This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/e2f615-6ca4-4bf5-9f53-87073f434b03/1/FyBdBnnCpKvwLLKFiribJRB37w4.roa File: FyBdBnnCpKvwLLKFiribJRB37w4.roa (raw, json) Hash identifier: 5DLx1xDcX045/FKz8VI0Qh7oVFbB+uzkeft+z/1uHvI= Subject key identifier: 17:20:5D:06:79:C2:A4:AB:F0:2C:B2:85:8A:B8:9B:25:10:77:EF:0E Certificate issuer: /CN=4638bf68b6675e2a5a3a7922f6477d2afb357fac Certificate serial: 019B7834368C3931C03A736ED87D352FA9BF Authority key identifier: 46:38:BF:68:B6:67:5E:2A:5A:3A:79:22:F6:47:7D:2A:FB:35:7F:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rji_aLZnXipaOnki9kd9Kvs1f6w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/e2f615-6ca4-4bf5-9f53-87073f434b03/1/FyBdBnnCpKvwLLKFiribJRB37w4.roa Signing time: Thu 01 Jan 2026 06:17:26 +0000 ROA not before: Thu 01 Jan 2026 06:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215044 IP address blocks: 45.157.48.0/24 maxlen: 24 2a07:9840::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/e2f615-6ca4-4bf5-9f53-87073f434b03/1/Rji_aLZnXipaOnki9kd9Kvs1f6w.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/e2f615-6ca4-4bf5-9f53-87073f434b03/1/Rji_aLZnXipaOnki9kd9Kvs1f6w.mft rsync://rpki.ripe.net/repository/DEFAULT/Rji_aLZnXipaOnki9kd9Kvs1f6w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:36:8c:39:31:c0:3a:73:6e:d8:7d:35:2f:a9:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4638bf68b6675e2a5a3a7922f6477d2afb357fac Validity Not Before: Jan 1 06:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17205d0679c2a4abf02cb2858ab89b251077ef0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:18:90:17:33:ad:49:19:28:a6:58:0c:c1:6d: 36:42:31:68:be:0f:b7:b6:8b:35:4a:ae:39:3c:80: c2:44:e7:3e:b9:54:3c:32:f7:bb:60:60:f5:19:5c: 85:2c:98:be:57:02:25:c9:9b:b9:b6:25:78:f5:3e: 4b:fd:95:9d:33:8c:9d:78:c8:58:6a:6e:24:55:e4: 85:d5:e4:35:f1:e6:e0:c7:cd:74:35:1a:54:16:66: 1b:57:d0:10:85:87:eb:79:9e:a2:af:43:1e:2a:cd: 00:fa:b5:4d:66:bd:a6:6a:7c:cc:33:a0:2f:e9:76: ac:17:02:1d:48:a7:f5:03:c1:b5:6e:de:04:b5:44: 55:2e:47:b6:21:ed:ef:2a:13:4a:64:4e:c1:df:98: 10:bd:81:4a:a0:83:f3:82:2d:a4:1d:87:b3:5a:7c: d9:50:5f:7a:56:d7:5f:48:40:4e:8d:a6:c5:c8:ba: 6b:5b:6a:8c:be:c3:a4:82:26:86:6c:41:f2:0c:d0: 0e:ae:fa:82:89:45:f7:23:50:dc:1c:ee:d8:a1:bb: ba:5e:cc:1e:70:b8:df:be:4e:0d:83:c2:86:ba:dc: 2e:bc:d8:dc:2d:4a:56:6e:dc:7e:85:88:dd:23:dc: fe:2d:c5:08:b6:5c:5c:7d:a4:fd:d9:7e:f2:6e:1f: 4d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:20:5D:06:79:C2:A4:AB:F0:2C:B2:85:8A:B8:9B:25:10:77:EF:0E X509v3 Authority Key Identifier: keyid:46:38:BF:68:B6:67:5E:2A:5A:3A:79:22:F6:47:7D:2A:FB:35:7F:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rji_aLZnXipaOnki9kd9Kvs1f6w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e2f615-6ca4-4bf5-9f53-87073f434b03/1/FyBdBnnCpKvwLLKFiribJRB37w4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e2f615-6ca4-4bf5-9f53-87073f434b03/1/Rji_aLZnXipaOnki9kd9Kvs1f6w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.48.0/24 IPv6: 2a07:9840::/29 Signature Algorithm: sha256WithRSAEncryption 6b:7b:fa:97:16:9f:af:11:b1:1e:5c:06:5e:ee:d9:85:c2:00: 94:d3:7e:cc:62:74:f0:2c:0d:d4:37:ac:da:57:c3:ae:03:c5: 51:e1:96:48:02:93:eb:0a:e2:bd:09:98:ab:11:46:ba:26:eb: 12:a5:4f:14:87:6b:00:2b:2b:22:ad:81:73:75:13:cd:75:37: 9d:f6:e4:17:2b:2b:20:f9:d9:6b:32:a5:9b:07:de:67:7e:d2: f7:61:04:f5:90:92:0f:f3:81:55:db:3f:a1:9b:75:84:78:fc: ea:63:02:c3:73:ea:d1:cb:9a:8f:35:c1:8b:d2:f7:81:e0:dc: fe:d8:b9:2b:8d:f6:ce:8c:0a:8e:37:7d:ce:25:06:3b:df:b3: 16:7b:25:b8:55:ac:69:18:b6:6e:10:04:a8:00:56:3b:7c:70: 8c:f6:59:0d:10:f6:3d:ed:76:aa:71:a8:a8:59:cb:d5:e8:d6: f6:41:6e:5c:34:f9:b0:7d:a9:90:c1:94:18:58:36:77:2c:b4: bb:d7:9a:06:f5:e6:9e:23:48:29:1e:a5:2d:32:75:0d:77:f5: 84:9e:17:8c:95:32:8c:ef:ab:ad:0a:83:c1:27:7b:86:0c:ac: 51:20:9f:79:c5:32:8b:55:95:1c:48:6a:67:29:4d:58:1b:e1: 50:b7:86:cb -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NDaMOTHAOnNu2H01L6m/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2MzhiZjY4YjY2NzVlMmE1YTNhNzkyMmY2NDc3ZDJhZmIz NTdmYWMwHhcNMjYwMTAxMDYxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNzIwNWQwNjc5YzJhNGFiZjAyY2IyODU4YWI4OWIyNTEwNzdlZjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxiQFzOtSRkoplgMwW02QjFovg+3 tos1Sq45PIDCROc+uVQ8Mve7YGD1GVyFLJi+VwIlyZu5tiV49T5L/ZWdM4ydeMhY am4kVeSF1eQ18ebgx810NRpUFmYbV9AQhYfreZ6ir0MeKs0A+rVNZr2manzMM6Av 6XasFwIdSKf1A8G1bt4EtURVLke2Ie3vKhNKZE7B35gQvYFKoIPzgi2kHYezWnzZ UF96VtdfSEBOjabFyLprW2qMvsOkgiaGbEHyDNAOrvqCiUX3I1DcHO7Yobu6Xswe cLjfvk4Ng8KGutwuvNjcLUpWbtx+hYjdI9z+LcUItlxcfaT92X7ybh9N/QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBcgXQZ5wqSr8CyyhYq4myUQd+8OMB8GA1UdIwQY MBaAFEY4v2i2Z14qWjp5IvZHfSr7NX+sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmppX2FMWm5YaXBhT25raTlrZDlLdnMxZjZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9lMmY2MTUtNmNhNC00YmY1LTlmNTMt ODcwNzNmNDM0YjAzLzEvRnlCZEJubkNwS3Z3TExLRmlyaWJKUkIzN3c0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9lMmY2MTUtNmNhNC00YmY1LTlmNTMtODcwNzNmNDM0YjAz LzEvUmppX2FMWm5YaXBhT25raTlrZDlLdnMxZjZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALZ0wMA0E AgACMAcDBQMqB5hAMA0GCSqGSIb3DQEBCwUAA4IBAQBre/qXFp+vEbEeXAZe7tmF wgCU037MYnTwLA3UN6zaV8OuA8VR4ZZIApPrCuK9CZirEUa6JusSpU8Uh2sAKysi rYFzdRPNdTed9uQXKysg+dlrMqWbB95nftL3YQT1kJIP84FV2z+hm3WEePzqYwLD c+rRy5qPNcGL0veB4Nz+2LkrjfbOjAqON33OJQY737MWeyW4VaxpGLZuEASoAFY7 fHCM9lkNEPY97XaqcaioWcvV6Nb2QW5cNPmwfamQwZQYWDZ3LLS715oG9eaeI0gp HqUtMnUNd/WEnheMlTKM76utCoPBJ3uGDKxRIJ95xTKLVZUcSGpnKU1YG+FQt4bL -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:25 2026 by rpki-client