This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/D338NBLG4gy0L0rQfLDLBBvijvs.roa File: D338NBLG4gy0L0rQfLDLBBvijvs.roa (raw, json) Hash identifier: xpSbCbvFe4HKnfPpEx3Bzh3tFz7qEtAGaiCairLokvk= Subject key identifier: 0F:7D:FC:34:12:C6:E2:0C:B4:2F:4A:D0:7C:B0:CB:04:1B:E2:8E:FB Certificate issuer: /CN=c738807abb9ce15b7a892592b6f003f1a3e16b60 Certificate serial: 019B7D5C72FC593A8FCFA36B693AD5C29493 Authority key identifier: C7:38:80:7A:BB:9C:E1:5B:7A:89:25:92:B6:F0:03:F1:A3:E1:6B:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xziAeruc4Vt6iSWStvAD8aPha2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/D338NBLG4gy0L0rQfLDLBBvijvs.roa Signing time: Fri 02 Jan 2026 06:19:29 +0000 ROA not before: Fri 02 Jan 2026 06:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208815 IP address blocks: 45.84.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/xziAeruc4Vt6iSWStvAD8aPha2A.crl rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/xziAeruc4Vt6iSWStvAD8aPha2A.mft rsync://rpki.ripe.net/repository/DEFAULT/xziAeruc4Vt6iSWStvAD8aPha2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:72:fc:59:3a:8f:cf:a3:6b:69:3a:d5:c2:94:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c738807abb9ce15b7a892592b6f003f1a3e16b60 Validity Not Before: Jan 2 06:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f7dfc3412c6e20cb42f4ad07cb0cb041be28efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f3:51:9b:51:3e:d7:9a:31:3b:bc:a8:8d:48: 32:0e:f6:6a:d7:d7:4f:82:1c:bd:ae:56:c0:a6:21: 29:3b:29:b2:9f:39:76:e9:18:d7:58:fa:96:88:df: eb:d9:82:59:53:57:21:35:98:03:f6:65:0b:8c:fe: a8:48:b5:fd:da:9c:0b:d2:e8:02:75:11:3a:56:50: b5:60:cb:f6:08:5b:f8:39:5c:27:1f:be:41:08:96: 9f:36:4a:6f:7e:7e:a2:d7:c3:03:a7:06:ab:4b:10: 03:25:24:66:00:16:b2:3e:48:76:70:0d:e1:e5:19: 4d:b5:b3:43:e6:17:b7:63:42:14:de:36:21:a9:4d: d6:d8:87:9d:26:e0:71:19:74:e5:89:e7:7c:75:44: d5:f0:c6:24:44:ac:24:8f:02:b0:b6:be:d6:3c:20: 64:6c:aa:78:9b:67:bc:c7:95:e8:23:a4:52:72:15: c4:23:77:90:8f:39:c3:86:b3:24:0c:96:e6:77:14: 8d:60:13:87:e0:e8:6d:12:5a:32:45:38:39:57:28: 53:8e:29:cd:a9:35:22:09:b8:c0:09:6d:44:d8:90: 54:03:bb:d3:b6:34:e2:58:a7:4a:1e:0f:f7:57:ed: d5:50:ea:88:6e:88:35:f8:0b:ce:6f:d5:5f:82:5d: cb:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7D:FC:34:12:C6:E2:0C:B4:2F:4A:D0:7C:B0:CB:04:1B:E2:8E:FB X509v3 Authority Key Identifier: keyid:C7:38:80:7A:BB:9C:E1:5B:7A:89:25:92:B6:F0:03:F1:A3:E1:6B:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xziAeruc4Vt6iSWStvAD8aPha2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/D338NBLG4gy0L0rQfLDLBBvijvs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/xziAeruc4Vt6iSWStvAD8aPha2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.36.0/24 Signature Algorithm: sha256WithRSAEncryption 66:c1:3c:9d:5b:b3:b4:80:ad:52:63:04:2d:8e:f7:c0:68:e7: 61:97:7f:17:ad:37:18:16:c6:c3:50:b2:26:fa:90:88:25:3b: d7:51:47:1f:c8:32:54:1a:d0:f1:fc:b4:49:29:e3:32:53:2e: 66:44:62:88:2e:5e:76:9f:3a:5b:96:b4:a9:db:38:56:a0:cf: bf:03:0a:9f:ac:06:01:82:f6:19:08:55:3c:a6:eb:40:66:b0: 2a:1a:37:77:6d:75:b1:92:c4:5d:a8:8b:92:0f:82:89:88:aa: 52:e4:c1:0f:6a:a0:1b:b6:1e:04:9b:36:98:4e:55:fa:fe:f6: 50:09:ce:56:1b:75:4f:34:e7:b2:3d:e6:dd:61:ab:f3:4c:92: c4:b8:3e:b7:b1:44:48:e6:ea:48:dc:cb:51:69:76:9c:77:5f: 39:c8:35:12:95:df:4c:eb:f1:2c:c8:05:1c:c4:ba:4c:da:84: ca:66:ce:fa:ed:2f:2f:0a:d4:64:20:ae:f1:dc:e4:1d:66:2f: bc:48:f4:f6:cb:d8:3e:6f:1b:7d:d2:6c:82:f9:f5:b3:db:50: eb:ae:7e:c0:70:97:1c:44:e7:0f:fe:6e:b4:3f:0a:81:c6:b0: 20:a3:dd:fe:db:75:88:0b:8d:1d:40:5c:3a:80:8f:42:39:3c: 24:c2:71:5a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XHL8WTqPz6NraTrVwpSTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3Mzg4MDdhYmI5Y2UxNWI3YTg5MjU5MmI2ZjAwM2YxYTNl MTZiNjAwHhcNMjYwMTAyMDYxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjdkZmMzNDEyYzZlMjBjYjQyZjRhZDA3Y2IwY2IwNDFiZTI4ZWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvNRm1E+15oxO7yojUgyDvZq19dP ghy9rlbApiEpOymynzl26RjXWPqWiN/r2YJZU1chNZgD9mULjP6oSLX92pwL0ugC dRE6VlC1YMv2CFv4OVwnH75BCJafNkpvfn6i18MDpwarSxADJSRmABayPkh2cA3h 5RlNtbND5he3Y0IU3jYhqU3W2IedJuBxGXTlied8dUTV8MYkRKwkjwKwtr7WPCBk bKp4m2e8x5XoI6RSchXEI3eQjznDhrMkDJbmdxSNYBOH4OhtEloyRTg5VyhTjinN qTUiCbjACW1E2JBUA7vTtjTiWKdKHg/3V+3VUOqIbog1+AvOb9Vfgl3LPwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA99/DQSxuIMtC9K0HywywQb4o77MB8GA1UdIwQY MBaAFMc4gHq7nOFbeoklkrbwA/Gj4WtgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHppQWVydWM0VnQ2aVNXU3R2QUQ4YVBoYTJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8xZjQ1ZTktZTgzOS00NjdiLWI1YWIt M2QxZjMwZTA5MjNiLzEvRDMzOE5CTEc0Z3kwTDByUWZMRExCQnZpanZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8xZjQ1ZTktZTgzOS00NjdiLWI1YWItM2QxZjMwZTA5MjNi LzEveHppQWVydWM0VnQ2aVNXU3R2QUQ4YVBoYTJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVQkMA0G CSqGSIb3DQEBCwUAA4IBAQBmwTydW7O0gK1SYwQtjvfAaOdhl38XrTcYFsbDULIm +pCIJTvXUUcfyDJUGtDx/LRJKeMyUy5mRGKILl52nzpblrSp2zhWoM+/AwqfrAYB gvYZCFU8putAZrAqGjd3bXWxksRdqIuSD4KJiKpS5MEPaqAbth4EmzaYTlX6/vZQ Cc5WG3VPNOeyPebdYavzTJLEuD63sURI5upI3MtRaXacd185yDUSld9M6/EsyAUc xLpM2oTKZs767S8vCtRkIK7x3OQdZi+8SPT2y9g+bxt90myC+fWz21Drrn7AcJcc ROcP/m60PwqBxrAgo93+23WIC40dQFw6gI9COTwkwnFa -----END CERTIFICATE-----Generated at Mon Jan 26 01:41:57 2026 by rpki-client