This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/cUb3XTogvovrYjpVGeHi0SpRJUA.roa File: cUb3XTogvovrYjpVGeHi0SpRJUA.roa (raw, json) Hash identifier: LdHfjZ1stTUnmvHrBTIHeQNXmr3GpKVFfzvqxr7MXf8= Subject key identifier: 71:46:F7:5D:3A:20:BE:8B:EB:62:3A:55:19:E1:E2:D1:2A:51:25:40 Certificate issuer: /CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c Certificate serial: 019B7F822EAE912B8C081252A564F7163AF9 Authority key identifier: AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/cUb3XTogvovrYjpVGeHi0SpRJUA.roa Signing time: Fri 02 Jan 2026 16:19:56 +0000 ROA not before: Fri 02 Jan 2026 16:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209854 IP address blocks: 45.94.24.0/24 maxlen: 24 45.94.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.mft rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:2e:ae:91:2b:8c:08:12:52:a5:64:f7:16:3a:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c Validity Not Before: Jan 2 16:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7146f75d3a20be8beb623a5519e1e2d12a512540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:19:d5:1e:8b:3b:3e:33:a6:b9:11:61:31: fb:a7:f1:3d:1b:a7:1b:ca:13:ff:6b:f2:ce:55:2b: 71:be:d4:8c:a5:ca:ae:dc:25:d9:94:cc:c0:c6:4f: 79:99:59:8b:bb:81:8a:db:57:67:68:cb:e4:9b:de: d7:d6:5a:05:80:91:b6:73:18:22:54:14:94:20:fa: 9f:e8:3c:c4:40:d1:4f:00:e7:39:5c:d5:c5:03:05: f9:94:eb:05:d2:d5:e3:40:d3:c0:14:3e:b8:16:bb: 9d:e8:ab:5d:b6:9f:f4:54:d3:25:95:f8:d9:b8:da: a2:32:cc:b1:50:59:04:ec:b6:3a:30:4d:a8:0a:c1: 5c:ea:21:6f:f1:27:08:4a:89:01:61:8b:0b:58:bf: 0d:87:bd:22:7a:fe:17:04:65:d1:3d:de:99:bd:5b: 8a:a0:a9:b8:57:b4:66:ee:06:ea:52:34:4b:1a:93: 0c:8a:a3:6b:a6:41:f4:a1:f8:44:4b:74:13:c9:22: 70:cf:37:e8:59:f5:95:a0:1a:7b:c7:92:34:5f:4a: a4:4d:0f:d6:d3:40:81:fd:fb:9a:ff:8e:e5:19:a0: 98:d1:84:35:4e:4c:25:c2:a2:16:52:b5:86:a4:12: f2:d2:23:ef:c2:16:b9:04:aa:1f:8f:34:93:18:2a: ec:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:46:F7:5D:3A:20:BE:8B:EB:62:3A:55:19:E1:E2:D1:2A:51:25:40 X509v3 Authority Key Identifier: keyid:AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/cUb3XTogvovrYjpVGeHi0SpRJUA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.94.24.0/24 45.94.27.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:d5:51:29:01:c7:64:99:aa:ed:25:5a:37:3c:26:67:89:f6: 62:fa:d6:d1:0e:28:d5:66:78:2f:fa:31:8d:99:0f:19:d7:1e: 6b:32:63:38:31:0f:24:a9:f6:ff:29:49:f1:9d:2a:43:21:a9: 89:d3:28:68:91:36:44:3b:4b:2f:cf:e3:c6:2c:b6:c6:e6:69: f1:c7:df:75:9d:0a:f5:77:34:e6:c1:28:1a:a2:40:d8:a1:22: b4:40:fd:d8:20:0d:f2:70:0a:04:98:7f:02:db:13:be:70:4f: 0a:11:bf:f5:de:93:a0:21:30:6b:3b:66:b6:6a:44:3c:7b:64: 1b:98:15:a2:6b:1c:dc:dc:b2:85:42:fa:11:8e:c6:3b:fe:75: d8:4e:08:4f:a6:80:49:b7:e2:ba:6d:43:57:28:9a:5f:c3:5d: 67:ac:f6:b1:c7:31:6a:41:9b:39:5a:80:3e:fb:d1:71:fb:3f: 76:df:82:b3:a5:91:07:1c:81:be:ce:34:d1:15:31:f0:1f:60: eb:62:2a:85:6c:96:e5:93:ed:37:4f:f3:30:c4:2a:f4:a1:e0: 38:80:4a:c3:dc:e2:c9:97:18:09:a1:48:a0:72:2b:a8:bd:20: ac:db:8d:7a:30:fb:b3:7f:d5:d6:c8:73:a6:97:48:2f:5b:ef: 52:3e:f1:5c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/gi6ukSuMCBJSpWT3Fjr5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmZjZmODVhYWQxMDFjNDU2YzFhYzlhMDFhNzE5MmZjNTc4 OGU5MmMwHhcNMjYwMTAyMTYxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTQ2Zjc1ZDNhMjBiZThiZWI2MjNhNTUxOWUxZTJkMTJhNTEyNTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+oZ1R6LOz4zprkRYTH7p/E9G6cb yhP/a/LOVStxvtSMpcqu3CXZlMzAxk95mVmLu4GK21dnaMvkm97X1loFgJG2cxgi VBSUIPqf6DzEQNFPAOc5XNXFAwX5lOsF0tXjQNPAFD64Frud6Ktdtp/0VNMllfjZ uNqiMsyxUFkE7LY6ME2oCsFc6iFv8ScISokBYYsLWL8Nh70iev4XBGXRPd6ZvVuK oKm4V7Rm7gbqUjRLGpMMiqNrpkH0ofhES3QTySJwzzfoWfWVoBp7x5I0X0qkTQ/W 00CB/fua/47lGaCY0YQ1TkwlwqIWUrWGpBLy0iPvwha5BKofjzSTGCrsWwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHFG9106IL6L62I6VRnh4tEqUSVAMB8GA1UdIwQY MBaAFK/2+FqtEBxFbBrJoBpxkvxXiOksMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcl9iNFdxMFFIRVZzR3NtZ0duR1NfRmVJNlN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9kZjcxOWEtNDkyZi00N2NiLTkyMTIt NjQ0YmQwZmM3ZjgwLzEvY1ViM1hUb2d2b3ZyWWpwVkdlSGkwU3BSSlVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi9kZjcxOWEtNDkyZi00N2NiLTkyMTItNjQ0YmQwZmM3Zjgw LzEvcl9iNFdxMFFIRVZzR3NtZ0duR1NfRmVJNlN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALV4YAwQA LV4bMA0GCSqGSIb3DQEBCwUAA4IBAQBu1VEpAcdkmartJVo3PCZnifZi+tbRDijV Zngv+jGNmQ8Z1x5rMmM4MQ8kqfb/KUnxnSpDIamJ0yhokTZEO0svz+PGLLbG5mnx x991nQr1dzTmwSgaokDYoSK0QP3YIA3ycAoEmH8C2xO+cE8KEb/13pOgITBrO2a2 akQ8e2QbmBWiaxzc3LKFQvoRjsY7/nXYTghPpoBJt+K6bUNXKJpfw11nrPaxxzFq QZs5WoA++9Fx+z9234KzpZEHHIG+zjTRFTHwH2DrYiqFbJblk+03T/MwxCr0oeA4 gErD3OLJlxgJoUigciuovSCs2416MPuzf9XWyHOml0gvW+9SPvFc -----END CERTIFICATE-----Generated at Mon Jan 19 17:31:39 2026 by rpki-client