This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/2RbqMRULp-QNoJeRuz3DuXb82SY.roa File: 2RbqMRULp-QNoJeRuz3DuXb82SY.roa (raw, json) Hash identifier: vkQ1ietSun4egH0TCTbvv8l/0HXrnZiF/HLYLQxFwJA= Subject key identifier: D9:16:EA:31:15:0B:A7:E4:0D:A0:97:91:BB:3D:C3:B9:76:FC:D9:26 Certificate issuer: /CN=a1d0315373b09b061aa59f129d592eabf7b3aaef Certificate serial: 019B7AC807BE04E24101E5F62FF0877ED5EF Authority key identifier: A1:D0:31:53:73:B0:9B:06:1A:A5:9F:12:9D:59:2E:AB:F7:B3:AA:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odAxU3OwmwYapZ8SnVkuq_ezqu8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/2RbqMRULp-QNoJeRuz3DuXb82SY.roa Signing time: Thu 01 Jan 2026 18:18:08 +0000 ROA not before: Thu 01 Jan 2026 18:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142062 IP address blocks: 45.157.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/odAxU3OwmwYapZ8SnVkuq_ezqu8.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/odAxU3OwmwYapZ8SnVkuq_ezqu8.mft rsync://rpki.ripe.net/repository/DEFAULT/odAxU3OwmwYapZ8SnVkuq_ezqu8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:07:be:04:e2:41:01:e5:f6:2f:f0:87:7e:d5:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1d0315373b09b061aa59f129d592eabf7b3aaef Validity Not Before: Jan 1 18:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d916ea31150ba7e40da09791bb3dc3b976fcd926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:31:2a:38:9a:9a:f2:25:5d:b8:d8:46:7b:33: 9e:e1:9d:65:02:20:dd:70:62:81:fc:6e:90:47:54: 21:74:b5:29:a7:f0:ca:14:9c:d3:d3:08:a9:47:a2: 27:90:03:30:c4:2f:22:c6:5f:34:f6:16:8d:92:4c: ff:cf:82:b9:8b:4b:63:ac:df:a6:22:51:e4:0a:70: ff:f0:19:77:65:cd:d0:93:40:5e:a1:e9:da:a9:66: f5:52:27:b4:ac:75:e8:f1:ad:ed:9e:d5:87:2c:58: 1d:33:a4:62:4e:c1:04:9e:e3:7b:3a:5f:9b:f7:af: c5:0d:42:dd:c1:a3:09:a2:05:e0:e4:2a:92:29:9d: 42:1f:4a:65:04:8f:57:09:86:39:f3:d6:e6:8c:1f: 64:16:4e:6d:a3:b7:86:d4:8b:3c:5e:c6:2a:b4:b6: 81:10:73:3c:e6:77:da:bd:8e:c0:7e:06:c8:ec:22: 8c:d3:97:59:04:06:3d:9c:76:96:dc:ce:75:61:8b: 30:71:f6:26:95:d4:01:6b:fc:2b:1e:f5:60:03:f5: ae:63:09:54:3a:66:28:23:35:83:ca:82:50:00:65: 7c:09:c9:39:a4:e0:b0:00:8b:49:39:b8:d6:5a:a4: 7b:43:c8:d9:0e:4d:b1:b2:98:1f:49:90:52:fb:24: 56:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:16:EA:31:15:0B:A7:E4:0D:A0:97:91:BB:3D:C3:B9:76:FC:D9:26 X509v3 Authority Key Identifier: keyid:A1:D0:31:53:73:B0:9B:06:1A:A5:9F:12:9D:59:2E:AB:F7:B3:AA:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odAxU3OwmwYapZ8SnVkuq_ezqu8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/2RbqMRULp-QNoJeRuz3DuXb82SY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/odAxU3OwmwYapZ8SnVkuq_ezqu8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.69.0/24 Signature Algorithm: sha256WithRSAEncryption 71:63:f6:c4:e0:6d:13:01:87:b9:ea:93:14:09:89:04:de:27: 11:1a:48:85:23:f1:5a:f6:c3:5e:96:28:19:6f:4f:68:ff:ff: 7f:e2:db:5c:36:2d:20:a7:b4:29:74:a0:67:3b:e5:d8:29:90: b7:af:19:7c:6b:d8:1f:7c:d1:b1:87:d8:0c:42:21:67:20:14: 80:09:7f:92:ad:39:d8:75:6b:40:91:93:82:5b:e4:97:3f:9c: b6:58:e8:cf:eb:50:08:4d:c9:49:0e:59:c5:af:d4:91:1b:70: df:e8:9a:30:dc:c5:0a:8d:61:63:cf:83:a8:b3:f6:b1:6c:a1: 31:3c:52:be:d1:6c:ca:b7:c0:90:c6:70:9d:0b:37:36:dc:c6: b9:82:96:f0:61:10:c8:c9:49:e8:ed:70:56:51:fb:4b:d9:95: ba:3f:23:3b:51:39:05:e3:50:13:04:31:e6:86:e9:5b:68:d8: c3:e9:1b:ac:6d:3e:58:bc:5b:9e:d9:0f:d1:43:b0:6a:9f:f5: da:ee:64:05:db:01:9c:5b:42:ec:39:08:9c:a2:03:8c:08:07: f0:92:39:e4:26:f5:f6:7e:28:eb:e5:07:16:b8:f0:50:fc:90: c8:7a:96:8a:cb:82:1e:bc:56:c5:d2:a0:e1:f9:80:5b:91:57: af:73:f2:1c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yAe+BOJBAeX2L/CHftXvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZDAzMTUzNzNiMDliMDYxYWE1OWYxMjlkNTkyZWFiZjdi M2FhZWYwHhcNMjYwMTAxMTgxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTE2ZWEzMTE1MGJhN2U0MGRhMDk3OTFiYjNkYzNiOTc2ZmNkOTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujEqOJqa8iVduNhGezOe4Z1lAiDd cGKB/G6QR1QhdLUpp/DKFJzT0wipR6InkAMwxC8ixl809haNkkz/z4K5i0tjrN+m IlHkCnD/8Bl3Zc3Qk0BeoenaqWb1Uie0rHXo8a3tntWHLFgdM6RiTsEEnuN7Ol+b 96/FDULdwaMJogXg5CqSKZ1CH0plBI9XCYY589bmjB9kFk5to7eG1Is8XsYqtLaB EHM85nfavY7AfgbI7CKM05dZBAY9nHaW3M51YYswcfYmldQBa/wrHvVgA/WuYwlU OmYoIzWDyoJQAGV8Cck5pOCwAItJObjWWqR7Q8jZDk2xspgfSZBS+yRW+QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNkW6jEVC6fkDaCXkbs9w7l2/NkmMB8GA1UdIwQY MBaAFKHQMVNzsJsGGqWfEp1ZLqv3s6rvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2RBeFUzT3dtd1lhcFo4U25Wa3VxX2V6cXU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8xYmNiMmQtZjU4Yi00ZTQ0LWIxMzMt ZGZjYmRmM2IxMDU4LzEvMlJicU1SVUxwLVFOb0plUnV6M0R1WGI4MlNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy8xYmNiMmQtZjU4Yi00ZTQ0LWIxMzMtZGZjYmRmM2IxMDU4 LzEvb2RBeFUzT3dtd1lhcFo4U25Wa3VxX2V6cXU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ1FMA0G CSqGSIb3DQEBCwUAA4IBAQBxY/bE4G0TAYe56pMUCYkE3icRGkiFI/Fa9sNeligZ b09o//9/4ttcNi0gp7QpdKBnO+XYKZC3rxl8a9gffNGxh9gMQiFnIBSACX+SrTnY dWtAkZOCW+SXP5y2WOjP61AITclJDlnFr9SRG3Df6Jow3MUKjWFjz4Oos/axbKEx PFK+0WzKt8CQxnCdCzc23Ma5gpbwYRDIyUno7XBWUftL2ZW6PyM7UTkF41ATBDHm hulbaNjD6RusbT5YvFue2Q/RQ7Bqn/Xa7mQF2wGcW0LsOQicogOMCAfwkjnkJvX2 fijr5QcWuPBQ/JDIepaKy4IevFbF0qDh+YBbkVevc/Ic -----END CERTIFICATE-----Generated at Sun Jan 25 22:30:12 2026 by rpki-client