This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/1nqC6xnrGeiiCsIQzeNoBlULrNs.roa File: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (raw, json) Hash identifier: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw= Subject key identifier: D6:7A:82:EB:19:EB:19:E8:A2:0A:C2:10:CD:E3:68:06:55:0B:AC:DB Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B7EA706F190BC32D467442DF48413E684 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/1nqC6xnrGeiiCsIQzeNoBlULrNs.roa Signing time: Fri 02 Jan 2026 12:20:34 +0000 ROA not before: Fri 02 Jan 2026 12:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197537 IP address blocks: 45.156.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 23:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:06:f1:90:bc:32:d4:67:44:2d:f4:84:13:e6:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 2 12:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d67a82eb19eb19e8a20ac210cde36806550bacdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2b:f7:8b:85:55:30:8b:b7:32:38:75:49:b2: 20:ba:e0:20:5a:bc:32:08:86:99:61:9b:b4:ff:8d: 73:38:7e:7d:03:b4:39:b2:47:ef:e9:55:01:65:78: 37:13:18:c2:fd:93:45:90:a9:88:1a:09:06:bd:a3: e0:cd:6e:a9:28:d8:4f:74:0a:a0:c0:27:79:e9:d0: 55:ed:d0:d3:df:b2:0e:aa:76:d1:25:ac:ef:83:61: 1f:39:03:5a:0e:66:40:f0:97:de:16:cb:bd:f7:ee: cd:e8:c1:99:7b:f2:48:ec:4e:74:70:74:b5:70:99: 2d:26:da:33:23:e7:cb:2d:e2:1a:6c:a0:b1:ed:66: bd:d1:47:51:98:87:c7:9c:ed:5d:d0:bc:95:46:74: e7:64:ec:20:e0:55:81:e3:f0:b5:3f:7b:5d:71:f8: 41:fc:93:59:c7:50:5a:2b:12:6e:6d:6b:4f:60:df: e2:50:cd:0a:46:52:e6:8c:0d:78:24:fa:36:58:7d: 45:7b:1b:42:22:b8:a3:6a:52:92:ce:24:88:59:bc: 00:3f:0f:14:d9:39:55:38:ef:ab:21:8a:31:01:ae: 71:51:e0:4c:ce:eb:2e:4a:6b:e5:87:5e:9e:4d:65: 28:fe:73:d0:37:84:62:fa:cb:bc:05:e3:ab:81:11: 2d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:7A:82:EB:19:EB:19:E8:A2:0A:C2:10:CD:E3:68:06:55:0B:AC:DB X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/1nqC6xnrGeiiCsIQzeNoBlULrNs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.156.147.0/24 Signature Algorithm: sha256WithRSAEncryption 80:7f:bd:31:31:cd:14:20:83:57:90:91:d1:c3:2d:9a:16:17: de:2e:af:3f:5e:5e:4f:a4:87:d2:a9:89:04:30:ef:0d:43:12: 02:9a:cb:af:4b:f0:10:8d:7e:dc:73:c9:fc:ac:35:56:e2:ec: 7e:90:28:11:9b:61:11:d9:f9:32:05:8a:67:c3:14:bc:97:c6: cc:25:59:81:b8:d1:ef:01:5c:99:ba:bc:1b:a0:62:c3:7b:1c: 3b:52:4b:a0:1a:83:f0:a0:73:6c:72:87:e6:91:c8:62:b2:62: 39:1f:8a:47:4b:86:af:67:a2:0b:1d:e5:66:c6:99:20:8c:2b: 4d:5c:31:4d:3c:e7:1c:40:a4:dc:64:f2:b1:7e:a7:eb:d6:c5: 79:b7:6c:89:fc:a4:61:ac:71:0e:39:00:3a:a4:d9:e9:9b:c6: 60:8a:75:7b:7b:cf:a6:89:40:fc:91:83:72:01:c0:6a:ad:a1: 3b:c3:3b:da:81:51:e6:ee:32:40:54:c6:57:20:3e:cc:fa:60: 1b:ac:a3:ca:09:f9:2b:07:13:50:e1:81:c6:20:43:37:98:a8: 36:93:31:fe:a3:c0:76:ad:4f:85:cc:ae:ca:f4:de:10:7f:09: aa:5b:70:f7:71:23:3e:e9:98:74:1a:97:bc:81:20:9d:56:71: d9:37:0b:60 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pwbxkLwy1GdELfSEE+aEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTAyMTIyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjdhODJlYjE5ZWIxOWU4YTIwYWMyMTBjZGUzNjgwNjU1MGJhY2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0yv3i4VVMIu3Mjh1SbIguuAgWrwy CIaZYZu0/41zOH59A7Q5skfv6VUBZXg3ExjC/ZNFkKmIGgkGvaPgzW6pKNhPdAqg wCd56dBV7dDT37IOqnbRJazvg2EfOQNaDmZA8JfeFsu99+7N6MGZe/JI7E50cHS1 cJktJtozI+fLLeIabKCx7Wa90UdRmIfHnO1d0LyVRnTnZOwg4FWB4/C1P3tdcfhB /JNZx1BaKxJubWtPYN/iUM0KRlLmjA14JPo2WH1FextCIrijalKSziSIWbwAPw8U 2TlVOO+rIYoxAa5xUeBMzusuSmvlh16eTWUo/nPQN4Ri+su8BeOrgREtOwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNZ6gusZ6xnoogrCEM3jaAZVC6zbMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvMW5xQzZ4bnJHZWlpQ3NJUXplTm9CbFVMck5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZyTMA0G CSqGSIb3DQEBCwUAA4IBAQCAf70xMc0UIINXkJHRwy2aFhfeLq8/Xl5PpIfSqYkE MO8NQxICmsuvS/AQjX7cc8n8rDVW4ux+kCgRm2ER2fkyBYpnwxS8l8bMJVmBuNHv AVyZurwboGLDexw7UkugGoPwoHNscofmkchismI5H4pHS4avZ6ILHeVmxpkgjCtN XDFNPOccQKTcZPKxfqfr1sV5t2yJ/KRhrHEOOQA6pNnpm8ZginV7e8+miUD8kYNy AcBqraE7wzvagVHm7jJAVMZXID7M+mAbrKPKCfkrBxNQ4YHGIEM3mKg2kzH+o8B2 rU+FzK7K9N4QfwmqW3D3cSM+6Zh0Gpe8gSCdVnHZNwtg -----END CERTIFICATE-----Generated at Mon Jan 5 05:01:47 2026 by rpki-client