This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/1s1Anh1QdawOquhsQec7nqu-SG0.roa File: 1s1Anh1QdawOquhsQec7nqu-SG0.roa (raw, json) Hash identifier: 6504PhSQMgZrsrEiZwvBZyN4RItbFrKjL7CmPL9wxiY= Subject key identifier: D6:CD:40:9E:1D:50:75:AC:0E:AA:E8:6C:41:E7:3B:9E:AB:BE:48:6D Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318 Certificate serial: 019B7C136045CD4C74C93566454A55E07D99 Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/1s1Anh1QdawOquhsQec7nqu-SG0.roa Signing time: Fri 02 Jan 2026 00:20:03 +0000 ROA not before: Fri 02 Jan 2026 00:20:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206238 IP address blocks: 45.83.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.mft rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 Jan 2026 01:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:60:45:cd:4c:74:c9:35:66:45:4a:55:e0:7d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318 Validity Not Before: Jan 2 00:20:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6cd409e1d5075ac0eaae86c41e73b9eabbe486d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:92:c1:f9:5d:1e:fb:25:a4:eb:9c:55:09:ca: 46:c8:75:13:16:48:b6:a4:6e:12:39:4a:cd:71:88: 9b:79:a2:48:92:e2:75:a6:22:8f:08:72:e8:66:80: 41:bf:4f:91:52:d2:00:7b:e3:d5:32:dc:49:0d:f6: 56:bc:f1:35:cd:09:9b:ab:f3:ae:d8:58:9b:9a:5e: 9a:3f:4d:fa:af:88:be:8e:9f:da:73:31:1c:02:ca: 55:dc:ac:f7:58:7b:65:74:fc:cb:5f:d0:00:ba:30: 92:d4:4d:52:98:00:b3:be:5e:08:e2:65:2d:fc:e4: a6:a3:10:d7:6f:75:c1:c9:68:9e:15:57:f9:cd:89: a3:72:8f:5c:d9:ad:74:ee:16:3c:df:7b:ad:3f:9b: 9d:fd:b4:7a:5a:90:4a:53:00:03:35:01:ed:eb:9c: 06:05:fc:74:48:bf:57:0c:09:c1:0a:91:8a:68:68: 30:ee:7e:0c:a2:4f:27:f7:4c:63:0d:cd:3f:94:d9: 1f:b4:d9:f3:9c:85:5d:53:91:69:2d:4b:17:c9:ad: b9:8f:83:04:e2:ec:56:fc:cc:d1:9d:b1:88:95:e5: 80:49:48:ff:96:98:a2:e7:17:94:87:0b:3c:56:91: 53:4a:d8:e2:f3:1c:cb:d2:26:63:a0:dd:5f:ef:f1: 70:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:CD:40:9E:1D:50:75:AC:0E:AA:E8:6C:41:E7:3B:9E:AB:BE:48:6D X509v3 Authority Key Identifier: keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/1s1Anh1QdawOquhsQec7nqu-SG0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.83.240.0/22 Signature Algorithm: sha256WithRSAEncryption 04:61:33:5d:17:f4:6f:85:9a:98:a0:3e:4f:cd:17:ab:27:48: 53:db:c0:27:39:7d:91:fa:85:79:50:30:85:10:0c:af:c4:4e: de:7b:7d:b0:33:dc:44:83:7d:c0:ac:69:15:ba:6c:56:ee:1e: 5d:19:db:17:41:7e:25:1e:b6:76:be:69:ca:8b:62:c8:c5:c3: 8e:93:33:f2:5a:7c:64:50:dc:7f:cd:ba:9d:4f:f7:90:1d:0e: a9:aa:37:40:72:df:de:f3:b5:86:3d:6f:cd:90:0f:9f:a8:64: 25:03:85:2f:1a:8d:93:27:96:fe:12:78:0d:f6:57:66:55:1f: 95:22:c3:52:cb:22:e5:da:27:a8:1d:8f:08:0f:72:42:6e:06: b1:50:63:52:30:e0:9c:d7:05:1a:71:61:86:a9:b8:e8:19:e2: 37:29:a3:e7:6c:33:2d:bd:75:a3:d3:0b:8c:1e:c2:43:a7:a7: c0:50:0a:7b:b7:70:dd:85:65:a2:ad:f2:9b:5e:da:4f:c6:12: 37:71:ac:96:0d:c0:59:b1:45:24:eb:be:2b:3c:43:c2:e5:43: f8:a5:f4:16:c8:2a:e9:b4:6c:fc:27:a5:d3:03:48:63:4b:95: 29:1d:0a:d7:89:8c:c6:8a:6c:ec:62:71:7f:ed:e6:69:4c:06: 33:fe:2f:94 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E2BFzUx0yTVmRUpV4H2ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMWMxMTY1OGQyMDQxZWFmMjUwMmZlNTQwOGVkNDkzYmJk NGYzMTgwHhcNMjYwMTAyMDAyMDAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNmNkNDA5ZTFkNTA3NWFjMGVhYWU4NmM0MWU3M2I5ZWFiYmU0ODZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA45LB+V0e+yWk65xVCcpGyHUTFki2 pG4SOUrNcYibeaJIkuJ1piKPCHLoZoBBv0+RUtIAe+PVMtxJDfZWvPE1zQmbq/Ou 2Fibml6aP036r4i+jp/aczEcAspV3Kz3WHtldPzLX9AAujCS1E1SmACzvl4I4mUt /OSmoxDXb3XByWieFVf5zYmjco9c2a107hY833utP5ud/bR6WpBKUwADNQHt65wG Bfx0SL9XDAnBCpGKaGgw7n4Mok8n90xjDc0/lNkftNnznIVdU5FpLUsXya25j4ME 4uxW/MzRnbGIleWASUj/lpii5xeUhws8VpFTStji8xzL0iZjoN1f7/FwtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNbNQJ4dUHWsDqrobEHnO56rvkhtMB8GA1UdIwQY MBaAFI4cEWWNIEHq8lAv5UCO1JO71PMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjIt NjMzNDhjZGJmMDI0LzEvMXMxQW5oMVFkYXdPcXVoc1FlYzducXUtU0cwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjItNjMzNDhjZGJmMDI0 LzEvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVPwMA0G CSqGSIb3DQEBCwUAA4IBAQAEYTNdF/RvhZqYoD5PzRerJ0hT28AnOX2R+oV5UDCF EAyvxE7ee32wM9xEg33ArGkVumxW7h5dGdsXQX4lHrZ2vmnKi2LIxcOOkzPyWnxk UNx/zbqdT/eQHQ6pqjdAct/e87WGPW/NkA+fqGQlA4UvGo2TJ5b+EngN9ldmVR+V IsNSyyLl2ieoHY8ID3JCbgaxUGNSMOCc1wUacWGGqbjoGeI3KaPnbDMtvXWj0wuM HsJDp6fAUAp7t3DdhWWirfKbXtpPxhI3cayWDcBZsUUk674rPEPC5UP4pfQWyCrp tGz8J6XTA0hjS5UpHQrXiYzGimzsYnF/7eZpTAYz/i+U -----END CERTIFICATE-----Generated at Tue Jan 13 11:18:58 2026 by rpki-client