This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/LqDWuGzHYEKyWD-0J71Yqy_PTe0.roa File: LqDWuGzHYEKyWD-0J71Yqy_PTe0.roa (raw, json) Hash identifier: XOv2DO/Z4VpNTpwruJxK+1Cieqox7ARRO30Wur/mB0I= Subject key identifier: 2E:A0:D6:B8:6C:C7:60:42:B2:58:3F:B4:27:BD:58:AB:2F:CF:4D:ED Certificate issuer: /CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f Certificate serial: 019B7D5B32E297D86889E2F59DF67BF6D684 Authority key identifier: 51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/LqDWuGzHYEKyWD-0J71Yqy_PTe0.roa Signing time: Fri 02 Jan 2026 06:18:07 +0000 ROA not before: Fri 02 Jan 2026 06:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29066 IP address blocks: 45.158.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.mft rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:32:e2:97:d8:68:89:e2:f5:9d:f6:7b:f6:d6:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f Validity Not Before: Jan 2 06:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ea0d6b86cc76042b2583fb427bd58ab2fcf4ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9b:61:d5:68:1d:32:e4:af:e0:46:eb:86:d3: 5c:23:5b:2b:10:4e:c7:95:20:6a:0c:52:d9:61:0a: b8:a8:48:e7:47:14:eb:9b:53:d9:02:2f:61:14:54: 32:46:84:dd:dc:ef:d7:5a:21:ba:1d:dc:d8:ce:56: 19:c8:97:8f:57:6d:a3:6a:31:3d:68:e6:95:16:d3: 80:c3:50:be:e1:eb:c0:97:4e:2b:11:4b:4c:88:35: 7f:81:2c:a5:68:f0:15:12:6f:b1:34:14:2d:1d:7e: f6:5a:89:01:f7:45:45:06:77:22:6d:b4:5e:6f:55: 51:17:0f:ee:d7:4e:df:54:85:a7:ba:2a:ca:53:c3: 01:ac:1b:72:c0:a9:37:9e:17:30:22:ff:f7:30:76: c8:5f:b4:ae:a3:f0:6e:84:ee:c6:43:d6:14:e5:d8: 8e:2d:70:c3:c1:80:1e:6b:22:92:59:b0:df:b7:b3: df:f1:c1:af:94:e2:e8:57:68:63:b5:2f:58:78:28: e9:73:ae:dd:25:30:8d:db:69:95:87:c7:08:2c:03: 2e:25:f4:d0:61:92:8c:b5:c1:0a:50:ec:0a:ea:58: 74:f2:61:29:c7:ce:cc:52:1c:6f:2b:16:3c:5f:d8: 01:7c:7f:c6:48:0c:4b:5c:f5:1b:83:0c:05:35:55: 94:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A0:D6:B8:6C:C7:60:42:B2:58:3F:B4:27:BD:58:AB:2F:CF:4D:ED X509v3 Authority Key Identifier: keyid:51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/LqDWuGzHYEKyWD-0J71Yqy_PTe0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.158.60.0/23 Signature Algorithm: sha256WithRSAEncryption 55:26:53:00:ba:f9:88:c7:db:0f:f2:0d:b3:5d:56:65:35:67: 67:88:29:a9:98:d0:f0:ff:e3:ca:28:99:91:3e:7e:b4:76:4e: 01:9f:5d:2a:d2:00:ef:7f:d2:b7:e3:d2:fd:ce:69:ae:5f:2b: 26:8e:e1:52:fc:5f:6f:a5:48:22:f4:29:84:69:25:ef:e1:07: 5d:94:63:40:75:25:8a:1e:cb:78:e3:8c:be:37:cf:30:88:97: e6:be:04:46:f4:88:7e:ee:a3:7c:f7:ce:29:83:0d:9e:f0:48: a7:a8:8b:32:93:71:6b:f6:26:47:37:8a:fd:cf:97:cd:70:e2: 73:0e:61:d4:30:96:8c:24:e7:30:16:44:85:d3:61:0e:f4:d1: 51:8d:7c:d4:10:01:0b:cb:a6:a0:0f:f8:d0:0b:07:6e:5f:76: 80:36:2b:da:10:cf:3b:99:a2:c1:41:bc:93:11:c6:07:f5:70: d3:19:ac:36:56:14:8f:c7:c3:f1:99:2a:52:9d:9e:6c:f6:3f: 7e:71:0a:7b:c1:31:8d:9b:79:c3:e2:fb:33:05:3d:72:01:c7: 07:5f:20:06:f7:f8:61:bc:d8:b2:60:b9:a7:5d:84:69:df:32: e1:88:62:0d:9d:d6:af:04:9c:15:81:e0:d2:40:a1:fc:fb:d0: e6:2d:1a:8f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9WzLil9hoieL1nfZ79taEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxZWNmOWJhYmM5Y2E2YmFlOTA4NWNlMjkyZmIxYzJjYzE4 ZDM0NGYwHhcNMjYwMTAyMDYxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZWEwZDZiODZjYzc2MDQyYjI1ODNmYjQyN2JkNThhYjJmY2Y0ZGVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5th1WgdMuSv4EbrhtNcI1srEE7H lSBqDFLZYQq4qEjnRxTrm1PZAi9hFFQyRoTd3O/XWiG6HdzYzlYZyJePV22jajE9 aOaVFtOAw1C+4evAl04rEUtMiDV/gSylaPAVEm+xNBQtHX72WokB90VFBncibbRe b1VRFw/u107fVIWnuirKU8MBrBtywKk3nhcwIv/3MHbIX7Suo/BuhO7GQ9YU5diO LXDDwYAeayKSWbDft7Pf8cGvlOLoV2hjtS9YeCjpc67dJTCN22mVh8cILAMuJfTQ YZKMtcEKUOwK6lh08mEpx87MUhxvKxY8X9gBfH/GSAxLXPUbgwwFNVWUJQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC6g1rhsx2BCslg/tCe9WKsvz03tMB8GA1UdIwQY MBaAFFHs+bq8nKa66Qhc4pL7HCzBjTRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWV6NXVyeWNwcnJwQ0Z6aWt2c2NMTUdOTkU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9mYjA0YzgtNzA1Ny00NWI3LWEzNGMt ZGNmYzZhOWUwZGM3LzEvTHFEV3VHekhZRUt5V0QtMEo3MVlxeV9QVGUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9mYjA0YzgtNzA1Ny00NWI3LWEzNGMtZGNmYzZhOWUwZGM3 LzEvVWV6NXVyeWNwcnJwQ0Z6aWt2c2NMTUdOTkU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZ48MA0G CSqGSIb3DQEBCwUAA4IBAQBVJlMAuvmIx9sP8g2zXVZlNWdniCmpmNDw/+PKKJmR Pn60dk4Bn10q0gDvf9K349L9zmmuXysmjuFS/F9vpUgi9CmEaSXv4QddlGNAdSWK Hst444y+N88wiJfmvgRG9Ih+7qN8984pgw2e8EinqIsyk3Fr9iZHN4r9z5fNcOJz DmHUMJaMJOcwFkSF02EO9NFRjXzUEAELy6agD/jQCwduX3aANivaEM87maLBQbyT EcYH9XDTGaw2VhSPx8PxmSpSnZ5s9j9+cQp7wTGNm3nD4vszBT1yAccHXyAG9/hh vNiyYLmnXYRp3zLhiGINndavBJwVgeDSQKH8+9DmLRqP -----END CERTIFICATE-----Generated at Mon Jan 19 17:31:38 2026 by rpki-client