This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LQflrrI7nlOeedzuEyChu_IGJ90.roa File: LQflrrI7nlOeedzuEyChu_IGJ90.roa (raw, json) Hash identifier: dGiEl5QP2dtquPhuij3P3Bq3W+czrMCQ8Im9JQ8cIvI= Subject key identifier: 2D:07:E5:AE:B2:3B:9E:53:9E:79:DC:EE:13:20:A1:BB:F2:06:27:DD Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9 Certificate serial: 019B791138C738E29A92C4DA4BDD793B5CE0 Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LQflrrI7nlOeedzuEyChu_IGJ90.roa Signing time: Thu 01 Jan 2026 10:18:50 +0000 ROA not before: Thu 01 Jan 2026 10:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5089 IP address blocks: 45.43.168.0/22 maxlen: 22 64.137.0.0/22 maxlen: 22 64.137.4.0/22 maxlen: 22 104.239.68.0/23 maxlen: 23 104.239.70.0/23 maxlen: 23 104.239.120.0/23 maxlen: 23 104.239.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.mft rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:38:c7:38:e2:9a:92:c4:da:4b:dd:79:3b:5c:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9 Validity Not Before: Jan 1 10:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d07e5aeb23b9e539e79dcee1320a1bbf20627dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e0:7a:38:7f:3d:ca:52:1e:9e:0e:dc:ae:63: 43:92:3d:8d:a2:f3:c3:6b:b3:fd:fc:d8:bc:91:99: 2e:67:87:09:13:fc:91:11:54:92:c5:8a:b6:18:c5: e4:d1:c1:03:9f:a8:2d:79:ef:60:71:24:e3:90:c8: 84:30:ba:1b:9c:b2:bb:ff:d0:16:2d:d3:d8:36:7c: f1:8c:b9:c0:6d:41:67:ce:d0:78:ae:13:84:d3:09: 90:b6:b1:fc:c3:52:cb:64:98:3b:32:70:0a:31:64: 06:16:06:08:8b:88:06:e2:12:46:06:bf:f1:d9:17: 53:fd:d6:76:df:70:83:67:e1:9e:4b:25:d3:de:93: db:41:51:79:90:51:97:c6:5a:f5:83:99:dc:be:21: 98:21:53:d8:2c:e7:16:46:51:e7:48:a0:95:b2:40: d2:08:d6:29:ad:55:06:7f:f3:89:40:2c:18:b9:f2: 3a:d1:34:f5:fc:2d:1d:9f:68:7a:dc:3c:d6:0d:1e: 82:5f:42:d9:fe:70:4a:e8:40:47:a1:38:53:82:dc: 61:e2:e1:ac:59:75:38:d3:e2:6b:26:19:da:31:4e: 85:57:43:1c:4a:d6:de:24:85:63:6b:b7:35:07:16: 34:c2:d5:7c:38:85:30:ae:24:00:d6:c3:7b:07:73: 8c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:07:E5:AE:B2:3B:9E:53:9E:79:DC:EE:13:20:A1:BB:F2:06:27:DD X509v3 Authority Key Identifier: keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LQflrrI7nlOeedzuEyChu_IGJ90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.43.168.0/22 64.137.0.0/21 104.239.68.0/22 104.239.120.0/22 Signature Algorithm: sha256WithRSAEncryption 20:e5:e3:8f:2f:53:62:5b:a0:77:81:6d:6d:8f:4a:60:54:23: ac:63:5b:18:e0:79:68:57:ba:75:c0:37:a3:31:85:54:4d:69: a4:51:59:cb:3d:65:13:1c:a8:6e:1a:3e:74:1d:81:5a:fb:9d: 17:24:22:1a:15:8f:1c:d0:6a:3d:bf:ab:3b:65:1c:15:5b:b2: 84:06:ec:00:bc:d8:cc:9d:93:f6:99:0c:07:45:8b:72:11:76: 77:81:d5:a5:83:8e:5e:b7:f6:12:d2:7f:e5:6b:9a:63:e8:38: 26:fc:eb:9d:fc:63:f1:e2:ff:ae:8c:46:2e:78:7d:16:75:e4: e3:6e:a0:87:d7:78:a9:bc:d5:fe:f7:f7:86:36:b5:6e:16:77: a7:20:77:0c:6b:6a:41:58:dd:c8:87:7c:1e:e0:fd:60:22:3f: dd:51:8b:2a:b7:db:f1:49:c3:25:db:f7:62:7f:f8:bf:62:ed: 5a:f7:81:b3:f6:13:7c:cf:0a:20:73:10:63:d9:60:73:54:97: 74:fb:bf:15:a7:eb:86:7e:d1:f2:27:f2:17:f6:64:b9:f1:0c: 88:99:d7:62:2d:c7:08:08:44:5f:0c:75:03:55:d6:90:37:bb: c3:ce:01:c1:1e:78:f5:d8:fb:13:1c:08:4d:47:29:83:9f:83: d3:ae:3a:c1 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt5ETjHOOKaksTaS915O1zgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj Mzg1ZTkwHhcNMjYwMTAxMTAxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDA3ZTVhZWIyM2I5ZTUzOWU3OWRjZWUxMzIwYTFiYmYyMDYyN2RkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOB6OH89ylIeng7crmNDkj2NovPD a7P9/Ni8kZkuZ4cJE/yREVSSxYq2GMXk0cEDn6gtee9gcSTjkMiEMLobnLK7/9AW LdPYNnzxjLnAbUFnztB4rhOE0wmQtrH8w1LLZJg7MnAKMWQGFgYIi4gG4hJGBr/x 2RdT/dZ233CDZ+GeSyXT3pPbQVF5kFGXxlr1g5ncviGYIVPYLOcWRlHnSKCVskDS CNYprVUGf/OJQCwYufI60TT1/C0dn2h63DzWDR6CX0LZ/nBK6EBHoThTgtxh4uGs WXU40+JrJhnaMU6FV0McStbeJIVja7c1BxY0wtV8OIUwriQA1sN7B3OMqQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFC0H5a6yO55Tnnnc7hMgobvyBifdMB8GA1UdIwQY MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt ZmIwNzk1NWYzYWFhLzEvTFFmbHJySTdubE9lZWR6dUV5Q2h1X0lHSjkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCLSuoAwQD QIkAAwQCaO9EAwQCaO94MA0GCSqGSIb3DQEBCwUAA4IBAQAg5eOPL1NiW6B3gW1t j0pgVCOsY1sY4HloV7p1wDejMYVUTWmkUVnLPWUTHKhuGj50HYFa+50XJCIaFY8c 0Go9v6s7ZRwVW7KEBuwAvNjMnZP2mQwHRYtyEXZ3gdWlg45et/YS0n/la5pj6Dgm /Oud/GPx4v+ujEYueH0WdeTjbqCH13ipvNX+9/eGNrVuFnenIHcMa2pBWN3Ih3we 4P1gIj/dUYsqt9vxScMl2/dif/i/Yu1a94Gz9hN8zwogcxBj2WBzVJd0+78Vp+uG ftHyJ/IX9mS58QyImddiLccICERfDHUDVdaQN7vDzgHBHnj12PsTHAhNRymDn4PT rjrB -----END CERTIFICATE-----Generated at Fri Jan 2 02:39:45 2026 by rpki-client