This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/pHgh0geILg2H9c8tNXl-coocbok.roa File: pHgh0geILg2H9c8tNXl-coocbok.roa (raw, json) Hash identifier: MiAWsYu39mO81MmSrazkuF8uttZJWXsnb0YqEMhZmqc= Subject key identifier: A4:78:21:D2:07:88:2E:0D:87:F5:CF:2D:35:79:7E:72:8A:1C:6E:89 Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Certificate serial: 019B7AC95525AAE3E0CBDB5BF8DD2198ADD7 Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/pHgh0geILg2H9c8tNXl-coocbok.roa Signing time: Thu 01 Jan 2026 18:19:33 +0000 ROA not before: Thu 01 Jan 2026 18:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43444 IP address blocks: 45.155.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:55:25:aa:e3:e0:cb:db:5b:f8:dd:21:98:ad:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Validity Not Before: Jan 1 18:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a47821d207882e0d87f5cf2d35797e728a1c6e89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ef:65:0d:10:e7:37:4c:99:8a:43:d3:73:89: ed:10:e7:39:72:c9:c5:69:83:58:0a:22:03:39:45: 7e:6f:f1:0b:a7:89:c7:5e:2c:7e:40:a7:b0:4b:f2: 2e:e7:e6:54:16:64:93:88:7a:5f:c2:2a:8d:da:03: 71:63:af:ac:8b:6a:f5:e4:8d:26:1b:83:aa:00:3e: 64:dd:2c:b7:8c:a6:3d:03:bb:a0:f2:4b:37:88:26: 04:6a:7c:70:64:7a:80:2f:c3:32:26:63:74:cc:1e: bf:ef:64:a2:93:a6:a8:f4:5c:dd:96:63:7c:87:f4: 95:97:c0:10:50:03:de:b2:81:ab:1e:f4:f7:48:d6: 87:a5:2e:a4:30:63:58:eb:8c:67:f0:db:45:04:2d: 7a:07:0b:68:a7:8e:a4:5b:b6:48:55:ec:15:a2:1c: 03:e3:28:a3:ee:5f:f7:18:6a:79:c2:94:f6:b6:69: 75:47:38:76:77:41:7d:be:3f:44:8c:a1:21:22:3f: 5a:66:ef:2d:3c:1d:f9:6a:ab:85:49:cd:23:e5:a2: 4c:81:23:e2:21:3b:76:3f:0d:73:3b:84:d9:76:5c: 41:00:ba:b0:0e:de:d5:66:50:6e:31:33:41:c9:e8: 89:3e:1d:d7:8a:21:df:6a:bf:0e:9d:e5:14:60:3d: 5d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:78:21:D2:07:88:2E:0D:87:F5:CF:2D:35:79:7E:72:8A:1C:6E:89 X509v3 Authority Key Identifier: keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/pHgh0geILg2H9c8tNXl-coocbok.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.166.0/23 Signature Algorithm: sha256WithRSAEncryption 75:5b:13:16:81:1d:a6:9d:ac:41:32:1b:bd:cf:45:88:61:a0: 33:7e:5d:35:f9:07:67:5f:3f:c4:84:14:71:72:0e:3e:c9:ea: 5e:84:e8:fa:f3:84:08:44:cf:0a:fc:75:52:fc:b1:f2:fc:3e: c0:37:2a:45:05:5e:79:6e:8e:50:80:c5:64:46:0e:98:28:01: b3:36:69:d2:34:2d:0f:d4:87:46:c6:0f:f6:d8:a1:ad:01:7b: 9f:f1:ad:b1:a4:1d:5f:12:3e:91:07:7e:d1:6d:58:d3:49:db: be:ba:a4:6a:71:21:56:3a:6b:53:3c:b3:7f:dd:05:dd:19:b7: 3a:0d:76:9d:c4:87:8b:71:81:d6:63:6e:75:45:98:fa:dc:ea: 6f:3a:03:2f:a3:57:32:b0:ed:b2:38:b7:5b:63:03:eb:cf:f7: e5:e3:3b:5d:fd:41:e5:e7:94:8b:c2:57:8f:b3:f3:cb:bd:94: 17:ad:30:9c:1c:03:9c:7e:d9:b0:92:f2:8f:15:ac:d2:af:7f: 4f:e7:0a:7e:54:0b:6c:8d:65:d1:fb:3b:5f:4e:ca:46:d7:16: c4:a5:8c:b4:47:8c:70:4a:4b:b3:e2:fb:ed:a8:d8:75:ab:a6: e7:0f:33:c8:2c:5b:df:30:b8:95:d1:07:01:46:ac:44:4f:2b: 7e:af:68:35 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt6yVUlquPgy9tb+N0hmK3XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3 Y2Q0MjMwHhcNMjYwMTAxMTgxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDc4MjFkMjA3ODgyZTBkODdmNWNmMmQzNTc5N2U3MjhhMWM2ZTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2u9lDRDnN0yZikPTc4ntEOc5csnF aYNYCiIDOUV+b/ELp4nHXix+QKewS/Iu5+ZUFmSTiHpfwiqN2gNxY6+si2r15I0m G4OqAD5k3Sy3jKY9A7ug8ks3iCYEanxwZHqAL8MyJmN0zB6/72Sik6ao9FzdlmN8 h/SVl8AQUAPesoGrHvT3SNaHpS6kMGNY64xn8NtFBC16Bwtop46kW7ZIVewVohwD 4yij7l/3GGp5wpT2tml1Rzh2d0F9vj9EjKEhIj9aZu8tPB35aquFSc0j5aJMgSPi ITt2Pw1zO4TZdlxBALqwDt7VZlBuMTNByeiJPh3XiiHfar8OneUUYD1dpwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFKR4IdIHiC4Nh/XPLTV5fnKKHG6JMB8GA1UdIwQY MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli LWExYjdjZWVmYTE2Yy8xL3BIZ2gwZ2VJTGcySDljOHROWGwtY29vY2Jvay5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2 Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtm6Yw DQYJKoZIhvcNAQELBQADggEBAHVbExaBHaadrEEyG73PRYhhoDN+XTX5B2dfP8SE FHFyDj7J6l6E6PrzhAhEzwr8dVL8sfL8PsA3KkUFXnlujlCAxWRGDpgoAbM2adI0 LQ/Uh0bGD/bYoa0Be5/xrbGkHV8SPpEHftFtWNNJ2766pGpxIVY6a1M8s3/dBd0Z tzoNdp3Eh4txgdZjbnVFmPrc6m86Ay+jVzKw7bI4t1tjA+vP9+XjO139QeXnlIvC V4+z88u9lBetMJwcA5x+2bCS8o8VrNKvf0/nCn5UC2yNZdH7O19OykbXFsSljLRH jHBKS7Pi++2o2HWrpucPM8gsW98wuJXRBwFGrERPK36vaDU= -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:52 2026 by rpki-client