This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/bryZgTJJGS-FOz_HYLbqtaKw-po.roa File: bryZgTJJGS-FOz_HYLbqtaKw-po.roa (raw, json) Hash identifier: aiINGCzxZNhxZwQ5hoSWV6CWBgjNkR1DWd3FkVokojQ= Subject key identifier: 6E:BC:99:81:32:49:19:2F:85:3B:3F:C7:60:B6:EA:B5:A2:B0:FA:9A Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 019B7B36C677C7FEAE746E45D3528118CDB8 Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/bryZgTJJGS-FOz_HYLbqtaKw-po.roa Signing time: Thu 01 Jan 2026 20:19:05 +0000 ROA not before: Thu 01 Jan 2026 20:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397423 IP address blocks: 45.157.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:c6:77:c7:fe:ae:74:6e:45:d3:52:81:18:cd:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Jan 1 20:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ebc99813249192f853b3fc760b6eab5a2b0fa9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:87:54:0c:9b:83:fd:db:88:48:94:85:19:f9: 8f:40:66:81:87:ca:c7:76:ca:5b:30:f2:7c:b6:a6: 76:c9:33:e0:a2:e9:99:4a:fc:10:b3:ed:5c:3b:53: 80:59:78:ef:fe:8a:0a:66:57:32:e9:f8:f4:89:63: d6:32:e7:1f:93:a4:84:4b:1e:3b:3d:cb:63:c2:6c: 56:d3:a9:1d:71:1c:fe:c6:71:5c:27:c1:54:e5:65: 3d:0b:8d:80:b9:64:f9:a7:cb:c0:95:e3:62:6e:b8: 92:75:c2:42:c3:50:0f:5f:5a:5a:f7:ed:8a:40:7e: 19:b1:0d:4e:d2:de:6a:df:df:c7:28:77:d1:ed:cc: 7c:39:fc:97:43:92:9b:87:ba:cf:19:b8:a8:ed:41: 1e:55:a7:69:62:63:42:b4:20:dc:ae:ed:19:b8:ff: c0:7e:0b:ee:2f:b9:28:43:77:07:f4:9b:17:c7:1a: 32:c1:09:a1:34:ec:9b:57:cd:81:0b:89:13:23:eb: 58:c0:96:84:7b:4a:a1:e1:e4:ed:69:03:1d:bf:6a: 7b:c2:e7:c9:8a:f0:32:dc:1e:31:14:5a:7d:88:90: f6:12:d3:6f:84:d1:e5:55:a1:58:fe:d6:72:1c:12: 08:78:0b:ab:e9:7e:49:d3:6e:db:d3:fd:97:b2:a7: 60:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:BC:99:81:32:49:19:2F:85:3B:3F:C7:60:B6:EA:B5:A2:B0:FA:9A X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/bryZgTJJGS-FOz_HYLbqtaKw-po.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.210.0/24 Signature Algorithm: sha256WithRSAEncryption ce:5c:1d:34:9d:87:76:f4:65:c3:ed:85:eb:6c:9e:3f:47:e1: e3:3e:4b:d9:94:dd:b5:8b:04:65:53:85:61:a8:e8:f6:ea:29: 04:64:e8:a9:d9:27:28:36:24:dc:ee:7e:69:a3:71:f4:fd:93: 5d:32:1a:57:b7:59:a6:8d:6b:6d:6c:43:72:94:7b:41:24:20: 78:de:f3:33:52:9e:44:be:58:2b:86:cd:ed:4c:f2:a5:7c:19: 34:bb:1a:f3:df:9a:5c:3e:24:bb:b1:da:f6:1f:0a:65:cf:a4: 6e:94:56:bb:c1:79:9b:52:07:d4:39:79:a4:03:94:68:39:2c: 4b:cd:4a:df:18:16:58:e8:63:18:83:b6:55:0a:f1:5c:7f:bc: b9:a7:dd:12:4a:69:73:fc:c2:80:47:c4:54:a4:72:e7:e6:39: 2f:0e:90:4b:4c:fc:b5:da:f4:df:1e:42:a9:7a:0d:07:05:7f: 1a:4c:ca:08:e5:a2:4f:6a:57:a8:f9:55:34:0d:4e:ab:78:1e: 46:e0:5d:de:63:54:53:1e:b9:f6:93:70:e5:ea:b6:5f:11:f7: 01:cf:3c:e6:6f:20:7c:05:43:53:a9:3e:3c:ac:23:78:b9:d2: 0e:b9:49:05:77:9e:93:31:c4:19:ff:ae:20:5c:3b:b2:68:02: bf:11:9e:ef -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NsZ3x/6udG5F01KBGM24MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjYwMTAxMjAxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWJjOTk4MTMyNDkxOTJmODUzYjNmYzc2MGI2ZWFiNWEyYjBmYTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYdUDJuD/duISJSFGfmPQGaBh8rH dspbMPJ8tqZ2yTPgoumZSvwQs+1cO1OAWXjv/ooKZlcy6fj0iWPWMucfk6SESx47 PctjwmxW06kdcRz+xnFcJ8FU5WU9C42AuWT5p8vAleNibriSdcJCw1APX1pa9+2K QH4ZsQ1O0t5q39/HKHfR7cx8OfyXQ5Kbh7rPGbio7UEeVadpYmNCtCDcru0ZuP/A fgvuL7koQ3cH9JsXxxoywQmhNOybV82BC4kTI+tYwJaEe0qh4eTtaQMdv2p7wufJ ivAy3B4xFFp9iJD2EtNvhNHlVaFY/tZyHBIIeAur6X5J027b0/2XsqdgnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG68mYEySRkvhTs/x2C26rWisPqaMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvYnJ5WmdUSkpHUy1GT3pfSFlMYnF0YUt3LXBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ3SMA0G CSqGSIb3DQEBCwUAA4IBAQDOXB00nYd29GXD7YXrbJ4/R+HjPkvZlN21iwRlU4Vh qOj26ikEZOip2ScoNiTc7n5po3H0/ZNdMhpXt1mmjWttbENylHtBJCB43vMzUp5E vlgrhs3tTPKlfBk0uxrz35pcPiS7sdr2Hwplz6RulFa7wXmbUgfUOXmkA5RoOSxL zUrfGBZY6GMYg7ZVCvFcf7y5p90SSmlz/MKAR8RUpHLn5jkvDpBLTPy12vTfHkKp eg0HBX8aTMoI5aJPaleo+VU0DU6reB5G4F3eY1RTHrn2k3Dl6rZfEfcBzzzmbyB8 BUNTqT48rCN4udIOuUkFd56TMcQZ/64gXDuyaAK/EZ7v -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:17 2026 by rpki-client