This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ruijiG2c7OWNAbZg1DzBzUw2h9A.roa File: ruijiG2c7OWNAbZg1DzBzUw2h9A.roa (raw, json) Hash identifier: gl727KrmeoI8zfQ+pdZJ+FzEFZTT7EufSZa415R+/6E= Subject key identifier: AE:E8:A3:88:6D:9C:EC:E5:8D:01:B6:60:D4:3C:C1:CD:4C:36:87:D0 Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1 Certificate serial: 019B7E38049BAB6E68D70EDA85F0BFE76FDC Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ruijiG2c7OWNAbZg1DzBzUw2h9A.roa Signing time: Fri 02 Jan 2026 10:19:19 +0000 ROA not before: Fri 02 Jan 2026 10:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9123 IP address blocks: 45.10.40.0/24 maxlen: 24 45.10.41.0/24 maxlen: 24 45.10.43.0/24 maxlen: 24 88.218.168.0/24 maxlen: 24 88.218.170.0/24 maxlen: 24 93.183.80.0/22 maxlen: 24 185.197.75.0/24 maxlen: 24 193.188.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.mft rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 13:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:04:9b:ab:6e:68:d7:0e:da:85:f0:bf:e7:6f:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1 Validity Not Before: Jan 2 10:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aee8a3886d9cece58d01b660d43cc1cd4c3687d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ec:06:09:1a:b5:20:d4:f1:bc:cf:eb:71:f8: 87:23:9a:2d:df:27:24:a7:15:ea:41:1b:29:6a:83: 8b:53:39:99:70:6a:e3:00:6c:23:81:f3:a0:2b:0f: 18:c8:fc:bb:5e:ee:3d:43:0f:b6:f6:38:93:23:88: 75:23:cb:8c:2b:96:b4:7c:52:32:56:e4:b7:d1:b4: 7b:92:6b:fa:ec:28:3b:cf:54:15:e9:82:d9:63:bf: 7f:e1:29:b4:48:6c:54:cf:1b:da:66:28:59:b8:17: bc:1c:f1:8d:4b:fe:bb:2f:b1:00:33:b2:d7:d7:c8: 35:3a:f3:00:be:96:3b:9a:0a:36:f4:28:f9:c6:db: 07:d6:fc:ff:f4:ca:1f:c1:ef:33:ff:54:48:42:0f: d8:b0:ac:3e:8a:cf:6c:22:34:d6:b9:4e:a1:a2:da: 9b:9c:3d:f2:ce:79:ec:47:56:2d:73:c7:4c:a1:7b: 5a:d2:a6:a6:ba:98:54:8e:dc:69:e9:c1:e8:2c:64: c5:20:20:e4:dd:20:11:da:6d:ad:e1:2d:7e:26:28: 1e:94:af:63:2c:df:7d:d1:9b:28:a6:8c:6e:da:bc: e6:c6:6b:77:fc:56:ca:0a:67:5b:9f:5e:9b:f4:bf: 63:ca:83:8d:f3:02:9b:fb:ec:e7:c7:e8:ce:15:7f: c7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E8:A3:88:6D:9C:EC:E5:8D:01:B6:60:D4:3C:C1:CD:4C:36:87:D0 X509v3 Authority Key Identifier: keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ruijiG2c7OWNAbZg1DzBzUw2h9A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.40.0/23 45.10.43.0/24 88.218.168.0/24 88.218.170.0/24 93.183.80.0/22 185.197.75.0/24 193.188.23.0/24 Signature Algorithm: sha256WithRSAEncryption 75:d1:20:4e:ad:aa:b0:6d:9b:de:de:0d:bc:c1:f1:4c:5a:c1: 41:34:3d:1e:79:5c:49:1e:6f:51:9b:44:6e:06:ea:79:31:ba: b7:1f:7e:77:f0:02:67:f0:6a:17:c2:ba:05:98:4a:0d:35:b2: 1f:77:cb:b4:4a:01:c9:65:99:92:a0:15:e1:51:18:36:9a:20: 6d:f8:5e:bb:cd:8d:e8:7b:83:b4:49:7d:d2:c2:2a:05:2c:d2: ab:3a:38:04:ff:ef:2d:04:bf:6f:f5:4c:49:a0:3c:ba:40:04: 85:60:9c:9a:bb:98:e8:04:3a:b7:01:3c:7f:33:5f:83:06:f2: 04:6b:8d:e7:47:10:a3:a6:7d:17:e2:0b:e4:b3:28:b1:9a:f4: 84:36:f4:8f:42:a1:fb:26:2b:7b:69:33:17:29:06:a6:ae:06: 43:21:ac:3d:3a:e9:f0:0e:e8:40:57:b0:3c:f2:92:3a:fe:cd: 87:ec:8b:66:de:9c:4b:41:d6:bb:52:00:a4:79:f3:d2:09:37: df:41:f7:27:97:53:5b:db:31:36:4e:1c:b5:81:89:8b:12:91: 8f:38:d3:87:a4:b5:c4:48:21:30:47:83:bb:4b:90:c1:75:1c: 9b:be:6e:f6:ed:76:57:71:c9:01:6e:72:57:74:7d:5f:71:6f: ba:87:d2:ff -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt+OASbq25o1w7ahfC/52/cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3 NzliYjEwHhcNMjYwMTAyMTAxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZWU4YTM4ODZkOWNlY2U1OGQwMWI2NjBkNDNjYzFjZDRjMzY4N2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouwGCRq1INTxvM/rcfiHI5ot3yck pxXqQRspaoOLUzmZcGrjAGwjgfOgKw8YyPy7Xu49Qw+29jiTI4h1I8uMK5a0fFIy VuS30bR7kmv67Cg7z1QV6YLZY79/4Sm0SGxUzxvaZihZuBe8HPGNS/67L7EAM7LX 18g1OvMAvpY7mgo29Cj5xtsH1vz/9Mofwe8z/1RIQg/YsKw+is9sIjTWuU6hotqb nD3yznnsR1Ytc8dMoXta0qamuphUjtxp6cHoLGTFICDk3SAR2m2t4S1+JigelK9j LN990Zsopoxu2rzmxmt3/FbKCmdbn16b9L9jyoON8wKb++znx+jOFX/HBwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFK7oo4htnOzljQG2YNQ8wc1MNofQMB8GA1UdIwQY MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt NmI0MzcyNjAyMDk2LzEvcnVpamlHMmM3T1dOQWJaZzFEekJ6VXcyaDlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2 LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBLQooAwQA LQorAwQAWNqoAwQAWNqqAwQCXbdQAwQAucVLAwQAwbwXMA0GCSqGSIb3DQEBCwUA A4IBAQB10SBOraqwbZve3g28wfFMWsFBND0eeVxJHm9Rm0RuBup5Mbq3H3538AJn 8GoXwroFmEoNNbIfd8u0SgHJZZmSoBXhURg2miBt+F67zY3oe4O0SX3SwioFLNKr OjgE/+8tBL9v9UxJoDy6QASFYJyau5joBDq3ATx/M1+DBvIEa43nRxCjpn0X4gvk syixmvSENvSPQqH7Jit7aTMXKQamrgZDIaw9OunwDuhAV7A88pI6/s2H7Itm3pxL Qda7UgCkefPSCTffQfcnl1Nb2zE2Thy1gYmLEpGPONOHpLXESCEwR4O7S5DBdRyb vm727XZXcckBbnJXdH1fcW+6h9L/ -----END CERTIFICATE-----Generated at Tue Jan 20 17:19:15 2026 by rpki-client