This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/IyZ74sMICHbbO71Pv8NEW98kuGY.roa File: IyZ74sMICHbbO71Pv8NEW98kuGY.roa (raw, json) Hash identifier: Q15IPVDbiqVIahdDrDcw5471LRzmN3CfkNGqNOE0ElE= Subject key identifier: 23:26:7B:E2:C3:08:08:76:DB:3B:BD:4F:BF:C3:44:5B:DF:24:B8:66 Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA55AAEA5105973252208621834E67B Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/IyZ74sMICHbbO71Pv8NEW98kuGY.roa Signing time: Thu 01 Jan 2026 22:19:52 +0000 ROA not before: Thu 01 Jan 2026 22:19:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203144 IP address blocks: 45.94.28.0/24 maxlen: 24 45.132.192.0/24 maxlen: 24 45.148.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:5a:ae:a5:10:59:73:25:22:08:62:18:34:e6:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23267be2c3080876db3bbd4fbfc3445bdf24b866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f8:67:6a:80:a0:92:52:5e:64:61:e9:09:37: ae:67:f0:00:95:5b:aa:04:dc:00:97:9f:21:19:3b: 17:74:f2:48:1a:ef:1b:81:d7:dd:f5:59:e5:e9:da: 76:5a:dd:32:70:5b:bf:71:50:e8:69:64:bf:1c:ae: 50:08:4b:95:f9:71:8f:36:60:2b:d2:8a:76:cd:90: 8f:3c:e6:fa:c3:35:e3:dd:c4:11:6d:6c:06:d9:a2: 87:99:e5:7d:7d:58:5e:a7:d1:38:9c:6f:b6:1b:b0: d0:bd:15:2a:15:60:13:bc:c2:84:0f:e9:29:01:dd: 75:6c:eb:97:97:ac:7d:a7:0f:c4:6c:46:c7:12:08: 70:79:2f:ed:46:93:31:ac:0f:88:74:4c:19:d7:40: f8:a1:3a:ea:2f:6d:db:31:bb:69:30:b8:dd:3a:a9: 33:e5:3c:eb:55:65:20:30:0d:0e:87:06:ce:09:f7: 9f:80:e9:8f:5b:a2:65:ea:ce:6d:9b:25:2a:35:e7: a7:41:65:90:db:bb:32:ae:cf:b7:2d:46:db:40:b5: 14:3f:09:61:68:7b:bc:e3:1a:4f:03:f9:30:ec:b7: d3:26:c4:c0:c1:56:e2:e1:e5:6b:0c:c2:e6:d7:01: 4f:8f:28:4d:f9:06:9e:eb:f1:f9:f6:1a:61:4c:37: b3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:26:7B:E2:C3:08:08:76:DB:3B:BD:4F:BF:C3:44:5B:DF:24:B8:66 X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/IyZ74sMICHbbO71Pv8NEW98kuGY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.94.28.0/24 45.132.192.0/24 45.148.26.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:71:5a:b3:c5:31:03:51:80:de:3f:72:72:28:74:e7:67:0c: 47:49:d5:9b:37:4b:ed:72:35:25:bf:2e:e0:09:30:a0:96:2d: 9b:07:19:e1:a4:2f:82:b9:43:16:09:b6:c6:de:32:a7:7d:78: 69:3f:fe:a6:65:34:e5:c3:13:8e:48:42:94:88:4d:8f:c7:46: 8c:b6:ca:7b:e6:69:2a:94:59:d7:ab:3a:84:a3:56:ac:69:76: 21:29:c4:44:d0:69:fd:d1:88:4e:97:aa:d7:c1:e4:28:c8:e1: 98:53:50:b1:d8:b1:3c:8f:65:87:4a:57:c3:70:9a:67:0e:10: 26:e1:2f:91:89:c6:95:6f:e3:f9:1f:d6:18:a5:84:3e:64:b8: b2:80:eb:2f:98:3d:87:0e:43:01:c5:ab:24:c6:67:b5:fd:68: 5c:43:23:31:62:89:0f:85:4a:8f:88:76:87:c3:2d:a0:b9:60: 58:75:a3:89:3b:c4:2f:a7:4a:b9:ee:f5:dd:2f:d7:d4:a0:8e: 75:db:a2:57:a0:08:1c:60:62:2c:cf:3e:a7:8e:75:a0:25:4a: 80:0b:ab:57:d0:23:fe:12:59:42:89:94:82:71:b0:d5:91:c4: 9e:b3:de:c8:0d:dc:77:c0:5d:cf:1c:16:47:8f:39:68:fd:74: 53:86:63:20 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt7pVqupRBZcyUiCGIYNOZ7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzI2N2JlMmMzMDgwODc2ZGIzYmJkNGZiZmMzNDQ1YmRmMjRiODY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PhnaoCgklJeZGHpCTeuZ/AAlVuq BNwAl58hGTsXdPJIGu8bgdfd9Vnl6dp2Wt0ycFu/cVDoaWS/HK5QCEuV+XGPNmAr 0op2zZCPPOb6wzXj3cQRbWwG2aKHmeV9fVhep9E4nG+2G7DQvRUqFWATvMKED+kp Ad11bOuXl6x9pw/EbEbHEghweS/tRpMxrA+IdEwZ10D4oTrqL23bMbtpMLjdOqkz 5TzrVWUgMA0OhwbOCfefgOmPW6Jl6s5tmyUqNeenQWWQ27syrs+3LUbbQLUUPwlh aHu84xpPA/kw7LfTJsTAwVbi4eVrDMLm1wFPjyhN+Qae6/H59hphTDezQQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFCMme+LDCAh22zu9T7/DRFvfJLhmMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvSXlaNzRzTUlDSGJiTzcxUHY4TkVXOThrdUdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALV4cAwQA LYTAAwQALZQaMA0GCSqGSIb3DQEBCwUAA4IBAQBNcVqzxTEDUYDeP3JyKHTnZwxH SdWbN0vtcjUlvy7gCTCgli2bBxnhpC+CuUMWCbbG3jKnfXhpP/6mZTTlwxOOSEKU iE2Px0aMtsp75mkqlFnXqzqEo1asaXYhKcRE0Gn90YhOl6rXweQoyOGYU1Cx2LE8 j2WHSlfDcJpnDhAm4S+RicaVb+P5H9YYpYQ+ZLiygOsvmD2HDkMBxaskxme1/Whc QyMxYokPhUqPiHaHwy2guWBYdaOJO8Qvp0q57vXdL9fUoI5126JXoAgcYGIszz6n jnWgJUqAC6tX0CP+EllCiZSCcbDVkcSes97IDdx3wF3PHBZHjzlo/XRThmMg -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:54 2026 by rpki-client