This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/505iyhrOOU2Q_fBeoqtfWv2GNho.roa File: 505iyhrOOU2Q_fBeoqtfWv2GNho.roa (raw, json) Hash identifier: yj3rWCbTMvNId63YkvUyXewgDeaSxoAASwUuP7aFbJE= Subject key identifier: E7:4E:62:CA:1A:CE:39:4D:90:FD:F0:5E:A2:AB:5F:5A:FD:86:36:1A Certificate issuer: /CN=0b3969cdc0b5ff09d199bca5daddb9aab51040e7 Certificate serial: 019B7DCAE7CB22FBB6804BD675310ED33869 Authority key identifier: 0B:39:69:CD:C0:B5:FF:09:D1:99:BC:A5:DA:DD:B9:AA:B5:10:40:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzlpzcC1_wnRmbyl2t25qrUQQOc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/505iyhrOOU2Q_fBeoqtfWv2GNho.roa Signing time: Fri 02 Jan 2026 08:20:08 +0000 ROA not before: Fri 02 Jan 2026 08:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214719 IP address blocks: 45.8.124.0/24 maxlen: 24 45.8.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/CzlpzcC1_wnRmbyl2t25qrUQQOc.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/CzlpzcC1_wnRmbyl2t25qrUQQOc.mft rsync://rpki.ripe.net/repository/DEFAULT/CzlpzcC1_wnRmbyl2t25qrUQQOc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:e7:cb:22:fb:b6:80:4b:d6:75:31:0e:d3:38:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b3969cdc0b5ff09d199bca5daddb9aab51040e7 Validity Not Before: Jan 2 08:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e74e62ca1ace394d90fdf05ea2ab5f5afd86361a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b4:52:2d:bd:6c:b2:c5:64:2f:bc:e2:40:a8: f2:ac:f4:2d:7a:26:26:35:34:4b:b2:4a:7c:1e:10: 1e:4b:5f:e8:41:54:7d:54:42:f8:fa:8b:b0:b0:9c: 44:d2:f4:d9:5e:64:b6:ad:e0:82:71:93:fd:ee:0b: f4:cb:d8:e1:cf:6a:bd:d2:f6:ac:78:58:32:83:49: b7:56:29:16:15:5e:51:e0:67:ed:a8:f9:18:f1:ca: 1d:09:63:c2:31:37:91:01:67:a9:29:ae:59:d5:89: 39:29:20:80:8f:20:a6:7f:c0:12:b8:4a:70:ad:33: c8:f9:b3:32:26:3f:8b:89:25:21:d2:3d:c2:16:af: 5f:82:7b:df:56:b3:fa:f3:56:a4:b8:a8:7a:66:66: 80:68:37:db:dc:28:d1:7d:7f:4b:e4:8a:bf:bc:30: 9a:c8:5a:d4:7f:8d:e9:f2:91:11:6c:9c:21:d0:92: 5b:f9:10:4a:60:2b:e3:bb:49:e8:52:16:0c:90:e8: 92:a2:a9:a9:6e:7f:c9:45:f9:ca:d5:2a:69:88:63: d7:bc:fa:c0:66:95:c2:ba:3b:00:0e:d1:ab:fd:1f: b0:fc:74:1b:d3:7c:a9:3e:ee:fd:77:c9:0d:44:c9: 24:65:1d:55:6b:34:f3:60:24:0c:5e:bf:25:fc:5b: c6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4E:62:CA:1A:CE:39:4D:90:FD:F0:5E:A2:AB:5F:5A:FD:86:36:1A X509v3 Authority Key Identifier: keyid:0B:39:69:CD:C0:B5:FF:09:D1:99:BC:A5:DA:DD:B9:AA:B5:10:40:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzlpzcC1_wnRmbyl2t25qrUQQOc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/505iyhrOOU2Q_fBeoqtfWv2GNho.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/CzlpzcC1_wnRmbyl2t25qrUQQOc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.8.124.0/24 45.8.126.0/24 Signature Algorithm: sha256WithRSAEncryption 92:9a:94:1a:01:f4:d5:f2:3d:c5:13:dc:92:bc:5a:b3:53:ac: 3c:b5:26:a0:6c:56:cd:56:3f:63:a6:95:34:a4:3d:22:fe:66: 48:80:04:1c:22:d6:b7:09:0e:c1:11:93:e0:2c:49:5b:c8:e0: 38:be:0b:32:c3:ff:90:db:24:de:46:37:a0:3d:cd:7b:d6:3e: 8c:7c:fb:93:61:02:42:2a:32:64:0a:e7:3f:0b:1c:0b:b4:18: 2c:95:59:f1:a9:9d:4a:bc:56:83:75:d7:80:83:a5:75:ad:94: 87:d8:a9:24:7d:7e:f4:f1:48:40:be:28:04:b2:ce:35:ba:cf: 35:57:ef:0c:53:c2:86:f3:7f:e3:3c:88:0b:c4:14:a2:57:07: 26:49:0b:4f:c4:95:22:0c:d1:68:c8:f2:29:8c:00:36:fe:bf: b3:e9:ca:0b:c9:b3:2d:ca:0f:d4:38:ae:b3:d5:ac:8f:e7:62: 60:c9:ec:ac:66:28:bf:38:36:db:bc:0b:65:6f:1b:ba:9d:e8: ba:2b:cd:ff:79:f5:46:db:8b:d8:1d:35:92:60:5f:14:c2:14: 02:51:0d:05:ff:e0:ec:8d:2e:cd:0d:0d:58:af:57:ed:dd:85: cf:8c:1f:ad:46:65:c5:5f:d5:06:54:01:8c:12:0d:c2:33:b2: 50:5f:4e:40 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9yufLIvu2gEvWdTEO0zhpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiMzk2OWNkYzBiNWZmMDlkMTk5YmNhNWRhZGRiOWFhYjUx MDQwZTcwHhcNMjYwMTAyMDgyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzRlNjJjYTFhY2UzOTRkOTBmZGYwNWVhMmFiNWY1YWZkODYzNjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrRSLb1sssVkL7ziQKjyrPQteiYm NTRLskp8HhAeS1/oQVR9VEL4+ouwsJxE0vTZXmS2reCCcZP97gv0y9jhz2q90vas eFgyg0m3VikWFV5R4GftqPkY8codCWPCMTeRAWepKa5Z1Yk5KSCAjyCmf8ASuEpw rTPI+bMyJj+LiSUh0j3CFq9fgnvfVrP681akuKh6ZmaAaDfb3CjRfX9L5Iq/vDCa yFrUf43p8pERbJwh0JJb+RBKYCvju0noUhYMkOiSoqmpbn/JRfnK1SppiGPXvPrA ZpXCujsADtGr/R+w/HQb03ypPu79d8kNRMkkZR1VazTzYCQMXr8l/FvGdQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOdOYsoazjlNkP3wXqKrX1r9hjYaMB8GA1UdIwQY MBaAFAs5ac3Atf8J0Zm8pdrduaq1EEDnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3pscHpjQzFfd25SbWJ5bDJ0MjVxclVRUU9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9lZDUwMWEtNmVkNy00NTJkLThjNzYt NmJiNGZlZTg1NzM1LzEvNTA1aXlock9PVTJRX2ZCZW9xdGZXdjJHTmhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS9lZDUwMWEtNmVkNy00NTJkLThjNzYtNmJiNGZlZTg1NzM1 LzEvQ3pscHpjQzFfd25SbWJ5bDJ0MjVxclVRUU9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQh8AwQA LQh+MA0GCSqGSIb3DQEBCwUAA4IBAQCSmpQaAfTV8j3FE9ySvFqzU6w8tSagbFbN Vj9jppU0pD0i/mZIgAQcIta3CQ7BEZPgLElbyOA4vgsyw/+Q2yTeRjegPc171j6M fPuTYQJCKjJkCuc/CxwLtBgslVnxqZ1KvFaDddeAg6V1rZSH2KkkfX708UhAvigE ss41us81V+8MU8KG83/jPIgLxBSiVwcmSQtPxJUiDNFoyPIpjAA2/r+z6coLybMt yg/UOK6z1ayP52JgyeysZii/ODbbvAtlbxu6nei6K83/efVG24vYHTWSYF8UwhQC UQ0F/+DsjS7NDQ1Yr1ft3YXPjB+tRmXFX9UGVAGMEg3CM7JQX05A -----END CERTIFICATE-----Generated at Mon Jan 26 02:23:53 2026 by rpki-client