This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_ruYevJ63B-p43DIzRavuNMUlYs.roa File: _ruYevJ63B-p43DIzRavuNMUlYs.roa (raw, json) Hash identifier: l0rE7WZAdFwmxD+supN3BOtIVuER0ViiwOmnyckP2eo= Subject key identifier: FE:BB:98:7A:F2:7A:DC:1F:A9:E3:70:C8:CD:16:AF:B8:D3:14:95:8B Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986 Certificate serial: 019B7F810DADCF8FF1DD03DAFE852E48A1CA Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_ruYevJ63B-p43DIzRavuNMUlYs.roa Signing time: Fri 02 Jan 2026 16:18:42 +0000 ROA not before: Fri 02 Jan 2026 16:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35771 IP address blocks: 45.135.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.mft rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:0d:ad:cf:8f:f1:dd:03:da:fe:85:2e:48:a1:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986 Validity Not Before: Jan 2 16:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=febb987af27adc1fa9e370c8cd16afb8d314958b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3d:03:25:61:dc:0d:26:39:62:f5:4f:02:f2: 79:8f:11:21:24:52:b3:24:34:4b:1c:39:d0:31:40: bc:67:8c:90:a2:70:14:a2:0c:4d:d8:2f:9f:f8:5c: b0:77:89:27:46:9e:aa:98:36:7b:7d:7d:17:16:56: b4:54:56:35:04:ce:10:ef:05:11:e3:38:53:f9:79: 2e:c7:ee:3e:bd:83:d3:7c:89:38:3c:06:71:e4:70: ed:75:72:17:e6:cf:b6:70:e4:61:3e:40:15:f0:b2: 2e:a3:dc:9c:29:44:f9:50:90:44:8a:fa:c7:fa:67: 24:f9:b3:ca:1d:0c:c8:c4:ae:17:c0:3a:d3:19:0b: 24:b2:33:7f:7e:0c:10:5d:d2:ab:6d:76:e7:ad:85: 98:a6:1d:77:da:23:49:cc:f1:92:a2:ec:34:0c:b8: 50:8f:ab:ce:a4:68:f9:97:ae:d4:f1:66:7c:63:96: cf:8f:bc:d8:28:a2:7a:ee:18:35:14:fd:6f:68:b8: 65:61:dc:00:83:05:89:d1:23:f5:0f:c2:36:08:0e: ed:ad:f6:41:3e:81:b2:18:f7:f5:d7:1d:4a:16:aa: b4:09:5d:ee:06:fd:19:01:76:ba:4d:54:c3:44:ed: 9c:e7:0e:c3:9c:20:2c:88:65:76:3e:6a:14:3d:b4: 24:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BB:98:7A:F2:7A:DC:1F:A9:E3:70:C8:CD:16:AF:B8:D3:14:95:8B X509v3 Authority Key Identifier: keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_ruYevJ63B-p43DIzRavuNMUlYs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.135.225.0/24 Signature Algorithm: sha256WithRSAEncryption c4:d4:d7:aa:07:df:da:f9:3f:c3:c5:91:76:12:8b:55:72:aa: 8b:34:b5:b3:d0:af:6d:b2:fa:ba:89:f3:c9:c4:0a:49:a7:55: c6:57:8b:ca:e5:ec:db:64:91:b8:41:00:06:34:68:b1:f0:86: 7f:90:99:85:b4:39:33:97:4d:18:ab:e1:40:f5:df:a3:d1:05: 98:bf:c8:29:ac:3e:dd:2d:f3:fd:37:88:f8:fa:3a:7b:8b:7f: b2:f0:80:18:d8:ba:d4:9a:f3:de:06:59:b0:ac:d2:5c:af:3f: be:b7:df:79:56:eb:36:f0:d4:58:f8:97:3f:93:1b:d0:30:d1: d1:c0:94:c0:7b:19:5e:e7:99:55:be:6d:96:bd:df:8f:81:e6: 25:66:24:ab:98:c3:57:57:0e:2a:12:32:20:55:ff:d1:82:10: 04:d2:a2:77:95:ed:bd:3e:c2:bd:c4:0d:f6:ee:ae:36:b1:0b: 5e:bf:58:9d:92:a2:bb:26:44:14:26:b3:3c:28:be:54:d5:f6: c8:39:f6:e1:ca:cc:dd:62:74:5d:70:74:2e:01:49:23:5b:a8: 1a:c8:ae:5c:d6:f6:6f:9e:05:01:60:0a:b4:28:52:9a:90:6c: 72:0e:07:c1:ae:9e:b2:06:ab:e7:f9:5b:ff:f2:ac:52:40:ca: 16:94:37:68 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gQ2tz4/x3QPa/oUuSKHKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmODIzMDlhNjgxNDY3OGFkNzJlM2YzMWE0ZmUwMjcyZjQw YmQ5ODYwHhcNMjYwMTAyMTYxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWJiOTg3YWYyN2FkYzFmYTllMzcwYzhjZDE2YWZiOGQzMTQ5NThiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmz0DJWHcDSY5YvVPAvJ5jxEhJFKz JDRLHDnQMUC8Z4yQonAUogxN2C+f+Fywd4knRp6qmDZ7fX0XFla0VFY1BM4Q7wUR 4zhT+Xkux+4+vYPTfIk4PAZx5HDtdXIX5s+2cORhPkAV8LIuo9ycKUT5UJBEivrH +mck+bPKHQzIxK4XwDrTGQsksjN/fgwQXdKrbXbnrYWYph132iNJzPGSouw0DLhQ j6vOpGj5l67U8WZ8Y5bPj7zYKKJ67hg1FP1vaLhlYdwAgwWJ0SP1D8I2CA7trfZB PoGyGPf11x1KFqq0CV3uBv0ZAXa6TVTDRO2c5w7DnCAsiGV2PmoUPbQkRwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP67mHryetwfqeNwyM0Wr7jTFJWLMB8GA1UdIwQY MBaAFP+CMJpoFGeK1y4/MaT+AnL0C9mGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzRJd21tZ1VaNHJYTGo4eHBQNENjdlFMMllZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC85ZmE4M2QtYjJhMy00NWU0LTg0OTkt ZjUyNTgxNjQwMmJkLzEvX3J1WWV2SjYzQi1wNDNESXpSYXZ1Tk1VbFlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC85ZmE4M2QtYjJhMy00NWU0LTg0OTktZjUyNTgxNjQwMmJk LzEvXzRJd21tZ1VaNHJYTGo4eHBQNENjdlFMMllZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYfhMA0G CSqGSIb3DQEBCwUAA4IBAQDE1NeqB9/a+T/DxZF2EotVcqqLNLWz0K9tsvq6ifPJ xApJp1XGV4vK5ezbZJG4QQAGNGix8IZ/kJmFtDkzl00Yq+FA9d+j0QWYv8gprD7d LfP9N4j4+jp7i3+y8IAY2LrUmvPeBlmwrNJcrz++t995Vus28NRY+Jc/kxvQMNHR wJTAexle55lVvm2Wvd+PgeYlZiSrmMNXVw4qEjIgVf/RghAE0qJ3le29PsK9xA32 7q42sQtev1idkqK7JkQUJrM8KL5U1fbIOfbhyszdYnRdcHQuAUkjW6gayK5c1vZv ngUBYAq0KFKakGxyDgfBrp6yBqvn+Vv/8qxSQMoWlDdo -----END CERTIFICATE-----Generated at Sun Jan 25 17:35:40 2026 by rpki-client