This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/hBwQvgPhGJzR_22ttNwtHhdx7UE.roa File: hBwQvgPhGJzR_22ttNwtHhdx7UE.roa (raw, json) Hash identifier: BA8aCpTJ5opcE6AfKmkjJWSoOHA/DSBCKSoiBPNDf6k= Subject key identifier: 84:1C:10:BE:03:E1:18:9C:D1:FF:6D:AD:B4:DC:2D:1E:17:71:ED:41 Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e Certificate serial: 019B77597D43E0A0464A4B0F3304DAC536AB Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/hBwQvgPhGJzR_22ttNwtHhdx7UE.roa Signing time: Thu 01 Jan 2026 02:18:32 +0000 ROA not before: Thu 01 Jan 2026 02:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215802 IP address blocks: 45.66.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.mft rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:7d:43:e0:a0:46:4a:4b:0f:33:04:da:c5:36:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e Validity Not Before: Jan 1 02:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=841c10be03e1189cd1ff6dadb4dc2d1e1771ed41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ff:26:d4:65:f3:17:d0:01:21:b7:a5:0d:f5: ac:3f:1d:e0:01:78:29:a2:43:26:5c:4d:71:03:ff: da:2f:84:d2:c5:d5:17:f6:a9:9c:29:67:f0:83:fd: 30:4f:1d:d1:aa:2f:3c:54:c0:55:a1:48:44:71:81: 65:12:b4:3b:bd:87:23:33:c3:23:25:14:a9:b2:01: dc:dd:c6:a8:61:d9:a5:ad:78:30:fc:0d:fe:58:8e: a7:18:0c:64:a8:c1:c3:3e:ae:ea:0c:36:bb:f8:02: 09:a7:a2:ab:8e:b5:d7:c6:aa:47:78:f6:2b:8e:a9: f6:50:70:f6:c5:a2:95:43:aa:12:b7:ad:03:7d:46: 71:05:bd:f0:57:df:4d:4a:1f:ec:4f:45:c1:d3:d2: 38:7d:d9:a3:ed:71:17:6a:7d:d2:03:07:27:67:77: 52:35:52:91:b1:6f:9a:c3:61:34:84:ae:db:91:cd: 39:0b:ad:21:18:e4:64:49:f1:f0:c9:a2:8b:47:49: 5f:b0:26:9b:6c:34:83:1b:0b:b9:bd:13:59:0e:fb: d0:6d:2e:e5:3c:ed:11:44:42:65:02:c5:f3:09:13: b0:48:e4:e7:40:11:3f:34:cb:30:39:16:01:68:34: 0b:60:10:1f:ca:b9:23:3d:82:ab:3b:6e:db:93:bf: e0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1C:10:BE:03:E1:18:9C:D1:FF:6D:AD:B4:DC:2D:1E:17:71:ED:41 X509v3 Authority Key Identifier: keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/hBwQvgPhGJzR_22ttNwtHhdx7UE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.66.53.0/24 Signature Algorithm: sha256WithRSAEncryption 80:27:9b:59:0b:30:06:0b:2e:0d:18:c3:d0:95:99:17:fa:53: 25:6d:17:04:44:92:65:b6:3b:ff:d5:6a:32:c0:97:65:e8:4f: 8f:27:e4:a0:6a:58:a7:f1:25:70:02:23:85:93:2a:3d:c5:96: 1d:25:dd:ca:63:7c:b5:5e:16:39:3c:de:cd:db:6d:9d:92:90: 11:28:68:91:fa:84:95:70:a1:88:94:24:29:f8:bb:85:4c:5c: 6e:9f:90:c5:fa:f5:c6:37:75:03:81:a9:ee:44:dd:26:9e:32: 65:ce:c3:85:21:0d:7b:ba:40:8b:6e:30:5b:24:10:0a:31:86: d5:b8:8f:5d:ef:a1:44:5b:45:a5:87:c5:53:14:4f:4a:00:27: 92:fd:db:f6:6c:65:0a:c4:e6:a2:23:22:f8:58:61:27:c9:75: 23:b5:b3:46:82:9a:04:0c:b0:c9:0b:3a:6d:16:73:90:2a:7b: 45:62:79:e8:47:9f:db:b4:eb:f0:98:4a:c6:db:0a:5b:53:e6: 79:37:cf:9c:77:d4:16:4d:d3:53:66:a3:b5:17:75:11:ed:41: 5d:60:75:0d:53:cf:2e:64:1e:0f:87:23:81:08:e5:b8:1f:8d: 35:76:74:b3:bd:c9:05:d3:c7:d2:83:c7:53:5e:0a:4c:5a:bd: 88:f1:a6:9a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WX1D4KBGSksPMwTaxTarMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiZjU0M2UyM2UyOWZiMDM3NDhkMDkzOTcyNmYzMGZlOWFm ZmExOWUwHhcNMjYwMTAxMDIxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDFjMTBiZTAzZTExODljZDFmZjZkYWRiNGRjMmQxZTE3NzFlZDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5P8m1GXzF9ABIbelDfWsPx3gAXgp okMmXE1xA//aL4TSxdUX9qmcKWfwg/0wTx3Rqi88VMBVoUhEcYFlErQ7vYcjM8Mj JRSpsgHc3caoYdmlrXgw/A3+WI6nGAxkqMHDPq7qDDa7+AIJp6KrjrXXxqpHePYr jqn2UHD2xaKVQ6oSt60DfUZxBb3wV99NSh/sT0XB09I4fdmj7XEXan3SAwcnZ3dS NVKRsW+aw2E0hK7bkc05C60hGORkSfHwyaKLR0lfsCabbDSDGwu5vRNZDvvQbS7l PO0RREJlAsXzCROwSOTnQBE/NMswORYBaDQLYBAfyrkjPYKrO27bk7/gxQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIQcEL4D4Ric0f9trbTcLR4Xce1BMB8GA1UdIwQY MBaAFAv1Q+I+KfsDdI0JOXJvMP6a/6GeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ19WRDRqNHAtd04walFrNWNtOHdfcHJfb1o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9hZmEzNGMtZjNmMC00MDVjLWIwODMt YTM1ZmM0MzhkNGNhLzEvaEJ3UXZnUGhHSnpSXzIydHROd3RIaGR4N1VFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9hZmEzNGMtZjNmMC00MDVjLWIwODMtYTM1ZmM0MzhkNGNh LzEvQ19WRDRqNHAtd04walFrNWNtOHdfcHJfb1o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUI1MA0G CSqGSIb3DQEBCwUAA4IBAQCAJ5tZCzAGCy4NGMPQlZkX+lMlbRcERJJltjv/1Woy wJdl6E+PJ+Sgalin8SVwAiOFkyo9xZYdJd3KY3y1XhY5PN7N222dkpARKGiR+oSV cKGIlCQp+LuFTFxun5DF+vXGN3UDganuRN0mnjJlzsOFIQ17ukCLbjBbJBAKMYbV uI9d76FEW0Wlh8VTFE9KACeS/dv2bGUKxOaiIyL4WGEnyXUjtbNGgpoEDLDJCzpt FnOQKntFYnnoR5/btOvwmErG2wpbU+Z5N8+cd9QWTdNTZqO1F3UR7UFdYHUNU88u ZB4PhyOBCOW4H401dnSzvckF08fSg8dTXgpMWr2I8aaa -----END CERTIFICATE-----Generated at Mon Jan 26 00:16:06 2026 by rpki-client