This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/cX6Yew-a8YUF7vavg9BTxZRqe_4.roa File: cX6Yew-a8YUF7vavg9BTxZRqe_4.roa (raw, json) Hash identifier: 1ueNSCqqvjux7zZZsDYjg0VzkKE8OG5bTf0iOqV0bxA= Subject key identifier: 71:7E:98:7B:0F:9A:F1:85:05:EE:F6:AF:83:D0:53:C5:94:6A:7B:FE Certificate issuer: /CN=02b610cd43bafced91480fabfdcaae82049fbf71 Certificate serial: 019B7F1603ED1DB8DA9AA6870A51BC9BE00D Authority key identifier: 02:B6:10:CD:43:BA:FC:ED:91:48:0F:AB:FD:CA:AE:82:04:9F:BF:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArYQzUO6_O2RSA-r_cquggSfv3E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/cX6Yew-a8YUF7vavg9BTxZRqe_4.roa Signing time: Fri 02 Jan 2026 14:21:47 +0000 ROA not before: Fri 02 Jan 2026 14:21:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 45.152.114.0/23 maxlen: 23 2a03:70c1:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/ArYQzUO6_O2RSA-r_cquggSfv3E.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/ArYQzUO6_O2RSA-r_cquggSfv3E.mft rsync://rpki.ripe.net/repository/DEFAULT/ArYQzUO6_O2RSA-r_cquggSfv3E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 08:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:16:03:ed:1d:b8:da:9a:a6:87:0a:51:bc:9b:e0:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02b610cd43bafced91480fabfdcaae82049fbf71 Validity Not Before: Jan 2 14:21:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=717e987b0f9af18505eef6af83d053c5946a7bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:11:90:c5:83:a2:a7:a4:41:d1:1c:03:37: 0b:e7:dc:29:2c:88:02:90:68:94:7d:65:5f:c3:81: 36:11:a5:6d:b7:ed:f5:23:3c:b1:32:74:f8:81:66: 81:8d:10:e0:68:66:a5:7d:70:fe:c9:30:f7:10:98: 7e:16:bb:20:a2:cc:0f:3e:3c:c1:82:9c:bd:54:9a: 49:0c:5e:93:c4:c9:3e:c1:c9:6e:74:a8:fc:99:61: f6:e5:d7:e4:d9:9c:f4:51:8d:91:a5:c9:0e:38:03: 82:09:d0:42:8b:62:bb:13:79:b6:9f:df:91:b5:ee: 36:22:3b:9c:f4:3a:82:41:a0:3c:fb:41:32:87:eb: 0d:bb:b9:a0:5b:77:d1:38:a1:df:86:ce:a3:3d:bb: 10:bc:b9:9b:1b:c7:59:d1:19:84:a4:a5:0a:c2:08: 3d:72:a7:ed:e6:17:de:23:bc:4d:88:a6:9e:31:a5: b7:8b:86:3c:4b:bf:7b:06:3d:9a:42:96:8d:d9:20: 54:8b:a3:66:52:a2:a0:1c:46:22:db:37:80:9f:f8: 60:ad:4c:37:66:71:a3:ec:5c:da:f0:3d:62:e8:25: d4:c7:32:d6:e5:13:6e:ea:75:49:f5:9b:8d:1f:2d: 03:2f:44:ce:07:91:31:da:c4:92:7b:ff:83:e9:ab: f4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7E:98:7B:0F:9A:F1:85:05:EE:F6:AF:83:D0:53:C5:94:6A:7B:FE X509v3 Authority Key Identifier: keyid:02:B6:10:CD:43:BA:FC:ED:91:48:0F:AB:FD:CA:AE:82:04:9F:BF:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArYQzUO6_O2RSA-r_cquggSfv3E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/cX6Yew-a8YUF7vavg9BTxZRqe_4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/ArYQzUO6_O2RSA-r_cquggSfv3E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.114.0/23 IPv6: 2a03:70c1:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 14:ed:4d:44:f9:e7:c4:6e:f6:f9:a4:d2:b5:c5:d3:96:e1:74: 8f:cb:20:24:42:60:e8:b6:a3:40:15:d8:0e:89:92:3d:1c:4f: 79:17:ca:be:48:fd:bb:79:03:fd:87:b4:b5:9b:1d:ba:e0:7b: 07:36:46:ee:30:e0:4b:c3:1b:48:f0:94:ff:90:64:3f:60:77: 77:c6:ec:2b:78:36:d9:d2:a9:7f:24:80:bd:bc:20:79:c5:72: 52:3a:d0:6a:f5:6b:de:7a:a4:89:5e:7b:fc:c2:be:71:e2:7b: ac:cd:5c:0c:6b:b7:e6:2e:1d:e1:13:67:71:f0:8e:01:0c:44: ed:ab:00:7f:ec:ab:4a:00:c2:d5:5d:88:6a:b6:82:46:51:00: c5:56:8d:2c:50:d9:2c:d8:42:44:01:95:6b:9e:59:b3:0d:15: 80:4d:15:88:fd:4f:0d:c3:e8:6a:ee:4b:48:68:1b:6e:5a:a0: 84:b7:d5:19:7f:f5:71:a3:34:3c:2f:8b:4d:2f:8d:60:e7:f0: 6e:33:b4:f5:a1:93:0f:22:08:4b:1c:85:92:66:96:8d:fd:de: 43:7b:a6:ce:c7:c1:5c:dd:2d:f1:2e:1f:3c:32:30:1f:ea:31: 1f:a4:c2:8d:a2:fe:c0:39:3b:e6:fc:65:56:04:9f:18:6a:e7: 26:c9:26:e7 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/FgPtHbjamqaHClG8m+ANMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyYjYxMGNkNDNiYWZjZWQ5MTQ4MGZhYmZkY2FhZTgyMDQ5 ZmJmNzEwHhcNMjYwMTAyMTQyMTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTdlOTg3YjBmOWFmMTg1MDVlZWY2YWY4M2QwNTNjNTk0NmE3YmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0ERkMWDoqekQdEcAzcL59wpLIgC kGiUfWVfw4E2EaVtt+31IzyxMnT4gWaBjRDgaGalfXD+yTD3EJh+FrsgoswPPjzB gpy9VJpJDF6TxMk+wcludKj8mWH25dfk2Zz0UY2RpckOOAOCCdBCi2K7E3m2n9+R te42Ijuc9DqCQaA8+0Eyh+sNu7mgW3fROKHfhs6jPbsQvLmbG8dZ0RmEpKUKwgg9 cqft5hfeI7xNiKaeMaW3i4Y8S797Bj2aQpaN2SBUi6NmUqKgHEYi2zeAn/hgrUw3 ZnGj7Fza8D1i6CXUxzLW5RNu6nVJ9ZuNHy0DL0TOB5Ex2sSSe/+D6av0UQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFHF+mHsPmvGFBe72r4PQU8WUanv+MB8GA1UdIwQY MBaAFAK2EM1DuvztkUgPq/3KroIEn79xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXJZUXpVTzZfTzJSU0Etcl9jcXVnZ1NmdjNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9lM2RlY2MtM2VmNy00Y2IyLTgxZDEt OTAxM2NhOTk2YjE2LzEvY1g2WWV3LWE4WVVGN3Zhdmc5QlR4WlJxZV80LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS9lM2RlY2MtM2VmNy00Y2IyLTgxZDEtOTAxM2NhOTk2YjE2 LzEvQXJZUXpVTzZfTzJSU0Etcl9jcXVnZ1NmdjNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBLZhyMA8E AgACMAkDBwAqA3DB//8wDQYJKoZIhvcNAQELBQADggEBABTtTUT558Ru9vmk0rXF 05bhdI/LICRCYOi2o0AV2A6Jkj0cT3kXyr5I/bt5A/2HtLWbHbrgewc2Ru4w4EvD G0jwlP+QZD9gd3fG7Ct4NtnSqX8kgL28IHnFclI60Gr1a956pIlee/zCvnHie6zN XAxrt+YuHeETZ3HwjgEMRO2rAH/sq0oAwtVdiGq2gkZRAMVWjSxQ2SzYQkQBlWue WbMNFYBNFYj9Tw3D6GruS0hoG25aoIS31Rl/9XGjNDwvi00vjWDn8G4ztPWhkw8i CEschZJmlo393kN7ps7HwVzdLfEuHzwyMB/qMR+kwo2i/sA5O+b8ZVYEnxhq5ybJ Juc= -----END CERTIFICATE-----Generated at Fri Jan 9 17:06:35 2026 by rpki-client