This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/RHbtZEqS9voRzD3Cx6qusZzVcjk.roa File: RHbtZEqS9voRzD3Cx6qusZzVcjk.roa (raw, json) Hash identifier: Ee6+Bb2Hz6FnUnTIFNwJzEYwDsvhHHrdj4/evTKgHy8= Subject key identifier: 44:76:ED:64:4A:92:F6:FA:11:CC:3D:C2:C7:AA:AE:B1:9C:D5:72:39 Certificate issuer: /CN=bea6ca03a8c135ceeae232c937c1ee0bab87e782 Certificate serial: 019B79100F63CBBE6EEF2CE907810A169FF6 Authority key identifier: BE:A6:CA:03:A8:C1:35:CE:EA:E2:32:C9:37:C1:EE:0B:AB:87:E7:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqbKA6jBNc7q4jLJN8HuC6uH54I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/RHbtZEqS9voRzD3Cx6qusZzVcjk.roa Signing time: Thu 01 Jan 2026 10:17:34 +0000 ROA not before: Thu 01 Jan 2026 10:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209055 IP address blocks: 45.8.40.0/22 maxlen: 22 45.8.40.0/24 maxlen: 24 45.8.41.0/24 maxlen: 24 45.8.42.0/24 maxlen: 24 2a0e:7d00::/29 maxlen: 32 2a0e:7d00::/32 maxlen: 32 2a0e:7d01::/32 maxlen: 32 2a0e:7d02::/32 maxlen: 32 2a0e:7d03::/32 maxlen: 32 2a0e:7d04::/32 maxlen: 32 2a0e:7d05::/32 maxlen: 32 2a0e:7d06::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/vqbKA6jBNc7q4jLJN8HuC6uH54I.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/vqbKA6jBNc7q4jLJN8HuC6uH54I.mft rsync://rpki.ripe.net/repository/DEFAULT/vqbKA6jBNc7q4jLJN8HuC6uH54I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 14:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:0f:63:cb:be:6e:ef:2c:e9:07:81:0a:16:9f:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bea6ca03a8c135ceeae232c937c1ee0bab87e782 Validity Not Before: Jan 1 10:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4476ed644a92f6fa11cc3dc2c7aaaeb19cd57239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:87:44:3d:18:2a:e2:1a:f2:66:a9:5b:eb:24: e3:78:36:43:10:4a:16:42:67:00:21:b9:62:32:92: 1b:fe:0f:50:d3:04:cb:f5:f3:48:06:cf:90:28:23: ff:95:49:7c:4e:c2:d3:ba:03:95:9c:91:5f:90:b5: 15:c3:e3:13:10:bf:98:98:72:7c:82:3f:87:91:c5: eb:85:c7:a8:be:85:90:dc:77:93:53:00:fa:13:3f: b6:55:90:af:f6:44:39:27:e8:21:61:a2:ee:5b:52: f6:c3:ba:2f:8f:01:ce:2c:3a:f9:b8:3b:96:2d:68: 7d:2c:19:57:01:2b:f5:f9:93:eb:54:81:0f:2e:56: 0b:33:0d:66:81:35:36:4d:5f:1e:95:7a:e0:e0:a4: d9:78:08:00:1f:b7:ae:4c:0a:51:80:f9:68:b2:0d: d4:c4:c9:47:b4:6a:7d:41:72:48:bd:2f:30:38:58: 46:7b:9a:94:1d:51:1c:c8:7a:fc:6f:f5:da:79:4e: 3d:ec:e6:97:17:13:83:30:ec:5f:8d:a2:66:76:a4: 1b:ad:c5:3f:e5:b7:14:15:be:b2:be:da:5d:28:27: 4c:34:0f:7b:cd:52:0a:2d:e8:ba:ff:89:65:c8:88: 18:25:d2:cb:de:18:e9:f2:60:9c:65:fd:52:5e:8c: 19:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:76:ED:64:4A:92:F6:FA:11:CC:3D:C2:C7:AA:AE:B1:9C:D5:72:39 X509v3 Authority Key Identifier: keyid:BE:A6:CA:03:A8:C1:35:CE:EA:E2:32:C9:37:C1:EE:0B:AB:87:E7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqbKA6jBNc7q4jLJN8HuC6uH54I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/RHbtZEqS9voRzD3Cx6qusZzVcjk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/vqbKA6jBNc7q4jLJN8HuC6uH54I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.8.40.0/22 IPv6: 2a0e:7d00::/29 Signature Algorithm: sha256WithRSAEncryption ac:8c:a9:b5:45:ef:69:b7:14:00:ce:02:f5:3c:cb:84:e9:e2: 96:30:cc:e6:9a:2e:43:06:72:e4:42:bf:42:12:dc:e8:4f:c8: b2:e9:d9:d2:1a:bd:33:d4:8a:b2:7c:bc:1f:b5:92:2e:65:4b: a2:1c:90:72:94:bb:30:37:2b:ea:c2:47:9a:b6:e7:ce:e6:aa: bf:c4:61:d5:24:6f:14:0b:40:9f:57:25:50:df:14:3b:d0:d1: 84:78:07:dd:5d:52:c9:8a:1f:37:91:cf:54:02:0d:48:a2:f2: 44:2c:f2:cc:51:5b:40:44:40:1b:e8:4f:c9:00:fe:0e:d4:4a: cb:f4:b5:90:f6:a7:67:78:09:eb:91:25:a4:3f:1c:ba:5f:c3: 35:5a:61:f6:82:12:48:c0:6d:bf:73:ad:4a:03:02:82:eb:f2: 0e:70:0a:c7:55:ea:c0:6e:e3:02:12:cd:c4:48:b5:93:98:ef: f5:62:3d:f1:b6:ec:1b:09:5d:06:ba:5e:f1:ba:79:4d:37:6e: 4c:c3:64:85:87:04:89:4c:a2:62:52:d3:1e:5d:ca:a0:99:10: 5d:cb:f1:12:53:52:73:4b:f5:a0:72:c5:8f:ce:d2:56:40:09: 8b:82:b8:44:d8:dd:f9:32:ab:51:59:3e:df:2e:b1:04:e2:e2: be:ed:b4:f2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EA9jy75u7yzpB4EKFp/2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlYTZjYTAzYThjMTM1Y2VlYWUyMzJjOTM3YzFlZTBiYWI4 N2U3ODIwHhcNMjYwMTAxMTAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDc2ZWQ2NDRhOTJmNmZhMTFjYzNkYzJjN2FhYWViMTljZDU3MjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvodEPRgq4hryZqlb6yTjeDZDEEoW QmcAIbliMpIb/g9Q0wTL9fNIBs+QKCP/lUl8TsLTugOVnJFfkLUVw+MTEL+YmHJ8 gj+HkcXrhceovoWQ3HeTUwD6Ez+2VZCv9kQ5J+ghYaLuW1L2w7ovjwHOLDr5uDuW LWh9LBlXASv1+ZPrVIEPLlYLMw1mgTU2TV8elXrg4KTZeAgAH7euTApRgPlosg3U xMlHtGp9QXJIvS8wOFhGe5qUHVEcyHr8b/XaeU497OaXFxODMOxfjaJmdqQbrcU/ 5bcUFb6yvtpdKCdMNA97zVIKLei6/4llyIgYJdLL3hjp8mCcZf1SXowZjwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFER27WRKkvb6Ecw9wseqrrGc1XI5MB8GA1UdIwQY MBaAFL6mygOowTXO6uIyyTfB7gurh+eCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnFiS0E2akJOYzdxNGpMSk44SHVDNnVINTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9iYzY1ZjYtMGMzYi00MDRlLWJmYWQt OWZhNDIyOGMwMmVhLzEvUkhidFpFcVM5dm9SekQzQ3g2cXVzWnpWY2prLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9iYzY1ZjYtMGMzYi00MDRlLWJmYWQtOWZhNDIyOGMwMmVh LzEvdnFiS0E2akJOYzdxNGpMSk44SHVDNnVINTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLQgoMA0E AgACMAcDBQMqDn0AMA0GCSqGSIb3DQEBCwUAA4IBAQCsjKm1Re9ptxQAzgL1PMuE 6eKWMMzmmi5DBnLkQr9CEtzoT8iy6dnSGr0z1IqyfLwftZIuZUuiHJBylLswNyvq wkeatufO5qq/xGHVJG8UC0CfVyVQ3xQ70NGEeAfdXVLJih83kc9UAg1IovJELPLM UVtAREAb6E/JAP4O1ErL9LWQ9qdneAnrkSWkPxy6X8M1WmH2ghJIwG2/c61KAwKC 6/IOcArHVerAbuMCEs3ESLWTmO/1Yj3xtuwbCV0Gul7xunlNN25Mw2SFhwSJTKJi UtMeXcqgmRBdy/ESU1JzS/WgcsWPztJWQAmLgrhE2N35MqtRWT7fLrEE4uK+7bTy -----END CERTIFICATE-----Generated at Sun Jan 18 17:54:50 2026 by rpki-client