This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/1tMhwz7KE8o9HGi1XERUlx-tIdY.roa File: 1tMhwz7KE8o9HGi1XERUlx-tIdY.roa (raw, json) Hash identifier: W97bDT/RSA5be4fQKA6RSGAhSe3TMElDjwqiTHQoDoE= Subject key identifier: D6:D3:21:C3:3E:CA:13:CA:3D:1C:68:B5:5C:44:54:97:1F:AD:21:D6 Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Certificate serial: 019B797E07F106664D7878806C48809AEC7E Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/1tMhwz7KE8o9HGi1XERUlx-tIdY.roa Signing time: Thu 01 Jan 2026 12:17:41 +0000 ROA not before: Thu 01 Jan 2026 12:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210805 IP address blocks: 46.252.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:07:f1:06:66:4d:78:78:80:6c:48:80:9a:ec:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Validity Not Before: Jan 1 12:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6d321c33eca13ca3d1c68b55c4454971fad21d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d2:97:85:58:c4:db:b9:01:6e:d1:6a:c8:10: 66:4f:41:6d:e8:a3:3b:01:42:2c:67:9a:31:d6:cf: 4d:75:15:47:4e:85:fd:9c:95:dc:9d:26:2e:d2:8f: 92:f7:63:5a:33:78:85:26:ad:8b:88:16:1a:28:90: d3:d7:66:68:51:ba:f8:6a:67:bb:95:dd:1b:26:ff: c4:55:b2:4d:78:4f:70:3d:d4:16:6b:fc:71:8f:01: 8e:00:9a:54:c8:d2:45:de:54:38:42:02:43:f6:1d: 86:dd:1b:c1:17:82:04:0a:2b:e3:0f:84:b5:f4:35: 07:bc:63:8b:73:7a:db:ca:48:ce:f2:14:6c:3b:ed: 7a:2d:2a:04:9c:70:2e:35:23:ac:3e:14:44:b7:e6: e0:d1:3f:5e:fb:18:fd:ba:18:db:78:aa:6f:78:a2: fa:a4:f8:05:25:8f:d8:bc:ca:82:6c:5c:e7:3b:01: 4d:ef:2b:47:a9:7d:95:46:5f:31:e9:50:11:df:89: fe:3a:38:b9:b0:59:ac:cb:a7:37:66:16:6c:fa:92: bd:1d:c8:a0:69:5e:67:0f:2c:79:7f:a2:74:48:11: d9:29:d2:39:7d:73:81:ad:a7:5e:2b:6c:40:99:a0: 9e:38:96:54:49:87:0a:ed:35:9a:b2:27:a5:3e:23: a0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D3:21:C3:3E:CA:13:CA:3D:1C:68:B5:5C:44:54:97:1F:AD:21:D6 X509v3 Authority Key Identifier: keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/1tMhwz7KE8o9HGi1XERUlx-tIdY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.252.6.0/24 Signature Algorithm: sha256WithRSAEncryption d1:d7:3b:b8:4c:99:1f:fc:2d:fe:f8:1b:2d:4e:40:1a:c9:f5: b0:66:61:78:54:fb:86:88:e4:f8:6c:0f:c6:ff:10:e1:71:f8: ce:06:d5:32:87:ac:5f:22:03:21:9a:b1:f0:77:f0:fd:f5:d5: 90:c6:a4:3d:93:fc:56:03:0a:ab:bc:e3:56:eb:4a:85:f9:24: 4a:45:57:6a:3e:37:20:9a:52:30:c7:1b:48:39:71:c2:44:58: 3d:e0:cd:36:a9:7b:e5:d6:4a:61:af:6b:38:f1:b3:f4:db:55: 21:0e:d5:52:af:5f:cc:91:ab:67:1c:6f:c8:88:64:65:4c:37: 11:8b:ac:8b:15:04:78:d1:e2:45:b4:29:cc:55:58:48:ac:c1: b6:38:7d:34:4f:6e:5a:f2:89:e8:e1:78:15:cb:c0:7b:5b:eb: 7b:de:8c:42:75:ca:18:42:99:3f:bf:b4:7b:8e:5c:e6:db:c6: 5a:21:86:01:b9:23:05:fb:56:ea:0f:d3:eb:9d:71:6a:af:ec: 20:f7:10:13:9a:43:90:16:b3:79:4a:c1:77:e7:f6:d7:56:1f: 87:88:a6:7d:a0:34:c7:6b:33:fc:83:da:70:07:72:50:8f:ce: d6:27:4d:75:c2:14:c5:0c:84:95:92:d6:d4:49:de:bf:44:99: 95:5c:57:ed -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fgfxBmZNeHiAbEiAmux+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2 YzQwZmQwHhcNMjYwMTAxMTIxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNmQzMjFjMzNlY2ExM2NhM2QxYzY4YjU1YzQ0NTQ5NzFmYWQyMWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dKXhVjE27kBbtFqyBBmT0Ft6KM7 AUIsZ5ox1s9NdRVHToX9nJXcnSYu0o+S92NaM3iFJq2LiBYaKJDT12ZoUbr4ame7 ld0bJv/EVbJNeE9wPdQWa/xxjwGOAJpUyNJF3lQ4QgJD9h2G3RvBF4IECivjD4S1 9DUHvGOLc3rbykjO8hRsO+16LSoEnHAuNSOsPhREt+bg0T9e+xj9uhjbeKpveKL6 pPgFJY/YvMqCbFznOwFN7ytHqX2VRl8x6VAR34n+Oji5sFmsy6c3ZhZs+pK9Hcig aV5nDyx5f6J0SBHZKdI5fXOBradeK2xAmaCeOJZUSYcK7TWasielPiOgnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNbTIcM+yhPKPRxotVxEVJcfrSHWMB8GA1UdIwQY MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt Yzc4NjkxMjg1ODJjLzEvMXRNaHd6N0tFOG85SEdpMVhFUlVseC10SWRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALvwGMA0G CSqGSIb3DQEBCwUAA4IBAQDR1zu4TJkf/C3++BstTkAayfWwZmF4VPuGiOT4bA/G /xDhcfjOBtUyh6xfIgMhmrHwd/D99dWQxqQ9k/xWAwqrvONW60qF+SRKRVdqPjcg mlIwxxtIOXHCRFg94M02qXvl1kphr2s48bP021UhDtVSr1/MkatnHG/IiGRlTDcR i6yLFQR40eJFtCnMVVhIrMG2OH00T25a8ono4XgVy8B7W+t73oxCdcoYQpk/v7R7 jlzm28ZaIYYBuSMF+1bqD9PrnXFqr+wg9xATmkOQFrN5SsF35/bXVh+HiKZ9oDTH azP8g9pwB3JQj87WJ011whTFDISVktbUSd6/RJmVXFft -----END CERTIFICATE-----Generated at Mon Jan 26 01:44:01 2026 by rpki-client