This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/YrfvxNJdeHYuSdfjBibJ7k6pvEE.roa File: YrfvxNJdeHYuSdfjBibJ7k6pvEE.roa (raw, json) Hash identifier: oBcJN0/vUgerckttMrITgGrAWVOsR/md3WZHA4+tgo0= Subject key identifier: 62:B7:EF:C4:D2:5D:78:76:2E:49:D7:E3:06:26:C9:EE:4E:A9:BC:41 Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309 Certificate serial: 019B78347B2A0AB6F238C4F188C8D22AE3E6 Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/YrfvxNJdeHYuSdfjBibJ7k6pvEE.roa Signing time: Thu 01 Jan 2026 06:17:43 +0000 ROA not before: Thu 01 Jan 2026 06:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5511 IP address blocks: 45.140.59.0/24 maxlen: 24 45.149.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.mft rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 01:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:7b:2a:0a:b6:f2:38:c4:f1:88:c8:d2:2a:e3:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309 Validity Not Before: Jan 1 06:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62b7efc4d25d78762e49d7e30626c9ee4ea9bc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a8:85:48:ce:ae:17:87:07:b9:13:5f:7f:88: 70:78:5c:41:ec:f9:a0:ee:e6:f2:46:84:7c:2e:0c: de:a1:22:4b:2d:5e:54:51:aa:92:96:8f:b8:df:7b: 77:8a:6e:02:6f:80:d6:9d:80:4d:89:54:17:a4:eb: 4d:8d:f5:f4:33:c5:15:73:7e:f9:40:97:26:c3:21: 4e:0d:b0:ec:83:4b:f9:a9:be:c5:12:ca:d7:01:3b: b5:d0:77:af:80:11:ff:ff:a8:41:76:83:9c:dd:0b: 4c:19:ee:6a:20:22:93:94:fd:3a:67:b5:db:d5:be: f0:71:8a:2e:5e:1f:d0:3d:a1:5c:98:05:f5:54:50: 7e:d3:ed:a1:8f:ba:ba:51:16:24:f0:89:21:92:42: d4:0d:b6:69:ed:ba:c9:e7:65:da:d6:1e:16:a7:89: f6:cf:fa:88:2c:cb:75:4d:fd:00:29:c9:81:e4:cd: 2b:48:d5:6f:42:ef:4c:27:af:d5:35:6f:fa:46:d6: be:44:d5:bb:6d:8f:64:af:ad:0c:84:82:c2:a6:0d: dc:73:fb:8e:54:9b:40:0f:67:3d:ec:e3:94:6b:ae: c3:cf:21:27:e5:fe:85:9a:00:70:99:1c:f6:50:90: 73:be:c2:f1:5d:ec:d2:5a:c3:aa:6c:22:9d:da:d5: 23:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B7:EF:C4:D2:5D:78:76:2E:49:D7:E3:06:26:C9:EE:4E:A9:BC:41 X509v3 Authority Key Identifier: keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/YrfvxNJdeHYuSdfjBibJ7k6pvEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.140.59.0/24 45.149.7.0/24 Signature Algorithm: sha256WithRSAEncryption 69:bf:b8:8e:66:8c:d1:7c:0b:dc:80:c1:c9:7e:6f:f8:80:f3: 47:c7:f2:31:3c:8c:be:2b:57:1e:26:5a:d3:d4:72:e6:01:ad: d1:3e:fd:4e:df:e7:18:86:67:df:2f:47:3e:d9:81:18:42:35: 65:d3:fe:04:22:b9:29:fd:0b:d9:d7:84:7f:2b:82:8c:66:43: 72:96:d9:4c:2e:a8:a4:39:73:f0:d3:ca:79:e7:9c:8d:b1:9a: 56:a1:61:d6:4f:86:08:a5:50:40:17:f4:a2:c9:20:f3:28:ae: 48:5d:55:e2:fb:b5:c0:be:eb:3d:d6:3a:ec:ec:a2:77:e8:7f: 05:f3:f4:7f:c2:37:75:d2:9e:99:58:bf:af:48:c1:56:d9:1a: 3b:6f:79:7a:6f:e1:7a:90:fd:16:6e:de:51:ab:6d:a1:e6:63: b3:30:36:e6:bf:11:01:da:7c:78:4d:36:8a:ae:e8:83:1d:c7: 8e:f6:02:db:50:82:a1:8a:6b:bd:e7:63:c3:19:a2:9f:a3:92: 00:fb:9c:55:00:0c:f8:49:f0:75:5e:b5:4b:a3:98:f2:f8:40: d2:f7:8b:8a:6f:c7:f7:4d:55:eb:6a:23:a5:b3:16:b4:8e:aa: e8:51:06:73:00:cf:74:d9:9f:26:69:ec:09:e7:f7:02:02:b7: 0c:ce:27:78 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NHsqCrbyOMTxiMjSKuPmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMzY2ODYyOGYwZGY3OWQwNDdlY2EwZDlhZGNmYzBiNjY5 M2UzMDkwHhcNMjYwMTAxMDYxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmI3ZWZjNGQyNWQ3ODc2MmU0OWQ3ZTMwNjI2YzllZTRlYTliYzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA76iFSM6uF4cHuRNff4hweFxB7Pmg 7ubyRoR8LgzeoSJLLV5UUaqSlo+433t3im4Cb4DWnYBNiVQXpOtNjfX0M8UVc375 QJcmwyFODbDsg0v5qb7FEsrXATu10HevgBH//6hBdoOc3QtMGe5qICKTlP06Z7Xb 1b7wcYouXh/QPaFcmAX1VFB+0+2hj7q6URYk8IkhkkLUDbZp7brJ52Xa1h4Wp4n2 z/qILMt1Tf0AKcmB5M0rSNVvQu9MJ6/VNW/6Rta+RNW7bY9kr60MhILCpg3cc/uO VJtAD2c97OOUa67DzyEn5f6FmgBwmRz2UJBzvsLxXezSWsOqbCKd2tUj1QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGK378TSXXh2LknX4wYmye5OqbxBMB8GA1UdIwQY MBaAFL02aGKPDfedBH7KDZrc/Atmk+MJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMt ZTZiZjMxNmM5NGExLzEvWXJmdnhOSmRlSFl1U2RmakJpYko3azZwdkVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMtZTZiZjMxNmM5NGEx LzEvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYw7AwQA LZUHMA0GCSqGSIb3DQEBCwUAA4IBAQBpv7iOZozRfAvcgMHJfm/4gPNHx/IxPIy+ K1ceJlrT1HLmAa3RPv1O3+cYhmffL0c+2YEYQjVl0/4EIrkp/QvZ14R/K4KMZkNy ltlMLqikOXPw08p555yNsZpWoWHWT4YIpVBAF/SiySDzKK5IXVXi+7XAvus91jrs 7KJ36H8F8/R/wjd10p6ZWL+vSMFW2Ro7b3l6b+F6kP0Wbt5Rq22h5mOzMDbmvxEB 2nx4TTaKruiDHceO9gLbUIKhimu952PDGaKfo5IA+5xVAAz4SfB1XrVLo5jy+EDS 94uKb8f3TVXraiOlsxa0jqroUQZzAM902Z8maewJ5/cCArcMzid4 -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:19 2026 by rpki-client