This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/41lbXeJXKl4CiDGWnnMHpB24gPU.roa File: 41lbXeJXKl4CiDGWnnMHpB24gPU.roa (raw, json) Hash identifier: kG6Cncs4+D3tofS5cOrSl2kOR5wHI2wRUBR4uUbXqUs= Subject key identifier: E3:59:5B:5D:E2:57:2A:5E:02:88:31:96:9E:73:07:A4:1D:B8:80:F5 Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142 Certificate serial: 019B7A5B1A85ED0A2361F04DE443045B137B Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/41lbXeJXKl4CiDGWnnMHpB24gPU.roa Signing time: Thu 01 Jan 2026 16:19:09 +0000 ROA not before: Thu 01 Jan 2026 16:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41000 IP address blocks: 45.132.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.mft rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 04 Feb 2026 19:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:1a:85:ed:0a:23:61:f0:4d:e4:43:04:5b:13:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3718b734349bf327d9453b96501e44b192e55142 Validity Not Before: Jan 1 16:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e3595b5de2572a5e028831969e7307a41db880f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:3b:b0:71:23:75:f5:56:99:ac:7c:6c:39: 63:25:4c:62:9c:26:6a:88:02:e2:68:93:d1:c4:c9: bc:63:f0:fd:da:ae:06:df:55:f7:c2:62:f8:b8:76: 8a:3e:b3:f4:c7:e6:07:8b:10:ef:4b:c8:fd:e5:78: 01:72:b1:f5:a6:96:2f:5a:69:84:f3:a8:bc:04:c7: 30:bf:f6:0d:cd:54:bb:0f:1b:97:ee:87:0b:9d:76: 37:92:e5:82:ae:6a:69:09:b9:3d:5c:5f:2e:e0:8b: dd:20:ee:d5:8e:96:58:ca:cc:8b:ca:b8:01:51:d0: a1:17:d6:be:4a:ff:10:ce:a9:fd:52:2e:c6:e3:a6: bb:89:0a:cd:4f:d3:ea:f5:38:eb:e4:85:fc:81:35: c5:d2:35:84:57:58:02:4e:33:05:20:15:0a:6b:9e: 7f:ae:fc:0e:3c:09:9f:d3:56:5f:e0:07:f1:fe:31: 12:92:fc:ca:d4:99:57:1b:2e:fe:c1:ba:63:84:69: dc:83:b0:5d:0b:63:62:45:61:5d:ca:28:9c:9b:67: 9f:2a:f7:29:b1:63:08:67:30:d1:96:88:a7:54:b8: 8f:24:63:60:be:0b:37:f2:86:9f:aa:3e:cc:29:fb: 17:4e:99:63:dc:43:c0:6e:67:63:91:22:b3:42:b7: 97:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:59:5B:5D:E2:57:2A:5E:02:88:31:96:9E:73:07:A4:1D:B8:80:F5 X509v3 Authority Key Identifier: keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/41lbXeJXKl4CiDGWnnMHpB24gPU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.24.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:0b:5c:e2:76:67:d6:1a:ae:a2:f5:b3:6b:b0:b3:00:e5:cf: 0a:10:3f:56:b0:f7:3c:6d:cc:6c:aa:51:bf:fb:3a:4d:3c:d0: a1:dd:ee:72:85:4f:bc:bf:56:81:b6:17:9d:59:6a:55:d3:7a: e8:f9:6e:bd:5f:8c:d3:da:17:df:6d:25:51:d8:3f:da:f1:b9: 11:a8:c8:b1:b3:56:2e:2b:ea:13:95:01:b0:5d:8b:b4:f1:86: 8b:93:b5:cd:28:58:f8:46:2c:ae:dc:9d:69:ae:3a:ed:67:7b: 16:12:d9:c0:e3:ca:ba:b4:6e:1f:31:bf:b2:1c:36:97:b5:19: 2e:4f:2b:2b:77:6a:23:5f:ee:ea:ac:21:76:22:4c:31:6d:44: 0e:76:1a:c4:9d:18:82:e8:3a:3e:94:17:7c:d8:51:48:57:05: 76:44:0b:c4:a9:00:42:4b:97:05:e9:6a:e8:22:17:8b:53:71: c3:3a:e1:cf:4f:80:bd:53:5b:f4:48:8b:c8:bc:97:7f:1e:9f: 70:06:0e:e5:5f:bf:b1:d6:d5:06:32:d5:2a:0b:e7:17:32:ea: 8e:c8:ab:fb:a6:d4:a5:bb:8d:de:2d:ad:ee:ac:2c:ec:2a:09: 75:f5:ce:1e:98:93:82:a1:1e:10:bf:3f:14:a9:9b:75:73:70: 36:42:e7:7d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WxqF7QojYfBN5EMEWxN7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3MThiNzM0MzQ5YmYzMjdkOTQ1M2I5NjUwMWU0NGIxOTJl NTUxNDIwHhcNMjYwMTAxMTYxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzU5NWI1ZGUyNTcyYTVlMDI4ODMxOTY5ZTczMDdhNDFkYjg4MGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxK87sHEjdfVWmax8bDljJUxinCZq iALiaJPRxMm8Y/D92q4G31X3wmL4uHaKPrP0x+YHixDvS8j95XgBcrH1ppYvWmmE 86i8BMcwv/YNzVS7DxuX7ocLnXY3kuWCrmppCbk9XF8u4IvdIO7VjpZYysyLyrgB UdChF9a+Sv8Qzqn9Ui7G46a7iQrNT9Pq9Tjr5IX8gTXF0jWEV1gCTjMFIBUKa55/ rvwOPAmf01Zf4Afx/jESkvzK1JlXGy7+wbpjhGncg7BdC2NiRWFdyiicm2efKvcp sWMIZzDRloinVLiPJGNgvgs38oafqj7MKfsXTplj3EPAbmdjkSKzQreXTQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFONZW13iVypeAogxlp5zB6QduID1MB8GA1UdIwQY MBaAFDcYtzQ0m/Mn2UU7llAeRLGS5VFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjct YzgyM2NjOGYzODM3LzEvNDFsYlhlSlhLbDRDaURHV25uTUhwQjI0Z1BVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjctYzgyM2NjOGYzODM3 LzEvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYQYMA0G CSqGSIb3DQEBCwUAA4IBAQBeC1zidmfWGq6i9bNrsLMA5c8KED9WsPc8bcxsqlG/ +zpNPNCh3e5yhU+8v1aBthedWWpV03ro+W69X4zT2hffbSVR2D/a8bkRqMixs1Yu K+oTlQGwXYu08YaLk7XNKFj4Riyu3J1prjrtZ3sWEtnA48q6tG4fMb+yHDaXtRku Tysrd2ojX+7qrCF2IkwxbUQOdhrEnRiC6Do+lBd82FFIVwV2RAvEqQBCS5cF6Wro IheLU3HDOuHPT4C9U1v0SIvIvJd/Hp9wBg7lX7+x1tUGMtUqC+cXMuqOyKv7ptSl u43eLa3urCzsKgl19c4emJOCoR4Qvz8UqZt1c3A2Qud9 -----END CERTIFICATE-----Generated at Wed Feb 4 03:44:41 2026 by rpki-client