This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/twYt6qj-wTyUeYXy66c4-gjVtXw.roa File: twYt6qj-wTyUeYXy66c4-gjVtXw.roa (raw, json) Hash identifier: Wg1hNsEn74fIoOmvEkDupCA55dXbo6Jgxn8PskTnyqM= Subject key identifier: B7:06:2D:EA:A8:FE:C1:3C:94:79:85:F2:EB:A7:38:FA:08:D5:B5:7C Certificate issuer: /CN=c738807abb9ce15b7a892592b6f003f1a3e16b60 Certificate serial: 019B7D5C7209414BDDB026DFC36896655E73 Authority key identifier: C7:38:80:7A:BB:9C:E1:5B:7A:89:25:92:B6:F0:03:F1:A3:E1:6B:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xziAeruc4Vt6iSWStvAD8aPha2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/twYt6qj-wTyUeYXy66c4-gjVtXw.roa Signing time: Fri 02 Jan 2026 06:19:29 +0000 ROA not before: Fri 02 Jan 2026 06:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35732 IP address blocks: 45.84.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/xziAeruc4Vt6iSWStvAD8aPha2A.crl rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/xziAeruc4Vt6iSWStvAD8aPha2A.mft rsync://rpki.ripe.net/repository/DEFAULT/xziAeruc4Vt6iSWStvAD8aPha2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:72:09:41:4b:dd:b0:26:df:c3:68:96:65:5e:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c738807abb9ce15b7a892592b6f003f1a3e16b60 Validity Not Before: Jan 2 06:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7062deaa8fec13c947985f2eba738fa08d5b57c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:27:1b:d8:09:14:94:61:15:eb:c7:c9:d4:2c: 18:ba:ce:4d:ec:75:b7:66:44:66:9b:98:30:37:1d: ac:f0:b2:7a:e4:c7:79:f9:20:d9:8a:30:84:54:57: ca:4c:58:8f:9f:2b:96:9e:a6:c0:3c:a8:fe:ff:83: 56:a9:c8:3a:ea:7e:61:77:21:c1:9b:57:19:47:3b: b2:f0:ec:c4:ec:59:b4:4f:08:e2:d2:ad:45:7f:7d: dd:dc:f4:33:8f:9e:c4:dc:80:58:90:e7:e2:f7:d4: fe:75:c3:3b:1b:22:23:d4:7a:91:34:86:a7:2f:fd: 97:04:db:1f:c0:43:20:63:48:b6:47:17:6f:b3:30: 3c:c9:85:d6:b4:f6:7d:86:a4:21:ed:cc:cc:84:6a: 11:59:43:db:3f:ab:35:5c:64:44:1a:37:92:4a:22: cd:bb:11:79:ec:79:5b:be:a0:ce:b0:ff:00:53:db: 9c:79:6a:53:47:84:e7:ce:f6:d9:4f:00:8b:a1:08: ee:a9:00:6e:c6:1a:95:2d:a4:c2:83:55:8a:42:8a: 7e:2c:35:49:58:88:e3:57:5f:c2:60:50:87:76:7e: 45:8c:e3:9b:fd:cd:a2:a9:83:3b:06:ab:5f:24:f3: 57:d0:94:c8:06:64:a0:74:36:c2:f7:97:e0:e2:35: d5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:06:2D:EA:A8:FE:C1:3C:94:79:85:F2:EB:A7:38:FA:08:D5:B5:7C X509v3 Authority Key Identifier: keyid:C7:38:80:7A:BB:9C:E1:5B:7A:89:25:92:B6:F0:03:F1:A3:E1:6B:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xziAeruc4Vt6iSWStvAD8aPha2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/twYt6qj-wTyUeYXy66c4-gjVtXw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/1f45e9-e839-467b-b5ab-3d1f30e0923b/1/xziAeruc4Vt6iSWStvAD8aPha2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.36.0/24 Signature Algorithm: sha256WithRSAEncryption 67:31:1b:50:cc:1c:bd:b3:08:95:9e:02:01:e8:19:34:38:0a: 84:c2:3d:d1:8e:2b:d9:63:5a:a6:06:8b:47:b7:4f:40:8a:f9: d6:87:8f:81:3a:ba:07:9b:ff:7f:55:6b:9d:2e:20:11:d9:4d: 2f:ca:e0:90:2a:4e:a5:fa:2b:f9:ac:ab:b4:e6:ec:22:a5:4d: 18:33:d9:9a:cd:cb:10:cd:93:e7:06:0c:00:ca:99:e7:9f:76: 02:8f:b9:4e:27:e6:ab:21:79:5b:4f:44:e6:20:4f:80:bd:80: f5:dc:94:5c:f4:ee:c9:ae:38:e6:46:7b:43:46:c5:6a:54:4a: 50:dd:17:bb:1c:86:c3:e4:96:8c:ca:b3:1c:84:90:c4:4f:20: 77:ea:48:7c:ee:99:19:30:99:9a:68:64:5f:5f:5c:36:76:17: 46:10:c5:04:97:a7:b1:dc:df:77:d8:54:bd:61:03:3c:b4:07: 90:a2:7e:7c:7e:8d:3c:b1:da:2c:74:f6:ec:c1:2b:83:47:16: d9:3e:18:44:24:92:72:cb:a3:4f:c9:d1:00:41:d3:6f:af:3f: 00:50:92:52:20:b1:62:d4:3c:4b:f4:38:33:2d:57:3e:a0:6b: 7e:62:c7:61:2e:e6:25:df:b6:e4:29:a7:c8:cc:fd:2f:d4:c9: a8:65:36:46 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XHIJQUvdsCbfw2iWZV5zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3Mzg4MDdhYmI5Y2UxNWI3YTg5MjU5MmI2ZjAwM2YxYTNl MTZiNjAwHhcNMjYwMTAyMDYxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzA2MmRlYWE4ZmVjMTNjOTQ3OTg1ZjJlYmE3MzhmYTA4ZDViNTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ycb2AkUlGEV68fJ1CwYus5N7HW3 ZkRmm5gwNx2s8LJ65Md5+SDZijCEVFfKTFiPnyuWnqbAPKj+/4NWqcg66n5hdyHB m1cZRzuy8OzE7Fm0Twji0q1Ff33d3PQzj57E3IBYkOfi99T+dcM7GyIj1HqRNIan L/2XBNsfwEMgY0i2RxdvszA8yYXWtPZ9hqQh7czMhGoRWUPbP6s1XGREGjeSSiLN uxF57HlbvqDOsP8AU9uceWpTR4TnzvbZTwCLoQjuqQBuxhqVLaTCg1WKQop+LDVJ WIjjV1/CYFCHdn5FjOOb/c2iqYM7BqtfJPNX0JTIBmSgdDbC95fg4jXVIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLcGLeqo/sE8lHmF8uunOPoI1bV8MB8GA1UdIwQY MBaAFMc4gHq7nOFbeoklkrbwA/Gj4WtgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHppQWVydWM0VnQ2aVNXU3R2QUQ4YVBoYTJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8xZjQ1ZTktZTgzOS00NjdiLWI1YWIt M2QxZjMwZTA5MjNiLzEvdHdZdDZxai13VHlVZVlYeTY2YzQtZ2pWdFh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8xZjQ1ZTktZTgzOS00NjdiLWI1YWItM2QxZjMwZTA5MjNi LzEveHppQWVydWM0VnQ2aVNXU3R2QUQ4YVBoYTJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVQkMA0G CSqGSIb3DQEBCwUAA4IBAQBnMRtQzBy9swiVngIB6Bk0OAqEwj3RjivZY1qmBotH t09AivnWh4+BOroHm/9/VWudLiAR2U0vyuCQKk6l+iv5rKu05uwipU0YM9mazcsQ zZPnBgwAypnnn3YCj7lOJ+arIXlbT0TmIE+AvYD13JRc9O7JrjjmRntDRsVqVEpQ 3Re7HIbD5JaMyrMchJDETyB36kh87pkZMJmaaGRfX1w2dhdGEMUEl6ex3N932FS9 YQM8tAeQon58fo08sdosdPbswSuDRxbZPhhEJJJyy6NPydEAQdNvrz8AUJJSILFi 1DxL9DgzLVc+oGt+YsdhLuYl37bkKafIzP0v1MmoZTZG -----END CERTIFICATE-----Generated at Mon Jan 26 06:19:35 2026 by rpki-client