This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/hDQutV_0dDr1-J2B7hpl_cy_IYk.roa File: hDQutV_0dDr1-J2B7hpl_cy_IYk.roa (raw, json) Hash identifier: taauH86rqyjy39RMekBS6Z10FaPd2ci1+ZfpbEqGgb8= Subject key identifier: 84:34:2E:B5:5F:F4:74:3A:F5:F8:9D:81:EE:1A:65:FD:CC:BF:21:89 Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Certificate serial: 019B7BA4A7A0537F3810E8A59BEC1CAB5321 Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/hDQutV_0dDr1-J2B7hpl_cy_IYk.roa Signing time: Thu 01 Jan 2026 22:19:06 +0000 ROA not before: Thu 01 Jan 2026 22:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214200 IP address blocks: 45.130.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:a7:a0:53:7f:38:10:e8:a5:9b:ec:1c:ab:53:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Validity Not Before: Jan 1 22:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84342eb55ff4743af5f89d81ee1a65fdccbf2189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:54:a8:c8:31:05:b5:3d:c5:a0:91:da:9f:68: dc:7e:a3:98:81:43:20:14:37:3c:46:f8:b2:7f:22: 19:a0:bb:b3:b9:c8:58:1e:1b:00:8f:f4:11:bf:64: c5:8a:38:10:0d:58:ff:c5:9d:37:03:12:34:91:54: c3:5c:01:9e:5b:60:00:74:fd:c1:cf:a5:d1:e7:f7: fa:7d:4a:ca:28:8f:e0:d3:16:a5:89:dc:20:07:50: a4:f5:87:1f:84:a7:b0:0c:21:87:05:1d:81:f2:a3: 36:0b:86:8d:e9:eb:b4:09:39:6b:a1:60:8f:c1:84: ef:56:68:a2:d7:b1:5f:de:ca:b1:a3:01:2f:25:71: de:23:16:70:72:63:f9:1c:22:2a:23:da:86:df:19: 29:2b:9b:ac:bc:18:8a:5e:e6:56:3f:a6:a6:62:e5: 61:cb:7f:a6:41:5e:30:ff:8c:6b:55:20:65:fd:6d: a8:47:15:51:a3:97:ce:89:54:f1:86:b2:b2:ba:05: 7b:a7:ad:bf:60:52:b3:45:c4:cb:be:3f:3a:f7:d8: cf:de:94:81:00:47:31:19:7f:09:86:2c:db:29:c4: 7f:0f:f9:f4:eb:09:52:a3:89:85:2b:a9:e6:60:3b: 89:8e:d7:c1:6e:f4:1c:a9:4c:62:44:1b:b8:3f:6c: de:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:34:2E:B5:5F:F4:74:3A:F5:F8:9D:81:EE:1A:65:FD:CC:BF:21:89 X509v3 Authority Key Identifier: keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/hDQutV_0dDr1-J2B7hpl_cy_IYk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.130.149.0/24 Signature Algorithm: sha256WithRSAEncryption 26:52:e2:df:7d:ef:bc:88:10:b4:39:44:ac:59:c3:14:0c:95: 1f:19:f3:3e:eb:db:b3:d1:15:c1:a0:e6:21:65:e1:06:bd:91: 39:29:1b:db:3d:8f:0d:1f:4b:11:8e:8a:9f:73:cf:5f:7c:ee: cb:f0:b0:7b:8b:54:a4:b1:a4:3d:5d:3c:d5:ce:53:77:c9:f3: 3d:51:55:67:7a:da:61:2f:ce:eb:30:95:44:ea:92:63:6f:b3: 08:81:d6:94:f0:ab:93:06:10:ed:f8:7f:87:20:57:5a:02:9d: 92:bc:ef:f0:a1:45:64:f4:0b:83:37:2c:5a:19:3d:90:28:33: 1e:97:81:50:3e:40:a3:ba:d6:9e:09:46:93:b4:2c:04:30:65: 3b:52:9a:6b:b9:63:55:6e:27:05:9a:8e:5f:e9:91:4b:36:dc: 8a:4d:c2:fa:fa:75:cf:ff:f6:f6:49:db:e2:61:f8:b8:b7:da: e1:20:b1:ca:6e:d6:dd:bf:e2:4c:86:94:a7:04:a9:74:4d:ba: a4:ac:3c:7f:30:1f:7c:80:22:4a:9e:89:d8:32:98:ab:4e:55: a1:35:70:d5:9f:3f:2e:45:14:5c:65:c2:c6:eb:e1:66:b6:be: 1e:a7:ba:d7:8c:35:2b:24:fa:5a:e6:52:81:3a:4c:d2:f8:a6: 9b:14:74:d2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pKegU384EOilm+wcq1MhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4 YWJjYzUwHhcNMjYwMTAxMjIxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDM0MmViNTVmZjQ3NDNhZjVmODlkODFlZTFhNjVmZGNjYmYyMTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslSoyDEFtT3FoJHan2jcfqOYgUMg FDc8RviyfyIZoLuzuchYHhsAj/QRv2TFijgQDVj/xZ03AxI0kVTDXAGeW2AAdP3B z6XR5/f6fUrKKI/g0xalidwgB1Ck9YcfhKewDCGHBR2B8qM2C4aN6eu0CTlroWCP wYTvVmii17Ff3sqxowEvJXHeIxZwcmP5HCIqI9qG3xkpK5usvBiKXuZWP6amYuVh y3+mQV4w/4xrVSBl/W2oRxVRo5fOiVTxhrKyugV7p62/YFKzRcTLvj8699jP3pSB AEcxGX8JhizbKcR/D/n06wlSo4mFK6nmYDuJjtfBbvQcqUxiRBu4P2ze8QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIQ0LrVf9HQ69fidge4aZf3MvyGJMB8GA1UdIwQY MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt NmZlOWJmNjA1NjFjLzEvaERRdXRWXzBkRHIxLUoyQjdocGxfY3lfSVlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYKVMA0G CSqGSIb3DQEBCwUAA4IBAQAmUuLffe+8iBC0OUSsWcMUDJUfGfM+69uz0RXBoOYh ZeEGvZE5KRvbPY8NH0sRjoqfc89ffO7L8LB7i1SksaQ9XTzVzlN3yfM9UVVnetph L87rMJVE6pJjb7MIgdaU8KuTBhDt+H+HIFdaAp2SvO/woUVk9AuDNyxaGT2QKDMe l4FQPkCjutaeCUaTtCwEMGU7UppruWNVbicFmo5f6ZFLNtyKTcL6+nXP//b2Sdvi Yfi4t9rhILHKbtbdv+JMhpSnBKl0TbqkrDx/MB98gCJKnonYMpirTlWhNXDVnz8u RRRcZcLG6+Fmtr4ep7rXjDUrJPpa5lKBOkzS+KabFHTS -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:45 2026 by rpki-client