This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/C3WWs5VrvGSxWehhO9Vrs4rW5qk.roa File: C3WWs5VrvGSxWehhO9Vrs4rW5qk.roa (raw, json) Hash identifier: ThINKwLW3/IogKZpJhcK+F1OccO+eq1ZRXMfzDOTgQI= Subject key identifier: 0B:75:96:B3:95:6B:BC:64:B1:59:E8:61:3B:D5:6B:B3:8A:D6:E6:A9 Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Certificate serial: 019B7BA48A12C2860A0E3BA9C798D926C159 Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/C3WWs5VrvGSxWehhO9Vrs4rW5qk.roa Signing time: Thu 01 Jan 2026 22:18:59 +0000 ROA not before: Thu 01 Jan 2026 22:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24940 IP address blocks: 45.136.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:8a:12:c2:86:0a:0e:3b:a9:c7:98:d9:26:c1:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Validity Not Before: Jan 1 22:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0b7596b3956bbc64b159e8613bd56bb38ad6e6a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:17:e9:27:18:8d:f9:13:0d:d2:c6:04:49:ad: 14:15:b3:f8:2d:06:66:d7:06:df:ec:bb:d3:a4:e7: 09:fb:e5:11:e2:65:02:5a:35:85:19:18:6b:30:46: 47:58:61:a9:83:4d:83:f4:3c:ea:8b:49:53:a2:8f: 81:b4:c6:a0:1d:db:bf:af:02:6a:27:61:30:73:c5: 91:9c:d6:0f:bf:31:4c:c9:4a:b1:73:c5:03:68:79: 15:0f:79:71:0e:7f:4a:15:ff:f2:6c:e5:bc:e5:f8: 07:f1:4b:f9:6a:60:25:f9:17:f4:6a:43:ac:a9:a7: 29:78:16:4b:9e:bb:de:f3:cc:21:f1:6d:56:51:76: e1:66:72:a3:2d:f9:7d:0c:98:55:de:19:9f:73:3a: 03:5d:01:8c:44:ac:b1:1c:38:d0:2c:fc:1e:61:22: ed:af:64:5d:78:6e:19:89:bb:13:c0:96:02:c0:76: 5e:87:85:74:0a:81:f4:b2:78:dc:a7:97:d1:33:af: 5e:f1:9a:74:28:47:99:f5:d0:14:8c:b4:c9:b0:f1: a8:a1:e6:35:63:f5:32:c4:07:b0:b5:88:d6:88:d4: f9:3f:25:3a:a1:76:46:d8:c5:62:e4:82:60:9c:3a: ba:17:47:a7:94:d4:c9:71:2a:9a:96:0c:cb:8f:dc: 17:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:75:96:B3:95:6B:BC:64:B1:59:E8:61:3B:D5:6B:B3:8A:D6:E6:A9 X509v3 Authority Key Identifier: keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/C3WWs5VrvGSxWehhO9Vrs4rW5qk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.136.70.0/23 Signature Algorithm: sha256WithRSAEncryption 73:18:ed:e9:23:75:8f:b8:a3:b9:12:68:b1:a1:b3:f0:fb:6e: 68:40:12:98:7a:e7:18:8f:fa:03:41:98:c8:69:8b:24:87:73: 65:a1:bf:3a:87:4c:c8:f7:8d:28:f1:d2:2a:e2:73:f7:28:f9: 38:52:12:a6:fe:be:4b:0e:d2:4d:30:76:eb:45:cb:eb:b0:80: e8:fd:a2:21:31:4d:b1:ea:a5:3c:60:2f:1e:be:39:d8:d6:2a: 4e:4c:6b:26:ad:52:06:15:b6:99:54:33:5e:bb:ea:2a:0d:b4: b0:be:6f:fe:af:38:49:05:c8:fb:10:88:0f:38:b5:ae:5b:be: 62:5f:e6:57:68:84:ef:fd:aa:3f:16:30:e6:38:64:e0:d0:a8: 82:c0:dc:27:59:f7:1a:11:11:aa:86:05:49:33:96:7f:74:ee: 67:9b:d2:98:49:1f:02:0f:61:bc:3f:5f:9a:02:e7:55:4d:22: ea:d0:b2:42:1b:89:0a:10:a7:fa:8e:e9:f8:78:a3:9d:97:e2: c7:af:31:4c:3c:5c:ed:29:88:6b:73:59:d0:02:af:97:c0:31: 53:0f:9b:67:46:c0:77:44:09:14:8d:62:b1:f6:2d:ba:59:3d: 1f:ac:ba:f2:fa:5a:66:7e:ea:7f:a6:d7:4a:83:7c:63:36:e3: 1b:29:99:b7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pIoSwoYKDjupx5jZJsFZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4 YWJjYzUwHhcNMjYwMTAxMjIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYjc1OTZiMzk1NmJiYzY0YjE1OWU4NjEzYmQ1NmJiMzhhZDZlNmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhfpJxiN+RMN0sYESa0UFbP4LQZm 1wbf7LvTpOcJ++UR4mUCWjWFGRhrMEZHWGGpg02D9Dzqi0lToo+BtMagHdu/rwJq J2Ewc8WRnNYPvzFMyUqxc8UDaHkVD3lxDn9KFf/ybOW85fgH8Uv5amAl+Rf0akOs qacpeBZLnrve88wh8W1WUXbhZnKjLfl9DJhV3hmfczoDXQGMRKyxHDjQLPweYSLt r2RdeG4ZibsTwJYCwHZeh4V0CoH0snjcp5fRM69e8Zp0KEeZ9dAUjLTJsPGooeY1 Y/UyxAewtYjWiNT5PyU6oXZG2MVi5IJgnDq6F0enlNTJcSqalgzLj9wXcwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAt1lrOVa7xksVnoYTvVa7OK1uapMB8GA1UdIwQY MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt NmZlOWJmNjA1NjFjLzEvQzNXV3M1VnJ2R1N4V2VoaE85VnJzNHJXNXFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLYhGMA0G CSqGSIb3DQEBCwUAA4IBAQBzGO3pI3WPuKO5EmixobPw+25oQBKYeucYj/oDQZjI aYskh3Nlob86h0zI940o8dIq4nP3KPk4UhKm/r5LDtJNMHbrRcvrsIDo/aIhMU2x 6qU8YC8evjnY1ipOTGsmrVIGFbaZVDNeu+oqDbSwvm/+rzhJBcj7EIgPOLWuW75i X+ZXaITv/ao/FjDmOGTg0KiCwNwnWfcaERGqhgVJM5Z/dO5nm9KYSR8CD2G8P1+a AudVTSLq0LJCG4kKEKf6jun4eKOdl+LHrzFMPFztKYhrc1nQAq+XwDFTD5tnRsB3 RAkUjWKx9i26WT0frLry+lpmfup/ptdKg3xjNuMbKZm3 -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:53 2026 by rpki-client