This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Y0eOprsj9wqAGkML53WWTph4J-k.roa File: Y0eOprsj9wqAGkML53WWTph4J-k.roa (raw, json) Hash identifier: 5sToUouzuitRSH5svSzZ+orwEiO78EVtVE53fGJ6UEI= Subject key identifier: 63:47:8E:A6:BB:23:F7:0A:80:1A:43:0B:E7:75:96:4E:98:78:27:E9 Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9 Certificate serial: 019B791142AF7636778B2B8B50C72A3F68D1 Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Y0eOprsj9wqAGkML53WWTph4J-k.roa Signing time: Thu 01 Jan 2026 10:18:52 +0000 ROA not before: Thu 01 Jan 2026 10:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44477 IP address blocks: 45.150.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.mft rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:42:af:76:36:77:8b:2b:8b:50:c7:2a:3f:68:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9 Validity Not Before: Jan 1 10:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63478ea6bb23f70a801a430be775964e987827e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ba:d6:3c:f6:b9:69:10:14:e8:35:ee:c9:94: 5a:eb:01:fd:3d:79:ab:54:f8:ac:0f:e0:fd:95:3c: 8f:87:90:c2:51:8b:fc:e9:4d:d9:37:26:04:4c:9e: 1c:52:83:ff:13:d0:3e:a9:02:52:8e:41:67:49:2c: f4:ad:ae:12:ba:84:69:93:95:85:dd:8e:43:37:85: e6:e2:38:52:5e:57:3d:15:82:55:79:05:b4:16:17: 15:35:26:31:1a:61:63:13:5c:7c:c8:be:cf:c4:e0: 9a:81:a1:08:e4:75:64:73:c5:1b:6e:67:02:d8:e3: e5:78:e1:53:6c:f2:ed:e5:39:fc:f9:40:b8:dd:b6: bb:02:48:9e:bb:38:06:be:e6:31:a2:0f:6b:9d:ab: a1:2a:28:47:e4:ca:99:6b:2e:32:6a:ae:e2:76:60: 09:fe:72:9a:6c:37:fb:57:a5:ae:ff:80:bf:37:61: f4:14:88:26:f7:81:0d:68:83:a6:2c:25:d7:a8:fd: 3e:72:55:12:d6:f4:a1:50:b7:9a:2a:0a:ce:f2:20: c2:f8:da:de:54:b7:1a:e6:c9:87:aa:c0:d8:7f:77: 57:23:54:b1:7e:b0:57:32:c5:60:34:c2:51:86:a8: 62:a5:98:8b:cc:0d:e5:53:82:b0:44:89:7b:f1:d0: ab:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:47:8E:A6:BB:23:F7:0A:80:1A:43:0B:E7:75:96:4E:98:78:27:E9 X509v3 Authority Key Identifier: keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Y0eOprsj9wqAGkML53WWTph4J-k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.150.35.0/24 Signature Algorithm: sha256WithRSAEncryption 66:ea:95:f5:ca:21:65:63:4b:6e:c3:91:53:50:3c:e4:2d:54: 18:76:52:bf:45:d1:80:b0:a9:6c:34:b9:b8:90:af:57:4c:28: dc:2d:af:6f:b3:c9:2f:16:9a:fe:dd:31:dc:2d:f8:c2:92:f2: 3b:a0:26:9b:5a:bf:34:f9:e9:db:c5:b6:7b:bd:88:c2:4b:07: ee:30:68:9c:0e:b6:0e:d3:9e:32:68:37:f1:e7:04:27:2e:d0: e3:51:87:4f:3f:0d:5f:d2:24:0a:44:f1:49:6b:fc:66:82:8a: 1d:da:2f:05:0e:63:4a:19:f9:39:9c:a0:5f:f1:fe:9d:bf:0a: d2:8c:ae:04:dc:1f:e2:ec:89:8d:16:03:ed:04:bf:cf:9b:b5: 23:03:2f:70:7f:27:13:a7:cf:4a:e1:3e:3c:2b:c1:22:91:51: 8c:d5:96:35:f9:c1:b9:24:2d:db:11:43:15:6a:c4:89:56:5e: c9:78:43:23:c8:b0:e2:4c:86:61:20:8b:62:d5:f6:c1:01:39: 50:cb:a9:84:cd:23:3e:a3:40:64:56:ef:ce:4a:be:ee:85:58: 3e:0c:a0:2a:aa:da:70:06:db:b9:f8:2e:c6:ef:01:b9:2d:84: 89:97:51:fe:f5:7c:70:50:95:59:b1:6e:85:8c:91:a2:41:95: 70:91:1d:14 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EUKvdjZ3iyuLUMcqP2jRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj Mzg1ZTkwHhcNMjYwMTAxMTAxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MzQ3OGVhNmJiMjNmNzBhODAxYTQzMGJlNzc1OTY0ZTk4NzgyN2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7rWPPa5aRAU6DXuyZRa6wH9PXmr VPisD+D9lTyPh5DCUYv86U3ZNyYETJ4cUoP/E9A+qQJSjkFnSSz0ra4SuoRpk5WF 3Y5DN4Xm4jhSXlc9FYJVeQW0FhcVNSYxGmFjE1x8yL7PxOCagaEI5HVkc8UbbmcC 2OPleOFTbPLt5Tn8+UC43ba7AkieuzgGvuYxog9rnauhKihH5MqZay4yaq7idmAJ /nKabDf7V6Wu/4C/N2H0FIgm94ENaIOmLCXXqP0+clUS1vShULeaKgrO8iDC+Nre VLca5smHqsDYf3dXI1SxfrBXMsVgNMJRhqhipZiLzA3lU4KwRIl78dCrawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGNHjqa7I/cKgBpDC+d1lk6YeCfpMB8GA1UdIwQY MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt ZmIwNzk1NWYzYWFhLzEvWTBlT3Byc2o5d3FBR2tNTDUzV1dUcGg0Si1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZYjMA0G CSqGSIb3DQEBCwUAA4IBAQBm6pX1yiFlY0tuw5FTUDzkLVQYdlK/RdGAsKlsNLm4 kK9XTCjcLa9vs8kvFpr+3THcLfjCkvI7oCabWr80+enbxbZ7vYjCSwfuMGicDrYO 054yaDfx5wQnLtDjUYdPPw1f0iQKRPFJa/xmgood2i8FDmNKGfk5nKBf8f6dvwrS jK4E3B/i7ImNFgPtBL/Pm7UjAy9wfycTp89K4T48K8EikVGM1ZY1+cG5JC3bEUMV asSJVl7JeEMjyLDiTIZhIIti1fbBATlQy6mEzSM+o0BkVu/OSr7uhVg+DKAqqtpw Btu5+C7G7wG5LYSJl1H+9XxwUJVZsW6FjJGiQZVwkR0U -----END CERTIFICATE-----Generated at Fri Jan 2 02:38:59 2026 by rpki-client