This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/otqVdGSDhlsKo4n0L7r6uoCi0oI.roa File: otqVdGSDhlsKo4n0L7r6uoCi0oI.roa (raw, json) Hash identifier: bNKtEIUh201fteeUndSmajMn25XvBKo8UM7BSb5raaE= Subject key identifier: A2:DA:95:74:64:83:86:5B:0A:A3:89:F4:2F:BA:FA:BA:80:A2:D2:82 Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed Certificate serial: 019B7D5D01468992D6E1CA8784048273898B Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/otqVdGSDhlsKo4n0L7r6uoCi0oI.roa Signing time: Fri 02 Jan 2026 06:20:05 +0000 ROA not before: Fri 02 Jan 2026 06:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207713 IP address blocks: 45.143.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.mft rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 18:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:01:46:89:92:d6:e1:ca:87:84:04:82:73:89:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed Validity Not Before: Jan 2 06:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2da95746483865b0aa389f42fbafaba80a2d282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3d:ea:7f:1c:06:61:dd:1d:4e:ec:f4:54:d5: e2:a0:99:d5:f7:e0:e2:6b:4c:60:84:8c:90:4e:c4: e4:42:e1:28:1e:50:a7:c4:3f:80:b5:6e:7d:0a:12: 8c:51:2c:cb:9b:39:4d:f1:42:3c:2d:1b:d4:c2:26: ce:5e:c9:d7:fe:70:8b:b3:57:ae:0b:d4:31:38:86: b6:cf:da:72:86:54:7e:a6:3c:9c:42:34:1e:19:ab: 17:fe:b4:bb:ca:8a:20:f6:63:aa:ba:6f:a2:9e:f0: dd:ba:ce:49:17:e4:13:63:ca:bb:6a:75:08:6d:ca: 30:99:9b:ff:d7:0c:fc:5e:6c:ee:0d:e4:00:77:e6: 3c:b7:f8:df:cd:f9:7c:34:e9:b3:68:ec:ff:db:6e: de:3c:c6:f1:cb:bd:08:1b:a5:8d:c7:d4:32:e8:0e: 54:2d:7b:1b:fe:d2:b7:4a:43:2a:95:aa:a1:da:0b: 0b:01:fc:cb:bc:54:33:34:dd:d2:47:26:4c:4d:9b: af:f1:22:eb:c1:5c:be:78:82:e9:04:12:26:22:54: df:e3:16:0b:db:c6:a3:6f:a5:ca:29:b1:45:20:3b: 97:9b:81:c6:0e:a6:56:75:0e:fc:87:2d:13:a9:45: f3:b0:0f:46:ae:c4:82:56:03:13:ab:cc:0d:51:1a: 16:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DA:95:74:64:83:86:5B:0A:A3:89:F4:2F:BA:FA:BA:80:A2:D2:82 X509v3 Authority Key Identifier: keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/otqVdGSDhlsKo4n0L7r6uoCi0oI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.203.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:dd:95:e4:6f:5b:18:26:1c:08:1b:da:4b:57:9b:ae:17:3b: 98:67:f8:79:af:03:24:ac:2b:dd:54:6e:9b:ac:b0:99:90:8a: cc:cf:93:06:6a:3c:4a:74:55:8e:04:da:8a:d8:0c:7b:92:ba: 50:47:48:2a:6b:21:f6:78:95:f2:2c:ba:c5:3d:8f:02:0b:09: ef:24:30:e9:c1:45:76:47:c1:38:e9:e0:27:90:80:85:ab:48: 87:62:2b:10:1f:34:1a:c2:92:3c:41:e2:1c:6d:cc:1f:55:ec: 70:ac:81:35:ec:82:47:8a:76:5c:3f:52:32:0d:4b:be:04:d0: b9:b0:2b:83:76:bd:90:52:b9:c1:ac:58:3f:71:d3:6a:4f:0b: 47:42:26:4a:9c:98:9b:f7:97:68:b5:6b:e1:14:84:18:2f:d4: 55:13:fc:4a:d4:38:8b:27:e8:bd:74:e7:f3:68:1f:70:6c:e2: a6:ae:a9:f7:0e:58:47:dc:1e:c8:3f:43:06:3b:14:2d:ca:bd: d4:a8:d9:5e:1f:a1:b5:fa:e9:c5:e6:93:81:5a:31:c1:9f:76: 1e:2e:36:69:f2:cb:93:56:e7:74:ed:0e:fb:9e:2a:05:fc:2c: 27:b5:89:4e:54:07:13:c6:0d:bc:ec:c2:af:75:8e:19:0a:40: 6b:6b:15:a6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQFGiZLW4cqHhASCc4mLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYWYxMmY1Y2E3NWM5MjJhNGFhNWRhY2I0OWMwNGE5MzIz N2Y0ZWQwHhcNMjYwMTAyMDYyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmRhOTU3NDY0ODM4NjViMGFhMzg5ZjQyZmJhZmFiYTgwYTJkMjgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsz3qfxwGYd0dTuz0VNXioJnV9+Di a0xghIyQTsTkQuEoHlCnxD+AtW59ChKMUSzLmzlN8UI8LRvUwibOXsnX/nCLs1eu C9QxOIa2z9pyhlR+pjycQjQeGasX/rS7yoog9mOqum+invDdus5JF+QTY8q7anUI bcowmZv/1wz8XmzuDeQAd+Y8t/jfzfl8NOmzaOz/227ePMbxy70IG6WNx9Qy6A5U LXsb/tK3SkMqlaqh2gsLAfzLvFQzNN3SRyZMTZuv8SLrwVy+eILpBBImIlTf4xYL 28ajb6XKKbFFIDuXm4HGDqZWdQ78hy0TqUXzsA9GrsSCVgMTq8wNURoWyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKLalXRkg4ZbCqOJ9C+6+rqAotKCMB8GA1UdIwQY MBaAFLGvEvXKdckipKpdrLScBKkyN/TtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUt NTc2MGVmYmNjNjU0LzEvb3RxVmRHU0RobHNLbzRuMEw3cjZ1b0NpMG9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUtNTc2MGVmYmNjNjU0 LzEvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY/LMA0G CSqGSIb3DQEBCwUAA4IBAQB83ZXkb1sYJhwIG9pLV5uuFzuYZ/h5rwMkrCvdVG6b rLCZkIrMz5MGajxKdFWOBNqK2Ax7krpQR0gqayH2eJXyLLrFPY8CCwnvJDDpwUV2 R8E46eAnkICFq0iHYisQHzQawpI8QeIcbcwfVexwrIE17IJHinZcP1IyDUu+BNC5 sCuDdr2QUrnBrFg/cdNqTwtHQiZKnJib95dotWvhFIQYL9RVE/xK1DiLJ+i9dOfz aB9wbOKmrqn3DlhH3B7IP0MGOxQtyr3UqNleH6G1+unF5pOBWjHBn3YeLjZp8suT Vud07Q77nioF/CwntYlOVAcTxg287MKvdY4ZCkBraxWm -----END CERTIFICATE-----Generated at Sat Jan 10 03:15:25 2026 by rpki-client