17:c7:c6:9b:d9:7c: 1e:62:cc:60:9d:8f:2b:20:27:1c:9e:c0:b6:f2:75: 00:cb:37:b4:db:2e:b9:ab:bd:24:c3:fd:88:03:50: a6:ec:a9:21:75:ff:01:e9:df:18:d5:56:2e:d6:41: 52:8e:09:59:ea:cc:e4:4a:02:04:0f:5e:fd:bb:fa: 13:d7:6d:ac:8a:8c:bc:cf:54:60:cb:16:8a:64:54: fa:ab:9c:9e:74:a0:8c:d2:f1:05:ee:48:1a:9b:44: 66:99:2b:55:2c:f4:33:54:b8:50:92:ad:b1:b9:78: 09:24:82:ed:6f:8d:d8:dd:55:90:09:a9:6f:2d:c1: 8d:2c:31:fe:b5:e7:f4:b5:ea:98:d2:60:e0:7e:2e: 80:c1:0c:7c:1c:e0:3d:dd:13:7b:36:cf:88:74:7e: 52:76:bc:f1:3c:b6:16:f8:2b:4c:78:8d:9c:3a:6e: 35:0b:c1:eb:8d:fb:9d:ff:2a:0d:e6:14:e1:e7:67: 68:bf:04:0a:c2:19:7f:96:12:df:6d:18:b6:4b:f4: c9:1f:c1:b8:e7:05:f1:40:5c:96:a2:da:e7:98:d8: 95:15:e6:aa:78:b0:11:15:7b:4f:ad:a1:be:d1:35: a7:f7:c5:1e:c7:45:d0:ae:21:44:e4:cd:5e:ae:55: ca:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:39:DB:68:C5:0B:C7:22:16:69:37:23:29:5E:A8:D0:AC:F9:36:C6 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/vDnbaMULxyIWaTcjKV6o0Kz5NsY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.86.44.0-45.86.46.255 Signature Algorithm: sha256WithRSAEncryption 14:04:ce:f1:64:6f:86:d8:34:eb:a6:5d:3e:c3:56:75:6e:a7: 0c:73:c4:fa:33:fe:ba:3e:46:ba:bc:6d:69:d9:50:49:cb:ad: a9:cb:85:ae:50:3e:f7:fd:3f:72:28:95:4e:70:e6:67:d2:bd: 6e:27:ee:82:45:55:00:de:91:53:2f:54:a9:2b:da:f2:af:dd: c2:a2:d2:d7:a6:0f:ce:d9:1f:fd:a2:16:49:f5:ea:6d:d4:dd: ba:ab:f2:77:e5:a7:1c:2d:61:fd:21:54:2e:24:ea:ea:e2:f7: 7c:0f:42:77:07:33:85:d2:2a:46:92:10:9c:c2:5a:df:c9:2a: fc:43:c5:7b:a9:7c:b6:b6:37:05:68:a1:ce:26:9a:e7:50:71: c9:12:8f:9f:a1:17:6a:73:09:14:4b:a7:47:b8:62:3f:bb:78: 30:e8:fe:ab:e2:fe:d3:89:f3:33:ef:4f:2c:76:af:95:74:1c: 32:b7:72:76:63:d7:b3:73:27:c6:3d:2c:f5:43:46:b9:1b:9a: 92:bf:9a:c2:dd:5a:ea:77:94:77:b0:d7:fa:a8:a1:40:78:15: 04:04:de:d0:97:09:6a:38:bb:66:67:be:a6:54:93:8c:db:d8: 43:66:e6:67:ee:0a:a9:f8:37:03:aa:51:df:ea:88:39:74:4f: ce:fc:4e:15 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt7o/qI6Q0iNFehJeup3x0UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzM5ZGI2OGM1MGJjNzIyMTY2OTM3MjMyOTVlYThkMGFjZjkzNmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZdMuODaXicXx8ab2XweYsxgnY8r ICccnsC28nUAyze02y65q70kw/2IA1Cm7Kkhdf8B6d8Y1VYu1kFSjglZ6szkSgIE D179u/oT122sioy8z1RgyxaKZFT6q5yedKCM0vEF7kgam0RmmStVLPQzVLhQkq2x uXgJJILtb43Y3VWQCalvLcGNLDH+tef0teqY0mDgfi6AwQx8HOA93RN7Ns+IdH5S drzxPLYW+CtMeI2cOm41C8Hrjfud/yoN5hTh52dovwQKwhl/lhLfbRi2S/TJH8G4 5wXxQFyWotrnmNiVFeaqeLARFXtPraG+0TWn98Uex0XQriFE5M1erlXK8QIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFLw522jFC8ciFmk3IyleqNCs+TbGMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvdkRuYmFNVUx4eUlXYVRjaktWNm8wS3o1TnNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAItViwD BAAtVi4wDQYJKoZIhvcNAQELBQADggEBABQEzvFkb4bYNOumXT7DVnVupwxzxPoz /ro+Rrq8bWnZUEnLranLha5QPvf9P3IolU5w5mfSvW4n7oJFVQDekVMvVKkr2vKv 3cKi0temD87ZH/2iFkn16m3U3bqr8nflpxwtYf0hVC4k6uri93wPQncHM4XSKkaS EJzCWt/JKvxDxXupfLa2NwVooc4mmudQcckSj5+hF2pzCRRLp0e4Yj+7eDDo/qvi /tOJ8zPvTyx2r5V0HDK3cnZj17NzJ8Y9LPVDRrkbmpK/msLdWup3lHew1/qooUB4 FQQE3tCXCWo4u2ZnvqZUk4zb2ENm5mfuCqn4NwOqUd/qiDl0T878ThU= -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:44 2026 by rpki-client