This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/xMlLO5Rf6Jgjr2cHkSM6Ud-wAXQ.roa File: xMlLO5Rf6Jgjr2cHkSM6Ud-wAXQ.roa (raw, json) Hash identifier: RK/wvilLdjBC0dYnwxHCUjXesiJZYcmAP7/mpKcFofs= Subject key identifier: C4:C9:4B:3B:94:5F:E8:98:23:AF:67:07:91:23:3A:51:DF:B0:01:74 Certificate issuer: /CN=0589ee303ff7d0d557599fa04b293dc2b16bb4d4 Certificate serial: 019B7F14EBA32CF31A5B762C938C591C4578 Authority key identifier: 05:89:EE:30:3F:F7:D0:D5:57:59:9F:A0:4B:29:3D:C2:B1:6B:B4:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/xMlLO5Rf6Jgjr2cHkSM6Ud-wAXQ.roa Signing time: Fri 02 Jan 2026 14:20:35 +0000 ROA not before: Fri 02 Jan 2026 14:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212570 IP address blocks: 45.132.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:eb:a3:2c:f3:1a:5b:76:2c:93:8c:59:1c:45:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0589ee303ff7d0d557599fa04b293dc2b16bb4d4 Validity Not Before: Jan 2 14:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4c94b3b945fe89823af670791233a51dfb00174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:4f:35:cb:13:30:00:83:90:a1:cb:10:47: a4:10:d7:15:24:73:e6:2a:8a:3d:82:af:b1:b8:d0: f2:f2:d7:6a:ec:90:12:66:3d:68:7d:01:94:6c:d4: fb:ff:f9:ca:e8:b2:05:1e:d4:bf:a2:0a:1c:bd:ad: ed:20:ba:1f:bb:ad:c9:c0:57:14:54:e7:b0:fd:cd: 63:dd:dd:e7:65:86:76:63:f8:e0:9e:bd:36:ad:d7: de:e5:60:3f:0d:57:6f:a4:db:2c:7f:30:9d:92:a1: d2:63:27:c8:40:9b:b6:3d:94:27:1c:31:a9:74:1e: 1a:84:a6:4a:c8:52:14:1a:35:15:06:61:57:f7:6b: a9:1c:cd:bb:11:c5:5e:0f:74:3f:86:05:98:c9:b1: c4:44:de:86:42:ad:66:5e:08:4d:e6:f7:d7:fa:5b: 6b:aa:49:d5:00:9f:17:69:83:5d:cb:8f:a9:e6:77: 95:b7:64:ec:28:24:93:e5:20:bf:c6:e0:62:74:6c: 8b:4c:73:3e:dd:50:8c:3a:53:0d:e0:ca:b2:19:de: 9a:21:e7:50:50:39:50:35:66:a1:55:19:72:4f:df: 4f:cf:12:25:52:12:86:24:0c:66:f3:3c:d9:21:49: 78:7a:19:f8:cc:ab:be:0b:88:b6:9e:59:be:bd:40: 06:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C9:4B:3B:94:5F:E8:98:23:AF:67:07:91:23:3A:51:DF:B0:01:74 X509v3 Authority Key Identifier: keyid:05:89:EE:30:3F:F7:D0:D5:57:59:9F:A0:4B:29:3D:C2:B1:6B:B4:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/xMlLO5Rf6Jgjr2cHkSM6Ud-wAXQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.147.0/24 Signature Algorithm: sha256WithRSAEncryption 89:b2:02:50:c8:a3:7a:64:43:5b:30:13:98:81:46:9c:fc:44: 6b:97:2a:4a:50:f4:e3:10:fa:b2:c1:11:74:4c:fe:6e:60:85: b1:9b:0c:46:66:83:fa:f1:00:fe:c8:0e:4d:86:e4:cd:d5:6e: 7b:67:e6:63:84:b6:0e:14:fe:c5:dd:9d:4a:ca:1d:03:0f:29: ec:c1:53:72:5d:22:2f:dd:71:a4:ae:2e:ad:8f:c1:d0:85:e8: 94:a4:69:44:7e:65:8f:6c:75:3c:69:9a:b9:dd:16:8c:43:b4: e2:0e:b4:d0:17:5f:a7:e9:c5:6f:b6:e7:06:2d:d2:a3:48:74: fa:0f:8d:0c:82:b1:9a:0e:97:d1:35:9a:a6:85:0d:b2:6b:5a: c9:38:b4:5d:54:1c:c9:ec:5e:3e:63:18:c4:9a:5d:2d:a4:70: 7d:2d:60:ee:a4:69:01:b7:45:af:60:95:9d:37:8b:48:0b:66: 86:d5:df:c3:27:62:fb:92:89:9c:c6:c5:a1:70:8b:25:b3:d9: 43:47:73:c8:1e:cb:5f:54:4c:85:29:d7:ad:33:f8:db:79:7c: 5a:29:f6:c1:38:db:b6:8e:91:5d:c1:2e:a1:74:93:d1:fd:c4: 6c:e4:11:ad:ae:63:ea:bc:99:22:9a:16:eb:7b:54:ba:ff:57: 7e:f9:f0:13 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FOujLPMaW3Ysk4xZHEV4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ODllZTMwM2ZmN2QwZDU1NzU5OWZhMDRiMjkzZGMyYjE2 YmI0ZDQwHhcNMjYwMTAyMTQyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGM5NGIzYjk0NWZlODk4MjNhZjY3MDc5MTIzM2E1MWRmYjAwMTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QRPNcsTMACDkKHLEEekENcVJHPm Koo9gq+xuNDy8tdq7JASZj1ofQGUbNT7//nK6LIFHtS/ogocva3tILofu63JwFcU VOew/c1j3d3nZYZ2Y/jgnr02rdfe5WA/DVdvpNssfzCdkqHSYyfIQJu2PZQnHDGp dB4ahKZKyFIUGjUVBmFX92upHM27EcVeD3Q/hgWYybHERN6GQq1mXghN5vfX+ltr qknVAJ8XaYNdy4+p5neVt2TsKCST5SC/xuBidGyLTHM+3VCMOlMN4MqyGd6aIedQ UDlQNWahVRlyT99PzxIlUhKGJAxm8zzZIUl4ehn4zKu+C4i2nlm+vUAGvwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMTJSzuUX+iYI69nB5EjOlHfsAF0MB8GA1UdIwQY MBaAFAWJ7jA/99DVV1mfoEspPcKxa7TUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlludU1EXzMwTlZYV1otZ1N5azl3ckZydE5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My80ZTE5OGUtMmY2MS00NmYzLWI1ZjYt MDZkNmU5NDdlMzhmLzEveE1sTE81UmY2SmdqcjJjSGtTTTZVZC13QVhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My80ZTE5OGUtMmY2MS00NmYzLWI1ZjYtMDZkNmU5NDdlMzhm LzEvQlludU1EXzMwTlZYV1otZ1N5azl3ckZydE5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYSTMA0G CSqGSIb3DQEBCwUAA4IBAQCJsgJQyKN6ZENbMBOYgUac/ERrlypKUPTjEPqywRF0 TP5uYIWxmwxGZoP68QD+yA5NhuTN1W57Z+ZjhLYOFP7F3Z1Kyh0DDynswVNyXSIv 3XGkri6tj8HQheiUpGlEfmWPbHU8aZq53RaMQ7TiDrTQF1+n6cVvtucGLdKjSHT6 D40MgrGaDpfRNZqmhQ2ya1rJOLRdVBzJ7F4+YxjEml0tpHB9LWDupGkBt0WvYJWd N4tIC2aG1d/DJ2L7komcxsWhcIsls9lDR3PIHstfVEyFKdetM/jbeXxaKfbBONu2 jpFdwS6hdJPR/cRs5BGtrmPqvJkimhbre1S6/1d++fAT -----END CERTIFICATE-----Generated at Mon Jan 26 11:05:00 2026 by rpki-client