This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/tIWBxgSfmUJ5yUbZM72eINhsOTI.roa File: tIWBxgSfmUJ5yUbZM72eINhsOTI.roa (raw, json) Hash identifier: n6GxiY7vvcxQ6NOSMhWLsO1ZAOhhwcVXZW1ZYQjhGJc= Subject key identifier: B4:85:81:C6:04:9F:99:42:79:C9:46:D9:33:BD:9E:20:D8:6C:39:32 Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA56574D91461B89A72F657E6DE6A22 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/tIWBxgSfmUJ5yUbZM72eINhsOTI.roa Signing time: Thu 01 Jan 2026 22:19:55 +0000 ROA not before: Thu 01 Jan 2026 22:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 262287 IP address blocks: 45.84.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:65:74:d9:14:61:b8:9a:72:f6:57:e6:de:6a:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b48581c6049f994279c946d933bd9e20d86c3932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:16:44:2a:de:cd:99:77:58:30:e9:db:41:b0: ec:db:85:8a:89:da:3d:ce:54:2c:c3:b4:55:f8:70: 58:64:7e:11:2b:e3:7f:50:a3:2f:1c:ac:4f:65:f8: 1c:e8:c2:89:59:49:ac:49:a1:7c:6e:90:65:36:17: bc:4d:83:b1:82:bc:88:89:7b:14:39:a1:b9:28:c1: fc:1e:35:22:d7:e6:91:c3:5b:ec:8b:22:2f:5c:19: 9a:9d:0f:fd:35:0a:b1:d6:5c:c2:50:3b:19:62:9c: 7a:4f:bf:b5:43:3e:0c:49:f7:10:04:83:00:5f:90: 31:cc:59:3d:27:c4:74:f5:f8:08:6f:1e:b5:b3:a6: ca:5c:24:3d:d8:1e:2f:92:ba:3f:ab:ea:89:3e:01: 29:c0:40:2f:9d:bc:81:8a:3d:f5:9a:f6:10:93:e0: d5:20:0d:16:f4:97:22:6e:d9:1e:4e:2c:88:90:52: 72:69:fb:b7:e2:6e:df:1d:8d:de:03:f8:b7:9c:27: a9:47:6f:62:46:19:b4:d6:08:4b:c1:73:9e:65:3d: e5:9d:11:d8:03:e0:64:ed:94:39:3c:03:5a:10:0c: 4b:b7:65:52:1f:6b:1b:d5:00:e8:9c:fa:61:27:24: b3:fb:66:3f:cb:70:9a:a6:28:36:8d:8f:f0:00:0f: 98:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:85:81:C6:04:9F:99:42:79:C9:46:D9:33:BD:9E:20:D8:6C:39:32 X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/tIWBxgSfmUJ5yUbZM72eINhsOTI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.213.0/24 Signature Algorithm: sha256WithRSAEncryption 98:97:ef:47:5d:2c:4f:43:7c:32:2a:af:c4:62:fc:d7:0b:ec: fb:e5:80:cc:a9:a6:09:1c:0b:d0:e7:82:95:13:c4:01:1d:c9: ba:5a:09:65:f3:d0:e3:fa:86:cc:eb:e9:74:a9:44:69:b7:d0: d5:36:fb:20:2b:19:e0:04:fb:b1:96:f6:e8:70:85:cc:e8:8b: 4e:24:ba:cb:59:70:8b:18:43:ba:10:ed:dd:6e:83:70:51:f5: 9d:d5:38:66:dc:f2:80:07:a5:f9:a2:a0:00:c4:b0:cf:30:9e: db:9b:98:99:dc:3d:9f:c1:ab:ef:90:30:c2:9c:be:aa:3e:31: a2:4d:fa:81:82:b5:18:b9:fb:69:52:fe:69:78:95:2b:f2:c7: d7:3d:48:b6:74:2b:8a:66:9a:29:3c:bb:e3:1c:59:c4:f9:b2: 93:2c:a1:b4:87:f7:3f:c0:31:bd:bd:9d:9f:32:3a:a5:91:fd: 40:51:ec:21:53:f2:da:6f:a9:4f:d6:65:c6:fc:a6:ac:6f:4f: 4b:17:4b:d1:eb:ea:ff:27:c0:ad:52:d0:1e:89:8b:59:5d:a1: 1f:92:69:98:01:e6:46:76:98:76:d0:cc:9a:15:7b:5e:d8:ef: 40:90:99:6f:25:34:28:4d:7e:2d:4e:4b:b4:13:4f:c1:ac:bf: b1:50:33:71 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pWV02RRhuJpy9lfm3moiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDg1ODFjNjA0OWY5OTQyNzljOTQ2ZDkzM2JkOWUyMGQ4NmMzOTMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhZEKt7NmXdYMOnbQbDs24WKido9 zlQsw7RV+HBYZH4RK+N/UKMvHKxPZfgc6MKJWUmsSaF8bpBlNhe8TYOxgryIiXsU OaG5KMH8HjUi1+aRw1vsiyIvXBmanQ/9NQqx1lzCUDsZYpx6T7+1Qz4MSfcQBIMA X5AxzFk9J8R09fgIbx61s6bKXCQ92B4vkro/q+qJPgEpwEAvnbyBij31mvYQk+DV IA0W9JcibtkeTiyIkFJyafu34m7fHY3eA/i3nCepR29iRhm01ghLwXOeZT3lnRHY A+Bk7ZQ5PANaEAxLt2VSH2sb1QDonPphJySz+2Y/y3Capig2jY/wAA+YnwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLSFgcYEn5lCeclG2TO9niDYbDkyMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvdElXQnhnU2ZtVUo1eVViWk03MmVJTmhzT1RJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVTVMA0G CSqGSIb3DQEBCwUAA4IBAQCYl+9HXSxPQ3wyKq/EYvzXC+z75YDMqaYJHAvQ54KV E8QBHcm6Wgll89Dj+obM6+l0qURpt9DVNvsgKxngBPuxlvbocIXM6ItOJLrLWXCL GEO6EO3dboNwUfWd1Thm3PKAB6X5oqAAxLDPMJ7bm5iZ3D2fwavvkDDCnL6qPjGi TfqBgrUYuftpUv5peJUr8sfXPUi2dCuKZpopPLvjHFnE+bKTLKG0h/c/wDG9vZ2f Mjqlkf1AUewhU/Lab6lP1mXG/Kasb09LF0vR6+r/J8CtUtAeiYtZXaEfkmmYAeZG dph20MyaFXte2O9AkJlvJTQoTX4tTku0E0/BrL+xUDNx -----END CERTIFICATE-----Generated at Mon Jan 19 16:53:30 2026 by rpki-client