This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/2WXoZsn32fgVX8aqYMrc08d9fY8.roa File: 2WXoZsn32fgVX8aqYMrc08d9fY8.roa (raw, json) Hash identifier: bkwPNVH2ORQnIRn5LBtVmwQryOqVX18kB3tiu7t2/40= Subject key identifier: D9:65:E8:66:C9:F7:D9:F8:15:5F:C6:AA:60:CA:DC:D3:C7:7D:7D:8F Certificate issuer: /CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b Certificate serial: 019B7FF17EB5B62F110E954E1836C655D8D9 Authority key identifier: B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/2WXoZsn32fgVX8aqYMrc08d9fY8.roa Signing time: Fri 02 Jan 2026 18:21:31 +0000 ROA not before: Fri 02 Jan 2026 18:21:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49028 IP address blocks: 45.145.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.mft rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:7e:b5:b6:2f:11:0e:95:4e:18:36:c6:55:d8:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b Validity Not Before: Jan 2 18:21:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d965e866c9f7d9f8155fc6aa60cadcd3c77d7d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a4:fd:0f:b2:40:8d:8b:a2:ff:26:e4:f7:7c: 5b:a1:35:5a:62:7f:5b:85:5f:b5:89:36:c2:d1:45: 54:57:08:47:f1:3a:92:3b:65:3f:13:a7:99:5a:ab: 0c:70:85:81:0f:fd:66:9f:04:f8:ef:09:d7:a3:8a: 61:71:4f:26:bf:d4:73:a6:15:2d:f6:29:d9:7f:35: 84:66:29:86:3d:ee:5c:45:77:d4:11:64:97:de:c5: 6a:82:6b:dd:26:22:76:ea:9f:3c:2e:a0:d0:0e:bf: 21:d5:53:c9:fb:d9:47:c5:54:5c:7a:59:b3:d0:45: 16:1c:b4:76:11:3a:98:0c:e8:6f:ff:1f:55:7d:77: 89:83:68:3f:2a:6a:7f:c7:08:2b:e5:fc:e5:d1:81: 31:b6:d9:e5:25:89:7e:01:9a:07:62:2f:56:d0:e8: 3b:27:36:ad:48:1f:e7:b9:2a:c5:d1:b9:de:7a:83: 29:24:ac:7c:2f:a5:d6:f2:11:80:0f:cf:8c:b2:3a: b9:24:7a:cd:49:e1:e7:ff:f8:67:c5:17:90:28:08: 75:f9:ab:9b:10:85:6b:04:b7:d0:1a:42:bd:ba:e5: fd:58:ff:4c:4c:f5:fe:f5:d7:f7:70:4a:e4:50:28: bc:80:de:f2:a0:e6:6a:85:29:8c:12:e3:c8:0e:05: a5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:65:E8:66:C9:F7:D9:F8:15:5F:C6:AA:60:CA:DC:D3:C7:7D:7D:8F X509v3 Authority Key Identifier: keyid:B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/2WXoZsn32fgVX8aqYMrc08d9fY8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.145.165.0/24 Signature Algorithm: sha256WithRSAEncryption c4:61:4b:f1:34:e5:ed:ae:62:de:5e:32:9e:d3:71:bd:d9:4a: 07:f1:48:ca:ba:ca:72:77:fd:87:02:3c:32:ad:e2:db:fc:6d: e7:29:eb:a3:dc:a9:aa:b4:c2:e6:29:0f:a5:d8:45:8f:c3:48: b2:ef:d4:82:40:46:d3:43:d4:45:e1:56:de:27:58:d5:45:c8: 10:fc:01:a4:da:37:83:0b:ae:64:a9:a5:08:b0:58:d4:37:c2: 28:81:1c:31:fd:f4:bf:34:26:6a:c6:95:df:9a:92:8f:f7:85: 38:57:08:49:35:07:44:87:19:d1:ce:f0:84:cb:89:9e:f0:cc: 83:49:a1:db:c4:99:64:d8:43:df:15:17:c6:ec:3f:9c:7f:c7: 99:f3:d3:1f:2c:37:c9:c8:e4:ac:b0:d7:f0:ba:2e:e3:6b:cb: b8:9e:20:6b:88:32:b6:7a:64:d7:8d:36:e3:e8:15:9d:94:07: 58:d8:3b:69:69:22:cd:22:99:8a:e9:39:68:7c:4f:6d:a8:1d: 2a:d7:27:67:c5:0b:3a:72:7f:9a:ca:77:ea:85:35:9a:ec:2d: 46:f3:2f:67:71:62:0e:ed:e6:a6:d3:ed:11:3b:fd:ee:ed:60: ed:08:de:a0:36:f3:4f:19:1d:81:1c:55:3a:f5:48:cc:63:70: 4b:93:50:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8X61ti8RDpVOGDbGVdjZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4MTcxNjI4NzdkYTlmNDAzMGJiY2I5ZmU4YWMxNDNlNmFi Mjg3MWIwHhcNMjYwMTAyMTgyMTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTY1ZTg2NmM5ZjdkOWY4MTU1ZmM2YWE2MGNhZGNkM2M3N2Q3ZDhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaT9D7JAjYui/ybk93xboTVaYn9b hV+1iTbC0UVUVwhH8TqSO2U/E6eZWqsMcIWBD/1mnwT47wnXo4phcU8mv9RzphUt 9inZfzWEZimGPe5cRXfUEWSX3sVqgmvdJiJ26p88LqDQDr8h1VPJ+9lHxVRcelmz 0EUWHLR2ETqYDOhv/x9VfXeJg2g/Kmp/xwgr5fzl0YExttnlJYl+AZoHYi9W0Og7 JzatSB/nuSrF0bneeoMpJKx8L6XW8hGAD8+Msjq5JHrNSeHn//hnxReQKAh1+aub EIVrBLfQGkK9uuX9WP9MTPX+9df3cErkUCi8gN7yoOZqhSmMEuPIDgWlIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNll6GbJ99n4FV/GqmDK3NPHfX2PMB8GA1UdIwQY MBaAFLgXFih32p9AMLvLn+isFD5qsocbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUJjV0tIZmFuMEF3dTh1ZjZLd1VQbXF5aHhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS8xNmI3YjQtYmIyMS00YjNlLWFlYjQt YjI3Y2EyOTFiZDc3LzEvMldYb1pzbjMyZmdWWDhhcVlNcmMwOGQ5Zlk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS8xNmI3YjQtYmIyMS00YjNlLWFlYjQtYjI3Y2EyOTFiZDc3 LzEvdUJjV0tIZmFuMEF3dTh1ZjZLd1VQbXF5aHhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZGlMA0G CSqGSIb3DQEBCwUAA4IBAQDEYUvxNOXtrmLeXjKe03G92UoH8UjKuspyd/2HAjwy reLb/G3nKeuj3KmqtMLmKQ+l2EWPw0iy79SCQEbTQ9RF4VbeJ1jVRcgQ/AGk2jeD C65kqaUIsFjUN8IogRwx/fS/NCZqxpXfmpKP94U4VwhJNQdEhxnRzvCEy4me8MyD SaHbxJlk2EPfFRfG7D+cf8eZ89MfLDfJyOSssNfwui7ja8u4niBriDK2emTXjTbj 6BWdlAdY2DtpaSLNIpmK6TlofE9tqB0q1ydnxQs6cn+aynfqhTWa7C1G8y9ncWIO 7eam0+0RO/3u7WDtCN6gNvNPGR2BHFU69UjMY3BLk1BI -----END CERTIFICATE-----Generated at Sun Jan 11 16:30:36 2026 by rpki-client