This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/5POQaq2FIBregxvYNKnQ0LZ68eA.roa File: 5POQaq2FIBregxvYNKnQ0LZ68eA.roa (raw, json) Hash identifier: 3ZBwuPJNCoHXmfqEKRXgDso3hRBamUObQVJiGRHt5+M= Subject key identifier: E4:F3:90:6A:AD:85:20:1A:DE:83:1B:D8:34:A9:D0:D0:B6:7A:F1:E0 Certificate issuer: /CN=bfff419659f54df378792b602c0092c353988ec8 Certificate serial: 019B77C68DFDD399EC4326DB6E79D65DBDEC Authority key identifier: BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/5POQaq2FIBregxvYNKnQ0LZ68eA.roa Signing time: Thu 01 Jan 2026 04:17:39 +0000 ROA not before: Thu 01 Jan 2026 04:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207790 IP address blocks: 45.129.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/v_9Blln1TfN4eStgLACSw1OYjsg.crl rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/v_9Blln1TfN4eStgLACSw1OYjsg.mft rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:8d:fd:d3:99:ec:43:26:db:6e:79:d6:5d:bd:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfff419659f54df378792b602c0092c353988ec8 Validity Not Before: Jan 1 04:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4f3906aad85201ade831bd834a9d0d0b67af1e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:56:2d:ac:ad:00:63:85:7e:30:90:53:e1:52: 2b:48:e9:99:6d:e2:72:69:be:e6:ea:f2:81:51:0a: 0b:0c:4e:41:ba:39:63:dc:3e:f1:26:d2:71:01:81: 84:77:4f:0c:e6:52:9a:35:87:2d:1e:8b:ae:51:26: 06:78:ca:95:06:6d:97:da:bf:e2:2b:a7:c2:2f:72: 86:03:17:1a:ff:5b:47:b2:f3:2b:ef:b7:be:40:01: 88:62:4c:ab:62:d4:e0:c3:74:d5:10:c4:d9:08:e4: 2b:36:3a:f6:38:f4:6f:a6:09:04:cf:f7:16:63:75: 79:cf:d0:42:a7:e7:0a:80:8f:72:b2:45:d2:a3:2f: 0b:e3:f4:11:e0:d2:b7:0b:2a:32:55:c2:91:31:47: 16:48:81:c0:93:dc:8b:48:f2:b9:8e:bf:62:7c:f5: b7:44:be:12:a2:d0:e4:88:60:da:73:2a:8c:09:32: 4a:78:9a:82:55:4f:4c:36:8e:18:ae:5f:49:a1:39: ef:3e:bd:ab:86:6a:97:83:a3:32:e2:da:74:a7:1b: 7d:81:19:7e:c9:bb:b1:82:0c:d8:e4:95:a2:13:99: 37:16:e2:c4:dc:8e:53:61:49:b7:4c:c0:5c:68:89: f3:69:16:ee:ca:b8:3b:dc:c3:a4:67:8f:52:56:08: 5b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F3:90:6A:AD:85:20:1A:DE:83:1B:D8:34:A9:D0:D0:B6:7A:F1:E0 X509v3 Authority Key Identifier: keyid:BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/5POQaq2FIBregxvYNKnQ0LZ68eA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/v_9Blln1TfN4eStgLACSw1OYjsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:7b:b8:b3:fd:08:56:56:86:76:83:a1:8a:70:00:bf:d0:b2: 78:fb:87:ca:7b:90:71:f2:00:b2:28:0f:42:29:da:a7:89:79: 15:d4:06:25:f9:e5:ba:94:85:e6:00:01:8c:fa:0f:a3:b9:cc: de:52:c2:b5:7b:59:cf:9d:1d:fc:c2:f5:c4:e6:cf:77:65:55: cb:f3:93:6e:82:2b:6e:0e:5b:d3:94:b6:38:cb:fb:e7:c4:6c: 6b:8f:df:78:2f:ff:91:f5:58:53:26:2e:74:a8:5f:10:67:1a: 85:39:0d:59:37:fd:7b:94:61:e2:d3:59:8a:d6:c8:3e:5d:ca: 03:5b:1e:32:89:8c:aa:2c:0c:7b:a9:42:8c:a5:05:a9:ce:b5: d0:f6:93:69:3c:1a:9f:4e:e4:2d:a8:ef:b6:d8:36:ae:1c:e7: 57:3a:82:b1:e5:5c:27:60:15:1d:f4:59:34:81:d0:e4:8a:c3: 06:1e:bd:70:6b:20:6a:67:2c:b9:b2:2a:2b:40:df:38:09:f1: 54:64:f1:23:dc:7f:ab:f9:0b:12:7f:88:17:2f:49:65:df:5f: 1e:1c:5f:62:c2:3c:4d:d7:03:b4:cf:2a:56:cb:03:92:5c:a4: 53:a1:9a:6f:b7:52:b6:35:c5:95:dc:ce:09:01:b5:e0:bc:8e: 42:41:2d:89 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xo3905nsQybbbnnWXb3sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmZmY0MTk2NTlmNTRkZjM3ODc5MmI2MDJjMDA5MmMzNTM5 ODhlYzgwHhcNMjYwMTAxMDQxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNGYzOTA2YWFkODUyMDFhZGU4MzFiZDgzNGE5ZDBkMGI2N2FmMWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFYtrK0AY4V+MJBT4VIrSOmZbeJy ab7m6vKBUQoLDE5Bujlj3D7xJtJxAYGEd08M5lKaNYctHouuUSYGeMqVBm2X2r/i K6fCL3KGAxca/1tHsvMr77e+QAGIYkyrYtTgw3TVEMTZCOQrNjr2OPRvpgkEz/cW Y3V5z9BCp+cKgI9yskXSoy8L4/QR4NK3CyoyVcKRMUcWSIHAk9yLSPK5jr9ifPW3 RL4SotDkiGDacyqMCTJKeJqCVU9MNo4Yrl9JoTnvPr2rhmqXg6My4tp0pxt9gRl+ ybuxggzY5JWiE5k3FuLE3I5TYUm3TMBcaInzaRbuyrg73MOkZ49SVghbNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOTzkGqthSAa3oMb2DSp0NC2evHgMB8GA1UdIwQY MBaAFL//QZZZ9U3zeHkrYCwAksNTmI7IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdl85QmxsbjFUZk40ZVN0Z0xBQ1N3MU9ZanNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8yYmExMzgtMTczNy00NzE0LTk2MGEt NzBiZGYxNWRkNjE5LzEvNVBPUWFxMkZJQnJlZ3h2WU5LblEwTFo2OGVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8yYmExMzgtMTczNy00NzE0LTk2MGEtNzBiZGYxNWRkNjE5 LzEvdl85QmxsbjFUZk40ZVN0Z0xBQ1N3MU9ZanNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYH0MA0G CSqGSIb3DQEBCwUAA4IBAQCbe7iz/QhWVoZ2g6GKcAC/0LJ4+4fKe5Bx8gCyKA9C KdqniXkV1AYl+eW6lIXmAAGM+g+juczeUsK1e1nPnR38wvXE5s93ZVXL85Nugitu DlvTlLY4y/vnxGxrj994L/+R9VhTJi50qF8QZxqFOQ1ZN/17lGHi01mK1sg+XcoD Wx4yiYyqLAx7qUKMpQWpzrXQ9pNpPBqfTuQtqO+22DauHOdXOoKx5VwnYBUd9Fk0 gdDkisMGHr1wayBqZyy5siorQN84CfFUZPEj3H+r+QsSf4gXL0ll318eHF9iwjxN 1wO0zypWywOSXKRToZpvt1K2NcWV3M4JAbXgvI5CQS2J -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:38 2026 by rpki-client