This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/kHZjl0iXdxXho1I0Ll4E52gZYzk.roa File: kHZjl0iXdxXho1I0Ll4E52gZYzk.roa (raw, json) Hash identifier: GCANbpKSUemrUgfvUVIIYTPpixLKB1aU8eg2FVanN0M= Subject key identifier: 90:76:63:97:48:97:77:15:E1:A3:52:34:2E:5E:04:E7:68:19:63:39 Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Certificate serial: 019B7BA4970E0A6C289E6F866FC2319D5B35 Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/kHZjl0iXdxXho1I0Ll4E52gZYzk.roa Signing time: Thu 01 Jan 2026 22:19:02 +0000 ROA not before: Thu 01 Jan 2026 22:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49854 IP address blocks: 45.146.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:97:0e:0a:6c:28:9e:6f:86:6f:c2:31:9d:5b:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Validity Not Before: Jan 1 22:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9076639748977715e1a352342e5e04e768196339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:0a:7e:1a:53:1b:f3:a3:30:be:44:c7:c1:46: 9c:ea:29:bd:1d:db:b5:03:10:99:3d:ee:06:dd:79: 74:36:8d:dd:e3:41:8d:92:42:bc:9b:85:25:45:00: 2c:cf:e8:f3:c3:25:60:5e:fe:bd:5e:79:6b:4d:38: ee:56:ce:cc:91:14:c7:7a:97:bf:4f:e4:86:b8:97: 88:db:8a:cf:6a:07:57:e9:4f:d7:35:ca:cd:cd:f7: 90:3a:30:ee:51:0e:1f:da:b5:67:45:cf:00:4a:56: bf:cf:78:0c:c7:3d:c3:c5:de:8f:96:6c:6d:3e:3c: c9:e6:9d:c9:d3:f6:cd:14:df:09:59:d2:fd:48:7e: 5f:d3:ad:7f:f9:ee:79:d9:f7:9c:32:24:bd:a8:57: 45:01:d3:a9:ba:86:50:a2:b4:23:56:60:9f:a6:1f: 19:74:ab:13:ff:d3:3c:93:63:95:35:09:be:48:65: 87:fb:70:ee:8d:20:5f:ee:ae:c8:96:aa:d2:65:57: fb:da:ad:57:c4:4f:6f:a5:bf:9b:15:08:a8:02:8a: 28:50:cc:a1:5f:cc:d3:3f:f1:e3:f1:e5:5e:79:2c: 46:a1:f1:aa:d1:fd:18:ac:80:de:0b:ca:54:f4:87: 46:3f:0a:2b:d7:d1:92:60:4c:14:99:48:1f:e9:7c: 8e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:76:63:97:48:97:77:15:E1:A3:52:34:2E:5E:04:E7:68:19:63:39 X509v3 Authority Key Identifier: keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/kHZjl0iXdxXho1I0Ll4E52gZYzk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.146.40.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:9c:47:d8:e0:aa:30:0c:0b:f0:95:cc:fc:45:1c:3a:d2:a2: da:dd:fd:23:50:2a:96:49:77:af:a2:cc:af:c8:68:3f:27:c5: b5:e3:3f:0b:f9:74:88:21:8d:1b:31:8e:67:d6:71:c7:00:10: 9d:22:38:62:97:21:d3:e0:4f:2e:d3:bf:e2:c9:5a:fa:0a:80: 9c:d4:ab:c1:27:f2:52:b2:20:db:f2:89:cd:d4:23:d9:2c:b5: 8c:3b:5c:5b:ca:1d:69:95:1f:47:b2:27:2b:6d:b7:11:b7:db: c6:f8:d5:0a:e5:c5:92:ae:e6:0c:5f:be:34:74:c7:40:cc:29: 67:0b:18:43:24:59:de:93:ff:42:7e:89:93:11:61:29:63:dc: 18:58:91:52:d1:2d:c2:68:51:19:1d:f9:dc:63:b0:b1:6a:a4: 9d:aa:d1:91:4b:6d:db:b2:bf:83:14:52:02:62:43:14:f5:ce: 76:2a:af:a9:d1:45:44:f9:00:a9:94:99:d7:f6:e8:ae:05:c9: 40:50:1d:86:06:0d:60:90:63:57:d4:84:c5:31:1a:44:87:b7: 24:23:06:e0:29:f9:bb:f2:fa:3b:b7:17:ac:58:94:04:71:b1: 11:87:69:0f:fa:d3:94:a7:20:3c:90:ac:fd:9b:c1:b9:3b:57: bd:ec:e1:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pJcOCmwonm+Gb8IxnVs1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4 YWJjYzUwHhcNMjYwMTAxMjIxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDc2NjM5NzQ4OTc3NzE1ZTFhMzUyMzQyZTVlMDRlNzY4MTk2MzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgp+GlMb86MwvkTHwUac6im9Hdu1 AxCZPe4G3Xl0No3d40GNkkK8m4UlRQAsz+jzwyVgXv69XnlrTTjuVs7MkRTHepe/ T+SGuJeI24rPagdX6U/XNcrNzfeQOjDuUQ4f2rVnRc8ASla/z3gMxz3Dxd6Plmxt PjzJ5p3J0/bNFN8JWdL9SH5f061/+e552fecMiS9qFdFAdOpuoZQorQjVmCfph8Z dKsT/9M8k2OVNQm+SGWH+3DujSBf7q7IlqrSZVf72q1XxE9vpb+bFQioAoooUMyh X8zTP/Hj8eVeeSxGofGq0f0YrIDeC8pU9IdGPwor19GSYEwUmUgf6XyOtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJB2Y5dIl3cV4aNSNC5eBOdoGWM5MB8GA1UdIwQY MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt NmZlOWJmNjA1NjFjLzEva0haamwwaVhkeFhobzFJMExsNEU1MmdaWXprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZIoMA0G CSqGSIb3DQEBCwUAA4IBAQA9nEfY4KowDAvwlcz8RRw60qLa3f0jUCqWSXevosyv yGg/J8W14z8L+XSIIY0bMY5n1nHHABCdIjhilyHT4E8u07/iyVr6CoCc1KvBJ/JS siDb8onN1CPZLLWMO1xbyh1plR9HsicrbbcRt9vG+NUK5cWSruYMX740dMdAzCln CxhDJFnek/9CfomTEWEpY9wYWJFS0S3CaFEZHfncY7CxaqSdqtGRS23bsr+DFFIC YkMU9c52Kq+p0UVE+QCplJnX9uiuBclAUB2GBg1gkGNX1ITFMRpEh7ckIwbgKfm7 8vo7txesWJQEcbERh2kP+tOUpyA8kKz9m8G5O1e97OHd -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:50 2026 by rpki-client