This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/tIkY4OoTNihbQhTi0QsM5bM1dfA.roa File: tIkY4OoTNihbQhTi0QsM5bM1dfA.roa (raw, json) Hash identifier: b+OXoXB4CdtdFNvzy3lCk/uJkJJJusTiPWfrLUgLfeU= Subject key identifier: B4:89:18:E0:EA:13:36:28:5B:42:14:E2:D1:0B:0C:E5:B3:35:75:F0 Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c Certificate serial: 019B78A2B224372DB85DF36580DD99363061 Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/tIkY4OoTNihbQhTi0QsM5bM1dfA.roa Signing time: Thu 01 Jan 2026 08:18:06 +0000 ROA not before: Thu 01 Jan 2026 08:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15830 IP address blocks: 45.136.140.0/24 maxlen: 24 2a10:5a80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.mft rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 20:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:b2:24:37:2d:b8:5d:f3:65:80:dd:99:36:30:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c Validity Not Before: Jan 1 08:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b48918e0ea1336285b4214e2d10b0ce5b33575f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:93:96:1a:21:5a:e8:0b:1c:3f:a2:f6:fc:6a: a5:9b:5c:59:e6:51:90:7b:3d:1f:5b:47:eb:45:dc: 88:57:d3:99:aa:61:c6:b1:83:1e:a3:c2:4d:01:e8: 6b:0a:db:05:c9:fd:7c:83:f4:d5:f4:ba:ae:7d:04: 8c:a2:e1:b3:36:d2:8e:d5:e1:0d:f8:f2:de:65:6c: 49:61:f7:df:fa:31:e8:b5:a7:c4:02:71:ad:b6:f5: 01:b5:85:6e:c9:c8:c8:58:b6:99:a9:13:7f:ad:98: 7a:ab:60:d1:f8:18:e4:28:a2:90:c5:ea:19:ea:b2: ac:36:b5:37:b6:65:54:47:37:54:24:dd:6c:34:ac: 8f:ee:c3:c1:e9:d2:f8:19:72:79:92:2f:76:00:7b: 32:cf:be:f5:bf:7a:d8:62:d0:0b:41:6d:ef:c5:0a: 10:5c:1c:3a:c9:27:ce:61:cd:9b:34:b1:c7:d5:f3: 8b:91:93:a7:50:49:3c:72:47:0c:bd:17:4b:42:9a: 4c:6e:c6:bf:8c:52:b7:0f:f8:c5:7a:c9:7a:41:a9: 58:f4:3b:39:7a:cc:1a:10:15:1b:4b:2d:7a:d2:13: 2b:44:58:d5:c7:26:33:4c:2d:e3:1c:9e:14:ac:1f: d3:a4:d4:eb:3b:89:25:f1:95:28:75:4e:00:42:15: 24:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:89:18:E0:EA:13:36:28:5B:42:14:E2:D1:0B:0C:E5:B3:35:75:F0 X509v3 Authority Key Identifier: keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/tIkY4OoTNihbQhTi0QsM5bM1dfA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.136.140.0/24 IPv6: 2a10:5a80::/32 Signature Algorithm: sha256WithRSAEncryption 05:7e:db:17:4f:1b:43:45:f9:53:59:59:77:e2:86:43:d4:e2: c1:dc:3a:78:45:43:30:62:84:c0:2b:3d:29:25:1f:66:cd:ae: 0d:21:2a:b4:af:bf:eb:6e:fd:44:77:87:22:2a:83:22:25:ff: 23:83:4b:3c:7e:c7:8b:fe:04:ea:cc:88:26:29:34:b1:a5:24: 0f:a5:9f:1b:99:6d:d3:91:70:0c:bd:27:94:df:0d:99:41:5d: 39:02:65:e5:94:8a:1d:06:ea:91:97:60:b0:58:b4:77:e7:f0: 8b:74:23:7c:fd:52:98:8c:ec:7d:c6:57:ba:54:98:c8:33:65: 15:c9:4c:71:c6:50:9a:57:17:be:cf:eb:f1:f6:56:1f:63:c8: 80:b8:bd:de:c5:26:7d:15:c8:de:3e:14:29:5c:fb:cf:1f:2f: 68:83:0a:22:44:ab:dd:9b:8e:ad:ac:e6:7c:b2:34:83:48:36: ee:64:18:c6:f4:13:37:db:70:e0:91:dc:34:19:2a:2f:08:63: de:c8:e0:c9:19:c7:36:0b:92:0c:02:09:84:10:4f:cf:be:ba: c6:6a:d2:a2:54:6a:f2:82:21:54:b1:cd:08:6b:ec:ed:a5:95: 66:d9:ba:d8:3f:14:45:fc:b9:ad:18:e7:6b:99:05:e6:fb:1a: fe:03:f1:73 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4orIkNy24XfNlgN2ZNjBhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZDIxZTgwNGFiNzcxM2FkNzg3N2RkZTYwM2FhNzgyNGIz MTk4M2MwHhcNMjYwMTAxMDgxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDg5MThlMGVhMTMzNjI4NWI0MjE0ZTJkMTBiMGNlNWIzMzU3NWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJOWGiFa6AscP6L2/Gqlm1xZ5lGQ ez0fW0frRdyIV9OZqmHGsYMeo8JNAehrCtsFyf18g/TV9LqufQSMouGzNtKO1eEN +PLeZWxJYfff+jHotafEAnGttvUBtYVuycjIWLaZqRN/rZh6q2DR+BjkKKKQxeoZ 6rKsNrU3tmVURzdUJN1sNKyP7sPB6dL4GXJ5ki92AHsyz771v3rYYtALQW3vxQoQ XBw6ySfOYc2bNLHH1fOLkZOnUEk8ckcMvRdLQppMbsa/jFK3D/jFesl6QalY9Ds5 eswaEBUbSy160hMrRFjVxyYzTC3jHJ4UrB/TpNTrO4kl8ZUodU4AQhUkUwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLSJGODqEzYoW0IU4tELDOWzNXXwMB8GA1UdIwQY MBaAFMLSHoBKt3E614d93mA6p4JLMZg8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYt NTlhZTA5ZWRiZWI5LzEvdElrWTRPb1ROaWhiUWhUaTBRc001Yk0xZGZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYtNTlhZTA5ZWRiZWI5 LzEvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYiMMA0E AgACMAcDBQAqEFqAMA0GCSqGSIb3DQEBCwUAA4IBAQAFftsXTxtDRflTWVl34oZD 1OLB3Dp4RUMwYoTAKz0pJR9mza4NISq0r7/rbv1Ed4ciKoMiJf8jg0s8fseL/gTq zIgmKTSxpSQPpZ8bmW3TkXAMvSeU3w2ZQV05AmXllIodBuqRl2CwWLR35/CLdCN8 /VKYjOx9xle6VJjIM2UVyUxxxlCaVxe+z+vx9lYfY8iAuL3exSZ9FcjePhQpXPvP Hy9ogwoiRKvdm46trOZ8sjSDSDbuZBjG9BM323Dgkdw0GSovCGPeyODJGcc2C5IM AgmEEE/PvrrGatKiVGrygiFUsc0Ia+ztpZVm2brYPxRF/LmtGOdrmQXm+xr+A/Fz -----END CERTIFICATE-----Generated at Sat Jan 3 04:53:28 2026 by rpki-client