This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/bcb03d-1c11-4516-a88f-fe846f75d170/1/fvJ3MrGjIvFPtGs9u4_haCOR1_c.roa File: fvJ3MrGjIvFPtGs9u4_haCOR1_c.roa (raw, json) Hash identifier: eQxsGkE0E+AwQWSL5A0odWC80qfy34hasAmM5mVKF6Q= Subject key identifier: 7E:F2:77:32:B1:A3:22:F1:4F:B4:6B:3D:BB:8F:E1:68:23:91:D7:F7 Certificate issuer: /CN=b9032bdb128c86e00b21c77959a8011c40d0650c Certificate serial: 019B7E377552324FE61C98644B1A375B039D Authority key identifier: B9:03:2B:DB:12:8C:86:E0:0B:21:C7:79:59:A8:01:1C:40:D0:65:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQMr2xKMhuALIcd5WagBHEDQZQw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/bcb03d-1c11-4516-a88f-fe846f75d170/1/fvJ3MrGjIvFPtGs9u4_haCOR1_c.roa Signing time: Fri 02 Jan 2026 10:18:42 +0000 ROA not before: Fri 02 Jan 2026 10:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 45.152.91.0/24 maxlen: 24 2a0f:5100:a01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/bcb03d-1c11-4516-a88f-fe846f75d170/1/uQMr2xKMhuALIcd5WagBHEDQZQw.crl rsync://rpki.ripe.net/repository/DEFAULT/73/bcb03d-1c11-4516-a88f-fe846f75d170/1/uQMr2xKMhuALIcd5WagBHEDQZQw.mft rsync://rpki.ripe.net/repository/DEFAULT/uQMr2xKMhuALIcd5WagBHEDQZQw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:75:52:32:4f:e6:1c:98:64:4b:1a:37:5b:03:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9032bdb128c86e00b21c77959a8011c40d0650c Validity Not Before: Jan 2 10:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7ef27732b1a322f14fb46b3dbb8fe1682391d7f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:65:40:ea:87:4b:17:d9:5b:5f:4a:44:35:52: 56:4a:a3:30:15:5e:e9:88:81:f6:40:21:62:f0:d1: 9e:5c:b3:73:52:29:a0:aa:b6:e2:af:40:6c:86:32: 8f:3d:7e:64:cc:21:21:a2:24:03:7d:2f:88:2b:39: 62:a2:12:49:40:ce:52:9d:35:a2:c0:0f:fa:48:85: cf:23:f8:dd:3e:f9:b0:4f:07:cb:a7:d7:c1:3c:85: d9:80:70:d5:1d:25:d0:4b:7e:cf:3b:90:bd:79:17: fa:f0:07:92:38:e8:26:16:48:ea:68:65:ed:2d:4c: 6a:ce:9a:15:aa:32:32:0e:5f:61:fc:c6:59:cf:72: 8d:79:e8:ea:9b:0e:cd:b3:f7:d0:0d:72:a9:9a:a8: 11:f0:35:08:4e:90:85:d8:a5:84:bf:c1:a4:10:f7: d8:0d:7c:af:f8:0c:f2:53:c4:45:37:09:68:c0:51: b0:9d:22:7f:0f:bb:be:b2:39:e0:71:be:d9:65:df: c5:0e:47:25:8e:98:0b:5e:6b:c9:e6:ed:04:87:92: 7c:d6:00:2d:d5:e1:37:fb:ae:a5:30:49:2b:99:d7: 24:35:bb:58:0b:79:df:95:25:94:51:1a:6b:c6:f5: 01:c2:1d:18:86:5b:ff:49:18:21:49:75:b1:81:4d: c0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F2:77:32:B1:A3:22:F1:4F:B4:6B:3D:BB:8F:E1:68:23:91:D7:F7 X509v3 Authority Key Identifier: keyid:B9:03:2B:DB:12:8C:86:E0:0B:21:C7:79:59:A8:01:1C:40:D0:65:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQMr2xKMhuALIcd5WagBHEDQZQw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/bcb03d-1c11-4516-a88f-fe846f75d170/1/fvJ3MrGjIvFPtGs9u4_haCOR1_c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/bcb03d-1c11-4516-a88f-fe846f75d170/1/uQMr2xKMhuALIcd5WagBHEDQZQw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.91.0/24 IPv6: 2a0f:5100:a01::/48 Signature Algorithm: sha256WithRSAEncryption 08:33:e2:3a:cc:65:94:53:22:ce:1a:c7:d1:36:14:11:2a:3e: f2:7c:93:71:07:d9:63:7b:a4:2d:52:3a:4c:24:68:c4:81:44: 5e:06:6e:e0:2a:a9:cf:0b:47:8f:07:60:bd:67:dd:ce:70:72: b8:bc:72:7b:fb:f8:e9:7d:64:3e:b9:d1:c9:1c:7d:ad:50:2a: 46:d7:e7:6e:44:75:3d:ea:da:48:04:2b:d9:4f:0a:b0:a9:1d: ba:32:f1:5a:f1:27:e9:a9:fa:54:e7:3b:b7:da:98:f9:5c:11: 3c:5e:6e:a0:67:9c:89:2e:0e:f0:f7:36:55:a1:71:59:d5:7e: e3:79:06:6b:3c:9a:b8:c1:a0:5d:54:34:69:8b:84:98:64:52: 95:a4:84:13:ca:78:c3:37:32:4d:64:fa:f8:53:2a:58:4c:e7: 35:b2:12:ab:53:92:b3:a9:db:17:71:0f:c7:46:26:75:94:9d: 3a:78:b1:cf:4b:f7:03:49:3d:19:dd:6b:75:27:22:55:7d:da: e1:9f:62:ec:60:6b:f2:ef:01:58:70:ef:57:31:f6:2d:28:a3: 47:94:ca:55:7e:00:5e:bb:df:24:2a:5f:e8:fa:e3:4a:a8:9e: 31:90:dd:d9:48:c5:2e:47:86:09:ed:6b:2b:e1:4f:72:0a:8a: 69:dc:9f:50 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+N3VSMk/mHJhkSxo3WwOdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5MDMyYmRiMTI4Yzg2ZTAwYjIxYzc3OTU5YTgwMTFjNDBk MDY1MGMwHhcNMjYwMTAyMTAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZWYyNzczMmIxYTMyMmYxNGZiNDZiM2RiYjhmZTE2ODIzOTFkN2Y3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWVA6odLF9lbX0pENVJWSqMwFV7p iIH2QCFi8NGeXLNzUimgqrbir0BshjKPPX5kzCEhoiQDfS+IKzliohJJQM5SnTWi wA/6SIXPI/jdPvmwTwfLp9fBPIXZgHDVHSXQS37PO5C9eRf68AeSOOgmFkjqaGXt LUxqzpoVqjIyDl9h/MZZz3KNeejqmw7Ns/fQDXKpmqgR8DUITpCF2KWEv8GkEPfY DXyv+AzyU8RFNwlowFGwnSJ/D7u+sjngcb7ZZd/FDkcljpgLXmvJ5u0Eh5J81gAt 1eE3+66lMEkrmdckNbtYC3nflSWUURprxvUBwh0Yhlv/SRghSXWxgU3AcwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFH7ydzKxoyLxT7RrPbuP4Wgjkdf3MB8GA1UdIwQY MBaAFLkDK9sSjIbgCyHHeVmoARxA0GUMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVFNcjJ4S01odUFMSWNkNVdhZ0JIRURRWlF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9iY2IwM2QtMWMxMS00NTE2LWE4OGYt ZmU4NDZmNzVkMTcwLzEvZnZKM01yR2pJdkZQdEdzOXU0X2hhQ09SMV9jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9iY2IwM2QtMWMxMS00NTE2LWE4OGYtZmU4NDZmNzVkMTcw LzEvdVFNcjJ4S01odUFMSWNkNVdhZ0JIRURRWlF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALZhbMA8E AgACMAkDBwAqD1EACgEwDQYJKoZIhvcNAQELBQADggEBAAgz4jrMZZRTIs4ax9E2 FBEqPvJ8k3EH2WN7pC1SOkwkaMSBRF4GbuAqqc8LR48HYL1n3c5wcri8cnv7+Ol9 ZD650ckcfa1QKkbX525EdT3q2kgEK9lPCrCpHboy8VrxJ+mp+lTnO7famPlcETxe bqBnnIkuDvD3NlWhcVnVfuN5Bms8mrjBoF1UNGmLhJhkUpWkhBPKeMM3Mk1k+vhT KlhM5zWyEqtTkrOp2xdxD8dGJnWUnTp4sc9L9wNJPRnda3UnIlV92uGfYuxga/Lv AVhw71cx9i0oo0eUylV+AF673yQqX+j640qonjGQ3dlIxS5HhgntayvhT3IKimnc n1A= -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:18 2026 by rpki-client