This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/cQJLykBOqMGgV5KV9rcPZr-_U1Y.roa File: cQJLykBOqMGgV5KV9rcPZr-_U1Y.roa (raw, json) Hash identifier: aOQV+i/NapnfOnLvAQ3Zr9czxxA22kZuub947U3fZRw= Subject key identifier: 71:02:4B:CA:40:4E:A8:C1:A0:57:92:95:F6:B7:0F:66:BF:BF:53:56 Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Certificate serial: 019B7AC959857FB2517A574A016A887BB46C Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/cQJLykBOqMGgV5KV9rcPZr-_U1Y.roa Signing time: Thu 01 Jan 2026 18:19:34 +0000 ROA not before: Thu 01 Jan 2026 18:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 268624 IP address blocks: 45.143.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:59:85:7f:b2:51:7a:57:4a:01:6a:88:7b:b4:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Validity Not Before: Jan 1 18:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71024bca404ea8c1a0579295f6b70f66bfbf5356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f6:19:8d:a1:1a:b2:3f:d7:c0:d6:19:ae:5e: 0e:95:a6:1a:4b:a7:60:25:a1:3e:0f:b9:46:74:06: ff:6d:73:4a:20:34:a1:a7:29:63:64:a4:12:0a:f9: 7e:ed:ed:90:eb:da:2e:50:ec:6d:07:49:86:00:00: d0:76:42:ce:5d:b3:24:37:68:39:2d:50:4c:28:3e: ae:9c:83:65:26:1f:fb:a9:9c:93:20:75:73:52:fc: a4:8c:0c:d3:2a:62:f5:86:3f:d8:6e:90:f3:36:a6: 27:32:de:1a:96:42:02:a9:c3:df:41:29:eb:8c:38: 7e:df:ba:03:bf:09:90:cc:84:12:32:c0:2e:67:1e: a3:0b:0e:5a:cc:ce:75:1d:1c:1b:0d:a3:bb:4e:00: 3c:5f:56:0a:39:6f:1b:62:b3:38:09:c6:be:94:e9: 13:8f:47:7e:26:de:b7:5b:04:6e:85:3f:5a:60:02: 5f:09:8c:c0:aa:3c:f8:14:7c:26:1b:e1:c3:a9:1d: ed:d7:9d:81:3c:42:0b:67:31:08:30:6b:53:01:4e: 12:8a:88:28:b1:a9:17:a1:60:b0:84:ee:d8:ed:5e: df:f9:2e:d6:b6:b7:c8:3b:23:19:24:f0:fa:4b:dc: 44:20:fa:4f:8e:37:e5:c6:8c:c4:fb:00:c1:91:52: 0e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:02:4B:CA:40:4E:A8:C1:A0:57:92:95:F6:B7:0F:66:BF:BF:53:56 X509v3 Authority Key Identifier: keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/cQJLykBOqMGgV5KV9rcPZr-_U1Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.7.0/24 Signature Algorithm: sha256WithRSAEncryption 01:29:66:c6:5f:95:24:40:83:db:d8:ee:24:0f:cc:a2:0a:4a: 61:ac:41:7d:ea:7e:1e:88:f8:d8:6b:6f:eb:3b:f9:36:8b:65: 87:47:3c:c7:7f:63:65:ee:f6:2e:64:f8:11:41:f2:d3:c1:62: ac:79:50:cb:b7:d4:be:cf:d5:91:f7:ba:aa:6c:01:ae:31:5b: 59:7a:16:e5:d8:bb:9a:a7:2c:86:37:cb:a3:21:dd:5b:78:70: bd:0a:00:7d:d2:4a:78:df:9b:8f:49:75:4d:4c:79:3e:9a:96: 63:7f:69:c2:5c:f3:51:4e:05:34:26:35:68:ea:7c:70:85:c5: 2d:9e:ec:84:e6:df:ac:89:16:a6:a6:fe:7f:be:7e:7a:5e:67: b4:de:fd:ac:71:a8:9c:b3:1c:c7:b3:32:2b:84:8e:f7:c9:d2: 7e:85:b1:ea:ab:d6:79:b8:92:be:72:c8:e9:bf:c7:f3:93:3a: 6c:4b:45:8f:9d:8b:e8:eb:9c:30:f6:8d:31:e0:5c:41:04:13: 8b:ba:82:8b:a2:da:e6:5e:28:f4:bd:5c:e6:1c:a2:b7:aa:22: 13:20:44:89:ff:68:05:be:db:01:52:c4:30:4d:ab:f7:b9:34: fc:6c:f8:25:5b:a9:2a:8f:00:ea:58:75:7c:78:57:cc:e4:e0: f2:1e:7a:d5 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt6yVmFf7JReldKAWqIe7RsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3 Y2Q0MjMwHhcNMjYwMTAxMTgxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTAyNGJjYTQwNGVhOGMxYTA1NzkyOTVmNmI3MGY2NmJmYmY1MzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvYZjaEasj/XwNYZrl4OlaYaS6dg JaE+D7lGdAb/bXNKIDShpyljZKQSCvl+7e2Q69ouUOxtB0mGAADQdkLOXbMkN2g5 LVBMKD6unINlJh/7qZyTIHVzUvykjAzTKmL1hj/YbpDzNqYnMt4alkICqcPfQSnr jDh+37oDvwmQzIQSMsAuZx6jCw5azM51HRwbDaO7TgA8X1YKOW8bYrM4Cca+lOkT j0d+Jt63WwRuhT9aYAJfCYzAqjz4FHwmG+HDqR3t152BPEILZzEIMGtTAU4Siogo sakXoWCwhO7Y7V7f+S7WtrfIOyMZJPD6S9xEIPpPjjflxozE+wDBkVIOCQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFHECS8pATqjBoFeSlfa3D2a/v1NWMB8GA1UdIwQY MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli LWExYjdjZWVmYTE2Yy8xL2NRSkx5a0JPcU1HZ1Y1S1Y5cmNQWnItX1UxWS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2 Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtjwcw DQYJKoZIhvcNAQELBQADggEBAAEpZsZflSRAg9vY7iQPzKIKSmGsQX3qfh6I+Nhr b+s7+TaLZYdHPMd/Y2Xu9i5k+BFB8tPBYqx5UMu31L7P1ZH3uqpsAa4xW1l6FuXY u5qnLIY3y6Mh3Vt4cL0KAH3SSnjfm49JdU1MeT6almN/acJc81FOBTQmNWjqfHCF xS2e7ITm36yJFqam/n++fnpeZ7Te/axxqJyzHMezMiuEjvfJ0n6Fseqr1nm4kr5y yOm/x/OTOmxLRY+di+jrnDD2jTHgXEEEE4u6goui2uZeKPS9XOYcoreqIhMgRIn/ aAW+2wFSxDBNq/e5NPxs+CVbqSqPAOpYdXx4V8zk4PIeetU= -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:36 2026 by rpki-client