This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/817c14-b800-4c15-a89e-704f263389e2/1/SRCBhIkP-Hqzoh2rZQemvVRuvuw.roa File: SRCBhIkP-Hqzoh2rZQemvVRuvuw.roa (raw, json) Hash identifier: p/d5YtiIC7MAwrPek8AUJQpdVyLGSdu9mLSnMckIXnc= Subject key identifier: 49:10:81:84:89:0F:F8:7A:B3:A2:1D:AB:65:07:A6:BD:54:6E:BE:EC Certificate issuer: /CN=e73cf9433eb80fe9027084529a25412ddfe5bd01 Certificate serial: 019B7A5B6630E68B0DB08EAEA1DBA90138C9 Authority key identifier: E7:3C:F9:43:3E:B8:0F:E9:02:70:84:52:9A:25:41:2D:DF:E5:BD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zz5Qz64D-kCcIRSmiVBLd_lvQE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/817c14-b800-4c15-a89e-704f263389e2/1/SRCBhIkP-Hqzoh2rZQemvVRuvuw.roa Signing time: Thu 01 Jan 2026 16:19:28 +0000 ROA not before: Thu 01 Jan 2026 16:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205112 IP address blocks: 45.157.240.0/22 maxlen: 22 45.157.241.0/24 maxlen: 24 45.157.242.0/24 maxlen: 24 185.65.240.0/22 maxlen: 24 185.232.100.0/22 maxlen: 24 2a0c:1700::/29 maxlen: 48 2a0f:6480::/29 maxlen: 29 2a0f:6480::/32 maxlen: 32 2a0f:6481::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/817c14-b800-4c15-a89e-704f263389e2/1/5zz5Qz64D-kCcIRSmiVBLd_lvQE.crl rsync://rpki.ripe.net/repository/DEFAULT/76/817c14-b800-4c15-a89e-704f263389e2/1/5zz5Qz64D-kCcIRSmiVBLd_lvQE.mft rsync://rpki.ripe.net/repository/DEFAULT/5zz5Qz64D-kCcIRSmiVBLd_lvQE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:66:30:e6:8b:0d:b0:8e:ae:a1:db:a9:01:38:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e73cf9433eb80fe9027084529a25412ddfe5bd01 Validity Not Before: Jan 1 16:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=49108184890ff87ab3a21dab6507a6bd546ebeec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ab:00:f8:85:e3:39:74:6e:6d:e2:8f:a5:c2: 1d:7a:48:6d:43:fb:98:fe:cc:ee:ee:ae:6e:20:64: 17:9a:a5:c4:c5:03:15:82:45:86:eb:ca:7a:fe:d5: 04:44:e2:85:69:ca:01:67:a1:af:53:74:f2:89:86: 33:18:8c:82:38:df:8c:16:12:77:31:9e:dc:3d:44: 6b:d5:3d:a0:ca:01:40:a2:7f:76:bb:a9:29:fd:bc: 2f:bf:d4:bc:24:8b:5e:a6:1d:94:38:d2:1f:1e:31: 88:ea:5c:ec:fb:6a:e1:97:5c:49:7e:88:c0:44:35: 8c:12:b7:f6:d0:19:1d:c2:3e:e2:24:db:b4:5f:af: 35:78:50:29:cc:27:cc:df:6b:66:03:b8:16:40:7c: 8d:7c:d1:6b:61:fb:62:be:43:76:09:b2:24:14:c9: 64:8e:20:2c:ff:4c:d0:a9:01:bf:16:e1:cc:af:aa: e4:5b:0c:ec:9f:50:34:da:4c:86:b5:c8:aa:47:4a: 8f:e1:0f:71:08:2c:63:21:f2:e7:30:ba:ca:48:89: f8:f7:e6:63:f1:88:61:90:58:d1:68:4a:59:9a:d7: 42:19:4e:d1:41:74:b6:3f:3a:f4:d3:cd:81:e2:a6: 5f:33:8a:a0:5d:c7:60:0b:3b:6b:26:06:79:75:c1: 45:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:10:81:84:89:0F:F8:7A:B3:A2:1D:AB:65:07:A6:BD:54:6E:BE:EC X509v3 Authority Key Identifier: keyid:E7:3C:F9:43:3E:B8:0F:E9:02:70:84:52:9A:25:41:2D:DF:E5:BD:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zz5Qz64D-kCcIRSmiVBLd_lvQE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/817c14-b800-4c15-a89e-704f263389e2/1/SRCBhIkP-Hqzoh2rZQemvVRuvuw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/817c14-b800-4c15-a89e-704f263389e2/1/5zz5Qz64D-kCcIRSmiVBLd_lvQE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.240.0/22 185.65.240.0/22 185.232.100.0/22 IPv6: 2a0c:1700::/29 2a0f:6480::/29 Signature Algorithm: sha256WithRSAEncryption 99:29:e8:7a:03:75:da:bc:34:bf:7f:b3:a4:5f:b5:64:b7:c9: 9d:47:fd:da:99:28:f5:ac:9e:4d:7c:f5:b1:89:9d:65:de:e7: a3:34:6a:30:85:73:df:3a:e0:0c:57:91:ce:ad:e7:10:8a:45: 12:82:0a:52:bf:23:a3:bb:04:2b:bb:55:47:4e:d3:e8:cf:9c: 81:79:f6:0e:b1:a6:3a:18:40:56:15:05:41:e1:35:6f:09:98: b2:27:87:71:e6:eb:ab:a6:b4:5a:91:71:a1:79:ad:62:f9:8a: 44:1c:80:c6:9b:7e:f5:e7:0b:60:93:42:28:a1:63:8b:0f:d1: ea:56:f8:dd:18:e9:40:ce:19:65:a8:4e:f4:6f:38:4c:83:6b: a6:6f:34:10:cf:49:80:fb:e5:7c:e4:a1:ec:b8:67:eb:48:41: d0:46:d2:89:73:14:12:59:7d:3c:0e:1c:c0:95:1b:88:da:92: c3:7d:c5:0a:c3:66:2b:ff:59:49:c1:42:37:f1:76:47:cc:aa: 35:5d:a5:73:7d:e9:6f:70:c1:9a:e3:f8:87:63:c4:17:d3:bf: b3:65:ca:80:a7:cc:36:3b:fb:c9:2c:eb:d4:b1:fd:d2:22:74: 18:2d:d7:82:ac:f4:1c:d9:d0:79:dc:7d:87:c4:09:0f:c6:4b: 57:2c:d7:e1 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt6W2Yw5osNsI6uodupATjJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3M2NmOTQzM2ViODBmZTkwMjcwODQ1MjlhMjU0MTJkZGZl NWJkMDEwHhcNMjYwMTAxMTYxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTEwODE4NDg5MGZmODdhYjNhMjFkYWI2NTA3YTZiZDU0NmViZWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKsA+IXjOXRubeKPpcIdekhtQ/uY /szu7q5uIGQXmqXExQMVgkWG68p6/tUEROKFacoBZ6GvU3TyiYYzGIyCON+MFhJ3 MZ7cPURr1T2gygFAon92u6kp/bwvv9S8JIteph2UONIfHjGI6lzs+2rhl1xJfojA RDWMErf20Bkdwj7iJNu0X681eFApzCfM32tmA7gWQHyNfNFrYftivkN2CbIkFMlk jiAs/0zQqQG/FuHMr6rkWwzsn1A02kyGtciqR0qP4Q9xCCxjIfLnMLrKSIn49+Zj 8YhhkFjRaEpZmtdCGU7RQXS2Pzr0082B4qZfM4qgXcdgCztrJgZ5dcFFbQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFEkQgYSJD/h6s6Idq2UHpr1Ubr7sMB8GA1UdIwQY MBaAFOc8+UM+uA/pAnCEUpolQS3f5b0BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXp6NVF6NjRELWtDY0lSU21pVkJMZF9sdlFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni84MTdjMTQtYjgwMC00YzE1LWE4OWUt NzA0ZjI2MzM4OWUyLzEvU1JDQmhJa1AtSHF6b2gyclpRZW12VlJ1dnV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni84MTdjMTQtYjgwMC00YzE1LWE4OWUtNzA0ZjI2MzM4OWUy LzEvNXp6NVF6NjRELWtDY0lSU21pVkJMZF9sdlFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAYBAIAATASAwQCLZ3wAwQC uUHwAwQCuehkMBQEAgACMA4DBQMqDBcAAwUDKg9kgDANBgkqhkiG9w0BAQsFAAOC AQEAmSnoegN12rw0v3+zpF+1ZLfJnUf92pko9ayeTXz1sYmdZd7nozRqMIVz3zrg DFeRzq3nEIpFEoIKUr8jo7sEK7tVR07T6M+cgXn2DrGmOhhAVhUFQeE1bwmYsieH cebrq6a0WpFxoXmtYvmKRByAxpt+9ecLYJNCKKFjiw/R6lb43RjpQM4ZZahO9G84 TINrpm80EM9JgPvlfOSh7Lhn60hB0EbSiXMUEll9PA4cwJUbiNqSw33FCsNmK/9Z ScFCN/F2R8yqNV2lc33pb3DBmuP4h2PEF9O/s2XKgKfMNjv7ySzr1LH90iJ0GC3X gqz0HNnQedx9h8QJD8ZLVyzX4Q== -----END CERTIFICATE-----Generated at Mon Jan 26 09:23:35 2026 by rpki-client