This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/1lthQpNbdjvBjBvjx6o7dCcl_Lo.roa File: 1lthQpNbdjvBjBvjx6o7dCcl_Lo.roa (raw, json) Hash identifier: 09BW9AeuTKZNn0ro2yAFDYjo+0iZf6CKLrMs3cH5rIY= Subject key identifier: D6:5B:61:42:93:5B:76:3B:C1:8C:1B:E3:C7:AA:3B:74:27:25:FC:BA Certificate issuer: /CN=bea649ef6030fc80848fdfe21d4321ac8011fd10 Certificate serial: 019B7F832F2886478D40CD04B4535FD322E6 Authority key identifier: BE:A6:49:EF:60:30:FC:80:84:8F:DF:E2:1D:43:21:AC:80:11:FD:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/1lthQpNbdjvBjBvjx6o7dCcl_Lo.roa Signing time: Fri 02 Jan 2026 16:21:02 +0000 ROA not before: Fri 02 Jan 2026 16:21:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208567 IP address blocks: 45.91.125.0/24 maxlen: 24 2a0e:f41::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.mft rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:2f:28:86:47:8d:40:cd:04:b4:53:5f:d3:22:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bea649ef6030fc80848fdfe21d4321ac8011fd10 Validity Not Before: Jan 2 16:21:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d65b6142935b763bc18c1be3c7aa3b742725fcba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bc:b7:09:03:7d:70:0c:6f:f8:5e:35:74:1d: 2c:d5:81:f8:cd:e9:82:cd:96:48:da:f4:5a:9d:ed: bd:9f:6b:52:d1:cc:82:3f:01:bd:f4:9d:e4:83:bd: 3d:cd:a1:a0:ce:fa:45:93:d5:b2:25:d1:ad:0f:fb: 7c:cd:a9:a8:03:5c:ed:e0:6d:30:9c:4b:ab:90:f4: 50:b8:df:e3:09:a2:3a:38:32:81:d7:38:cc:a7:02: 0e:1d:d4:e2:61:6f:bb:67:75:53:6e:bc:e6:11:6e: 14:0c:e8:ff:cd:83:b9:17:0f:fb:ee:1a:9e:08:0a: dd:53:fd:0d:11:29:d1:62:92:81:34:57:69:fb:15: 9f:4e:a6:aa:de:5e:14:62:c3:97:d2:ae:c8:5f:ac: f8:4a:08:fa:72:68:bf:b3:cd:b0:a7:2c:09:d4:39: 05:16:07:34:47:66:45:ad:ab:a5:29:4e:49:f5:c8: 43:b9:ca:b0:8a:5f:f3:a5:90:5f:82:6d:b6:da:9d: 16:2a:c6:49:78:15:42:a4:dd:5d:8b:21:77:40:a2: c5:bc:2a:53:81:87:87:82:43:7a:34:89:36:d0:b3: 2c:ff:63:6a:e4:a8:61:06:b4:ac:2f:82:6e:8f:0c: de:af:53:58:f4:90:44:eb:4b:68:d3:a7:f4:d1:2c: 39:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5B:61:42:93:5B:76:3B:C1:8C:1B:E3:C7:AA:3B:74:27:25:FC:BA X509v3 Authority Key Identifier: keyid:BE:A6:49:EF:60:30:FC:80:84:8F:DF:E2:1D:43:21:AC:80:11:FD:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/1lthQpNbdjvBjBvjx6o7dCcl_Lo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.91.125.0/24 IPv6: 2a0e:f41::/32 Signature Algorithm: sha256WithRSAEncryption 16:d0:df:63:5e:89:84:bb:ca:b3:f6:62:27:0d:ec:3a:c7:e9: 12:8c:48:20:fa:b2:98:1f:82:55:22:3a:5a:d6:ed:a7:a4:33: 21:1e:c1:39:8f:19:11:d1:8e:e7:20:f1:b3:c2:0d:e8:6f:9d: b6:06:66:3d:9d:9f:ab:22:75:b2:0b:fe:03:1e:47:07:09:89: bf:21:03:4f:80:a0:2b:29:43:b8:1d:7b:6e:a7:13:ad:86:d0: 3f:0b:76:6b:c2:7e:bb:af:40:1b:8c:20:af:5b:6b:df:8c:96: 55:d0:2d:98:86:57:96:2a:c4:40:d8:38:44:98:3b:1c:17:a0: ee:52:55:21:78:12:fe:07:4d:b1:d5:a0:23:ea:a4:65:25:5c: 73:64:2a:c6:f0:eb:5b:42:ba:d8:46:f9:92:44:70:b3:c6:cb: 04:a2:5e:65:9c:67:03:0e:07:10:25:ba:b9:b0:e1:bb:f3:84: 36:61:a0:a7:51:49:4a:4b:8e:52:15:8e:ec:8a:4b:ab:52:52: be:7d:0d:dc:13:52:6c:6e:03:a2:0d:12:de:ee:c2:32:9d:b2: a0:bb:6e:28:6f:f1:f0:6b:e0:9e:60:de:bd:a6:3c:db:d3:f7: 5a:72:ab:93:37:e3:c9:7d:6e:22:95:50:3b:b9:bd:2a:9f:1a: 0e:66:49:dd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/gy8ohkeNQM0EtFNf0yLmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlYTY0OWVmNjAzMGZjODA4NDhmZGZlMjFkNDMyMWFjODAx MWZkMTAwHhcNMjYwMTAyMTYyMTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjViNjE0MjkzNWI3NjNiYzE4YzFiZTNjN2FhM2I3NDI3MjVmY2JhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwry3CQN9cAxv+F41dB0s1YH4zemC zZZI2vRane29n2tS0cyCPwG99J3kg709zaGgzvpFk9WyJdGtD/t8zamoA1zt4G0w nEurkPRQuN/jCaI6ODKB1zjMpwIOHdTiYW+7Z3VTbrzmEW4UDOj/zYO5Fw/77hqe CArdU/0NESnRYpKBNFdp+xWfTqaq3l4UYsOX0q7IX6z4Sgj6cmi/s82wpywJ1DkF Fgc0R2ZFraulKU5J9chDucqwil/zpZBfgm222p0WKsZJeBVCpN1diyF3QKLFvCpT gYeHgkN6NIk20LMs/2Nq5KhhBrSsL4Jujwzer1NY9JBE60to06f00Sw5ywIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNZbYUKTW3Y7wYwb48eqO3QnJfy6MB8GA1UdIwQY MBaAFL6mSe9gMPyAhI/f4h1DIayAEf0QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnFaSjcyQXdfSUNFajlfaUhVTWhySUFSX1JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8xOTQ1NWItZDJjZi00ZTVmLWJmNTgt MjFkZjU1YmE5ZWJmLzEvMWx0aFFwTmJkanZCakJ2ang2bzdkQ2NsX0xvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS8xOTQ1NWItZDJjZi00ZTVmLWJmNTgtMjFkZjU1YmE5ZWJm LzEvdnFaSjcyQXdfSUNFajlfaUhVTWhySUFSX1JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALVt9MA0E AgACMAcDBQAqDg9BMA0GCSqGSIb3DQEBCwUAA4IBAQAW0N9jXomEu8qz9mInDew6 x+kSjEgg+rKYH4JVIjpa1u2npDMhHsE5jxkR0Y7nIPGzwg3ob522BmY9nZ+rInWy C/4DHkcHCYm/IQNPgKArKUO4HXtupxOthtA/C3Zrwn67r0AbjCCvW2vfjJZV0C2Y hleWKsRA2DhEmDscF6DuUlUheBL+B02x1aAj6qRlJVxzZCrG8OtbQrrYRvmSRHCz xssEol5lnGcDDgcQJbq5sOG784Q2YaCnUUlKS45SFY7sikurUlK+fQ3cE1JsbgOi DRLe7sIynbKgu24ob/Hwa+CeYN69pjzb0/dacquTN+PJfW4ilVA7ub0qnxoOZknd -----END CERTIFICATE-----Generated at Wed Jan 21 10:34:13 2026 by rpki-client