This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/5w2GQsmluME7TY1nPdqfrlgiIhU.roa File: 5w2GQsmluME7TY1nPdqfrlgiIhU.roa (raw, json) Hash identifier: YsFPorWldlvTTXN7yy0IuoUUD15lyphFyE2sSDvKCEA= Subject key identifier: E7:0D:86:42:C9:A5:B8:C1:3B:4D:8D:67:3D:DA:9F:AE:58:22:22:15 Certificate issuer: /CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b Certificate serial: 019B7AC7AB38444D3980733151F13EF29EFC Authority key identifier: 4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/5w2GQsmluME7TY1nPdqfrlgiIhU.roa Signing time: Thu 01 Jan 2026 18:17:44 +0000 ROA not before: Thu 01 Jan 2026 18:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50316 IP address blocks: 45.82.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/S-zMnRp26RRpy2OxK_cl1966-xs.crl rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/S-zMnRp26RRpy2OxK_cl1966-xs.mft rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:ab:38:44:4d:39:80:73:31:51:f1:3e:f2:9e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b Validity Not Before: Jan 1 18:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e70d8642c9a5b8c13b4d8d673dda9fae58222215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ed:11:74:c8:64:7f:d2:bb:c9:36:53:77:01: 0d:4f:54:44:72:b9:44:28:49:3e:06:04:9f:c2:8a: be:cf:fd:7e:3a:b8:7c:c0:48:52:ef:8c:ab:5f:5c: 19:ed:25:39:91:f1:25:cc:70:0a:38:c4:72:66:e6: f1:99:37:ca:7a:e0:6a:dc:e4:d4:0e:13:4b:d5:05: 49:4c:e5:8e:43:ca:09:97:fa:bd:90:b1:e7:2e:2e: b2:e4:11:b2:5e:4c:dd:d3:ae:b1:fb:ba:3b:1a:0d: eb:86:06:07:c1:21:7d:84:48:4f:2a:bc:4e:c0:c9: 0f:07:db:04:f5:b3:98:8d:5b:7b:d3:f4:b6:8a:77: d0:86:8c:0d:3f:09:c6:28:f3:8e:6a:47:05:cc:10: 25:dc:30:a9:68:f1:81:1e:8d:db:9a:13:0e:ae:c1: 1b:84:bd:0c:2e:83:21:b5:bf:f7:e1:1c:2d:fa:c2: a8:9a:06:a7:72:cd:39:60:76:fb:4a:a6:13:82:38: 74:3a:2a:82:4a:7b:cc:f1:3f:8e:a1:e2:c1:b2:b8: 23:a2:b6:62:97:7a:b5:58:49:06:b9:8c:81:59:90: ce:0a:82:16:b3:ac:23:66:88:a0:33:23:fd:cd:7a: b0:14:b9:f0:36:6b:d6:ac:8c:a3:37:69:cb:99:4e: 30:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0D:86:42:C9:A5:B8:C1:3B:4D:8D:67:3D:DA:9F:AE:58:22:22:15 X509v3 Authority Key Identifier: keyid:4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/5w2GQsmluME7TY1nPdqfrlgiIhU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/S-zMnRp26RRpy2OxK_cl1966-xs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.82.202.0/24 Signature Algorithm: sha256WithRSAEncryption 42:76:06:06:fe:71:74:19:50:ee:1d:63:d2:30:b1:75:c8:68: ff:7b:87:b3:d2:ff:ca:3d:8c:ca:5e:08:68:90:4b:90:90:d9: 94:77:53:57:24:c1:da:f5:19:27:7c:d9:10:9d:19:6f:49:c8: 39:ad:cb:56:b1:71:3e:ca:3f:38:dd:90:ed:af:b5:8f:e5:7c: d0:31:0e:59:90:f9:a4:e9:4f:99:ca:cc:e2:50:4a:9d:2b:59: 86:b4:38:d4:f8:31:02:90:2b:ed:f0:dc:30:d4:48:e2:23:af: 51:92:e4:a2:43:f8:13:c4:3a:8a:9c:f9:e2:ab:f6:f4:84:2c: 5b:3d:75:73:e6:2f:b4:fa:97:76:42:2a:5d:53:47:97:e9:c8: 6c:69:ad:9f:61:8d:07:7d:9a:41:b9:ba:fc:f1:0d:67:84:d1: 80:0e:c6:5f:f3:f8:a4:cc:e6:da:e7:95:97:05:42:56:8c:df: af:b0:b2:be:27:20:84:15:a6:20:38:dc:7e:0f:bc:e8:42:ae: d1:7c:17:a7:91:10:17:40:ae:94:32:b0:2b:07:43:9c:9e:5d: c5:da:21:4a:87:90:a8:d8:31:52:03:ee:7e:fc:7b:b8:83:51: 0b:24:cc:d3:95:5c:48:d6:86:92:8d:c5:c0:63:25:a0:30:9e: d0:1f:d2:49 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x6s4RE05gHMxUfE+8p78MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiZWNjYzlkMWE3NmU5MTQ2OWNiNjNiMTJiZjcyNWQ3ZGVi YWZiMWIwHhcNMjYwMTAxMTgxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzBkODY0MmM5YTViOGMxM2I0ZDhkNjczZGRhOWZhZTU4MjIyMjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyO0RdMhkf9K7yTZTdwENT1REcrlE KEk+BgSfwoq+z/1+Orh8wEhS74yrX1wZ7SU5kfElzHAKOMRyZubxmTfKeuBq3OTU DhNL1QVJTOWOQ8oJl/q9kLHnLi6y5BGyXkzd066x+7o7Gg3rhgYHwSF9hEhPKrxO wMkPB9sE9bOYjVt70/S2infQhowNPwnGKPOOakcFzBAl3DCpaPGBHo3bmhMOrsEb hL0MLoMhtb/34Rwt+sKomgancs05YHb7SqYTgjh0OiqCSnvM8T+OoeLBsrgjorZi l3q1WEkGuYyBWZDOCoIWs6wjZoigMyP9zXqwFLnwNmvWrIyjN2nLmU4wKQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOcNhkLJpbjBO02NZz3an65YIiIVMB8GA1UdIwQY MBaAFEvszJ0adukUactjsSv3JdfeuvsbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUy16TW5ScDI2UlJweTJPeEtfY2wxOTY2LXhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NjhmMTQtYTcyMS00NmYwLTkxOTkt NGY0Yjk5NGUwZWIyLzEvNXcyR1FzbWx1TUU3VFkxblBkcWZybGdpSWhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS83NjhmMTQtYTcyMS00NmYwLTkxOTktNGY0Yjk5NGUwZWIy LzEvUy16TW5ScDI2UlJweTJPeEtfY2wxOTY2LXhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVLKMA0G CSqGSIb3DQEBCwUAA4IBAQBCdgYG/nF0GVDuHWPSMLF1yGj/e4ez0v/KPYzKXgho kEuQkNmUd1NXJMHa9RknfNkQnRlvScg5rctWsXE+yj843ZDtr7WP5XzQMQ5ZkPmk 6U+ZysziUEqdK1mGtDjU+DECkCvt8Nww1EjiI69RkuSiQ/gTxDqKnPniq/b0hCxb PXVz5i+0+pd2QipdU0eX6chsaa2fYY0HfZpBubr88Q1nhNGADsZf8/ikzOba55WX BUJWjN+vsLK+JyCEFaYgONx+D7zoQq7RfBenkRAXQK6UMrArB0Ocnl3F2iFKh5Co 2DFSA+5+/Hu4g1ELJMzTlVxI1oaSjcXAYyWgMJ7QH9JJ -----END CERTIFICATE-----Generated at Mon Jan 26 04:54:57 2026 by rpki-client