This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/rKVa3fR2ADZU0VCCGgXYMqyXBZI.roa File: rKVa3fR2ADZU0VCCGgXYMqyXBZI.roa (raw, json) Hash identifier: aPmQ9dFrzaY5WBSQSOvpilwEsvImk3jvByr1CJH1OMI= Subject key identifier: AC:A5:5A:DD:F4:76:00:36:54:D1:50:82:1A:05:D8:32:AC:97:05:92 Certificate issuer: /CN=a6562d0869480dc11b74a552cd167b6f6339c8ba Certificate serial: 019B7EA56A1B73C975A496087A947F184618 Authority key identifier: A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/rKVa3fR2ADZU0VCCGgXYMqyXBZI.roa Signing time: Fri 02 Jan 2026 12:18:48 +0000 ROA not before: Fri 02 Jan 2026 12:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202945 IP address blocks: 45.154.60.0/24 maxlen: 24 2a0f:b100::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.crl rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.mft rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:6a:1b:73:c9:75:a4:96:08:7a:94:7f:18:46:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6562d0869480dc11b74a552cd167b6f6339c8ba Validity Not Before: Jan 2 12:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aca55addf476003654d150821a05d832ac970592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:1f:74:f7:67:c0:24:5d:e3:e5:da:4f:8e:56: 56:94:1b:77:ed:2c:55:07:8e:27:e4:f7:b3:ca:13: 43:07:cf:23:1f:21:b6:8b:b8:3a:01:55:1a:dc:4a: d5:cd:fc:98:4a:bd:91:65:71:8a:6e:61:08:9e:cb: bf:ff:b3:61:3b:53:ec:4e:cd:e6:19:6b:3d:f4:bb: f0:19:c6:2b:eb:50:8b:18:bf:3c:72:f6:cd:cd:5c: 24:a4:d2:64:79:69:71:0e:c8:83:fe:bf:14:03:d2: 80:7a:eb:bf:48:78:8d:e0:9c:3b:ce:d3:2a:77:22: dc:fd:b8:bd:7a:9b:5c:fe:72:a9:fe:3f:b7:32:a6: d9:9d:88:3e:2e:77:4d:fa:a4:7c:4a:0f:10:cb:ae: f2:4a:0a:b1:37:cf:35:2f:dc:9f:86:60:b3:82:63: cb:e7:8a:34:0f:e6:58:56:a9:40:e8:8a:5e:9e:9b: f2:3d:e5:8b:bc:d1:83:fc:ad:81:16:ca:1f:fd:fd: 6f:f0:9c:92:f6:73:b3:34:54:5f:1b:d3:6a:60:06: 30:06:94:f5:a2:3c:bc:3f:4a:e8:46:be:d1:18:15: 7d:06:3d:ba:5b:bf:f7:28:f6:f0:04:97:ca:5b:a2: 80:c2:a0:2b:0e:7e:b5:b0:bd:86:5c:ba:54:90:81: 8f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A5:5A:DD:F4:76:00:36:54:D1:50:82:1A:05:D8:32:AC:97:05:92 X509v3 Authority Key Identifier: keyid:A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/rKVa3fR2ADZU0VCCGgXYMqyXBZI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.154.60.0/24 IPv6: 2a0f:b100::/44 Signature Algorithm: sha256WithRSAEncryption 61:78:b9:52:58:bf:a1:47:45:dc:60:b2:24:2c:b8:73:0c:5e: 15:3f:1e:24:83:90:98:fb:df:d3:6a:b4:3f:a1:e9:45:4e:ef: 95:b9:ad:ff:44:5f:6a:61:d7:c8:85:d7:7c:30:8e:7c:17:9a: 32:cf:ab:9d:8f:c5:ac:71:c0:e4:2e:7c:20:30:68:e0:e4:e2: b7:a1:43:b5:3b:f7:53:a6:cf:a1:a8:df:6c:9b:0d:62:0d:50: cd:c0:fa:b8:08:18:b2:27:75:57:42:6a:99:3a:75:0f:f4:3f: 39:64:19:c1:9d:6d:e5:57:47:73:47:23:83:cd:8b:aa:08:d4: c9:3e:18:bc:98:04:df:66:2b:9f:aa:d3:14:c7:95:74:a3:f9: e1:b2:02:1f:8c:40:9b:7d:2d:b7:71:0d:1d:d6:3b:ab:3d:d7: c3:29:3d:57:ea:4b:16:b4:a0:fe:36:13:11:8f:21:96:b9:71: 1a:71:56:82:ab:21:64:1d:22:cf:0a:e3:f5:7d:d8:97:e0:3c: ee:f1:c1:d2:f2:5c:97:53:28:aa:03:9e:a7:a4:cc:a0:2a:0e: aa:cc:3e:62:94:97:41:31:fc:7c:df:0f:1f:ac:79:7d:88:52: 46:9b:3d:e3:71:b0:01:3d:d0:ea:63:ca:cb:2b:4b:51:2d:97: 5e:a5:9f:78 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+pWobc8l1pJYIepR/GEYYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NTYyZDA4Njk0ODBkYzExYjc0YTU1MmNkMTY3YjZmNjMz OWM4YmEwHhcNMjYwMTAyMTIxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2E1NWFkZGY0NzYwMDM2NTRkMTUwODIxYTA1ZDgzMmFjOTcwNTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8R9092fAJF3j5dpPjlZWlBt37SxV B44n5PezyhNDB88jHyG2i7g6AVUa3ErVzfyYSr2RZXGKbmEInsu//7NhO1PsTs3m GWs99LvwGcYr61CLGL88cvbNzVwkpNJkeWlxDsiD/r8UA9KAeuu/SHiN4Jw7ztMq dyLc/bi9eptc/nKp/j+3MqbZnYg+LndN+qR8Sg8Qy67ySgqxN881L9yfhmCzgmPL 54o0D+ZYVqlA6IpenpvyPeWLvNGD/K2BFsof/f1v8JyS9nOzNFRfG9NqYAYwBpT1 ojy8P0roRr7RGBV9Bj26W7/3KPbwBJfKW6KAwqArDn61sL2GXLpUkIGPEQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFKylWt30dgA2VNFQghoF2DKslwWSMB8GA1UdIwQY MBaAFKZWLQhpSA3BG3SlUs0We29jOci6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGxZdENHbElEY0ViZEtWU3pSWjdiMk01eUxvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8yMTJkZDItZGE4ZC00MDQ4LTkxNmEt NDVhOGZlZDNhMmE1LzEvcktWYTNmUjJBRFpVMFZDQ0dnWFlNcXlYQlpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8yMTJkZDItZGE4ZC00MDQ4LTkxNmEtNDVhOGZlZDNhMmE1 LzEvcGxZdENHbElEY0ViZEtWU3pSWjdiMk01eUxvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALZo8MA8E AgACMAkDBwQqD7EAAAAwDQYJKoZIhvcNAQELBQADggEBAGF4uVJYv6FHRdxgsiQs uHMMXhU/HiSDkJj739NqtD+h6UVO75W5rf9EX2ph18iF13wwjnwXmjLPq52Pxaxx wOQufCAwaODk4rehQ7U791Omz6Go32ybDWINUM3A+rgIGLIndVdCapk6dQ/0Pzlk GcGdbeVXR3NHI4PNi6oI1Mk+GLyYBN9mK5+q0xTHlXSj+eGyAh+MQJt9LbdxDR3W O6s918MpPVfqSxa0oP42ExGPIZa5cRpxVoKrIWQdIs8K4/V92JfgPO7xwdLyXJdT KKoDnqekzKAqDqrMPmKUl0Ex/HzfDx+seX2IUkabPeNxsAE90OpjyssrS1Etl16l n3g= -----END CERTIFICATE-----Generated at Mon Jan 26 19:39:16 2026 by rpki-client