This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c12436-61be-42e0-ad34-7f8a6750b8d7/1/DErivx0e-6b56vQq7Hodx5LXJgM.roa File: DErivx0e-6b56vQq7Hodx5LXJgM.roa (raw, json) Hash identifier: Qu7V6jf5xYIpOAX8Mui4oAi/eNqnZVmhkF0lUX59mwE= Subject key identifier: 0C:4A:E2:BF:1D:1E:FB:A6:F9:EA:F4:2A:EC:7A:1D:C7:92:D7:26:03 Certificate issuer: /CN=96edc682a944005117b8febed6dc8bac060f329a Certificate serial: 019B78A2EC9078E0221FCE99F6E5090D4C22 Authority key identifier: 96:ED:C6:82:A9:44:00:51:17:B8:FE:BE:D6:DC:8B:AC:06:0F:32:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lu3GgqlEAFEXuP6-1tyLrAYPMpo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c12436-61be-42e0-ad34-7f8a6750b8d7/1/DErivx0e-6b56vQq7Hodx5LXJgM.roa Signing time: Thu 01 Jan 2026 08:18:21 +0000 ROA not before: Thu 01 Jan 2026 08:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212609 IP address blocks: 45.88.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/c12436-61be-42e0-ad34-7f8a6750b8d7/1/lu3GgqlEAFEXuP6-1tyLrAYPMpo.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/c12436-61be-42e0-ad34-7f8a6750b8d7/1/lu3GgqlEAFEXuP6-1tyLrAYPMpo.mft rsync://rpki.ripe.net/repository/DEFAULT/lu3GgqlEAFEXuP6-1tyLrAYPMpo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:ec:90:78:e0:22:1f:ce:99:f6:e5:09:0d:4c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96edc682a944005117b8febed6dc8bac060f329a Validity Not Before: Jan 1 08:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c4ae2bf1d1efba6f9eaf42aec7a1dc792d72603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:63:ef:f6:1e:5b:4a:1b:b5:e1:91:6e:46:d5: 0d:81:d8:1b:f4:3c:eb:ab:c6:d9:00:09:b2:5b:9f: 52:7b:aa:d8:e0:84:f5:4f:b7:bd:cc:eb:7a:8a:a3: b9:3a:a6:1c:a4:2e:0b:c5:43:a0:72:40:6d:bc:f6: 9c:89:b8:20:6a:11:1e:0c:57:ac:01:9c:0f:8f:49: 3f:75:73:b3:bc:0a:71:37:cb:b5:28:02:db:d1:3c: b9:83:e7:a9:9e:79:84:f7:f0:07:9c:1a:36:a9:7b: a3:d3:5a:5a:74:85:69:64:c0:de:85:87:c4:3d:5b: b5:a4:11:c2:37:a6:d7:78:10:89:2c:07:bf:06:e6: 68:62:55:1c:e1:a9:1b:16:9c:0f:1a:78:e9:ba:2e: a9:b4:61:58:14:fb:da:8f:de:ee:58:6c:5f:93:ad: b3:a4:01:55:61:f1:f9:12:ae:30:ae:33:4a:2b:f1: 5f:95:7e:15:4a:6b:51:32:eb:54:56:1e:a6:d6:e5: 5c:4b:af:b5:88:64:63:35:a7:18:a5:f3:cb:f1:e9: ac:0c:09:a6:9f:ea:79:5a:3f:3c:4e:e4:7f:ca:66: 93:30:8c:87:44:ee:16:87:d3:8f:3a:61:da:b5:69: c9:91:67:f5:c3:89:9a:3d:ae:83:2b:af:a5:63:bb: 51:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4A:E2:BF:1D:1E:FB:A6:F9:EA:F4:2A:EC:7A:1D:C7:92:D7:26:03 X509v3 Authority Key Identifier: keyid:96:ED:C6:82:A9:44:00:51:17:B8:FE:BE:D6:DC:8B:AC:06:0F:32:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lu3GgqlEAFEXuP6-1tyLrAYPMpo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c12436-61be-42e0-ad34-7f8a6750b8d7/1/DErivx0e-6b56vQq7Hodx5LXJgM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c12436-61be-42e0-ad34-7f8a6750b8d7/1/lu3GgqlEAFEXuP6-1tyLrAYPMpo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.224.0/24 Signature Algorithm: sha256WithRSAEncryption 27:79:a9:ad:73:5b:23:1c:bd:b9:05:06:8a:fd:77:7f:14:d8: 4c:b3:85:41:8a:9c:28:55:cd:91:07:01:07:7a:ad:66:54:96: c2:24:92:1a:53:ac:d1:04:2f:5b:73:12:c4:e4:ff:17:14:32: 3d:33:a8:df:f7:9a:43:51:9e:14:57:02:be:73:bf:62:8c:81: 46:4a:ad:76:50:2a:4c:46:64:aa:22:3b:c9:14:1d:b4:8e:cf: 21:86:ea:46:fc:70:c5:2e:8e:0a:7e:96:7c:5a:b2:9f:cd:cf: 2c:7a:4d:34:43:56:0e:f2:c3:6b:f0:91:62:32:4a:b1:98:4b: ad:45:12:b7:76:2b:f5:e7:7e:6d:b5:59:d3:36:ab:f4:cf:6e: 07:3b:c0:4f:03:eb:a1:65:21:b8:e0:56:7d:88:fe:d6:fc:d4: 3e:2d:77:38:30:57:db:ae:d2:f9:6b:ed:0a:c2:d8:89:1b:3f: b8:15:d0:c3:60:39:27:26:49:b2:15:81:46:20:a8:2e:bb:dd: 8b:14:71:f7:42:6b:a7:0d:12:9a:b3:a4:60:90:d3:5a:14:a8: ff:9d:20:37:21:47:b5:65:03:02:90:da:62:1d:6e:89:60:68: 63:1b:cd:0c:3f:20:5b:9f:82:58:7f:7e:2d:30:59:0e:65:e8: e5:5f:15:88 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ouyQeOAiH86Z9uUJDUwiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ZWRjNjgyYTk0NDAwNTExN2I4ZmViZWQ2ZGM4YmFjMDYw ZjMyOWEwHhcNMjYwMTAxMDgxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzRhZTJiZjFkMWVmYmE2ZjllYWY0MmFlYzdhMWRjNzkyZDcyNjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0GPv9h5bShu14ZFuRtUNgdgb9Dzr q8bZAAmyW59Se6rY4IT1T7e9zOt6iqO5OqYcpC4LxUOgckBtvPacibggahEeDFes AZwPj0k/dXOzvApxN8u1KALb0Ty5g+epnnmE9/AHnBo2qXuj01padIVpZMDehYfE PVu1pBHCN6bXeBCJLAe/BuZoYlUc4akbFpwPGnjpui6ptGFYFPvaj97uWGxfk62z pAFVYfH5Eq4wrjNKK/FflX4VSmtRMutUVh6m1uVcS6+1iGRjNacYpfPL8emsDAmm n+p5Wj88TuR/ymaTMIyHRO4Wh9OPOmHatWnJkWf1w4maPa6DK6+lY7tRqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAxK4r8dHvum+er0Kux6HceS1yYDMB8GA1UdIwQY MBaAFJbtxoKpRABRF7j+vtbci6wGDzKaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHUzR2dxbEVBRkVYdVA2LTF0eUxyQVlQTXBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9jMTI0MzYtNjFiZS00MmUwLWFkMzQt N2Y4YTY3NTBiOGQ3LzEvREVyaXZ4MGUtNmI1NnZRcTdIb2R4NUxYSmdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9jMTI0MzYtNjFiZS00MmUwLWFkMzQtN2Y4YTY3NTBiOGQ3 LzEvbHUzR2dxbEVBRkVYdVA2LTF0eUxyQVlQTXBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVjgMA0G CSqGSIb3DQEBCwUAA4IBAQAneamtc1sjHL25BQaK/Xd/FNhMs4VBipwoVc2RBwEH eq1mVJbCJJIaU6zRBC9bcxLE5P8XFDI9M6jf95pDUZ4UVwK+c79ijIFGSq12UCpM RmSqIjvJFB20js8hhupG/HDFLo4KfpZ8WrKfzc8sek00Q1YO8sNr8JFiMkqxmEut RRK3div1535ttVnTNqv0z24HO8BPA+uhZSG44FZ9iP7W/NQ+LXc4MFfbrtL5a+0K wtiJGz+4FdDDYDknJkmyFYFGIKguu92LFHH3QmunDRKas6RgkNNaFKj/nSA3IUe1 ZQMCkNpiHW6JYGhjG80MPyBbn4JYf34tMFkOZejlXxWI -----END CERTIFICATE-----Generated at Mon Jan 19 18:40:00 2026 by rpki-client