This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/DQbU1FQtLInlSI4uyu5Dx3jibEU.roa File: DQbU1FQtLInlSI4uyu5Dx3jibEU.roa (raw, json) Hash identifier: V0YdQFI5mVUHgxt3LiTGs5krxL2r/ymQxSh9f44nL2w= Subject key identifier: 0D:06:D4:D4:54:2D:2C:89:E5:48:8E:2E:CA:EE:43:C7:78:E2:6C:45 Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB6B7055FF94E1E8B9C7B025DE1867 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/DQbU1FQtLInlSI4uyu5Dx3jibEU.roa Signing time: Fri 02 Jan 2026 08:20:41 +0000 ROA not before: Fri 02 Jan 2026 08:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51659 IP address blocks: 45.144.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:6b:70:55:ff:94:e1:e8:b9:c7:b0:25:de:18:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d06d4d4542d2c89e5488e2ecaee43c778e26c45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:46:24:cd:2c:6c:99:3d:97:69:76:b0:36:4c: 4f:ed:4b:9c:b0:ef:c7:59:83:4f:e4:53:77:c7:79: a8:60:58:2e:72:14:ca:25:84:81:80:a9:cf:b1:d2: 59:72:a2:56:cd:77:e9:d2:bc:95:20:f4:9f:ef:b6: 38:bb:22:5c:18:10:67:fa:61:d0:95:99:aa:1e:68: b6:0a:ed:8b:b7:86:78:35:dc:42:e3:93:34:4d:4a: 21:0e:da:94:d6:9a:98:a5:c1:df:12:66:9c:b9:f8: 06:16:9c:80:84:d6:ec:9b:ce:94:81:5a:44:34:c0: e3:9e:b5:50:c8:d3:36:f8:60:be:6c:8c:4d:fe:6d: a2:22:c9:ba:f9:5e:99:ec:7b:69:95:36:5a:a1:48: 39:33:ba:16:c7:83:f3:7a:18:75:13:c3:f5:83:a8: 90:9f:45:dd:2a:04:2b:dd:89:9b:53:df:bc:28:84: b8:95:53:85:c8:09:14:34:80:5a:5b:31:7c:4f:94: b7:00:52:1a:7c:e7:81:b5:22:c6:e0:d3:de:8c:3d: 42:3a:bf:02:4e:10:95:59:0f:68:59:01:a4:9b:1a: 99:4c:04:a1:22:16:4f:28:ca:0f:06:64:2e:b3:c8: 5c:8e:1c:32:f5:39:21:0e:5e:34:d5:f7:09:ad:7c: 6a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:06:D4:D4:54:2D:2C:89:E5:48:8E:2E:CA:EE:43:C7:78:E2:6C:45 X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/DQbU1FQtLInlSI4uyu5Dx3jibEU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.2.0/23 Signature Algorithm: sha256WithRSAEncryption a0:e9:39:83:b9:4a:c0:7a:f3:60:de:c0:da:2c:85:fd:6b:39: 30:53:b3:3b:00:e9:b9:ab:a9:95:df:ed:0d:37:46:b7:a0:6c: 69:cd:a2:28:c4:57:39:c2:b7:7d:d7:d0:bc:98:12:5d:cc:30: c8:10:bd:b1:cc:49:e4:dd:20:80:d6:8b:b2:2d:0c:8a:4a:08: 08:62:5b:66:a6:58:ee:5e:86:8f:94:84:a4:63:46:ea:70:ea: e9:a4:fb:4a:3b:7f:63:73:13:e6:92:bf:48:58:63:63:3c:36: b8:40:67:62:f9:26:eb:66:e7:d3:a9:ca:2e:9b:4a:ed:84:b9: c4:42:59:f0:bb:de:8c:c4:99:ad:6b:b3:5a:19:55:13:66:0b: 06:3d:0b:3d:a8:5b:b3:29:c3:40:16:b0:5b:85:8c:ff:b0:43: 79:f9:ce:36:a7:ce:43:a9:18:20:e7:88:b0:b8:a6:f4:5f:2c: 11:ce:3c:b6:1a:ad:ad:dd:7b:c2:f3:4f:b0:c7:f0:a6:ac:22: d9:3b:45:67:7e:89:8b:20:cb:d0:6f:0c:a6:e8:69:fb:68:0c: 18:d1:4b:54:e0:8e:70:a0:80:e4:50:f4:d6:80:10:74:78:9c: 6f:10:44:9d:28:c6:f9:fc:eb:b7:d3:60:8d:9e:6a:e1:20:8a: c2:53:e0:ba -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y2twVf+U4ei5x7Al3hhnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDA2ZDRkNDU0MmQyYzg5ZTU0ODhlMmVjYWVlNDNjNzc4ZTI2YzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0YkzSxsmT2XaXawNkxP7UucsO/H WYNP5FN3x3moYFguchTKJYSBgKnPsdJZcqJWzXfp0ryVIPSf77Y4uyJcGBBn+mHQ lZmqHmi2Cu2Lt4Z4NdxC45M0TUohDtqU1pqYpcHfEmacufgGFpyAhNbsm86UgVpE NMDjnrVQyNM2+GC+bIxN/m2iIsm6+V6Z7HtplTZaoUg5M7oWx4Pzehh1E8P1g6iQ n0XdKgQr3YmbU9+8KIS4lVOFyAkUNIBaWzF8T5S3AFIafOeBtSLG4NPejD1COr8C ThCVWQ9oWQGkmxqZTAShIhZPKMoPBmQus8hcjhwy9TkhDl401fcJrXxqgQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA0G1NRULSyJ5UiOLsruQ8d44mxFMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvRFFiVTFGUXRMSW5sU0k0dXl1NUR4M2ppYkVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZACMA0G CSqGSIb3DQEBCwUAA4IBAQCg6TmDuUrAevNg3sDaLIX9azkwU7M7AOm5q6mV3+0N N0a3oGxpzaIoxFc5wrd919C8mBJdzDDIEL2xzEnk3SCA1ouyLQyKSggIYltmplju XoaPlISkY0bqcOrppPtKO39jcxPmkr9IWGNjPDa4QGdi+SbrZufTqcoum0rthLnE Qlnwu96MxJmta7NaGVUTZgsGPQs9qFuzKcNAFrBbhYz/sEN5+c42p85DqRgg54iw uKb0XywRzjy2Gq2t3XvC80+wx/CmrCLZO0VnfomLIMvQbwym6Gn7aAwY0UtU4I5w oIDkUPTWgBB0eJxvEESdKMb5/Ou302CNnmrhIIrCU+C6 -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:11 2026 by rpki-client