This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/fda059-3436-4158-a1e4-49da05978ad0/1/0U13Mcb_KgMF9K69fVfTmUTYf5c.roa File: 0U13Mcb_KgMF9K69fVfTmUTYf5c.roa (raw, json) Hash identifier: 5Rvk9cCX7FFBTf2JwLTt90a00mmM2NZlX+HpUZifFpM= Subject key identifier: D1:4D:77:31:C6:FF:2A:03:05:F4:AE:BD:7D:57:D3:99:44:D8:7F:97 Certificate issuer: /CN=23dcd6f17126d4e951d92bc5f4c06ba9450fc8d4 Certificate serial: 019B7B36ABCB03FFD1FFACAF12426C61ED61 Authority key identifier: 23:DC:D6:F1:71:26:D4:E9:51:D9:2B:C5:F4:C0:6B:A9:45:0F:C8:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9zW8XEm1OlR2SvF9MBrqUUPyNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/fda059-3436-4158-a1e4-49da05978ad0/1/0U13Mcb_KgMF9K69fVfTmUTYf5c.roa Signing time: Thu 01 Jan 2026 20:18:59 +0000 ROA not before: Thu 01 Jan 2026 20:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202966 IP address blocks: 45.137.228.0/22 maxlen: 22 2a0e:ac40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/fda059-3436-4158-a1e4-49da05978ad0/1/I9zW8XEm1OlR2SvF9MBrqUUPyNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/fda059-3436-4158-a1e4-49da05978ad0/1/I9zW8XEm1OlR2SvF9MBrqUUPyNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/I9zW8XEm1OlR2SvF9MBrqUUPyNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 23:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ab:cb:03:ff:d1:ff:ac:af:12:42:6c:61:ed:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23dcd6f17126d4e951d92bc5f4c06ba9450fc8d4 Validity Not Before: Jan 1 20:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d14d7731c6ff2a0305f4aebd7d57d39944d87f97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:35:9d:13:2b:1d:b1:e3:96:62:d2:4f:e6:d9: 72:bb:06:71:ef:66:cb:c7:b2:90:76:43:33:67:e4: aa:ff:a1:9c:95:f6:5a:8e:b7:f7:b0:d9:1d:aa:3e: ce:e6:1b:19:3f:64:b6:bc:f2:8d:1f:d6:4a:8b:48: c3:12:75:f8:22:ef:6b:7a:e2:52:7f:bf:1f:d0:32: d6:f1:b3:79:d1:ba:73:a6:ed:73:86:b6:4b:4f:60: 89:dc:41:72:c6:fd:00:83:0f:d9:6c:ff:d1:7e:73: 27:d7:60:63:f7:07:87:f5:72:2f:4f:59:ce:a8:20: 73:86:1d:9d:8a:da:02:40:5b:6c:77:f3:99:5c:6c: b1:09:c9:63:1f:79:b6:81:94:40:af:00:25:f1:a8: ea:43:be:c2:77:9b:a9:d6:8e:f7:c5:db:f0:e6:f1: 73:2a:11:d7:45:f5:2b:c0:1b:81:53:7a:99:1a:09: 14:c8:f9:d7:72:75:e8:cd:4f:4a:b3:be:70:9e:95: d5:b7:cc:df:6d:fa:20:15:7f:19:20:f5:55:03:bb: 50:a6:fc:85:24:77:f1:71:79:ba:a3:7f:a9:4f:f3: 52:6c:75:8e:8d:db:61:60:d3:2f:15:e4:f1:e0:88: 8c:1f:96:2e:d3:a2:43:50:cb:51:36:14:1b:88:83: 96:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:4D:77:31:C6:FF:2A:03:05:F4:AE:BD:7D:57:D3:99:44:D8:7F:97 X509v3 Authority Key Identifier: keyid:23:DC:D6:F1:71:26:D4:E9:51:D9:2B:C5:F4:C0:6B:A9:45:0F:C8:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9zW8XEm1OlR2SvF9MBrqUUPyNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/fda059-3436-4158-a1e4-49da05978ad0/1/0U13Mcb_KgMF9K69fVfTmUTYf5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/fda059-3436-4158-a1e4-49da05978ad0/1/I9zW8XEm1OlR2SvF9MBrqUUPyNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.137.228.0/22 IPv6: 2a0e:ac40::/29 Signature Algorithm: sha256WithRSAEncryption b0:a1:c3:ac:cb:7d:89:5f:97:e9:01:a1:a3:0b:77:b4:e5:c2: c4:90:c4:b0:8e:56:e5:f5:fb:a3:4c:b4:f1:c7:08:59:69:9a: 54:d9:f4:40:61:2a:05:6f:ff:1f:23:cc:29:35:c0:70:af:e7: 9b:05:d5:d7:09:f4:03:19:71:81:b5:52:48:88:db:51:e2:75: 1a:95:f6:8c:52:2b:7e:0a:ff:a2:bf:c4:d5:49:7f:d1:af:e0: 69:8d:43:d3:38:e5:f6:48:d3:ba:4f:70:b6:9c:ee:62:cf:40: 2e:56:db:48:5b:2b:f7:5e:97:ad:fe:05:d3:01:f2:f2:35:af: 43:c7:39:43:c5:1c:98:8d:43:88:be:c0:f9:18:c1:3a:44:ea: 91:c7:8b:87:2a:70:2f:45:a6:73:0c:52:b0:ec:42:17:b7:43: 06:37:5e:a1:0e:4b:af:f0:d0:f5:74:ef:fe:aa:1e:13:55:8e: 4a:cd:ea:ce:a9:ce:e1:10:77:fe:8a:ea:fb:5f:4d:16:2d:7c: 12:3d:09:cc:6a:17:85:f0:cf:54:7a:e2:8c:15:0c:db:05:89: ab:1a:6c:d1:0b:98:1f:a5:f2:1e:70:94:77:84:6e:79:5e:43: 16:99:a9:5b:3c:e4:42:76:56:7d:79:db:34:bc:bd:af:15:f0: ca:17:64:02 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NqvLA//R/6yvEkJsYe1hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZGNkNmYxNzEyNmQ0ZTk1MWQ5MmJjNWY0YzA2YmE5NDUw ZmM4ZDQwHhcNMjYwMTAxMjAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMTRkNzczMWM2ZmYyYTAzMDVmNGFlYmQ3ZDU3ZDM5OTQ0ZDg3Zjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDWdEysdseOWYtJP5tlyuwZx72bL x7KQdkMzZ+Sq/6GclfZajrf3sNkdqj7O5hsZP2S2vPKNH9ZKi0jDEnX4Iu9reuJS f78f0DLW8bN50bpzpu1zhrZLT2CJ3EFyxv0Agw/ZbP/RfnMn12Bj9weH9XIvT1nO qCBzhh2ditoCQFtsd/OZXGyxCcljH3m2gZRArwAl8ajqQ77Cd5up1o73xdvw5vFz KhHXRfUrwBuBU3qZGgkUyPnXcnXozU9Ks75wnpXVt8zfbfogFX8ZIPVVA7tQpvyF JHfxcXm6o3+pT/NSbHWOjdthYNMvFeTx4IiMH5Yu06JDUMtRNhQbiIOWnQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNFNdzHG/yoDBfSuvX1X05lE2H+XMB8GA1UdIwQY MBaAFCPc1vFxJtTpUdkrxfTAa6lFD8jUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTl6VzhYRW0xT2xSMlN2RjlNQnJxVVVQeU5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi9mZGEwNTktMzQzNi00MTU4LWExZTQt NDlkYTA1OTc4YWQwLzEvMFUxM01jYl9LZ01GOUs2OWZWZlRtVVRZZjVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi9mZGEwNTktMzQzNi00MTU4LWExZTQtNDlkYTA1OTc4YWQw LzEvSTl6VzhYRW0xT2xSMlN2RjlNQnJxVVVQeU5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLYnkMA0E AgACMAcDBQMqDqxAMA0GCSqGSIb3DQEBCwUAA4IBAQCwocOsy32JX5fpAaGjC3e0 5cLEkMSwjlbl9fujTLTxxwhZaZpU2fRAYSoFb/8fI8wpNcBwr+ebBdXXCfQDGXGB tVJIiNtR4nUalfaMUit+Cv+iv8TVSX/Rr+BpjUPTOOX2SNO6T3C2nO5iz0AuVttI Wyv3Xpet/gXTAfLyNa9DxzlDxRyYjUOIvsD5GME6ROqRx4uHKnAvRaZzDFKw7EIX t0MGN16hDkuv8ND1dO/+qh4TVY5KzerOqc7hEHf+iur7X00WLXwSPQnMaheF8M9U euKMFQzbBYmrGmzRC5gfpfIecJR3hG55XkMWmalbPORCdlZ9eds0vL2vFfDKF2QC -----END CERTIFICATE-----Generated at Tue Jan 27 08:30:43 2026 by rpki-client