This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/518f11-d8f9-47a0-9600-5b00fbf4a529/1/CAV5F_RxEFXurDzHuM5vHnzsOwE.roa File: CAV5F_RxEFXurDzHuM5vHnzsOwE.roa (raw, json) Hash identifier: qQ54X/73hEKC7jEpzKqRYCSiWpjiVoPDcppGmKRov9U= Subject key identifier: 08:05:79:17:F4:71:10:55:EE:AC:3C:C7:B8:CE:6F:1E:7C:EC:3B:01 Certificate issuer: /CN=d23f047b06c8b7271ee10c9af5d1443f0139c127 Certificate serial: 019B7EA52BAC6A02D2259B954DA001CF745B Authority key identifier: D2:3F:04:7B:06:C8:B7:27:1E:E1:0C:9A:F5:D1:44:3F:01:39:C1:27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0j8EewbItyce4Qya9dFEPwE5wSc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/518f11-d8f9-47a0-9600-5b00fbf4a529/1/CAV5F_RxEFXurDzHuM5vHnzsOwE.roa Signing time: Fri 02 Jan 2026 12:18:32 +0000 ROA not before: Fri 02 Jan 2026 12:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203 IP address blocks: 45.133.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/518f11-d8f9-47a0-9600-5b00fbf4a529/1/0j8EewbItyce4Qya9dFEPwE5wSc.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/518f11-d8f9-47a0-9600-5b00fbf4a529/1/0j8EewbItyce4Qya9dFEPwE5wSc.mft rsync://rpki.ripe.net/repository/DEFAULT/0j8EewbItyce4Qya9dFEPwE5wSc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:2b:ac:6a:02:d2:25:9b:95:4d:a0:01:cf:74:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d23f047b06c8b7271ee10c9af5d1443f0139c127 Validity Not Before: Jan 2 12:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=08057917f4711055eeac3cc7b8ce6f1e7cec3b01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:01:1d:88:eb:a9:6c:5a:7d:52:d7:f8:0f:08: bf:1e:7f:d7:27:b3:9e:0b:51:0a:91:95:21:9f:b6: e7:97:b2:19:43:c5:8e:e3:74:6c:5b:fa:17:50:95: f5:99:18:dd:fd:9a:39:9f:a0:64:91:ef:25:d5:07: 7c:2b:76:02:f1:e1:d1:ff:e5:00:a5:33:ef:e3:07: 8d:79:74:29:d8:ad:25:df:80:7d:ac:75:d7:91:26: f6:12:00:73:c8:c8:3e:e5:37:cb:2d:5d:e4:76:4b: c6:2e:4e:de:a6:f3:64:91:7e:5c:b1:1b:ae:58:0a: b9:7a:43:b1:6a:72:04:be:bb:d6:60:65:45:84:81: fc:a7:b4:91:28:51:e5:8d:8f:b3:74:d2:31:64:5b: 08:6d:44:2a:eb:11:e0:df:24:33:14:9b:8f:01:16: 55:13:65:e7:d5:23:2a:27:d4:c5:d3:75:97:f9:6f: e6:c1:a2:1a:5c:3f:cc:c5:49:4d:a4:0b:34:79:b4: 3b:60:62:f9:df:03:47:69:92:1b:06:b3:8b:bf:15: 88:89:a5:ed:bf:09:5c:af:d1:f1:bb:87:53:2e:c2: c9:bf:f9:b2:cb:89:9b:86:a7:ec:4b:1e:ec:ff:b4: 5a:af:9f:6e:26:81:24:ae:48:e6:d4:77:16:a8:c4: f4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:05:79:17:F4:71:10:55:EE:AC:3C:C7:B8:CE:6F:1E:7C:EC:3B:01 X509v3 Authority Key Identifier: keyid:D2:3F:04:7B:06:C8:B7:27:1E:E1:0C:9A:F5:D1:44:3F:01:39:C1:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0j8EewbItyce4Qya9dFEPwE5wSc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/518f11-d8f9-47a0-9600-5b00fbf4a529/1/CAV5F_RxEFXurDzHuM5vHnzsOwE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/518f11-d8f9-47a0-9600-5b00fbf4a529/1/0j8EewbItyce4Qya9dFEPwE5wSc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.133.132.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:46:8b:be:37:a4:c8:35:db:03:5a:c1:cc:18:c0:70:f0:e8: 2d:90:ae:f8:52:4e:c8:b1:4a:7d:a0:d1:e5:73:e7:45:b0:26: 1f:ff:39:79:01:d5:49:9d:50:8d:ad:eb:6a:9d:a4:2d:db:44: 12:3b:d6:0f:62:fb:e5:21:f0:06:e4:2d:aa:9f:3f:ba:fd:4a: 79:bd:80:39:84:3e:e4:be:63:21:80:17:bd:c5:8d:6c:d4:10: 29:eb:24:53:9c:e9:d2:0b:b2:ac:2a:22:f6:c7:fc:23:7f:ef: d1:0d:f9:99:e5:13:37:5a:7d:ec:36:e6:df:78:f2:7b:0a:17: bd:d2:fa:8a:34:e6:60:f3:5b:f0:1c:ea:69:9e:42:15:04:cb: d9:22:6a:91:a8:5f:e8:ac:d8:19:e3:42:75:d6:2c:99:c8:71: 74:e1:ed:b3:4a:ab:86:24:f7:3d:d9:3b:c1:fb:d5:7c:e1:28: b0:d5:b0:39:9d:8d:40:34:2b:c0:e4:6f:38:f1:7f:da:14:71: 2d:95:e0:50:f4:ee:98:4d:f8:af:50:78:ad:8f:d2:a2:bc:a6: 7a:50:3c:7a:5e:87:68:00:fa:64:43:71:40:37:08:62:54:98: 60:ba:a2:96:24:5a:d3:7c:4a:9f:51:ad:52:60:2a:f8:f0:1a: c5:64:99:5e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pSusagLSJZuVTaABz3RbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyM2YwNDdiMDZjOGI3MjcxZWUxMGM5YWY1ZDE0NDNmMDEz OWMxMjcwHhcNMjYwMTAyMTIxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODA1NzkxN2Y0NzExMDU1ZWVhYzNjYzdiOGNlNmYxZTdjZWMzYjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwEdiOupbFp9Utf4Dwi/Hn/XJ7Oe C1EKkZUhn7bnl7IZQ8WO43RsW/oXUJX1mRjd/Zo5n6Bkke8l1Qd8K3YC8eHR/+UA pTPv4weNeXQp2K0l34B9rHXXkSb2EgBzyMg+5TfLLV3kdkvGLk7epvNkkX5csRuu WAq5ekOxanIEvrvWYGVFhIH8p7SRKFHljY+zdNIxZFsIbUQq6xHg3yQzFJuPARZV E2Xn1SMqJ9TF03WX+W/mwaIaXD/MxUlNpAs0ebQ7YGL53wNHaZIbBrOLvxWIiaXt vwlcr9Hxu4dTLsLJv/myy4mbhqfsSx7s/7Rar59uJoEkrkjm1HcWqMT0OQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAgFeRf0cRBV7qw8x7jObx587DsBMB8GA1UdIwQY MBaAFNI/BHsGyLcnHuEMmvXRRD8BOcEnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGo4RWV3Ykl0eWNlNFF5YTlkRkVQd0U1d1NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS81MThmMTEtZDhmOS00N2EwLTk2MDAt NWIwMGZiZjRhNTI5LzEvQ0FWNUZfUnhFRlh1ckR6SHVNNXZIbnpzT3dFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS81MThmMTEtZDhmOS00N2EwLTk2MDAtNWIwMGZiZjRhNTI5 LzEvMGo4RWV3Ykl0eWNlNFF5YTlkRkVQd0U1d1NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYWEMA0G CSqGSIb3DQEBCwUAA4IBAQBKRou+N6TINdsDWsHMGMBw8OgtkK74Uk7IsUp9oNHl c+dFsCYf/zl5AdVJnVCNretqnaQt20QSO9YPYvvlIfAG5C2qnz+6/Up5vYA5hD7k vmMhgBe9xY1s1BAp6yRTnOnSC7KsKiL2x/wjf+/RDfmZ5RM3Wn3sNubfePJ7Che9 0vqKNOZg81vwHOppnkIVBMvZImqRqF/orNgZ40J11iyZyHF04e2zSquGJPc92TvB +9V84Siw1bA5nY1ANCvA5G848X/aFHEtleBQ9O6YTfivUHitj9KivKZ6UDx6Xodo APpkQ3FANwhiVJhguqKWJFrTfEqfUa1SYCr48BrFZJle -----END CERTIFICATE-----Generated at Thu Jan 22 09:48:43 2026 by rpki-client