This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/e4PluDKQoyPrxQ_1oVAIdruIdLk.roa File: e4PluDKQoyPrxQ_1oVAIdruIdLk.roa (raw, json) Hash identifier: B9LWT3QyJkBozC48e0FVn4eHmDMTblK5hM8Aw3bwWsE= Subject key identifier: 7B:83:E5:B8:32:90:A3:23:EB:C5:0F:F5:A1:50:08:76:BB:88:74:B9 Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2 Certificate serial: 019B7D5D5E7C450AFB013F45908F05F6C16B Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/e4PluDKQoyPrxQ_1oVAIdruIdLk.roa Signing time: Fri 02 Jan 2026 06:20:29 +0000 ROA not before: Fri 02 Jan 2026 06:20:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211826 IP address blocks: 45.135.185.0/24 maxlen: 24 194.32.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.mft rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:5e:7c:45:0a:fb:01:3f:45:90:8f:05:f6:c1:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2 Validity Not Before: Jan 2 06:20:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b83e5b83290a323ebc50ff5a1500876bb8874b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:03:70:42:3c:d0:74:28:89:6a:b7:79:b3:98: 39:26:d5:16:db:50:05:4e:24:26:bb:89:8f:4e:3e: c4:55:9c:06:88:43:4b:fd:af:8a:09:f6:b3:ae:f7: 41:d0:43:b9:00:14:51:c5:a2:9b:c3:ab:a9:cd:5b: 96:38:17:fc:00:8e:ea:08:7d:a5:fd:9c:95:c0:62: 71:71:39:ef:9c:b5:66:d1:c6:c4:ec:af:47:e8:a8: 59:7f:27:53:57:2b:db:20:a3:ea:1b:d3:16:0b:e0: 33:a1:78:9a:29:93:b1:f9:01:3f:a6:80:54:93:4f: 1d:5d:34:72:80:f1:f6:33:c1:02:bd:91:7f:01:96: cc:6b:81:45:4e:99:2e:d1:c2:21:5b:13:f5:42:c3: 4c:85:f3:1a:5c:c6:10:9f:3f:29:51:4d:8a:3a:06: 2a:a6:68:47:1c:09:cf:64:e7:be:67:50:95:a3:f8: 1f:cf:1c:e7:38:dc:bb:13:5d:be:94:32:9d:95:ec: bf:f2:8b:46:35:f6:39:3f:61:5d:cb:a3:a6:30:d1: 98:d0:f7:de:22:b9:e5:4c:03:ed:3e:10:7a:2d:aa: 2f:00:3f:4a:9d:98:55:f8:b4:b7:2f:d2:aa:ca:db: 29:ca:cd:b9:c5:2e:4f:26:99:8a:94:fc:a1:f0:52: fc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:83:E5:B8:32:90:A3:23:EB:C5:0F:F5:A1:50:08:76:BB:88:74:B9 X509v3 Authority Key Identifier: keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/e4PluDKQoyPrxQ_1oVAIdruIdLk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.135.185.0/24 194.32.123.0/24 Signature Algorithm: sha256WithRSAEncryption 55:3a:77:a1:d3:46:57:a2:5c:ac:9a:90:a5:c1:bb:56:a7:6a: 19:39:fd:ed:0f:69:5a:aa:61:7a:71:0f:b2:9e:e5:a2:f7:a7: 0e:13:ec:48:fd:74:83:65:a4:24:bf:d2:bb:16:23:ee:c5:45: b4:f5:86:72:2d:62:e8:8b:5c:71:4a:80:e9:e2:bc:42:5c:27: 75:93:26:33:a7:c4:cb:0a:62:08:44:13:34:5a:8e:07:2e:c1: 5c:e0:2a:c0:fe:d1:5b:94:63:6d:33:39:dc:e4:84:bf:f5:52: 5e:5b:ae:e3:8b:bc:f8:46:1c:97:9a:9d:f9:ef:2f:e9:94:0d: 32:0f:89:98:b5:50:89:45:39:1b:6d:c7:1c:2e:7d:2d:12:7a: e7:8b:a9:7a:1c:66:c7:9a:fc:51:bb:12:fb:a1:8e:9a:31:37: cc:d8:d5:40:47:fc:cf:05:e2:2d:b5:80:4c:c2:8f:19:43:3f: ab:a3:df:a5:d9:bf:b3:22:0d:09:a0:7a:db:34:c0:1f:2e:a7: 93:d3:f8:dc:9a:1f:f7:8a:c4:0e:4e:21:bc:4c:d8:46:7a:48: 91:ad:19:86:4a:37:f6:a2:cd:ec:ba:2a:e2:e1:bf:43:a2:56: 45:56:b5:fc:e0:c4:ab:6e:36:a8:34:34:3e:58:ed:de:51:4e: 06:fa:5e:7e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9XV58RQr7AT9FkI8F9sFrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw NWIwZTIwHhcNMjYwMTAyMDYyMDI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjgzZTViODMyOTBhMzIzZWJjNTBmZjVhMTUwMDg3NmJiODg3NGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgNwQjzQdCiJard5s5g5JtUW21AF TiQmu4mPTj7EVZwGiENL/a+KCfazrvdB0EO5ABRRxaKbw6upzVuWOBf8AI7qCH2l /ZyVwGJxcTnvnLVm0cbE7K9H6KhZfydTVyvbIKPqG9MWC+AzoXiaKZOx+QE/poBU k08dXTRygPH2M8ECvZF/AZbMa4FFTpku0cIhWxP1QsNMhfMaXMYQnz8pUU2KOgYq pmhHHAnPZOe+Z1CVo/gfzxznONy7E12+lDKdley/8otGNfY5P2Fdy6OmMNGY0Pfe IrnlTAPtPhB6LaovAD9KnZhV+LS3L9Kqytspys25xS5PJpmKlPyh8FL87wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHuD5bgykKMj68UP9aFQCHa7iHS5MB8GA1UdIwQY MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt MmNjZWRiOTY2YTU4LzEvZTRQbHVES1FveVByeFFfMW9WQUlkcnVJZExrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4 LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYe5AwQA wiB7MA0GCSqGSIb3DQEBCwUAA4IBAQBVOneh00ZXolysmpClwbtWp2oZOf3tD2la qmF6cQ+ynuWi96cOE+xI/XSDZaQkv9K7FiPuxUW09YZyLWLoi1xxSoDp4rxCXCd1 kyYzp8TLCmIIRBM0Wo4HLsFc4CrA/tFblGNtMznc5IS/9VJeW67ji7z4RhyXmp35 7y/plA0yD4mYtVCJRTkbbcccLn0tEnrni6l6HGbHmvxRuxL7oY6aMTfM2NVAR/zP BeIttYBMwo8ZQz+ro9+l2b+zIg0JoHrbNMAfLqeT0/jcmh/3isQOTiG8TNhGekiR rRmGSjf2os3suiri4b9DolZFVrX84MSrbjaoNDQ+WO3eUU4G+l5+ -----END CERTIFICATE-----Generated at Sun Jan 25 12:02:03 2026 by rpki-client