This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rpms3U4RZvgJU-QNZ0DDiqVcuJQ.roa File: rpms3U4RZvgJU-QNZ0DDiqVcuJQ.roa (raw, json) Hash identifier: kWqboKHsuFqXECX/F8d5iIlsDTWVRvQjTZZGv3QmdVE= Subject key identifier: AE:99:AC:DD:4E:11:66:F8:09:53:E4:0D:67:40:C3:8A:A5:5C:B8:94 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C139653D2D17D721A8FB436D6CA6E58 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rpms3U4RZvgJU-QNZ0DDiqVcuJQ.roa Signing time: Fri 02 Jan 2026 00:20:17 +0000 ROA not before: Fri 02 Jan 2026 00:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212017 IP address blocks: 45.90.236.0/24 maxlen: 24 45.90.237.0/24 maxlen: 24 185.106.124.0/22 maxlen: 24 185.128.52.0/22 maxlen: 22 185.129.104.0/22 maxlen: 24 185.227.172.0/22 maxlen: 22 185.232.8.0/22 maxlen: 24 185.232.10.0/24 maxlen: 24 193.17.180.0/24 maxlen: 24 193.17.182.0/24 maxlen: 24 194.48.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:96:53:d2:d1:7d:72:1a:8f:b4:36:d6:ca:6e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae99acdd4e1166f80953e40d6740c38aa55cb894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9d:e8:c3:8c:a7:a4:09:fa:d0:35:4e:78:fa: d8:7d:18:0e:3c:20:fc:02:48:91:5d:b3:67:29:f1: 7e:71:42:c9:98:84:79:d4:05:ff:a1:4e:a7:f1:cc: 8c:5b:4e:eb:1c:09:bd:19:9d:de:dd:e8:79:46:ae: 6e:e2:d4:db:1e:f2:ae:8a:3f:c1:4f:de:d3:d5:fc: bb:38:03:24:aa:32:e5:d1:66:a0:2a:5c:7b:44:6e: 80:f5:c8:e7:58:87:b7:52:1e:c0:b0:d9:7b:9f:95: c9:d3:02:b1:30:fc:9e:dd:9d:7c:9b:a4:89:b2:27: e9:6d:92:29:9f:43:53:26:4f:93:86:b0:82:3c:80: e0:a3:73:28:c6:ae:36:77:36:09:9c:cf:12:89:34: 59:d6:ea:59:c5:f9:01:a6:77:c5:16:92:34:f6:cb: 6a:b4:b5:b7:32:85:59:ab:8e:d5:c7:15:4e:7b:80: 68:59:a3:3d:64:d3:f8:bd:05:19:88:c8:54:bc:9f: b6:aa:39:86:d4:b8:b8:da:3b:a4:6f:d3:8d:56:36: 71:89:5f:28:78:ab:2f:66:00:71:fe:87:a9:b1:a5: 5d:15:b1:8a:ca:f2:93:db:41:80:95:a9:e7:3b:2f: bd:e0:e5:32:d1:53:d5:ab:59:88:4a:39:c4:9b:9e: 64:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:99:AC:DD:4E:11:66:F8:09:53:E4:0D:67:40:C3:8A:A5:5C:B8:94 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rpms3U4RZvgJU-QNZ0DDiqVcuJQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.236.0/23 185.106.124.0/22 185.128.52.0/22 185.129.104.0/22 185.227.172.0/22 185.232.8.0/22 193.17.180.0/24 193.17.182.0/24 194.48.140.0/22 Signature Algorithm: sha256WithRSAEncryption 11:a1:30:c9:03:89:cf:8c:f1:c7:98:3d:fc:a0:78:fe:22:6a: 33:d3:d8:57:23:60:00:8f:ad:8e:f0:2c:d0:c0:4e:53:21:1f: ab:49:0f:10:a8:a0:08:ad:ee:fd:5c:fb:d1:ea:f4:7f:ce:b8: 59:26:d9:e9:76:09:39:07:75:d9:02:e5:bc:8f:21:ef:d0:15: b9:79:8b:66:42:87:8b:04:e2:d3:33:3d:53:3d:bd:47:1a:7e: 0a:e9:fb:47:3f:54:ea:1c:ab:8f:ae:34:d6:79:49:79:31:33: 64:f1:7a:0e:82:88:7a:88:49:33:69:f1:fd:5b:7b:32:3d:24: f7:f2:a5:2e:19:03:37:78:19:1b:f1:10:86:5d:db:24:5e:52: a7:4c:19:7a:f0:f1:12:2a:c1:8b:88:3f:86:2f:32:f8:30:27: fc:31:5d:c2:3e:ca:a9:ac:1b:e9:c4:d6:e3:95:d5:dc:e0:17: 03:a8:cf:7d:a7:68:de:c8:47:71:63:4d:0a:a1:b7:98:04:0c: e1:db:a2:a1:9b:f6:55:a5:5f:d7:df:83:c2:d6:55:09:30:14: 70:b5:de:ec:20:e8:4e:58:35:4e:85:cb:33:7a:63:3e:42:e1: 21:25:73:ed:59:6a:e7:cb:13:96:7a:92:e5:7a:f7:9e:85:de: 01:43:f2:e4 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt8E5ZT0tF9chqPtDbWym5YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTk5YWNkZDRlMTE2NmY4MDk1M2U0MGQ2NzQwYzM4YWE1NWNiODk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr53ow4ynpAn60DVOePrYfRgOPCD8 AkiRXbNnKfF+cULJmIR51AX/oU6n8cyMW07rHAm9GZ3e3eh5Rq5u4tTbHvKuij/B T97T1fy7OAMkqjLl0WagKlx7RG6A9cjnWIe3Uh7AsNl7n5XJ0wKxMPye3Z18m6SJ sifpbZIpn0NTJk+ThrCCPIDgo3Moxq42dzYJnM8SiTRZ1upZxfkBpnfFFpI09stq tLW3MoVZq47VxxVOe4BoWaM9ZNP4vQUZiMhUvJ+2qjmG1Li42jukb9ONVjZxiV8o eKsvZgBx/oepsaVdFbGKyvKT20GAlannOy+94OUy0VPVq1mISjnEm55kgQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFK6ZrN1OEWb4CVPkDWdAw4qlXLiUMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvcnBtczNVNFJadmdKVS1RTlowRERpcVZjdUpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQBLVrsAwQC uWp8AwQCuYA0AwQCuYFoAwQCueOsAwQCuegIAwQAwRG0AwQAwRG2AwQCwjCMMA0G CSqGSIb3DQEBCwUAA4IBAQARoTDJA4nPjPHHmD38oHj+Imoz09hXI2AAj62O8CzQ wE5TIR+rSQ8QqKAIre79XPvR6vR/zrhZJtnpdgk5B3XZAuW8jyHv0BW5eYtmQoeL BOLTMz1TPb1HGn4K6ftHP1TqHKuPrjTWeUl5MTNk8XoOgoh6iEkzafH9W3syPST3 8qUuGQM3eBkb8RCGXdskXlKnTBl68PESKsGLiD+GLzL4MCf8MV3CPsqprBvpxNbj ldXc4BcDqM99p2jeyEdxY00KobeYBAzh26Khm/ZVpV/X34PC1lUJMBRwtd7sIOhO WDVOhcszemM+QuEhJXPtWWrnyxOWepLleveehd4BQ/Lk -----END CERTIFICATE-----Generated at Fri Jan 2 23:53:14 2026 by rpki-client