This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/S_kn4DkQroHqq7HAquDXguodEnE.roa File: S_kn4DkQroHqq7HAquDXguodEnE.roa (raw, json) Hash identifier: 9xxNTgjpkgjoYZUn/S2u9DKQyLLVAn0QlTy3a/LjFvI= Subject key identifier: 4B:F9:27:E0:39:10:AE:81:EA:AB:B1:C0:AA:E0:D7:82:EA:1D:12:71 Certificate issuer: /CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546 Certificate serial: 019B7B36B20DF30AE51A173B2E8EE924BDB4 Authority key identifier: B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/S_kn4DkQroHqq7HAquDXguodEnE.roa Signing time: Thu 01 Jan 2026 20:19:00 +0000 ROA not before: Thu 01 Jan 2026 20:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 45.136.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tfGesN1I4bJJJJCLtbaEjMFnhUY.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tfGesN1I4bJJJJCLtbaEjMFnhUY.mft rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:b2:0d:f3:0a:e5:1a:17:3b:2e:8e:e9:24:bd:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546 Validity Not Before: Jan 1 20:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4bf927e03910ae81eaabb1c0aae0d782ea1d1271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:09:76:6a:98:9d:43:c6:9f:c1:c1:af:2f: 2a:da:03:64:1b:ef:bf:40:0e:5f:82:4a:87:d2:2d: e3:d6:d3:31:50:a9:9a:37:9d:28:65:32:85:3d:ae: 83:43:b9:1a:c5:39:b2:43:57:b5:aa:c5:6a:4d:74: 41:cf:16:a6:8f:04:db:17:82:b4:3a:59:1f:3e:f5: 98:17:aa:94:20:9a:55:14:da:50:40:77:24:6f:82: 1c:77:5e:14:21:bf:ad:43:b8:69:0a:66:72:4b:4e: 08:76:d6:1c:d9:57:29:33:a0:ef:76:b3:84:5d:96: d1:fc:d0:3a:58:df:84:8f:0b:eb:ca:a4:ed:f0:48: f3:c5:01:45:79:eb:2d:6b:cf:de:54:92:32:a1:70: a1:57:08:cc:2c:47:a6:af:68:3a:f3:a3:55:48:87: bd:c8:10:be:48:7c:c0:74:d5:0b:38:1d:ed:bf:12: bd:f4:34:ac:0c:4a:4f:ad:42:43:bf:63:c2:12:08: 2d:6a:55:45:85:33:c3:61:f8:bd:04:ec:85:b4:01: f9:05:39:bd:96:db:33:7c:a1:82:ef:f6:43:86:42: c4:bd:c3:a7:12:8e:bf:a8:3f:a7:dd:21:04:2b:77: b3:11:04:c1:5f:70:a8:2a:67:e5:9a:45:40:58:3e: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F9:27:E0:39:10:AE:81:EA:AB:B1:C0:AA:E0:D7:82:EA:1D:12:71 X509v3 Authority Key Identifier: keyid:B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/S_kn4DkQroHqq7HAquDXguodEnE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tfGesN1I4bJJJJCLtbaEjMFnhUY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.136.240.0/22 Signature Algorithm: sha256WithRSAEncryption 18:8d:d4:db:f3:98:e3:28:49:8f:51:4b:54:b0:53:5a:28:a1: 57:c9:31:a0:4c:a6:99:0d:29:80:38:b1:56:05:e6:4a:7c:aa: 0e:53:01:17:63:54:ad:b5:a6:08:94:73:6a:58:8c:bf:69:74: c8:95:9b:4f:89:f0:a5:bd:82:21:24:c2:83:6b:96:90:b7:09: e7:e6:f9:2a:76:80:99:af:60:0b:1c:1b:3f:00:03:f7:fc:fb: 98:7c:14:c2:d3:7a:99:88:ea:b6:12:ee:e0:4e:42:55:f6:c4: 53:90:52:5e:18:86:20:6f:4d:17:35:f5:c4:12:a4:df:a7:f9: 7a:6d:3b:9e:81:84:30:f9:c6:e4:9f:cf:88:6a:f8:00:e9:1a: 03:4f:2f:ba:e1:43:ef:63:73:07:6f:29:dc:b5:22:87:be:cf: 08:73:00:8b:74:f6:a0:03:2c:f2:6a:25:16:05:67:84:7f:f6: bf:02:19:87:60:e4:74:06:14:a0:15:c0:60:26:21:17:ea:67: 55:d1:f7:b4:34:57:1a:3e:41:71:b4:d5:bf:0c:94:5e:a4:10: 11:c6:5d:7c:31:3f:d0:9d:a3:3f:7d:57:84:06:1d:60:d2:6a: ce:6b:8b:f9:e7:82:b9:9e:4d:f1:45:64:10:f9:19:e6:43:2c: 00:58:9d:28 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NrIN8wrlGhc7Lo7pJL20MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ZjE5ZWIwZGQ0OGUxYjI0OTI0OTA4YmI1YjY4NDhjYzE2 Nzg1NDYwHhcNMjYwMTAxMjAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YmY5MjdlMDM5MTBhZTgxZWFhYmIxYzBhYWUwZDc4MmVhMWQxMjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwAJdmqYnUPGn8HBry8q2gNkG++/ QA5fgkqH0i3j1tMxUKmaN50oZTKFPa6DQ7kaxTmyQ1e1qsVqTXRBzxamjwTbF4K0 OlkfPvWYF6qUIJpVFNpQQHckb4Icd14UIb+tQ7hpCmZyS04IdtYc2VcpM6DvdrOE XZbR/NA6WN+EjwvryqTt8EjzxQFFeesta8/eVJIyoXChVwjMLEemr2g686NVSIe9 yBC+SHzAdNULOB3tvxK99DSsDEpPrUJDv2PCEggtalVFhTPDYfi9BOyFtAH5BTm9 ltszfKGC7/ZDhkLEvcOnEo6/qD+n3SEEK3ezEQTBX3CoKmflmkVAWD5CsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEv5J+A5EK6B6quxwKrg14LqHRJxMB8GA1UdIwQY MBaAFLXxnrDdSOGySSSQi7W2hIzBZ4VGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGZHZXNOMUk0YkpKSkpDTHRiYUVqTUZuaFVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9jZTAwMWItYTRkOC00ZjBlLTgzMWQt MzVjNjZkN2M1MjYwLzEvU19rbjREa1Fyb0hxcTdIQXF1RFhndW9kRW5FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9jZTAwMWItYTRkOC00ZjBlLTgzMWQtMzVjNjZkN2M1MjYw LzEvdGZHZXNOMUk0YkpKSkpDTHRiYUVqTUZuaFVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYjwMA0G CSqGSIb3DQEBCwUAA4IBAQAYjdTb85jjKEmPUUtUsFNaKKFXyTGgTKaZDSmAOLFW BeZKfKoOUwEXY1SttaYIlHNqWIy/aXTIlZtPifClvYIhJMKDa5aQtwnn5vkqdoCZ r2ALHBs/AAP3/PuYfBTC03qZiOq2Eu7gTkJV9sRTkFJeGIYgb00XNfXEEqTfp/l6 bTuegYQw+cbkn8+IavgA6RoDTy+64UPvY3MHbynctSKHvs8IcwCLdPagAyzyaiUW BWeEf/a/AhmHYOR0BhSgFcBgJiEX6mdV0fe0NFcaPkFxtNW/DJRepBARxl18MT/Q naM/fVeEBh1g0mrOa4v554K5nk3xRWQQ+RnmQywAWJ0o -----END CERTIFICATE-----Generated at Fri Jan 2 11:03:55 2026 by rpki-client