This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/17FoDBz0vvrNT1v0Dnazmdsk_sU.roa File: 17FoDBz0vvrNT1v0Dnazmdsk_sU.roa (raw, json) Hash identifier: AqIdUCeZAZ3EbP8xQl2DXjgyGhcpKqR4fZ/ZTTHgZCw= Subject key identifier: D7:B1:68:0C:1C:F4:BE:FA:CD:4F:5B:F4:0E:76:B3:99:DB:24:FE:C5 Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB8373F40EDE7B8B5C4CF75C83A58A Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/17FoDBz0vvrNT1v0Dnazmdsk_sU.roa Signing time: Fri 02 Jan 2026 08:20:48 +0000 ROA not before: Fri 02 Jan 2026 08:20:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213541 IP address blocks: 45.131.162.0/24 maxlen: 24 88.214.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:83:73:f4:0e:de:7b:8b:5c:4c:f7:5c:83:a5:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7b1680c1cf4befacd4f5bf40e76b399db24fec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:36:2f:79:f8:4f:4c:54:05:3d:89:54:84:be: c5:44:15:e4:f2:02:25:58:83:a8:c1:f8:12:f4:2f: 60:e8:d5:cf:dc:82:b3:1c:3c:f2:ab:34:87:81:b3: 58:f5:16:42:29:ff:71:5c:c7:f6:f8:ee:34:80:13: f7:30:c7:75:a1:b2:13:cc:c4:aa:0c:2e:8b:51:5f: 32:8c:2b:80:a4:e2:25:5f:93:80:92:cc:2e:f5:fd: 0a:07:ee:d6:c5:ee:ad:c7:1b:6d:45:e0:4a:c1:94: 2a:6c:63:24:83:ac:da:7f:56:55:de:15:2b:a7:8d: d4:6e:d0:52:48:d9:74:41:94:54:87:6a:5f:94:d9: e1:db:e3:d6:45:54:4e:ec:e8:bc:77:93:79:c8:cd: b9:61:b7:08:bb:11:d6:62:1a:7c:d7:12:4b:2f:41: 5f:81:2c:45:ad:0d:80:e8:61:7a:f9:23:62:db:97: 51:28:74:01:e6:8d:a3:6c:fc:be:ba:52:e7:4d:37: 1f:e1:32:46:e7:2b:3f:b6:4e:f7:9a:c3:95:7b:4b: c0:24:de:a5:69:27:4e:06:e3:c2:bf:e7:da:ac:79: d2:96:5b:9f:34:83:91:45:18:d2:15:7e:8a:64:e7: 8d:69:9c:29:fd:e5:d8:c0:39:fb:fe:f7:14:84:ab: ac:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B1:68:0C:1C:F4:BE:FA:CD:4F:5B:F4:0E:76:B3:99:DB:24:FE:C5 X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/17FoDBz0vvrNT1v0Dnazmdsk_sU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.131.162.0/24 88.214.51.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:a5:b9:54:c9:8a:0c:f9:1e:1a:d3:cb:ea:32:ce:66:55:fb: c7:3a:dc:ad:85:4b:4d:97:cf:92:ac:9e:90:2a:f1:a4:70:17: c9:8d:68:92:58:49:96:22:32:14:40:bb:be:30:3d:a4:ab:5b: cb:58:75:79:5c:d6:9e:2c:fd:92:cf:d7:ff:e9:23:15:4f:f2: d6:f1:28:1a:5f:8a:d5:ed:2a:b9:b2:dc:c2:d1:dd:fa:b4:5b: 7a:4e:6e:4c:07:91:f4:fd:c1:ae:1d:33:a4:74:45:1a:05:2e: 98:1b:2d:c1:62:e9:aa:2e:b4:47:25:ec:71:e6:eb:33:32:1c: 04:da:3f:68:70:41:58:4b:3c:bc:1d:d8:83:49:1f:b4:a0:12: 3f:4d:e4:7e:9d:96:39:76:76:87:71:d2:8e:90:98:96:5f:f8: 4e:9b:e6:51:23:d2:57:b5:e5:f6:c5:5c:8f:d2:47:25:7d:a9: de:be:7d:7e:d7:82:a2:11:a1:1c:e1:f4:b4:45:af:d2:ab:79: 13:e1:f7:4c:91:30:21:2a:c3:8b:bb:7c:e5:d4:bd:74:91:1b: 3e:da:06:e2:fc:ff:d3:27:55:95:7a:58:6e:c9:72:1b:0e:4c: 5c:2e:e0:47:d6:ab:7d:df:98:b8:c3:5a:40:aa:0b:11:f0:89: ea:15:9f:6f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9y4Nz9A7ee4tcTPdcg6WKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2IxNjgwYzFjZjRiZWZhY2Q0ZjViZjQwZTc2YjM5OWRiMjRmZWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTYvefhPTFQFPYlUhL7FRBXk8gIl WIOowfgS9C9g6NXP3IKzHDzyqzSHgbNY9RZCKf9xXMf2+O40gBP3MMd1obITzMSq DC6LUV8yjCuApOIlX5OAkswu9f0KB+7Wxe6txxttReBKwZQqbGMkg6zaf1ZV3hUr p43UbtBSSNl0QZRUh2pflNnh2+PWRVRO7Oi8d5N5yM25YbcIuxHWYhp81xJLL0Ff gSxFrQ2A6GF6+SNi25dRKHQB5o2jbPy+ulLnTTcf4TJG5ys/tk73msOVe0vAJN6l aSdOBuPCv+farHnSllufNIORRRjSFX6KZOeNaZwp/eXYwDn7/vcUhKusqwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNexaAwc9L76zU9b9A52s5nbJP7FMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvMTdGb0RCejB2dnJOVDF2MERuYXptZHNrX3NVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYOiAwQA WNYzMA0GCSqGSIb3DQEBCwUAA4IBAQB8pblUyYoM+R4a08vqMs5mVfvHOtythUtN l8+SrJ6QKvGkcBfJjWiSWEmWIjIUQLu+MD2kq1vLWHV5XNaeLP2Sz9f/6SMVT/LW 8SgaX4rV7Sq5stzC0d36tFt6Tm5MB5H0/cGuHTOkdEUaBS6YGy3BYumqLrRHJexx 5uszMhwE2j9ocEFYSzy8HdiDSR+0oBI/TeR+nZY5dnaHcdKOkJiWX/hOm+ZRI9JX teX2xVyP0kclfanevn1+14KiEaEc4fS0Ra/Sq3kT4fdMkTAhKsOLu3zl1L10kRs+ 2gbi/P/TJ1WVelhuyXIbDkxcLuBH1qt935i4w1pAqgsR8InqFZ9v -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:07 2026 by rpki-client