This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/g7UrTtSi9lC9FtScbdFi6vmPG8A.roa File: g7UrTtSi9lC9FtScbdFi6vmPG8A.roa (raw, json) Hash identifier: 9bMP8pgyCTANYeZlQWWvnnhz13Jp6puZHGDV9OfYQg0= Subject key identifier: 83:B5:2B:4E:D4:A2:F6:50:BD:16:D4:9C:6D:D1:62:EA:F9:8F:1B:C0 Certificate issuer: /CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5 Certificate serial: 019B797F193C79065C9CCA5CA44ECF5AECED Authority key identifier: 41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/g7UrTtSi9lC9FtScbdFi6vmPG8A.roa Signing time: Thu 01 Jan 2026 12:18:51 +0000 ROA not before: Thu 01 Jan 2026 12:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6260 IP address blocks: 45.132.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.crl rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:19:3c:79:06:5c:9c:ca:5c:a4:4e:cf:5a:ec:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5 Validity Not Before: Jan 1 12:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83b52b4ed4a2f650bd16d49c6dd162eaf98f1bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:d8:21:7c:df:61:c2:91:85:50:7f:f7:e1:13: f0:a5:02:a7:dd:8b:6e:f1:3a:8f:36:ab:1d:90:37: 1c:15:ac:52:a9:25:e2:c2:3e:81:78:48:2e:03:0a: 6d:6b:86:77:a7:6c:59:ff:13:8c:7e:e6:29:cd:a8: aa:19:9f:01:60:c8:31:16:9f:09:94:af:fb:cb:c7: 06:0c:6f:82:f4:34:53:5d:78:7d:c1:fb:b1:cd:ea: 81:d6:ab:a8:cc:b3:b5:e5:2e:ee:66:9e:76:36:e7: 1e:2d:ed:ea:58:24:c2:2a:32:0e:29:ac:e1:3d:62: 6d:d8:c3:45:fa:58:cb:65:7f:18:f2:96:51:46:16: c9:d9:8d:9b:ae:02:72:19:cc:27:85:5d:85:e6:8b: 38:29:32:6f:83:e1:64:c2:2d:b5:c5:89:a6:14:1e: e5:b9:85:cc:b8:25:74:8d:c1:e9:62:fa:de:43:04: b6:7b:ac:51:86:a4:1b:64:a8:84:92:e8:21:6f:d5: e6:6e:9c:54:c1:4e:4a:84:99:29:8f:d5:88:8a:32: 75:57:8a:e9:eb:d7:3f:ee:91:39:4b:25:29:39:13: bb:ba:ad:53:c8:d4:ab:73:bc:c4:ef:93:31:98:8a: 98:d3:d0:4c:48:af:81:c0:37:8e:2b:fc:f7:66:27: 6b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B5:2B:4E:D4:A2:F6:50:BD:16:D4:9C:6D:D1:62:EA:F9:8F:1B:C0 X509v3 Authority Key Identifier: keyid:41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/g7UrTtSi9lC9FtScbdFi6vmPG8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.3.0/24 Signature Algorithm: sha256WithRSAEncryption 94:65:4c:96:63:25:a4:d8:55:7e:e8:e0:47:50:82:1f:31:cd: 3d:c2:2e:55:ac:99:80:17:72:79:ad:a1:f1:ed:8e:df:81:34: d2:2b:fd:98:88:99:fe:f4:99:ee:d6:3d:a6:2c:8d:bb:ab:b1: e7:cf:e6:43:02:68:62:79:2e:0e:53:0a:e7:57:c2:47:9f:87: 99:f1:dd:7b:07:c9:f4:16:6c:04:93:8f:11:ee:fe:76:0d:4b: ed:f9:6d:e5:26:6b:06:c4:80:c4:6d:27:41:d1:af:67:62:21: ce:5f:aa:95:25:b4:f7:be:0e:a3:c9:8d:44:41:48:9e:d5:d6: 62:ce:2d:d5:4e:79:df:15:37:8b:4d:2d:66:f4:36:84:47:74: a9:e3:05:88:22:76:94:57:e5:a6:84:01:db:43:7b:38:14:4a: c7:39:e4:65:16:c4:19:82:42:a7:55:c9:c9:1f:6a:31:1a:2a: 05:85:9d:90:9c:0e:ba:20:c4:84:0a:81:fd:40:1e:fa:82:25: 3a:0c:01:a8:a6:82:9b:bd:0a:53:26:48:43:26:1f:c6:08:ef: 34:02:1f:e2:e5:48:4b:e1:aa:1b:6f:3b:ef:53:f7:07:e5:85: 4f:b5:a8:69:97:1c:33:b8:53:ef:2a:f8:31:ec:8b:40:cd:d5: 48:97:8e:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fxk8eQZcnMpcpE7PWuztMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxOTYyMzBlNThkZWNjMGNiY2ZiMTVmNTZhYTY0ZGVkZDFm Mzg5ZjUwHhcNMjYwMTAxMTIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4M2I1MmI0ZWQ0YTJmNjUwYmQxNmQ0OWM2ZGQxNjJlYWY5OGYxYmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidghfN9hwpGFUH/34RPwpQKn3Ytu 8TqPNqsdkDccFaxSqSXiwj6BeEguAwpta4Z3p2xZ/xOMfuYpzaiqGZ8BYMgxFp8J lK/7y8cGDG+C9DRTXXh9wfuxzeqB1quozLO15S7uZp52NuceLe3qWCTCKjIOKazh PWJt2MNF+ljLZX8Y8pZRRhbJ2Y2brgJyGcwnhV2F5os4KTJvg+Fkwi21xYmmFB7l uYXMuCV0jcHpYvreQwS2e6xRhqQbZKiEkughb9XmbpxUwU5KhJkpj9WIijJ1V4rp 69c/7pE5SyUpORO7uq1TyNSrc7zE75MxmIqY09BMSK+BwDeOK/z3Zidr9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIO1K07UovZQvRbUnG3RYur5jxvAMB8GA1UdIwQY MBaAFEGWIw5Y3swMvPsV9WqmTe3R84n1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVpZakRsamV6QXk4LXhYMWFxWk43ZEh6aWZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9kYTk2ZjUtM2YzMy00NmY5LWE1MTQt MmJlZmZmZDU3ZmI3LzEvZzdVclR0U2k5bEM5RnRTY2JkRmk2dm1QRzhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC9kYTk2ZjUtM2YzMy00NmY5LWE1MTQtMmJlZmZmZDU3ZmI3 LzEvUVpZakRsamV6QXk4LXhYMWFxWk43ZEh6aWZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYQDMA0G CSqGSIb3DQEBCwUAA4IBAQCUZUyWYyWk2FV+6OBHUIIfMc09wi5VrJmAF3J5raHx 7Y7fgTTSK/2YiJn+9Jnu1j2mLI27q7Hnz+ZDAmhieS4OUwrnV8JHn4eZ8d17B8n0 FmwEk48R7v52DUvt+W3lJmsGxIDEbSdB0a9nYiHOX6qVJbT3vg6jyY1EQUie1dZi zi3VTnnfFTeLTS1m9DaER3Sp4wWIInaUV+WmhAHbQ3s4FErHOeRlFsQZgkKnVcnJ H2oxGioFhZ2QnA66IMSECoH9QB76giU6DAGopoKbvQpTJkhDJh/GCO80Ah/i5UhL 4aobbzvvU/cH5YVPtahplxwzuFPvKvgx7ItAzdVIl45+ -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:34 2026 by rpki-client