This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/kpO4RG28fYYVmBuJSIXGaHvSxU0.roa File: kpO4RG28fYYVmBuJSIXGaHvSxU0.roa (raw, json) Hash identifier: i8inyU2Y1UbsH+wXnBk66d0sVuBHQPuFEaJpwKKuPzA= Subject key identifier: 92:93:B8:44:6D:BC:7D:86:15:98:1B:89:48:85:C6:68:7B:D2:C5:4D Certificate issuer: /CN=b1814a28a8c1ebe0adc33a1519b9883e3084bb59 Certificate serial: 019B76EB9A484A6CA4917A7FA33DF3A66B2F Authority key identifier: B1:81:4A:28:A8:C1:EB:E0:AD:C3:3A:15:19:B9:88:3E:30:84:BB:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYFKKKjB6-CtwzoVGbmIPjCEu1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/kpO4RG28fYYVmBuJSIXGaHvSxU0.roa Signing time: Thu 01 Jan 2026 00:18:30 +0000 ROA not before: Thu 01 Jan 2026 00:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 45.152.134.0/24 maxlen: 24 45.152.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/sYFKKKjB6-CtwzoVGbmIPjCEu1k.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/sYFKKKjB6-CtwzoVGbmIPjCEu1k.mft rsync://rpki.ripe.net/repository/DEFAULT/sYFKKKjB6-CtwzoVGbmIPjCEu1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:9a:48:4a:6c:a4:91:7a:7f:a3:3d:f3:a6:6b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1814a28a8c1ebe0adc33a1519b9883e3084bb59 Validity Not Before: Jan 1 00:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9293b8446dbc7d8615981b894885c6687bd2c54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:cc:b5:6c:36:fd:5a:d9:6c:2f:d5:21:e3: d1:1d:e6:1a:c6:07:64:76:f2:9a:4e:aa:a9:f8:b0: 16:cd:72:d3:08:37:13:3c:07:6d:9d:39:54:fa:b4: 8e:3e:05:bd:dd:7f:64:5a:fb:3b:ec:26:6a:8f:cf: b5:9a:39:a0:b4:c4:be:49:0d:38:22:41:8b:1c:24: 2e:c4:ed:4d:2c:b2:ba:48:4a:b3:77:27:44:e2:a2: 15:75:67:74:7e:67:f0:67:34:65:5c:36:78:8a:c6: 7c:50:45:40:de:d4:fc:6c:72:a0:d3:e6:3a:96:09: 62:f5:15:be:83:b4:5a:e2:63:e5:b7:04:4e:38:50: 08:3a:d5:3b:35:f4:14:86:7d:08:6a:53:50:13:e4: 30:d4:65:ca:4f:e7:24:2a:0b:d4:69:72:6b:bb:26: 74:fd:ba:f3:80:1d:69:a5:9f:0d:a8:fe:0b:3d:90: 6b:70:3f:b5:69:cc:8f:62:6a:2c:50:ef:68:f5:00: d6:97:af:5d:6e:8d:8c:35:36:e6:a4:79:52:a7:ba: 9a:a6:e5:c6:df:a1:dd:b8:53:2a:a5:9a:0a:41:07: 1e:d5:7c:46:f7:18:2c:02:b3:8c:3a:57:d1:2e:1c: 57:96:c6:cc:84:63:2e:0c:2a:e8:d8:4a:bd:b8:a9: 40:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:93:B8:44:6D:BC:7D:86:15:98:1B:89:48:85:C6:68:7B:D2:C5:4D X509v3 Authority Key Identifier: keyid:B1:81:4A:28:A8:C1:EB:E0:AD:C3:3A:15:19:B9:88:3E:30:84:BB:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYFKKKjB6-CtwzoVGbmIPjCEu1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/kpO4RG28fYYVmBuJSIXGaHvSxU0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/sYFKKKjB6-CtwzoVGbmIPjCEu1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.134.0/23 Signature Algorithm: sha256WithRSAEncryption a8:5a:a2:d1:6b:63:7b:67:ee:d1:89:5a:de:99:a8:4e:fc:b0: 94:a4:f8:7b:92:70:95:04:05:9c:68:25:b7:7f:89:58:ff:65: 4c:5b:36:0d:47:c5:f9:9f:1f:92:2a:03:51:41:0e:a8:4a:aa: c2:a5:22:89:ae:81:4a:0c:f3:98:14:2d:8b:fa:8a:35:d0:fe: 9b:1b:87:26:d3:3c:fc:3c:a0:9f:e1:80:dd:95:95:de:d1:0b: 65:e1:80:5b:da:5f:f1:c7:af:d9:f5:90:6c:90:b5:c6:5c:92: 59:d2:f0:3b:e4:f7:8c:80:49:fe:9c:b0:24:02:a0:da:c2:57: 6d:d0:23:24:de:31:64:7f:a4:1e:b7:7c:09:6e:26:f5:9f:da: c2:cc:2d:c3:ad:c1:78:2d:47:ab:ec:0c:b3:99:5c:68:b6:94: 76:8e:d7:bd:d8:ea:e4:87:83:6d:74:24:e8:78:f9:81:7d:0f: e4:8f:43:74:74:5b:52:7b:a3:cc:d3:59:22:c4:c5:81:c2:83: 0e:ae:95:05:88:52:0e:aa:99:7f:a4:d0:3f:d2:61:06:e1:18: 50:89:07:80:5f:39:ae:57:29:31:52:65:51:c7:9b:6a:4e:98: bc:26:fe:1b:3f:09:50:b2:e9:14:21:7f:d8:35:b6:c0:f4:d9: c1:f6:fd:2c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt265pISmykkXp/oz3zpmsvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxODE0YTI4YThjMWViZTBhZGMzM2ExNTE5Yjk4ODNlMzA4 NGJiNTkwHhcNMjYwMTAxMDAxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MjkzYjg0NDZkYmM3ZDg2MTU5ODFiODk0ODg1YzY2ODdiZDJjNTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6rMtWw2/VrZbC/VIePRHeYaxgdk dvKaTqqp+LAWzXLTCDcTPAdtnTlU+rSOPgW93X9kWvs77CZqj8+1mjmgtMS+SQ04 IkGLHCQuxO1NLLK6SEqzdydE4qIVdWd0fmfwZzRlXDZ4isZ8UEVA3tT8bHKg0+Y6 lgli9RW+g7Ra4mPltwROOFAIOtU7NfQUhn0IalNQE+Qw1GXKT+ckKgvUaXJruyZ0 /brzgB1ppZ8NqP4LPZBrcD+1acyPYmosUO9o9QDWl69dbo2MNTbmpHlSp7qapuXG 36HduFMqpZoKQQce1XxG9xgsArOMOlfRLhxXlsbMhGMuDCro2Eq9uKlAKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJKTuERtvH2GFZgbiUiFxmh70sVNMB8GA1UdIwQY MBaAFLGBSiiowevgrcM6FRm5iD4whLtZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1lGS0tLakI2LUN0d3pvVkdibUlQakNFdTFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8zZmJmZjYtNzNlZS00ODEyLThlNGIt ODFkYWJjODFjMDVjLzEva3BPNFJHMjhmWVlWbUJ1SlNJWEdhSHZTeFUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8zZmJmZjYtNzNlZS00ODEyLThlNGItODFkYWJjODFjMDVj LzEvc1lGS0tLakI2LUN0d3pvVkdibUlQakNFdTFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZiGMA0G CSqGSIb3DQEBCwUAA4IBAQCoWqLRa2N7Z+7RiVremahO/LCUpPh7knCVBAWcaCW3 f4lY/2VMWzYNR8X5nx+SKgNRQQ6oSqrCpSKJroFKDPOYFC2L+oo10P6bG4cm0zz8 PKCf4YDdlZXe0Qtl4YBb2l/xx6/Z9ZBskLXGXJJZ0vA75PeMgEn+nLAkAqDawldt 0CMk3jFkf6Qet3wJbib1n9rCzC3DrcF4LUer7AyzmVxotpR2jte92Orkh4NtdCTo ePmBfQ/kj0N0dFtSe6PM01kixMWBwoMOrpUFiFIOqpl/pNA/0mEG4RhQiQeAXzmu VykxUmVRx5tqTpi8Jv4bPwlQsukUIX/YNbbA9NnB9v0s -----END CERTIFICATE-----Generated at Fri Jan 2 13:02:07 2026 by rpki-client