This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/oXIlo_Sv8_QTDgZySRdsDzLmK_E.roa File: oXIlo_Sv8_QTDgZySRdsDzLmK_E.roa (raw, json) Hash identifier: LNhK7nudiYm3x5YQ0aL+UEPR7jDfWutQgeBddBBucpM= Subject key identifier: A1:72:25:A3:F4:AF:F3:F4:13:0E:06:72:49:17:6C:0F:32:E6:2B:F1 Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Certificate serial: 019B7AC9542DC376802188AEA5A0E26CAF25 Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/oXIlo_Sv8_QTDgZySRdsDzLmK_E.roa Signing time: Thu 01 Jan 2026 18:19:33 +0000 ROA not before: Thu 01 Jan 2026 18:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35830 IP address blocks: 45.80.106.0/23 maxlen: 23 45.140.204.0/23 maxlen: 23 212.119.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:54:2d:c3:76:80:21:88:ae:a5:a0:e2:6c:af:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Validity Not Before: Jan 1 18:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a17225a3f4aff3f4130e067249176c0f32e62bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cc:17:3f:d2:eb:7a:f6:11:b1:f7:1c:65:c9: 7c:ae:af:f3:71:4d:0d:eb:45:30:07:fe:e3:ae:67: 91:4f:08:8f:54:02:8e:1c:ea:c9:fb:ed:05:13:5c: a5:5b:64:1d:d6:22:f0:84:3b:7f:aa:18:47:f6:30: 6f:04:1d:e0:a6:97:09:d3:e7:e8:a9:4a:3c:30:71: e4:6d:99:56:de:8d:89:d6:ea:f7:65:df:f3:6f:1f: 5d:e3:2a:99:03:ba:15:8b:0b:56:b5:32:7e:f3:76: a9:43:fe:cf:b9:c4:12:77:3e:83:ca:23:88:d3:ff: f1:e5:6c:17:71:ff:51:46:1a:23:c2:ee:72:d0:c0: 83:01:ff:c8:b1:ad:38:02:a3:1a:df:42:64:69:3e: 0e:90:f7:02:77:39:36:5b:f2:d8:86:43:e8:ca:77: ce:b1:a1:52:33:0c:1b:1e:08:4b:a8:3d:87:11:5d: 0b:28:ea:9d:17:62:cd:e3:cd:69:e1:a0:5c:39:d6: 2d:fc:f1:2e:0e:2e:ed:a7:f3:e7:e0:42:9f:1f:5f: b8:81:fd:a1:6f:75:3d:03:2e:fb:19:62:9f:ed:79: ad:64:23:83:71:ea:8f:fa:4d:69:0d:3a:2c:8f:bb: 8c:74:08:39:87:d4:81:23:54:e5:cd:ee:54:6a:95: fc:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:72:25:A3:F4:AF:F3:F4:13:0E:06:72:49:17:6C:0F:32:E6:2B:F1 X509v3 Authority Key Identifier: keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/oXIlo_Sv8_QTDgZySRdsDzLmK_E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.80.106.0/23 45.140.204.0/23 212.119.40.0/23 Signature Algorithm: sha256WithRSAEncryption 61:76:92:75:25:b1:7d:24:38:56:23:f5:8d:ea:2a:f2:87:6f: 2d:de:83:af:52:e1:61:bd:01:d0:a6:6e:b4:8d:8b:05:e4:8f: bb:fe:17:ca:01:6b:49:09:07:d7:ea:c8:5c:9b:80:d0:f3:62: d9:c9:be:bb:4c:5d:64:07:0d:5f:8e:2f:c9:96:98:65:32:be: e1:b2:28:79:8d:84:fd:1c:8d:38:d8:49:90:d0:b5:64:5a:76: 28:f7:31:c3:41:ab:bb:b0:08:08:81:83:2d:c4:b6:14:06:6a: 30:c1:f8:99:2f:2d:3d:b4:0a:2b:21:50:ff:1e:7e:0e:85:f0: 72:0b:e5:ae:68:e2:63:46:75:35:61:f3:cd:ea:5b:36:0d:5c: 1b:c7:c6:35:ce:bb:3d:83:0e:fa:07:19:6d:b7:24:53:12:2a: 75:8f:d3:90:7f:ae:ee:ed:28:e6:62:52:7a:23:aa:16:68:ad: 17:8a:88:46:2a:84:79:cb:f8:64:47:7a:f3:b8:fe:72:60:ad: f0:b8:36:c1:09:a8:98:55:a1:b5:8e:74:59:54:e6:b1:69:35: 01:25:bc:3b:8c:23:1b:78:4e:40:f5:2d:c3:0b:80:18:0f:71: 82:5e:d9:1b:8c:91:35:01:59:36:9d:4f:d6:2f:3b:d7:00:0b: d3:b1:7c:3a -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt6yVQtw3aAIYiupaDibK8lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3 Y2Q0MjMwHhcNMjYwMTAxMTgxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTcyMjVhM2Y0YWZmM2Y0MTMwZTA2NzI0OTE3NmMwZjMyZTYyYmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcwXP9LrevYRsfccZcl8rq/zcU0N 60UwB/7jrmeRTwiPVAKOHOrJ++0FE1ylW2Qd1iLwhDt/qhhH9jBvBB3gppcJ0+fo qUo8MHHkbZlW3o2J1ur3Zd/zbx9d4yqZA7oViwtWtTJ+83apQ/7PucQSdz6DyiOI 0//x5WwXcf9RRhojwu5y0MCDAf/Isa04AqMa30JkaT4OkPcCdzk2W/LYhkPoynfO saFSMwwbHghLqD2HEV0LKOqdF2LN481p4aBcOdYt/PEuDi7tp/Pn4EKfH1+4gf2h b3U9Ay77GWKf7XmtZCODceqP+k1pDTosj7uMdAg5h9SBI1Tlze5UapX8kwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFKFyJaP0r/P0Ew4GckkXbA8y5ivxMB8GA1UdIwQY MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli LWExYjdjZWVmYTE2Yy8xL29YSWxvX1N2OF9RVERnWnlTUmRzRHpMbUtfRS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2 Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAEtUGoD BAEtjMwDBAHUdygwDQYJKoZIhvcNAQELBQADggEBAGF2knUlsX0kOFYj9Y3qKvKH by3eg69S4WG9AdCmbrSNiwXkj7v+F8oBa0kJB9fqyFybgNDzYtnJvrtMXWQHDV+O L8mWmGUyvuGyKHmNhP0cjTjYSZDQtWRadij3McNBq7uwCAiBgy3EthQGajDB+Jkv LT20CishUP8efg6F8HIL5a5o4mNGdTVh883qWzYNXBvHxjXOuz2DDvoHGW23JFMS KnWP05B/ru7tKOZiUnojqhZorReKiEYqhHnL+GRHevO4/nJgrfC4NsEJqJhVobWO dFlU5rFpNQElvDuMIxt4TkD1LcMLgBgPcYJe2RuMkTUBWTadT9YvO9cAC9OxfDo= -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:27 2026 by rpki-client