This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/yHzr1mLOyq97cMlnkU_QbvILd_k.roa File: yHzr1mLOyq97cMlnkU_QbvILd_k.roa (raw, json) Hash identifier: A7tEKpefOfoVMYMfFB/0vDiWMTh6ZA+ebsPXTsPnyck= Subject key identifier: C8:7C:EB:D6:62:CE:CA:AF:7B:70:C9:67:91:4F:D0:6E:F2:0B:77:F9 Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Certificate serial: 019B78A319387F559522BB7DF37F31F7B1B1 Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/yHzr1mLOyq97cMlnkU_QbvILd_k.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198789 IP address blocks: 45.8.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.mft rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:19:38:7f:55:95:22:bb:7d:f3:7f:31:f7:b1:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c87cebd662cecaaf7b70c967914fd06ef20b77f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d5:4a:fc:34:8f:bb:f2:f2:11:23:99:89:97: 34:8e:ca:74:6f:18:c7:91:a7:5f:ba:2c:0c:eb:45: 2f:57:8c:e6:ba:e8:b4:62:da:57:4e:d8:7f:48:6e: 8b:02:a8:ef:5b:79:dd:e4:16:49:5d:ce:91:93:f9: 7a:c1:96:e2:de:55:43:97:98:42:d0:69:bb:b7:e5: 01:b9:78:5b:a9:84:71:11:ac:68:25:ee:bc:9c:a5: 77:d8:2b:45:15:3b:15:3a:7e:0e:b3:a2:f7:7e:83: 40:d1:c0:ad:fc:35:2f:1e:7b:b3:f5:cb:07:cb:cb: 5a:8c:30:b3:7b:8f:46:29:f1:97:9f:1f:77:8b:57: 8b:ab:15:b8:53:e1:44:2a:6c:50:5c:32:19:73:b0: ec:97:7a:49:ee:cb:bf:b4:a8:c1:60:e3:68:18:4f: 3f:f4:66:11:a9:30:ec:b8:82:d6:68:4e:30:81:a5: 12:73:85:a2:9d:86:85:5f:f4:48:2e:fe:66:57:31: 07:45:0d:1b:92:1a:87:b2:de:99:8b:5c:e1:a2:b7: 69:91:0e:e7:ed:cb:04:1c:6f:56:f6:25:cf:0b:b9: eb:ae:ce:d6:8f:df:aa:fc:1b:cc:26:e2:9a:ed:9e: 20:7f:e4:92:fc:59:6f:d9:12:28:f1:17:7a:df:05: 05:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:7C:EB:D6:62:CE:CA:AF:7B:70:C9:67:91:4F:D0:6E:F2:0B:77:F9 X509v3 Authority Key Identifier: keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/yHzr1mLOyq97cMlnkU_QbvILd_k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.8.177.0/24 Signature Algorithm: sha256WithRSAEncryption 70:ce:51:8b:85:d2:d4:40:df:0b:dc:99:bd:c3:4e:49:18:bd: 06:4b:97:78:93:f8:27:9f:f6:d7:a1:e7:a3:c5:a5:6a:17:68: 62:ed:cd:14:b5:4c:ea:a3:94:b7:62:1b:13:93:34:60:9e:cb: c4:18:5b:1c:1d:15:89:61:cb:b3:14:53:e5:b6:cc:31:f7:ca: b1:32:3c:08:40:48:5d:13:f4:0c:8f:5a:05:82:eb:71:2e:11: 8f:c6:64:8b:87:b0:66:ba:1b:77:41:c4:40:83:dc:d1:20:96: 40:63:dc:25:cf:1e:3f:a2:cf:3e:ee:69:35:10:d7:3b:ea:fc: 3c:85:d5:eb:4a:f5:1f:d2:a8:12:76:b3:74:77:b0:78:00:93: 6d:d2:eb:c3:91:92:ba:95:e3:61:2f:81:e1:c8:e8:83:8a:a2: e6:b2:4b:56:22:07:d1:50:69:c2:19:3b:e1:fa:31:cf:87:1b: cd:4e:78:24:40:16:e4:4d:bb:28:f8:e3:e8:3c:da:8b:02:ea: 2f:6b:1d:ba:dd:6d:86:c4:bb:47:59:07:e8:69:ca:fe:7d:32: 48:4c:a7:d4:08:1a:12:7f:69:97:e4:c9:67:6c:b3:4d:d5:27: 46:43:e6:7a:7d:14:41:58:b5:f9:d5:ea:89:4a:6d:b0:0f:ac: b4:10:98:56 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oxk4f1WVIrt9838x97GxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxYmRkZWFmMGYzMGZiZGFmOWU3NWI5MmFjN2Q1YmQxM2Yy ODVkZTcwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODdjZWJkNjYyY2VjYWFmN2I3MGM5Njc5MTRmZDA2ZWYyMGI3N2Y5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstVK/DSPu/LyESOZiZc0jsp0bxjH kadfuiwM60UvV4zmuui0YtpXTth/SG6LAqjvW3nd5BZJXc6Rk/l6wZbi3lVDl5hC 0Gm7t+UBuXhbqYRxEaxoJe68nKV32CtFFTsVOn4Os6L3foNA0cCt/DUvHnuz9csH y8tajDCze49GKfGXnx93i1eLqxW4U+FEKmxQXDIZc7Dsl3pJ7su/tKjBYONoGE8/ 9GYRqTDsuILWaE4wgaUSc4WinYaFX/RILv5mVzEHRQ0bkhqHst6Zi1zhordpkQ7n 7csEHG9W9iXPC7nrrs7Wj9+q/BvMJuKa7Z4gf+SS/Flv2RIo8Rd63wUF8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMh869Zizsqve3DJZ5FP0G7yC3f5MB8GA1UdIwQY MBaAFHG93q8PMPva+edbkqx9W9E/KF3nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUt NDc3MjMxMTkxYTM1LzEveUh6cjFtTE95cTk3Y01sbmtVX1FidklMZF9rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUtNDc3MjMxMTkxYTM1 LzEvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQixMA0G CSqGSIb3DQEBCwUAA4IBAQBwzlGLhdLUQN8L3Jm9w05JGL0GS5d4k/gnn/bXoeej xaVqF2hi7c0UtUzqo5S3YhsTkzRgnsvEGFscHRWJYcuzFFPltswx98qxMjwIQEhd E/QMj1oFgutxLhGPxmSLh7Bmuht3QcRAg9zRIJZAY9wlzx4/os8+7mk1ENc76vw8 hdXrSvUf0qgSdrN0d7B4AJNt0uvDkZK6leNhL4HhyOiDiqLmsktWIgfRUGnCGTvh +jHPhxvNTngkQBbkTbso+OPoPNqLAuovax263W2GxLtHWQfoacr+fTJITKfUCBoS f2mX5MlnbLNN1SdGQ+Z6fRRBWLX51eqJSm2wD6y0EJhW -----END CERTIFICATE-----Generated at Sun Jan 25 20:29:54 2026 by rpki-client