This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0jE3hZkv3e72FXBQNOB1Z87I7hE.roa File: 0jE3hZkv3e72FXBQNOB1Z87I7hE.roa (raw, json) Hash identifier: ufiFlOn3uZQmY7BK2PstScG7xVreKj7F3Ayx+q4ondk= Subject key identifier: D2:31:37:85:99:2F:DD:EE:F6:15:70:50:34:E0:75:67:CE:C8:EE:11 Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce Certificate serial: 019B7C13450C24AF110192DBDA658FF350F0 Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0jE3hZkv3e72FXBQNOB1Z87I7hE.roa Signing time: Fri 02 Jan 2026 00:19:56 +0000 ROA not before: Fri 02 Jan 2026 00:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35499 IP address blocks: 45.66.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:45:0c:24:af:11:01:92:db:da:65:8f:f3:50:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce Validity Not Before: Jan 2 00:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2313785992fddeef615705034e07567cec8ee11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:48:2c:24:f9:35:09:6a:a3:bf:ae:8f:b5: 4a:ff:05:67:5c:bd:5b:6f:dd:07:e7:02:c9:49:91: 85:40:d2:09:20:9c:af:e3:e2:29:b0:4c:43:8c:5b: 96:45:21:48:8a:8c:12:5f:9e:24:09:23:d9:0a:11: c1:3a:d5:c5:85:c7:7d:29:32:0b:34:b9:d4:ba:3b: 32:fd:1a:e0:4f:d6:bf:c9:33:da:d1:65:87:a3:88: 48:19:bd:40:b5:61:83:3f:b6:ea:84:34:2f:8d:71: ac:cd:81:07:1a:38:ed:c3:e5:20:3f:8c:62:ea:d3: 99:7c:b1:f2:07:fa:92:61:dd:e3:3c:80:24:cd:ac: 8c:a3:55:5e:75:d6:8d:fc:9e:61:1a:5d:54:3b:ba: 18:28:ff:88:0a:bf:ae:e5:0d:42:52:60:ab:45:a5: f6:45:16:a7:f2:c0:0a:a5:d9:ce:00:ec:38:e3:eb: 65:c5:ff:b6:f9:af:bd:e3:5f:07:5c:0c:0f:82:26: b3:9c:e5:e2:02:30:96:b6:2f:67:f9:b7:0d:46:d5: fd:a0:6f:c3:9a:83:b3:5f:b8:f1:dc:3f:54:f9:ac: b7:55:cf:ad:dc:88:30:08:c2:e3:d8:6e:e3:74:e6: 5d:52:d1:73:f5:04:34:35:4d:df:76:08:ac:96:1d: 87:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:31:37:85:99:2F:DD:EE:F6:15:70:50:34:E0:75:67:CE:C8:EE:11 X509v3 Authority Key Identifier: keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0jE3hZkv3e72FXBQNOB1Z87I7hE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.66.124.0/22 Signature Algorithm: sha256WithRSAEncryption 60:1f:6b:d1:44:17:93:7f:bc:67:da:f7:62:cd:71:e9:38:58: d0:1f:ad:20:59:29:59:7a:6e:1f:07:db:9d:40:e2:9f:89:11: 84:e3:24:1e:61:f7:4f:d1:f9:6d:34:1f:57:d6:30:7b:c5:60: 5d:6a:8b:a7:52:7d:a5:f7:bc:91:00:3a:e3:44:5b:ab:fd:c2: 82:a4:6a:0d:7a:49:c8:27:48:62:78:3c:49:79:3a:0a:1e:92: ab:f9:dd:1c:30:70:a2:00:b4:d9:ce:27:bd:2f:91:a1:b5:c6: b8:16:dd:1e:b3:e1:67:4f:5e:e9:4b:b1:46:37:dc:9d:5a:cc: dc:16:97:05:bf:d1:88:e5:90:9d:fa:de:43:80:92:8d:10:89: 11:52:7e:0b:18:e9:c1:08:6b:b1:01:af:f0:3f:cf:58:b4:c7: 02:c0:0b:9b:65:d9:c4:cf:c6:19:1a:36:01:48:a2:c2:ab:4f: 27:b4:67:0d:68:da:ee:39:5b:c5:2c:cb:06:4a:a2:50:7d:02: 6f:41:b1:49:7b:99:9d:4a:fd:83:12:4e:80:23:bd:f3:39:1f: 27:a1:f5:02:83:3b:07:53:f4:69:b7:c0:05:d5:85:63:fd:a9: 1c:a3:12:d6:ef:ba:04:9d:0d:05:58:b8:82:5b:4b:3e:64:9b: e5:10:f7:cf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E0UMJK8RAZLb2mWP81DwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyYWU1ZTMzODc5NGU2MGQ1ZDhiNTIzYmRiMmI2OGVjNGFj NzYyY2UwHhcNMjYwMTAyMDAxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjMxMzc4NTk5MmZkZGVlZjYxNTcwNTAzNGUwNzU2N2NlYzhlZTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmJILCT5NQlqo7+uj7VK/wVnXL1b b90H5wLJSZGFQNIJIJyv4+IpsExDjFuWRSFIiowSX54kCSPZChHBOtXFhcd9KTIL NLnUujsy/RrgT9a/yTPa0WWHo4hIGb1AtWGDP7bqhDQvjXGszYEHGjjtw+UgP4xi 6tOZfLHyB/qSYd3jPIAkzayMo1VeddaN/J5hGl1UO7oYKP+ICr+u5Q1CUmCrRaX2 RRan8sAKpdnOAOw44+tlxf+2+a+9418HXAwPgiaznOXiAjCWti9n+bcNRtX9oG/D moOzX7jx3D9U+ay3Vc+t3IgwCMLj2G7jdOZdUtFz9QQ0NU3fdgislh2H6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNIxN4WZL93u9hVwUDTgdWfOyO4RMB8GA1UdIwQY MBaAFNKuXjOHlOYNXYtSO9sraOxKx2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYt OGQ4ZTllYTE0MzI1LzEvMGpFM2haa3YzZTcyRlhCUU5PQjFaODdJN2hFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYtOGQ4ZTllYTE0MzI1 LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLUJ8MA0G CSqGSIb3DQEBCwUAA4IBAQBgH2vRRBeTf7xn2vdizXHpOFjQH60gWSlZem4fB9ud QOKfiRGE4yQeYfdP0fltNB9X1jB7xWBdaounUn2l97yRADrjRFur/cKCpGoNeknI J0hieDxJeToKHpKr+d0cMHCiALTZzie9L5Ghtca4Ft0es+FnT17pS7FGN9ydWszc FpcFv9GI5ZCd+t5DgJKNEIkRUn4LGOnBCGuxAa/wP89YtMcCwAubZdnEz8YZGjYB SKLCq08ntGcNaNruOVvFLMsGSqJQfQJvQbFJe5mdSv2DEk6AI73zOR8nofUCgzsH U/Rpt8AF1YVj/akcoxLW77oEnQ0FWLiCW0s+ZJvlEPfP -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:27 2026 by rpki-client