This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/InqWS5rTHtoJHqAAMNFNS-6YNzU.roa File: InqWS5rTHtoJHqAAMNFNS-6YNzU.roa (raw, json) Hash identifier: PCgwCy8zvVIhGv1SDbFVEmkSMCsbV4aCFlf6s9OR4Ns= Subject key identifier: 22:7A:96:4B:9A:D3:1E:DA:09:1E:A0:00:30:D1:4D:4B:EE:98:37:35 Certificate issuer: /CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30 Certificate serial: 019B7EA6A77BDFFE876C9C865113D17C3746 Authority key identifier: 6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/InqWS5rTHtoJHqAAMNFNS-6YNzU.roa Signing time: Fri 02 Jan 2026 12:20:09 +0000 ROA not before: Fri 02 Jan 2026 12:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 145.219.18.0/23 maxlen: 23 145.219.20.0/23 maxlen: 23 145.219.22.0/24 maxlen: 24 145.219.23.0/24 maxlen: 24 145.219.24.0/22 maxlen: 22 145.219.28.0/22 maxlen: 22 145.219.32.0/24 maxlen: 24 145.219.33.0/24 maxlen: 24 2a04:b0c0:10::/48 maxlen: 48 2a04:b0c0:11::/48 maxlen: 48 2a04:b0c0:12::/48 maxlen: 48 2a04:b0c0:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.mft rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 06:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a7:7b:df:fe:87:6c:9c:86:51:13:d1:7c:37:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30 Validity Not Before: Jan 2 12:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=227a964b9ad31eda091ea00030d14d4bee983735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:48:f7:d1:bd:b0:b8:31:13:28:48:1b:3b:5d: d0:d1:d8:d3:5d:5b:ae:7d:ca:21:a2:8d:30:27:14: 1e:89:4b:a6:28:fa:cd:ea:cf:6f:75:e1:2b:91:2c: 98:a5:da:fc:f7:5b:61:e9:a7:ea:08:d6:23:b5:c3: d6:8a:c4:2d:bc:00:a6:4e:8a:89:36:30:19:6f:ab: 50:d6:0f:08:7a:e2:75:b4:f4:61:ee:5f:03:6e:6c: 9d:fc:bf:a5:5e:3c:92:1a:1c:28:bc:8e:4c:fd:78: 3b:e2:0a:2a:82:00:09:51:fa:43:56:66:07:09:91: e9:53:86:ec:f5:03:71:66:b5:29:56:27:85:85:9e: f9:ac:b2:16:b8:59:62:3d:0c:53:59:6c:c9:07:f4: 46:b1:e9:bd:2c:8f:77:ff:ad:02:44:bb:0e:53:cd: cd:22:3d:48:11:db:e7:73:27:d2:b5:85:d5:94:f4: be:b3:19:48:7b:d5:a0:dd:c7:46:bd:7e:7c:aa:2d: 44:e4:9e:ef:36:8f:07:ce:e9:6c:e2:c7:88:b5:0e: 11:fb:8a:74:f5:97:be:2a:3c:59:99:cf:8f:c4:b3: 54:31:18:1c:d8:18:88:d8:c7:a5:e6:af:5e:d3:96: 66:10:b2:93:7f:d2:07:43:a0:c5:77:77:29:04:0d: 22:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:7A:96:4B:9A:D3:1E:DA:09:1E:A0:00:30:D1:4D:4B:EE:98:37:35 X509v3 Authority Key Identifier: keyid:6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/InqWS5rTHtoJHqAAMNFNS-6YNzU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.219.18.0-145.219.33.255 IPv6: 2a04:b0c0:10::/46 Signature Algorithm: sha256WithRSAEncryption 6b:aa:e4:4c:f3:1a:5b:ef:b6:0f:37:be:4f:fe:b4:30:90:fc: 18:7d:22:24:05:aa:73:a4:22:29:3d:ee:cc:4b:47:83:ff:a7: 98:bc:e5:1e:1a:75:3f:01:0f:4a:c6:42:fd:f7:69:da:e0:0c: da:0a:c1:97:87:7d:9e:23:9c:b7:67:f9:19:7d:c7:12:de:90: 9c:db:22:48:08:33:36:60:24:41:2a:3e:40:a5:09:e6:31:10: ea:84:b9:65:a3:79:a6:89:d3:48:bc:e7:c2:5d:cd:2e:a5:d1: 8b:bb:fa:29:93:46:37:6b:f0:bf:16:c1:ac:99:38:e9:1f:04: fc:3c:96:5e:66:09:cf:7c:50:64:10:e5:f3:01:8c:93:8d:8d: b7:88:41:94:5e:20:ec:ef:06:f8:05:0b:43:97:13:ef:0c:53: 3d:b4:67:25:db:b7:95:15:40:45:01:1a:20:1a:e5:49:3e:02: d7:97:ec:fb:f3:58:c9:cf:08:d6:79:2d:a0:41:6e:b6:43:9e: 76:37:40:4a:f9:69:c5:aa:9d:77:4c:db:8c:b6:ee:6e:63:17: ee:14:7c:a9:d5:b1:25:fd:a6:83:e3:0b:e9:e5:3b:ec:bc:13: f0:2e:0a:74:ab:ef:21:c2:e8:e8:94:1b:3c:d1:38:60:4e:fd: 09:f2:48:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt+pqd73/6HbJyGURPRfDdGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlNmQ3YmNhYmZjYzMwOGQ0MjAwNTNjNDgyYTBkNTlmYjEy ODJlMzAwHhcNMjYwMTAyMTIyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjdhOTY0YjlhZDMxZWRhMDkxZWEwMDAzMGQxNGQ0YmVlOTgzNzM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Ej30b2wuDETKEgbO13Q0djTXVuu fcohoo0wJxQeiUumKPrN6s9vdeErkSyYpdr891th6afqCNYjtcPWisQtvACmToqJ NjAZb6tQ1g8IeuJ1tPRh7l8Dbmyd/L+lXjySGhwovI5M/Xg74goqggAJUfpDVmYH CZHpU4bs9QNxZrUpVieFhZ75rLIWuFliPQxTWWzJB/RGsem9LI93/60CRLsOU83N Ij1IEdvncyfStYXVlPS+sxlIe9Wg3cdGvX58qi1E5J7vNo8Hzuls4seItQ4R+4p0 9Ze+KjxZmc+PxLNUMRgc2BiI2Mel5q9e05ZmELKTf9IHQ6DFd3cpBA0ixwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCJ6lkua0x7aCR6gADDRTUvumDc1MB8GA1UdIwQY MBaAFG5te8q/zDCNQgBTxIKg1Z+xKC4wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm0xN3lyX01NSTFDQUZQRWdxRFZuN0VvTGpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy80NWM2ODktYWZhYS00ZGEzLWE5NDIt OTMxOTRlYjYxMDhkLzEvSW5xV1M1clRIdG9KSHFBQU1ORk5TLTZZTnpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy80NWM2ODktYWZhYS00ZGEzLWE5NDItOTMxOTRlYjYxMDhk LzEvYm0xN3lyX01NSTFDQUZQRWdxRFZuN0VvTGpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAUBAIAATAOMAwDBAGR2xID BAGR2yAwDwQCAAIwCQMHAioEsMAAEDANBgkqhkiG9w0BAQsFAAOCAQEAa6rkTPMa W++2Dze+T/60MJD8GH0iJAWqc6QiKT3uzEtHg/+nmLzlHhp1PwEPSsZC/fdp2uAM 2grBl4d9niOct2f5GX3HEt6QnNsiSAgzNmAkQSo+QKUJ5jEQ6oS5ZaN5ponTSLzn wl3NLqXRi7v6KZNGN2vwvxbBrJk46R8E/DyWXmYJz3xQZBDl8wGMk42Nt4hBlF4g 7O8G+AULQ5cT7wxTPbRnJdu3lRVARQEaIBrlST4C15fs+/NYyc8I1nktoEFutkOe djdASvlpxaqdd0zbjLbubmMX7hR8qdWxJf2mg+ML6eU77LwT8C4KdKvvIcLo6JQb PNE4YE79CfJIkg== -----END CERTIFICATE-----Generated at Fri Jan 9 16:31:07 2026 by rpki-client