This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/vU4V_ymVM6NFSJaPCkiiYYCa4fY.roa File: vU4V_ymVM6NFSJaPCkiiYYCa4fY.roa (raw, json) Hash identifier: AigX6dvAIUofXTRi33gFfja+JrlpjhZ39UPL3gOu8n0= Subject key identifier: BD:4E:15:FF:29:95:33:A3:45:48:96:8F:0A:48:A2:61:80:9A:E1:F6 Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4 Certificate serial: 019B77C701A09DEB61534C47AE7A57F7DBA6 Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/vU4V_ymVM6NFSJaPCkiiYYCa4fY.roa Signing time: Thu 01 Jan 2026 04:18:09 +0000 ROA not before: Thu 01 Jan 2026 04:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212384 IP address blocks: 45.152.166.0/24 maxlen: 24 91.193.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 07:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:01:a0:9d:eb:61:53:4c:47:ae:7a:57:f7:db:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4 Validity Not Before: Jan 1 04:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd4e15ff299533a34548968f0a48a261809ae1f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bb:33:c6:c5:98:d8:71:38:fb:4a:91:6d:a6: 0c:28:92:94:ea:c7:11:41:6d:15:92:6b:17:2e:bb: 37:58:dc:34:80:aa:64:5c:76:f3:b3:29:ba:df:52: ab:f7:68:e3:e0:20:d3:e3:0d:51:89:7c:a5:ca:bd: 4c:c4:d8:d9:fb:58:af:66:a3:fb:ab:41:02:87:d3: 0b:25:a0:ff:1a:60:72:56:69:06:0f:54:02:ff:c2: 95:75:5e:c3:e7:60:05:7e:15:54:5e:a8:17:4f:e7: 69:51:3d:57:43:5a:26:dd:43:f1:ca:39:e2:28:4e: e4:9f:13:97:eb:7f:d0:0a:66:ba:83:57:4b:df:38: 2d:30:fa:ec:79:95:f1:48:35:50:fd:dc:9d:ba:af: 40:96:cb:73:e4:71:d3:a8:84:90:ec:ba:66:33:36: 2d:a9:5f:5e:8f:ff:e5:9e:1b:be:22:8f:be:6a:e3: 54:1b:e6:f2:cf:eb:99:cd:82:82:a0:9a:b7:4d:a5: cf:76:c4:c8:75:d2:d5:d3:8e:ae:2f:20:e5:34:44: d4:86:b0:da:60:36:d7:8b:62:aa:ab:5a:21:e4:51: 65:8d:a0:ae:ea:e4:8d:9c:7f:0e:70:f0:91:23:eb: 47:af:e0:77:60:bc:61:d2:94:38:78:ad:a7:d0:4d: db:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4E:15:FF:29:95:33:A3:45:48:96:8F:0A:48:A2:61:80:9A:E1:F6 X509v3 Authority Key Identifier: keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/vU4V_ymVM6NFSJaPCkiiYYCa4fY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.166.0/24 91.193.234.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:ed:c3:fb:a6:10:0b:95:57:d3:21:67:8a:c1:2c:a3:33:f4: 99:29:2e:84:aa:b4:d1:ce:5f:5d:06:75:81:e8:03:7f:d4:14: 32:9f:40:9b:61:e6:0c:65:a1:bf:de:23:16:d1:74:f8:11:d6: 13:23:8e:95:3e:ff:74:1c:96:84:4b:d5:65:03:c7:47:aa:68: 66:35:f4:72:36:54:57:c4:56:63:3b:dd:fa:04:2e:43:88:39: 13:7d:39:0c:b6:8c:ae:8a:29:23:0c:8a:e2:fc:cf:e8:e3:ea: 6a:3e:71:fd:bd:74:ac:0d:04:81:f9:00:28:31:d3:0d:18:5d: d6:f4:05:21:76:cc:e0:81:c6:a8:96:3c:18:b1:53:3e:aa:4c: c3:83:d9:e0:28:c7:fd:90:5a:85:70:a4:29:53:8b:1a:8b:a3: 83:ff:27:00:cd:69:3a:d8:c1:83:24:6c:52:8f:8a:61:e8:1c: ff:a7:ef:26:3a:b8:07:87:5a:a0:e0:4a:13:f7:68:52:09:c3: 2c:8e:9b:e1:8d:dc:8e:32:8f:ce:52:b2:75:b5:f3:25:3e:d2: 63:ba:c9:80:ab:7f:96:a0:fe:71:5f:3e:24:35:c6:5a:dc:6a: c5:e7:f3:91:d3:e3:71:ce:7a:d3:91:84:67:ea:a5:2a:4e:a6: 38:c9:b1:61 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xwGgnethU0xHrnpX99umMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNWIzMzQ5NjU3ODg3OTRkNmYxNDdhMmYwMDRkMTNiZTMy NTdkYzQwHhcNMjYwMTAxMDQxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDRlMTVmZjI5OTUzM2EzNDU0ODk2OGYwYTQ4YTI2MTgwOWFlMWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLszxsWY2HE4+0qRbaYMKJKU6scR QW0VkmsXLrs3WNw0gKpkXHbzsym631Kr92jj4CDT4w1RiXylyr1MxNjZ+1ivZqP7 q0ECh9MLJaD/GmByVmkGD1QC/8KVdV7D52AFfhVUXqgXT+dpUT1XQ1om3UPxyjni KE7knxOX63/QCma6g1dL3zgtMPrseZXxSDVQ/dyduq9Alstz5HHTqISQ7LpmMzYt qV9ej//lnhu+Io++auNUG+byz+uZzYKCoJq3TaXPdsTIddLV046uLyDlNETUhrDa YDbXi2Kqq1oh5FFljaCu6uSNnH8OcPCRI+tHr+B3YLxh0pQ4eK2n0E3bRQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFL1OFf8plTOjRUiWjwpIomGAmuH2MB8GA1UdIwQY MBaAFB5bM0lleIeU1vFHovAE0TvjJX3EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxzelNXVjRoNVRXOFVlaThBVFJPLU1sZmNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85YmEzOGEtNDg1Mi00MTNkLTljZDIt OTk5MGUyZDllYWZlLzEvdlU0Vl95bVZNNk5GU0phUENraWlZWUNhNGZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85YmEzOGEtNDg1Mi00MTNkLTljZDItOTk5MGUyZDllYWZl LzEvSGxzelNXVjRoNVRXOFVlaThBVFJPLU1sZmNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZimAwQA W8HqMA0GCSqGSIb3DQEBCwUAA4IBAQB87cP7phALlVfTIWeKwSyjM/SZKS6EqrTR zl9dBnWB6AN/1BQyn0CbYeYMZaG/3iMW0XT4EdYTI46VPv90HJaES9VlA8dHqmhm NfRyNlRXxFZjO936BC5DiDkTfTkMtoyuiikjDIri/M/o4+pqPnH9vXSsDQSB+QAo MdMNGF3W9AUhdszggcaoljwYsVM+qkzDg9ngKMf9kFqFcKQpU4sai6OD/ycAzWk6 2MGDJGxSj4ph6Bz/p+8mOrgHh1qg4EoT92hSCcMsjpvhjdyOMo/OUrJ1tfMlPtJj usmAq3+WoP5xXz4kNcZa3GrF5/OR0+NxznrTkYRn6qUqTqY4ybFh -----END CERTIFICATE-----Generated at Fri Jan 2 14:51:16 2026 by rpki-client