This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/ICjxcQK82ea7Xb7en5rLnCcbVD8.roa File: ICjxcQK82ea7Xb7en5rLnCcbVD8.roa (raw, json) Hash identifier: zddIqD4bnTjl0bvdvHZDyK9AYwU//2NAO0jrHUcMa98= Subject key identifier: 20:28:F1:71:02:BC:D9:E6:BB:5D:BE:DE:9F:9A:CB:9C:27:1B:54:3F Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02 Certificate serial: 019B7C12A903991F0B8BE665CF89CE8FB61F Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/ICjxcQK82ea7Xb7en5rLnCcbVD8.roa Signing time: Fri 02 Jan 2026 00:19:16 +0000 ROA not before: Fri 02 Jan 2026 00:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34427 IP address blocks: 45.157.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.mft rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:a9:03:99:1f:0b:8b:e6:65:cf:89:ce:8f:b6:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02 Validity Not Before: Jan 2 00:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2028f17102bcd9e6bb5dbede9f9acb9c271b543f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0c:23:b7:3f:cb:b4:37:c1:72:cd:0f:3c:63: 00:d3:08:04:00:12:c4:5d:5e:f5:b4:97:33:b5:3c: ac:87:85:1e:a0:c9:e8:26:ea:03:73:55:b1:88:cd: 78:9f:b8:de:2d:0c:ab:23:36:87:a1:d7:81:7b:97: eb:8a:78:ed:58:2e:3d:d2:ec:ce:47:0b:9a:b7:78: e3:26:42:93:bc:f2:5d:cd:8b:f1:20:fe:73:e6:2a: de:f6:ec:6f:02:93:0f:01:b2:12:21:b4:36:62:7a: 91:98:ab:c2:f7:46:7a:81:a2:7a:60:6c:9d:d8:df: 75:45:93:7f:18:c0:b1:9d:db:13:5a:6d:df:3b:af: 76:fb:0d:a9:f8:94:d3:54:04:9c:e4:da:eb:32:7f: 22:ce:b8:f3:22:2a:37:10:26:be:63:1d:ce:21:20: 03:20:1b:07:0c:de:6e:fb:18:ea:b5:7a:57:91:1d: 84:a6:e1:ed:c0:73:b5:ce:a9:1e:3e:32:bb:97:53: 83:20:23:b0:b9:81:ea:e5:ae:4a:93:45:7e:17:29: a1:9a:ea:58:1c:9f:83:e7:66:cd:2c:01:dd:2f:45: 7b:1f:f3:2e:fe:a0:40:bc:bb:ba:ee:d1:91:90:0b: 62:36:99:00:56:c0:c5:11:f9:f8:cd:73:dc:cb:21: 72:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:28:F1:71:02:BC:D9:E6:BB:5D:BE:DE:9F:9A:CB:9C:27:1B:54:3F X509v3 Authority Key Identifier: keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/ICjxcQK82ea7Xb7en5rLnCcbVD8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.132.0/22 Signature Algorithm: sha256WithRSAEncryption 81:14:3a:90:ba:82:4e:a1:2c:31:a5:4c:f8:e6:71:df:03:65: bd:83:b9:0d:1d:b0:51:4f:e7:21:92:2c:93:98:08:e9:30:55: 8a:ee:74:6f:80:2f:83:b1:18:d2:9e:fa:c6:6d:72:c5:50:3d: c0:37:98:77:07:73:f2:d1:a2:7e:8b:53:73:d6:6d:8a:d0:ee: f5:0a:66:78:39:ee:af:e9:5b:16:aa:d7:86:01:ac:9d:f8:52: 92:96:d1:71:f0:b4:2d:a6:0c:d9:9e:0b:c0:95:c5:ef:10:8e: 68:b7:96:18:e7:46:3e:f8:1f:bf:e0:0a:86:1c:d2:a4:15:f8: 34:b8:13:7d:39:cd:3c:a9:33:5b:cb:a1:95:ec:44:a9:3e:50: de:0e:0c:96:a6:b8:c4:5c:9f:a8:a1:fb:fa:ca:39:57:dc:fc: c1:6f:03:d2:3f:de:c6:40:d2:29:81:7c:81:96:6e:b4:63:d4: 47:30:59:60:ad:fc:12:df:f2:ea:72:6f:b8:17:de:9b:56:50: 0e:cf:01:b4:95:81:63:d9:f0:08:46:ac:3b:80:03:c2:ec:c8: c2:d7:ae:12:45:d6:78:0f:bd:d5:07:8d:0f:1e:7c:67:14:15: 30:df:28:fc:dc:7a:6a:ee:47:9b:77:f8:de:a1:d9:a8:32:cf: 95:a0:5a:56 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EqkDmR8Li+Zlz4nOj7YfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3Y2IxNGE0MWY4ZDllNjI4ZGFlODhmNDc1MjgyMmZjNzdk ZmVjMDIwHhcNMjYwMTAyMDAxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDI4ZjE3MTAyYmNkOWU2YmI1ZGJlZGU5ZjlhY2I5YzI3MWI1NDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Awjtz/LtDfBcs0PPGMA0wgEABLE XV71tJcztTysh4UeoMnoJuoDc1WxiM14n7jeLQyrIzaHodeBe5frinjtWC490uzO Rwuat3jjJkKTvPJdzYvxIP5z5ire9uxvApMPAbISIbQ2YnqRmKvC90Z6gaJ6YGyd 2N91RZN/GMCxndsTWm3fO692+w2p+JTTVASc5NrrMn8izrjzIio3ECa+Yx3OISAD IBsHDN5u+xjqtXpXkR2EpuHtwHO1zqkePjK7l1ODICOwuYHq5a5Kk0V+FymhmupY HJ+D52bNLAHdL0V7H/Mu/qBAvLu67tGRkAtiNpkAVsDFEfn4zXPcyyFydwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCAo8XECvNnmu12+3p+ay5wnG1Q/MB8GA1UdIwQY MBaAFPfLFKQfjZ5ija6I9HUoIvx33+wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTkt ZTdlZTRlNzVkM2FmLzEvSUNqeGNRSzgyZWE3WGI3ZW41ckxuQ2NiVkQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTktZTdlZTRlNzVkM2Fm LzEvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ2EMA0G CSqGSIb3DQEBCwUAA4IBAQCBFDqQuoJOoSwxpUz45nHfA2W9g7kNHbBRT+chkiyT mAjpMFWK7nRvgC+DsRjSnvrGbXLFUD3AN5h3B3Py0aJ+i1Nz1m2K0O71CmZ4Oe6v 6VsWqteGAayd+FKSltFx8LQtpgzZngvAlcXvEI5ot5YY50Y++B+/4AqGHNKkFfg0 uBN9Oc08qTNby6GV7ESpPlDeDgyWprjEXJ+oofv6yjlX3PzBbwPSP97GQNIpgXyB lm60Y9RHMFlgrfwS3/Lqcm+4F96bVlAOzwG0lYFj2fAIRqw7gAPC7MjC164SRdZ4 D73VB40PHnxnFBUw3yj83Hpq7kebd/jeodmoMs+VoFpW -----END CERTIFICATE-----Generated at Mon Jan 26 05:01:37 2026 by rpki-client