This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-n7EdeFX20C6cFMyJ6Y5HWVMQU4.roa File: 1-n7EdeFX20C6cFMyJ6Y5HWVMQU4.roa (raw, json) Hash identifier: suKN0U6xP/FTkPKNJxFCA4VBUPU7v0a/LfB27Kibl1k= Subject key identifier: FA:7E:C4:75:E1:57:DB:40:BA:70:53:32:27:A6:39:1D:65:4C:41:4E Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Certificate serial: 019B7AC956084813DA111541155BECC9861A Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-n7EdeFX20C6cFMyJ6Y5HWVMQU4.roa Signing time: Thu 01 Jan 2026 18:19:33 +0000 ROA not before: Thu 01 Jan 2026 18:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47516 IP address blocks: 45.143.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:56:08:48:13:da:11:15:41:15:5b:ec:c9:86:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Validity Not Before: Jan 1 18:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa7ec475e157db40ba70533227a6391d654c414e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a3:d3:75:d6:37:07:dd:a4:d6:e3:0d:21:ea: dd:61:5e:34:1f:b5:72:bb:08:88:d3:3f:3d:76:66: b3:bb:13:ee:b7:ae:02:5a:db:ad:aa:0b:d8:f9:ae: 9a:47:a0:56:f2:e7:11:c8:09:1f:19:cb:f5:d4:cf: b7:9c:69:60:51:e5:3c:67:a7:4c:67:bb:1c:c9:8e: c2:66:84:8a:30:a3:4b:2b:f2:f6:34:7e:58:3c:b8: c7:7e:59:f6:2e:14:27:09:07:d4:2e:1c:18:62:77: c1:c1:96:3a:a6:7a:ad:38:a7:0c:04:9e:14:d1:af: 72:0f:5c:88:60:91:91:f5:4c:04:c8:67:83:cd:55: 92:03:cf:12:90:87:ac:8c:00:95:2e:26:ee:55:07: 20:78:cf:89:2d:ab:85:5b:92:71:cb:37:9a:3b:87: f2:7c:63:f6:c1:92:c9:61:82:ed:95:9b:65:e4:92: 0f:f1:99:65:2d:bb:ba:2d:63:0b:67:0c:77:23:8f: 14:41:f6:28:98:a0:d3:b0:0d:01:27:fa:86:0c:f1: ed:62:64:0f:c0:11:47:46:6b:30:ef:4c:73:68:05: fc:b0:55:a0:42:f6:01:32:3f:17:a6:5f:ee:f2:45: f1:8a:26:7f:1b:ce:bc:f0:f0:ea:81:98:94:bd:5f: 4a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:7E:C4:75:E1:57:DB:40:BA:70:53:32:27:A6:39:1D:65:4C:41:4E X509v3 Authority Key Identifier: keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-n7EdeFX20C6cFMyJ6Y5HWVMQU4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.4.0/24 Signature Algorithm: sha256WithRSAEncryption 57:69:98:51:3f:9c:83:a9:2b:2f:17:99:06:89:b6:63:3c:2f: 9e:3e:ed:46:17:77:3b:9d:9b:7a:39:d9:c1:84:c8:41:c1:74: f1:57:5a:a6:7e:a4:55:de:ac:c8:4b:f4:30:c8:bf:41:3a:cc: ca:7c:2c:43:e9:d3:56:79:81:cf:4e:a7:77:89:4c:63:9b:6c: 0b:9f:35:a0:4c:72:57:d1:3d:90:be:b8:c4:c1:a5:3a:6b:dc: 3f:85:cb:41:ce:15:ae:c6:90:04:0c:ae:07:bd:3b:a1:f8:42: 6a:66:a3:31:5d:c0:d0:84:43:b2:15:f5:7a:6e:b4:4c:3b:fe: d8:b2:c0:25:84:78:b9:db:28:26:8d:4c:af:e7:67:aa:a4:d2: 8e:16:24:03:71:31:38:71:da:ac:26:c2:13:f0:93:54:53:4b: e6:89:73:21:e1:3c:cd:a3:40:32:3c:01:6f:1f:1a:aa:4c:78: ee:00:99:27:d3:c9:6c:89:7c:fa:2d:d8:c6:42:2e:f9:d8:1f: 63:eb:e7:49:1f:fe:5d:3a:31:a7:40:36:47:12:26:41:c0:09: d0:c3:f9:75:3f:2e:0a:7c:0b:85:3c:1b:bf:7d:96:21:f3:9d: 1e:4a:4c:01:0e:97:5d:6c:3f:81:4f:2a:bb:5c:c2:e6:37:d1: 53:90:72:9c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6yVYISBPaERVBFVvsyYYaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3 Y2Q0MjMwHhcNMjYwMTAxMTgxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTdlYzQ3NWUxNTdkYjQwYmE3MDUzMzIyN2E2MzkxZDY1NGM0MTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qPTddY3B92k1uMNIerdYV40H7Vy uwiI0z89dmazuxPut64CWtutqgvY+a6aR6BW8ucRyAkfGcv11M+3nGlgUeU8Z6dM Z7scyY7CZoSKMKNLK/L2NH5YPLjHfln2LhQnCQfULhwYYnfBwZY6pnqtOKcMBJ4U 0a9yD1yIYJGR9UwEyGeDzVWSA88SkIesjACVLibuVQcgeM+JLauFW5JxyzeaO4fy fGP2wZLJYYLtlZtl5JIP8ZllLbu6LWMLZwx3I48UQfYomKDTsA0BJ/qGDPHtYmQP wBFHRmsw70xzaAX8sFWgQvYBMj8Xpl/u8kXxiiZ/G8688PDqgZiUvV9KRwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPp+xHXhV9tAunBTMiemOR1lTEFOMB8GA1UdIwQY MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli LWExYjdjZWVmYTE2Yy8xLzEtbjdFZGVGWDIwQzZjRk15SjZZNUhXVk1RVTQucm9h MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxULzRlLzgyMjQwMC0zMjQ4LTQ3MDItYjI5Yi1hMWI3Y2VlZmEx NmMvMS8xLUdVYkVaVHhMcGpuRFQybmp2NU4wa1o4MUNNLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY8E MA0GCSqGSIb3DQEBCwUAA4IBAQBXaZhRP5yDqSsvF5kGibZjPC+ePu1GF3c7nZt6 OdnBhMhBwXTxV1qmfqRV3qzIS/QwyL9BOszKfCxD6dNWeYHPTqd3iUxjm2wLnzWg THJX0T2QvrjEwaU6a9w/hctBzhWuxpAEDK4HvTuh+EJqZqMxXcDQhEOyFfV6brRM O/7YssAlhHi52ygmjUyv52eqpNKOFiQDcTE4cdqsJsIT8JNUU0vmiXMh4TzNo0Ay PAFvHxqqTHjuAJkn08lsiXz6LdjGQi752B9j6+dJH/5dOjGnQDZHEiZBwAnQw/l1 Py4KfAuFPBu/fZYh850eSkwBDpddbD+BTyq7XMLmN9FTkHKc -----END CERTIFICATE-----Generated at Sun Jan 25 16:11:13 2026 by rpki-client