This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/dPW253uLNkMC6hq3xNGknvYUUCk.roa File: dPW253uLNkMC6hq3xNGknvYUUCk.roa (raw, json) Hash identifier: lFOPNOmhkr/l52mg27uVNBuUyHirwJeRRAr2NLCO680= Subject key identifier: 74:F5:B6:E7:7B:8B:36:43:02:EA:1A:B7:C4:D1:A4:9E:F6:14:50:29 Certificate issuer: /CN=b0dfafd36730396fe338e772dadbe4c3c85cd952 Certificate serial: 019B7CECB782994FCF16B162B079E998D679 Authority key identifier: B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/dPW253uLNkMC6hq3xNGknvYUUCk.roa Signing time: Fri 02 Jan 2026 04:17:26 +0000 ROA not before: Fri 02 Jan 2026 04:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31287 IP address blocks: 45.66.44.0/24 maxlen: 24 45.66.45.0/24 maxlen: 24 45.66.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/sN-v02cwOW_jOOdy2tvkw8hc2VI.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/sN-v02cwOW_jOOdy2tvkw8hc2VI.mft rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:b7:82:99:4f:cf:16:b1:62:b0:79:e9:98:d6:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0dfafd36730396fe338e772dadbe4c3c85cd952 Validity Not Before: Jan 2 04:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74f5b6e77b8b364302ea1ab7c4d1a49ef6145029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0f:b6:0e:0b:6b:9d:82:c7:5c:a9:50:2a:89: cf:41:25:84:0e:71:0f:a5:9f:b5:ef:42:98:f7:f6: 79:fb:49:8e:2e:6a:37:04:f6:de:89:2c:19:5e:90: 9e:2e:8a:89:b3:de:15:68:e2:ab:0e:38:13:d2:44: c8:e4:76:46:7d:2d:ba:f0:09:78:7d:a4:3e:56:16: c7:98:d2:47:ef:3c:2b:7d:58:a8:68:cc:b8:0a:39: 1e:b6:0d:84:47:0b:e5:f9:cb:dc:dc:e9:2b:79:ee: 3a:48:77:07:32:a6:a6:c5:a7:52:83:a7:27:ed:59: 0a:ba:bf:8b:33:ac:50:12:93:1a:ec:f1:07:59:1b: 5f:c1:52:d3:3a:26:08:73:9f:92:a4:69:06:26:da: 00:91:c3:70:de:17:e9:6b:b3:7f:c7:fa:e8:7d:6b: 7c:e8:c0:64:cc:9c:0b:27:5a:e6:f7:2a:72:b8:4a: b6:6d:61:67:f5:8d:14:3f:c3:cf:9a:0b:3d:8d:af: 30:02:01:2d:44:25:6d:01:72:95:5c:aa:a1:06:ed: af:51:64:e0:ab:ff:0a:64:23:43:71:54:9e:f1:bd: 4c:52:1d:a2:99:eb:7a:7d:a8:36:00:27:d1:0b:8a: 67:53:eb:af:9d:b8:bc:5a:70:4d:86:18:2f:e3:22: c5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F5:B6:E7:7B:8B:36:43:02:EA:1A:B7:C4:D1:A4:9E:F6:14:50:29 X509v3 Authority Key Identifier: keyid:B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/dPW253uLNkMC6hq3xNGknvYUUCk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/sN-v02cwOW_jOOdy2tvkw8hc2VI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.66.44.0/23 45.66.47.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:29:58:9b:bd:96:99:d7:4a:43:ef:62:d0:a0:fe:af:dd:16: 77:f6:55:fe:08:62:2f:02:59:ef:58:da:69:6f:20:0f:85:e9: bf:b0:08:87:c6:7a:eb:bc:86:91:a4:13:d9:7b:80:9c:ca:8a: fd:f5:99:d6:26:7e:4e:ff:4e:4b:2f:e7:4e:a2:5c:fd:34:e8: 2e:b2:3a:28:00:0c:83:9b:9b:a0:55:31:15:f5:bc:5a:59:29: ac:29:7f:75:bc:e4:20:76:e2:46:46:10:de:68:c1:82:4e:f4: c6:5b:3d:6f:b9:1f:f5:b8:d0:d3:58:04:3c:05:d2:a4:8e:84: f9:4e:d4:80:e5:93:4d:74:b3:4f:1a:5b:3e:7e:1b:a3:61:c2: c3:81:96:cd:74:60:df:8d:36:39:50:32:97:d3:5d:3e:68:61: df:bb:ad:c5:24:da:06:b7:e2:7f:da:14:2b:db:6f:02:73:95: 43:ae:3b:a3:69:92:d2:19:0e:30:6e:06:0c:9b:f6:d3:82:f7: ee:51:5e:10:04:85:37:45:15:4c:ed:1d:19:be:7e:85:d9:b9: 6e:c6:da:af:cf:1e:71:bd:cf:e9:27:50:d0:fb:f2:0a:57:a6: c1:fb:6b:12:ec:ad:c9:3c:fb:87:08:6e:c3:3a:5d:88:17:32: 13:b3:ae:c4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87LeCmU/PFrFisHnpmNZ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwZGZhZmQzNjczMDM5NmZlMzM4ZTc3MmRhZGJlNGMzYzg1 Y2Q5NTIwHhcNMjYwMTAyMDQxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGY1YjZlNzdiOGIzNjQzMDJlYTFhYjdjNGQxYTQ5ZWY2MTQ1MDI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApw+2DgtrnYLHXKlQKonPQSWEDnEP pZ+170KY9/Z5+0mOLmo3BPbeiSwZXpCeLoqJs94VaOKrDjgT0kTI5HZGfS268Al4 faQ+VhbHmNJH7zwrfVioaMy4Cjketg2ERwvl+cvc3Okree46SHcHMqamxadSg6cn 7VkKur+LM6xQEpMa7PEHWRtfwVLTOiYIc5+SpGkGJtoAkcNw3hfpa7N/x/rofWt8 6MBkzJwLJ1rm9ypyuEq2bWFn9Y0UP8PPmgs9ja8wAgEtRCVtAXKVXKqhBu2vUWTg q/8KZCNDcVSe8b1MUh2imet6fag2ACfRC4pnU+uvnbi8WnBNhhgv4yLFXwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHT1tud7izZDAuoat8TRpJ72FFApMB8GA1UdIwQY MBaAFLDfr9NnMDlv4zjnctrb5MPIXNlSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc04tdjAyY3dPV19qT09keTJ0dmt3OGhjMlZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mNjk2ZmQtNGQ5ZC00ZTI4LTkyNmUt MGFhNWI0NmJmOGFhLzEvZFBXMjUzdUxOa01DNmhxM3hOR2tudllVVUNrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9mNjk2ZmQtNGQ5ZC00ZTI4LTkyNmUtMGFhNWI0NmJmOGFh LzEvc04tdjAyY3dPV19qT09keTJ0dmt3OGhjMlZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLUIsAwQA LUIvMA0GCSqGSIb3DQEBCwUAA4IBAQCbKVibvZaZ10pD72LQoP6v3RZ39lX+CGIv AlnvWNppbyAPhem/sAiHxnrrvIaRpBPZe4Ccyor99ZnWJn5O/05LL+dOolz9NOgu sjooAAyDm5ugVTEV9bxaWSmsKX91vOQgduJGRhDeaMGCTvTGWz1vuR/1uNDTWAQ8 BdKkjoT5TtSA5ZNNdLNPGls+fhujYcLDgZbNdGDfjTY5UDKX010+aGHfu63FJNoG t+J/2hQr228Cc5VDrjujaZLSGQ4wbgYMm/bTgvfuUV4QBIU3RRVM7R0Zvn6F2blu xtqvzx5xvc/pJ1DQ+/IKV6bB+2sS7K3JPPuHCG7DOl2IFzITs67E -----END CERTIFICATE-----Generated at Sun Jan 25 12:18:04 2026 by rpki-client