This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/sFMQrF6QNVHq4Ise78Z4aJzu90U.roa File: sFMQrF6QNVHq4Ise78Z4aJzu90U.roa (raw, json) Hash identifier: hsp4rWL8Fn/VxDJDiPlkniOpWXQLUa/9oJsISt8B6fU= Subject key identifier: B0:53:10:AC:5E:90:35:51:EA:E0:8B:1E:EF:C6:78:68:9C:EE:F7:45 Certificate issuer: /CN=45ad6f1f1b730c7a016b562c12b31becc4b3e1fa Certificate serial: 019B7C7FF10B8BB72EE863B076BBBA29949F Authority key identifier: 45:AD:6F:1F:1B:73:0C:7A:01:6B:56:2C:12:B3:1B:EC:C4:B3:E1:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ra1vHxtzDHoBa1YsErMb7MSz4fo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/sFMQrF6QNVHq4Ise78Z4aJzu90U.roa Signing time: Fri 02 Jan 2026 02:18:38 +0000 ROA not before: Fri 02 Jan 2026 02:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30981 IP address blocks: 82.205.132.0/24 maxlen: 24 82.205.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/Ra1vHxtzDHoBa1YsErMb7MSz4fo.crl rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/Ra1vHxtzDHoBa1YsErMb7MSz4fo.mft rsync://rpki.ripe.net/repository/DEFAULT/Ra1vHxtzDHoBa1YsErMb7MSz4fo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 17:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:f1:0b:8b:b7:2e:e8:63:b0:76:bb:ba:29:94:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45ad6f1f1b730c7a016b562c12b31becc4b3e1fa Validity Not Before: Jan 2 02:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b05310ac5e903551eae08b1eefc678689ceef745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:58:bc:14:8f:2f:57:e0:53:f6:de:fb:11:6d: 60:c1:62:4d:62:0d:aa:f6:89:23:9e:58:59:83:86: 9f:2b:69:d7:fb:de:b4:23:dc:27:c6:a8:25:e8:95: 80:e0:a4:d9:85:f7:c0:65:0e:d6:bb:a6:cc:eb:0b: 8e:30:ba:76:8b:7d:6a:68:94:73:bf:70:37:49:5a: c0:fc:f0:61:2c:95:42:20:2e:a7:9b:0e:b3:60:1b: 5a:0f:38:dc:1d:f7:d3:20:1f:d5:40:5a:3a:69:ec: eb:36:8f:3a:1d:4b:91:ed:59:87:7f:47:51:9b:52: d1:47:4c:88:5a:02:36:4f:a9:3c:1f:6a:69:8c:48: 30:c8:91:fe:2c:3a:d5:c4:02:61:60:58:75:51:36: da:89:59:ff:86:c5:a6:80:50:c0:73:f4:9d:aa:06: 9b:93:20:8d:07:bc:fb:da:c0:3d:80:dc:6f:d1:81: 00:76:9b:29:49:49:75:46:08:76:f4:89:c3:c6:84: 3f:23:e2:10:c7:77:0f:bd:28:7f:38:0c:ec:f6:a8: 79:bc:23:89:bf:33:f1:5d:65:e9:24:81:3e:82:91: e5:62:6a:3b:56:ed:c5:85:45:e4:36:c2:a3:db:66: 6f:ad:8f:7e:82:cd:ff:b5:4b:c0:15:8c:5e:13:56: 90:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:53:10:AC:5E:90:35:51:EA:E0:8B:1E:EF:C6:78:68:9C:EE:F7:45 X509v3 Authority Key Identifier: keyid:45:AD:6F:1F:1B:73:0C:7A:01:6B:56:2C:12:B3:1B:EC:C4:B3:E1:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ra1vHxtzDHoBa1YsErMb7MSz4fo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/sFMQrF6QNVHq4Ise78Z4aJzu90U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/Ra1vHxtzDHoBa1YsErMb7MSz4fo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.205.132.0/24 82.205.216.0/21 Signature Algorithm: sha256WithRSAEncryption 62:99:cd:b7:ca:22:c7:3e:0e:c3:af:b0:0e:ef:3a:a4:cb:05: b7:b2:e2:7a:c5:c2:99:cb:9f:e9:74:f1:8b:a9:b4:23:aa:82: 37:82:4f:af:e5:71:c3:b2:70:c5:fe:8e:8c:75:f5:b4:e6:50: 7a:18:01:0b:f8:be:5b:a5:38:1f:b3:8e:3c:1d:25:59:7b:8e: cc:d6:4e:59:7e:14:3f:14:10:f0:f5:91:b7:30:1f:23:84:ab: f9:da:e9:b1:5b:94:57:45:fa:25:ee:61:41:d5:08:1e:b0:d9: 2a:1c:e9:78:7d:42:4c:3e:a8:0a:82:f6:92:8a:07:10:5d:b8: 7b:b3:70:ef:ba:85:19:77:41:7a:c2:e3:fb:ea:6f:1b:a6:9e: 8f:86:3c:fc:ef:02:1e:d6:f0:08:b2:01:13:7d:99:9d:1d:5b: fd:da:56:a3:d5:25:11:22:32:69:55:ee:24:e0:0c:cf:78:18: 1b:e1:58:0d:bd:6c:3f:1e:aa:83:5c:37:e9:1a:49:5b:70:fb: 6f:c1:92:3d:d4:08:e0:7a:fe:44:2f:0e:02:29:dc:53:2b:15: 91:fd:a8:72:b2:06:2d:87:b0:3b:c9:e7:be:9b:90:f1:90:60: 94:dc:b0:25:97:d7:ba:02:ea:69:c9:f1:7e:fd:36:18:5b:59: a1:e0:22:e5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8f/ELi7cu6GOwdru6KZSfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1YWQ2ZjFmMWI3MzBjN2EwMTZiNTYyYzEyYjMxYmVjYzRi M2UxZmEwHhcNMjYwMTAyMDIxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDUzMTBhYzVlOTAzNTUxZWFlMDhiMWVlZmM2Nzg2ODljZWVmNzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9li8FI8vV+BT9t77EW1gwWJNYg2q 9okjnlhZg4afK2nX+960I9wnxqgl6JWA4KTZhffAZQ7Wu6bM6wuOMLp2i31qaJRz v3A3SVrA/PBhLJVCIC6nmw6zYBtaDzjcHffTIB/VQFo6aezrNo86HUuR7VmHf0dR m1LRR0yIWgI2T6k8H2ppjEgwyJH+LDrVxAJhYFh1UTbaiVn/hsWmgFDAc/Sdqgab kyCNB7z72sA9gNxv0YEAdpspSUl1Rgh29InDxoQ/I+IQx3cPvSh/OAzs9qh5vCOJ vzPxXWXpJIE+gpHlYmo7Vu3FhUXkNsKj22ZvrY9+gs3/tUvAFYxeE1aQlwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLBTEKxekDVR6uCLHu/GeGic7vdFMB8GA1UdIwQY MBaAFEWtbx8bcwx6AWtWLBKzG+zEs+H6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmExdkh4dHpESG9CYTFZc0VyTWI3TVN6NGZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8wMGMwM2MtZDIwNy00ZWMxLTlkZDkt MzI0NDljZTZjZjg5LzEvc0ZNUXJGNlFOVkhxNElzZTc4WjRhSnp1OTBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8wMGMwM2MtZDIwNy00ZWMxLTlkZDktMzI0NDljZTZjZjg5 LzEvUmExdkh4dHpESG9CYTFZc0VyTWI3TVN6NGZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUs2EAwQD Us3YMA0GCSqGSIb3DQEBCwUAA4IBAQBimc23yiLHPg7Dr7AO7zqkywW3suJ6xcKZ y5/pdPGLqbQjqoI3gk+v5XHDsnDF/o6MdfW05lB6GAEL+L5bpTgfs448HSVZe47M 1k5ZfhQ/FBDw9ZG3MB8jhKv52umxW5RXRfol7mFB1QgesNkqHOl4fUJMPqgKgvaS igcQXbh7s3DvuoUZd0F6wuP76m8bpp6Phjz87wIe1vAIsgETfZmdHVv92laj1SUR IjJpVe4k4AzPeBgb4VgNvWw/HqqDXDfpGklbcPtvwZI91Ajgev5ELw4CKdxTKxWR /ahysgYth7A7yee+m5DxkGCU3LAll9e6AuppyfF+/TYYW1mh4CLl -----END CERTIFICATE-----Generated at Mon Jan 26 03:28:33 2026 by rpki-client