This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/d8f8cf-188a-4bd0-8dba-41e7fba6d6e1/1/1KnU7H_UVe-XpNapFYFQEn0LJJQ.roa File: 1KnU7H_UVe-XpNapFYFQEn0LJJQ.roa (raw, json) Hash identifier: cUtUMg5M4fjhGoVm34BuVn+17rIs5yEOOCki02p10ww= Subject key identifier: D4:A9:D4:EC:7F:D4:55:EF:97:A4:D6:A9:15:81:50:12:7D:0B:24:94 Certificate issuer: /CN=d29dc792adfcfe88c79e7958fbfec525630b62f9 Certificate serial: 019B7CEE63A55848CB183EE4E7088DCAA51A Authority key identifier: D2:9D:C7:92:AD:FC:FE:88:C7:9E:79:58:FB:FE:C5:25:63:0B:62:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0p3Hkq38_ojHnnlY-_7FJWMLYvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/d8f8cf-188a-4bd0-8dba-41e7fba6d6e1/1/1KnU7H_UVe-XpNapFYFQEn0LJJQ.roa Signing time: Fri 02 Jan 2026 04:19:16 +0000 ROA not before: Fri 02 Jan 2026 04:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60757 IP address blocks: 45.132.84.0/24 maxlen: 24 45.143.89.0/24 maxlen: 24 45.143.91.0/24 maxlen: 24 85.92.120.0/24 maxlen: 24 85.92.121.0/24 maxlen: 24 85.92.122.0/24 maxlen: 24 85.92.123.0/24 maxlen: 24 185.217.188.0/24 maxlen: 24 185.217.189.0/24 maxlen: 24 185.217.190.0/23 maxlen: 23 185.217.190.0/24 maxlen: 24 185.217.191.0/24 maxlen: 24 2a0d:bcc0::/32 maxlen: 48 2a0d:bcc1::/32 maxlen: 48 2a0d:bcc2::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/d8f8cf-188a-4bd0-8dba-41e7fba6d6e1/1/0p3Hkq38_ojHnnlY-_7FJWMLYvk.crl rsync://rpki.ripe.net/repository/DEFAULT/36/d8f8cf-188a-4bd0-8dba-41e7fba6d6e1/1/0p3Hkq38_ojHnnlY-_7FJWMLYvk.mft rsync://rpki.ripe.net/repository/DEFAULT/0p3Hkq38_ojHnnlY-_7FJWMLYvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:63:a5:58:48:cb:18:3e:e4:e7:08:8d:ca:a5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d29dc792adfcfe88c79e7958fbfec525630b62f9 Validity Not Before: Jan 2 04:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4a9d4ec7fd455ef97a4d6a9158150127d0b2494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f3:33:99:25:bb:10:d2:d7:bf:31:92:29:92: da:2b:cf:24:b7:e4:5d:83:a3:8d:3b:fd:ee:6c:cd: 6d:a4:36:16:5e:b9:75:79:d1:2b:2b:41:60:33:51: a6:4a:e1:79:f6:59:13:35:b5:53:66:ed:9d:b7:88: 59:1b:ac:e7:42:21:89:1c:f4:43:e8:6e:5e:10:87: fe:51:d4:84:10:11:b8:cc:26:a8:9b:a8:90:80:21: d0:5e:cb:68:76:04:c0:88:a0:4c:25:cf:f6:0a:e8: db:4a:8c:40:56:46:e2:9e:7c:a7:bc:2b:46:af:55: b0:fd:f8:f5:2c:c0:03:da:7d:82:91:69:b7:13:3c: 4a:56:15:3c:36:26:59:d2:3f:10:d3:72:27:3d:e9: 38:b3:69:8a:b2:e0:aa:2e:30:8e:19:6e:c2:79:7b: 17:62:57:cd:36:c0:33:ee:2c:94:03:96:08:1d:e6: 4e:c0:e2:2f:13:9f:27:e8:5a:98:17:5e:6c:0d:f4: 70:f7:2f:31:c1:e5:93:97:d6:f7:58:07:19:91:8b: 47:0f:0d:5d:9f:62:f0:33:2a:60:d7:99:49:51:9e: ff:03:97:1e:23:33:b5:32:8e:88:43:03:71:cf:ed: e2:72:77:73:a7:c2:a9:95:35:e8:b8:4b:93:61:7e: 48:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A9:D4:EC:7F:D4:55:EF:97:A4:D6:A9:15:81:50:12:7D:0B:24:94 X509v3 Authority Key Identifier: keyid:D2:9D:C7:92:AD:FC:FE:88:C7:9E:79:58:FB:FE:C5:25:63:0B:62:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0p3Hkq38_ojHnnlY-_7FJWMLYvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d8f8cf-188a-4bd0-8dba-41e7fba6d6e1/1/1KnU7H_UVe-XpNapFYFQEn0LJJQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d8f8cf-188a-4bd0-8dba-41e7fba6d6e1/1/0p3Hkq38_ojHnnlY-_7FJWMLYvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.84.0/24 45.143.89.0/24 45.143.91.0/24 85.92.120.0/22 185.217.188.0/22 IPv6: 2a0d:bcc0::-2a0d:bcc2:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a4:31:d7:51:66:d4:62:45:20:6f:60:41:75:8f:cb:89:ad:43: e8:1b:7d:69:97:fd:a0:25:91:c3:cd:a7:cc:0a:cb:bd:7a:e5: 27:9b:f7:11:bd:f2:27:3a:d1:55:0e:0b:38:fd:d5:c8:c8:fb: 82:cb:f0:19:4f:0c:81:a2:ed:37:b9:da:03:b8:9c:e1:9b:1d: 64:ff:47:72:35:f4:c5:a2:38:6f:8c:27:02:8e:f3:a4:b9:9f: 26:57:72:03:29:2b:75:55:37:e0:90:70:82:96:2c:db:eb:51: 36:4a:41:f0:7b:64:af:88:b3:7a:d1:d1:4a:9b:96:c9:73:bd: 43:f7:d2:67:17:f8:18:4f:d2:82:33:46:4e:09:df:b7:26:2d: 11:ab:f5:9d:2d:08:40:d0:4b:64:77:08:53:cf:9c:38:b6:1c: 23:f7:b4:30:dd:e1:af:a6:b6:e0:28:e0:9d:59:a1:cf:4d:be: 49:6c:0c:c2:07:bc:cd:2c:44:c7:ff:56:da:17:e3:ec:20:b0: ac:2d:94:ae:94:39:70:a2:0d:00:2f:95:f6:39:7e:fa:34:31: 14:dd:1b:8d:12:8c:51:81:33:f8:87:1d:62:03:64:83:b1:23: d8:5f:90:34:32:8c:fc:28:52:00:83:41:10:a0:81:c1:eb:14: bc:18:f7:15 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt87mOlWEjLGD7k5wiNyqUaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyOWRjNzkyYWRmY2ZlODhjNzllNzk1OGZiZmVjNTI1NjMw YjYyZjkwHhcNMjYwMTAyMDQxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGE5ZDRlYzdmZDQ1NWVmOTdhNGQ2YTkxNTgxNTAxMjdkMGIyNDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfMzmSW7ENLXvzGSKZLaK88kt+Rd g6ONO/3ubM1tpDYWXrl1edErK0FgM1GmSuF59lkTNbVTZu2dt4hZG6znQiGJHPRD 6G5eEIf+UdSEEBG4zCaom6iQgCHQXstodgTAiKBMJc/2CujbSoxAVkbinnynvCtG r1Ww/fj1LMAD2n2CkWm3EzxKVhU8NiZZ0j8Q03InPek4s2mKsuCqLjCOGW7CeXsX YlfNNsAz7iyUA5YIHeZOwOIvE58n6FqYF15sDfRw9y8xweWTl9b3WAcZkYtHDw1d n2LwMypg15lJUZ7/A5ceIzO1Mo6IQwNxz+3icndzp8KplTXouEuTYX5IEQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFNSp1Ox/1FXvl6TWqRWBUBJ9CySUMB8GA1UdIwQY MBaAFNKdx5Kt/P6Ix555WPv+xSVjC2L5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHAzSGtxMzhfb2pIbm5sWS1fN0ZKV01MWXZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kOGY4Y2YtMTg4YS00YmQwLThkYmEt NDFlN2ZiYTZkNmUxLzEvMUtuVTdIX1VWZS1YcE5hcEZZRlFFbjBMSkpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9kOGY4Y2YtMTg4YS00YmQwLThkYmEtNDFlN2ZiYTZkNmUx LzEvMHAzSGtxMzhfb2pIbm5sWS1fN0ZKV01MWXZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjAkBAIAATAeAwQALYRUAwQA LY9ZAwQALY9bAwQCVVx4AwQCudm8MBYEAgACMBAwDgMFBioNvMADBQAqDbzCMA0G CSqGSIb3DQEBCwUAA4IBAQCkMddRZtRiRSBvYEF1j8uJrUPoG31pl/2gJZHDzafM Csu9euUnm/cRvfInOtFVDgs4/dXIyPuCy/AZTwyBou03udoDuJzhmx1k/0dyNfTF ojhvjCcCjvOkuZ8mV3IDKSt1VTfgkHCClizb61E2SkHwe2SviLN60dFKm5bJc71D 99JnF/gYT9KCM0ZOCd+3Ji0Rq/WdLQhA0EtkdwhTz5w4thwj97Qw3eGvprbgKOCd WaHPTb5JbAzCB7zNLETH/1baF+PsILCsLZSulDlwog0AL5X2OX76NDEU3RuNEoxR gTP4hx1iA2SDsSPYX5A0Moz8KFIAg0EQoIHB6xS8GPcV -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:29 2026 by rpki-client