This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/tg8sRY8C-CGe0j2_BQc-V9xv2NM.roa File: tg8sRY8C-CGe0j2_BQc-V9xv2NM.roa (raw, json) Hash identifier: peV+2Yl1optmH9HpZPRl3Di4cbcQPUbyLxiY8B4DOuc= Subject key identifier: B6:0F:2C:45:8F:02:F8:21:9E:D2:3D:BF:05:07:3E:57:DC:6F:D8:D3 Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02 Certificate serial: 019B7C12A9D4E79F66646EDD6F801928056B Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/tg8sRY8C-CGe0j2_BQc-V9xv2NM.roa Signing time: Fri 02 Jan 2026 00:19:16 +0000 ROA not before: Fri 02 Jan 2026 00:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208064 IP address blocks: 45.157.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.mft rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:a9:d4:e7:9f:66:64:6e:dd:6f:80:19:28:05:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02 Validity Not Before: Jan 2 00:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b60f2c458f02f8219ed23dbf05073e57dc6fd8d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ad:8e:6e:75:aa:b7:c8:27:56:a1:3a:70:2e: bd:c2:27:34:04:26:c5:5c:5a:83:b7:db:0e:25:d9: 52:c4:52:ec:f6:e6:8f:97:8e:d0:73:bb:60:9e:72: d7:49:13:bd:d8:9e:5c:99:eb:ef:7b:fa:d2:13:b8: e7:10:99:2c:3d:80:ba:fb:4c:6b:ea:72:3d:29:74: 57:fb:22:2f:16:75:fa:18:0e:3e:22:a9:1a:29:dc: 73:9c:48:5d:42:75:d4:d9:b7:37:be:07:dd:83:8b: b9:68:5d:6b:27:cb:09:f2:d1:4b:86:c1:81:52:68: 58:e5:75:34:ea:53:be:dc:8e:ac:5f:69:ad:96:80: 4a:0c:dd:88:17:0b:87:a6:b9:0c:2a:09:1f:4a:b6: 18:fc:c2:ff:79:7a:6e:39:6d:86:03:32:08:cb:4e: d5:4a:0f:5c:45:9f:5f:f9:88:6f:f1:96:16:4f:3a: 97:e2:0f:30:f1:a1:22:c3:90:cb:4a:35:ba:7d:f1: 20:d9:2f:98:8c:77:47:5a:bb:13:2c:48:99:f2:2e: 68:af:9d:de:ea:29:29:58:26:10:e8:b4:36:45:34: ac:1f:da:58:b1:07:0e:88:2d:08:57:91:53:7c:b1: 09:18:d0:11:55:ad:f9:4a:65:f0:3a:16:6f:ad:1f: 13:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0F:2C:45:8F:02:F8:21:9E:D2:3D:BF:05:07:3E:57:DC:6F:D8:D3 X509v3 Authority Key Identifier: keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/tg8sRY8C-CGe0j2_BQc-V9xv2NM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.132.0/22 Signature Algorithm: sha256WithRSAEncryption 37:35:d1:1a:ca:09:b6:66:35:d4:52:84:c5:f1:9a:fc:46:45: f7:eb:4e:ac:d9:32:a7:0c:0a:66:fc:b0:98:28:f0:15:30:9b: 4c:27:02:13:fd:0d:c7:c3:1b:2f:c9:72:1e:25:d0:c6:bf:2f: 74:8b:45:3f:b4:b3:84:d7:ab:6e:0c:d6:8f:c2:d4:d6:a0:02: 4f:af:d9:ac:5c:27:eb:6e:ea:62:46:fb:a1:15:7b:a8:72:25: f8:79:1c:63:da:b3:c2:24:7b:4b:d9:8f:16:ec:10:d2:5b:af: 64:e7:44:42:5d:44:a1:66:cf:f7:b5:ec:d6:c6:4d:53:39:6a: 15:08:ab:a0:43:76:57:bd:ec:e3:bb:3d:21:ae:ad:f5:90:ee: ec:bf:d4:c4:af:55:9c:c5:99:b7:cf:7f:31:43:3e:e4:78:31: 1e:8f:94:47:2e:0b:bb:0f:11:83:36:59:2d:85:9b:d4:2c:11: a2:b4:75:06:ac:26:c6:7d:0b:cc:6b:b8:fc:4e:6a:24:1b:07: 1d:bf:f7:81:01:a6:16:80:80:69:48:02:2a:31:87:91:05:78: ed:35:b2:a4:73:f2:ce:01:0e:2b:50:2b:a0:0a:82:7f:4d:51: fd:e7:49:d2:98:ed:14:e0:f4:99:ba:ca:2b:fb:7d:3f:d1:dd: 5d:04:12:f0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EqnU559mZG7db4AZKAVrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3Y2IxNGE0MWY4ZDllNjI4ZGFlODhmNDc1MjgyMmZjNzdk ZmVjMDIwHhcNMjYwMTAyMDAxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNjBmMmM0NThmMDJmODIxOWVkMjNkYmYwNTA3M2U1N2RjNmZkOGQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAya2ObnWqt8gnVqE6cC69wic0BCbF XFqDt9sOJdlSxFLs9uaPl47Qc7tgnnLXSRO92J5cmevve/rSE7jnEJksPYC6+0xr 6nI9KXRX+yIvFnX6GA4+IqkaKdxznEhdQnXU2bc3vgfdg4u5aF1rJ8sJ8tFLhsGB UmhY5XU06lO+3I6sX2mtloBKDN2IFwuHprkMKgkfSrYY/ML/eXpuOW2GAzIIy07V Sg9cRZ9f+Yhv8ZYWTzqX4g8w8aEiw5DLSjW6ffEg2S+YjHdHWrsTLEiZ8i5or53e 6ikpWCYQ6LQ2RTSsH9pYsQcOiC0IV5FTfLEJGNARVa35SmXwOhZvrR8TKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLYPLEWPAvghntI9vwUHPlfcb9jTMB8GA1UdIwQY MBaAFPfLFKQfjZ5ija6I9HUoIvx33+wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTkt ZTdlZTRlNzVkM2FmLzEvdGc4c1JZOEMtQ0dlMGoyX0JRYy1WOXh2Mk5NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTktZTdlZTRlNzVkM2Fm LzEvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ2EMA0G CSqGSIb3DQEBCwUAA4IBAQA3NdEaygm2ZjXUUoTF8Zr8RkX3606s2TKnDApm/LCY KPAVMJtMJwIT/Q3HwxsvyXIeJdDGvy90i0U/tLOE16tuDNaPwtTWoAJPr9msXCfr bupiRvuhFXuociX4eRxj2rPCJHtL2Y8W7BDSW69k50RCXUShZs/3tezWxk1TOWoV CKugQ3ZXvezjuz0hrq31kO7sv9TEr1WcxZm3z38xQz7keDEej5RHLgu7DxGDNlkt hZvULBGitHUGrCbGfQvMa7j8TmokGwcdv/eBAaYWgIBpSAIqMYeRBXjtNbKkc/LO AQ4rUCugCoJ/TVH950nSmO0U4PSZusor+30/0d1dBBLw -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:54 2026 by rpki-client