This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Cap4AqDIXnOANjwj5Q_umoaHkQI.roa File: Cap4AqDIXnOANjwj5Q_umoaHkQI.roa (raw, json) Hash identifier: +SWL0snbsHkcPNrtQ/SWHPIJw8db77RQEv2NDjAzQ8c= Subject key identifier: 09:AA:78:02:A0:C8:5E:73:80:36:3C:23:E5:0F:EE:9A:86:87:91:02 Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA53BEF001C22BA273C5AD83677F765 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Cap4AqDIXnOANjwj5Q_umoaHkQI.roa Signing time: Thu 01 Jan 2026 22:19:44 +0000 ROA not before: Thu 01 Jan 2026 22:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 45.134.222.0/24 maxlen: 24 45.137.196.0/24 maxlen: 24 45.137.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 10:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:3b:ef:00:1c:22:ba:27:3c:5a:d8:36:77:f7:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=09aa7802a0c85e7380363c23e50fee9a86879102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:39:94:06:23:f5:3f:c0:42:a6:d3:c6:6a:1e: cc:54:9a:89:3b:87:71:ac:a6:43:45:44:e9:90:19: 98:67:1a:62:8c:52:5b:ac:bd:7a:86:93:ab:6b:b8: 0d:41:10:cc:20:9f:af:0e:cb:f1:05:e5:b8:b3:ff: 49:91:5f:4f:b4:07:cf:b8:d7:e8:c3:98:6a:fa:13: bc:8f:48:f6:fc:f5:6e:64:20:72:e6:b9:8e:c2:c3: 54:e0:29:25:fa:0c:ff:a9:07:27:52:0e:ce:e3:7c: 0b:ce:63:55:92:ba:6d:be:4c:63:00:67:93:94:59: 64:6c:5f:62:0a:60:e2:9d:ab:13:ae:32:19:93:1c: 0a:46:16:ef:81:75:ae:8d:96:f8:53:21:83:a1:0a: fa:c5:98:16:49:8f:cd:ec:99:38:48:57:d2:12:1c: bc:01:14:c5:24:2c:0a:9e:4b:fc:53:96:87:81:4c: 42:74:db:9b:0c:43:e7:b8:11:ad:27:7d:3e:b6:7e: a6:8d:01:81:66:7c:28:9b:3e:cc:55:ac:68:33:51: 05:be:5e:5d:5b:2f:2d:3f:21:53:62:02:40:20:e2: a6:48:ea:cc:0b:47:6a:af:70:62:38:a6:dd:fd:4d: 0a:b7:68:a8:47:ad:0a:46:e1:b1:b1:10:55:6e:64: 62:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:AA:78:02:A0:C8:5E:73:80:36:3C:23:E5:0F:EE:9A:86:87:91:02 X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Cap4AqDIXnOANjwj5Q_umoaHkQI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.134.222.0/24 45.137.196.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:95:be:53:93:e0:92:46:84:ca:bd:15:c7:84:c4:c8:6f:a5: cb:e1:89:5d:07:8c:f9:b8:78:ba:74:ce:d4:52:1f:c9:4f:09: fe:c9:f4:56:89:45:7a:54:ed:62:ef:21:5f:4e:a9:31:17:43: f2:3e:cc:f1:86:02:9e:e7:35:5f:be:a9:28:9a:1e:cd:30:ab: 8b:6b:82:67:61:a8:2b:71:1e:c8:25:94:a2:01:86:28:77:3d: 8d:ec:dd:bc:ec:41:84:fd:c7:63:9a:43:de:fd:e3:34:7b:6f: 31:59:4b:ee:0d:d9:90:c4:39:b0:21:c3:10:72:8c:fd:e9:93: 8b:88:0b:65:71:4a:c6:66:0f:63:8c:56:60:9b:fb:60:c9:f7: 61:42:a8:b9:30:31:5b:d3:bc:ff:80:cb:f3:d7:bf:7f:58:61: 90:8b:ee:b9:8c:17:11:c8:dc:43:79:ef:ff:bb:c6:13:4e:53: f5:b9:a2:d1:ae:ee:34:82:d0:1f:8d:6e:39:c3:56:74:72:a7: 38:c3:4e:11:f0:1b:7a:a4:55:8f:27:db:c7:ed:88:1d:fd:7f: 0f:52:34:7b:76:ad:0b:d3:ab:c0:9e:1f:bf:ed:fd:35:78:d4: 73:47:3f:c1:eb:f7:bb:f7:5a:11:6c:c2:38:65:62:31:dc:85: 0b:05:9c:56 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pTvvABwiuic8Wtg2d/dlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOWFhNzgwMmEwYzg1ZTczODAzNjNjMjNlNTBmZWU5YTg2ODc5MTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjmUBiP1P8BCptPGah7MVJqJO4dx rKZDRUTpkBmYZxpijFJbrL16hpOra7gNQRDMIJ+vDsvxBeW4s/9JkV9PtAfPuNfo w5hq+hO8j0j2/PVuZCBy5rmOwsNU4Ckl+gz/qQcnUg7O43wLzmNVkrptvkxjAGeT lFlkbF9iCmDinasTrjIZkxwKRhbvgXWujZb4UyGDoQr6xZgWSY/N7Jk4SFfSEhy8 ARTFJCwKnkv8U5aHgUxCdNubDEPnuBGtJ30+tn6mjQGBZnwomz7MVaxoM1EFvl5d Wy8tPyFTYgJAIOKmSOrMC0dqr3BiOKbd/U0Kt2ioR60KRuGxsRBVbmRi+QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAmqeAKgyF5zgDY8I+UP7pqGh5ECMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvQ2FwNEFxRElYbk9BTmp3ajVRX3Vtb2FIa1FJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYbeAwQB LYnEMA0GCSqGSIb3DQEBCwUAA4IBAQA/lb5Tk+CSRoTKvRXHhMTIb6XL4YldB4z5 uHi6dM7UUh/JTwn+yfRWiUV6VO1i7yFfTqkxF0PyPszxhgKe5zVfvqkomh7NMKuL a4JnYagrcR7IJZSiAYYodz2N7N287EGE/cdjmkPe/eM0e28xWUvuDdmQxDmwIcMQ coz96ZOLiAtlcUrGZg9jjFZgm/tgyfdhQqi5MDFb07z/gMvz179/WGGQi+65jBcR yNxDee//u8YTTlP1uaLRru40gtAfjW45w1Z0cqc4w04R8Bt6pFWPJ9vH7Ygd/X8P UjR7dq0L06vAnh+/7f01eNRzRz/B6/e791oRbMI4ZWIx3IULBZxW -----END CERTIFICATE-----Generated at Fri Jan 9 17:06:04 2026 by rpki-client