This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/10snHBnMf0Kuhe7miu2KWZf7QKU.roa File: 10snHBnMf0Kuhe7miu2KWZf7QKU.roa (raw, json) Hash identifier: cMY4zBuFGSixWKDTcCmGLnVnrvMgI5u/opvWitB7358= Subject key identifier: D7:4B:27:1C:19:CC:7F:42:AE:85:EE:E6:8A:ED:8A:59:97:FB:40:A5 Certificate issuer: /CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6 Certificate serial: 019B7F8385C70FEB1942FBEE9417D3906CD8 Authority key identifier: E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/10snHBnMf0Kuhe7miu2KWZf7QKU.roa Signing time: Fri 02 Jan 2026 16:21:24 +0000 ROA not before: Fri 02 Jan 2026 16:21:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42675 IP address blocks: 45.15.16.0/24 maxlen: 24 2a0e:1c80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/5b86csrW9LPcMFtMvjEIcFHZg_Y.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/5b86csrW9LPcMFtMvjEIcFHZg_Y.mft rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:85:c7:0f:eb:19:42:fb:ee:94:17:d3:90:6c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6 Validity Not Before: Jan 2 16:21:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d74b271c19cc7f42ae85eee68aed8a5997fb40a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:66:0b:19:2d:59:95:4b:bf:84:18:e3:af:be: b6:3c:47:48:80:ea:db:ad:ad:c5:da:4e:50:28:86: a0:ca:07:da:64:61:70:3e:f6:d4:d2:ca:50:5d:41: 51:fc:ca:5c:08:79:dc:1f:a8:8a:fb:19:62:43:36: e7:0a:66:14:91:a4:94:84:af:d0:c7:06:05:03:27: b0:01:a4:c7:a8:bc:4d:2a:20:5e:1e:6e:d0:05:99: 60:b6:9e:01:72:71:ec:62:53:65:0e:1a:fc:e1:6a: cc:3d:0a:37:33:c2:41:b5:d4:b9:68:d0:15:3e:e9: f7:af:dd:6b:13:a7:47:ea:c1:2a:e4:f1:42:3e:e3: e6:f4:71:5c:0d:79:b0:0d:6e:0e:36:37:77:1a:7a: f9:8e:21:b0:a0:4d:d0:56:a0:ee:b3:fa:0b:97:54: 36:a4:6f:d7:db:bf:50:73:b4:dd:28:dd:ba:bb:24: 17:80:66:fb:53:3c:b5:05:f7:2b:b1:68:28:2a:e4: 07:c8:11:23:97:90:33:69:fd:3e:0e:c2:b1:f6:17: 44:06:3e:82:cf:65:a9:a0:d8:36:64:06:21:60:92: 00:be:06:83:a8:12:b3:d9:97:dd:52:eb:49:42:0c: c9:df:31:25:ac:b3:cd:d9:4e:bc:f5:2a:98:ef:cf: d1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4B:27:1C:19:CC:7F:42:AE:85:EE:E6:8A:ED:8A:59:97:FB:40:A5 X509v3 Authority Key Identifier: keyid:E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/10snHBnMf0Kuhe7miu2KWZf7QKU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/5b86csrW9LPcMFtMvjEIcFHZg_Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.15.16.0/24 IPv6: 2a0e:1c80:1::/48 Signature Algorithm: sha256WithRSAEncryption 48:7b:f7:65:b6:76:38:77:9c:e7:49:bc:90:65:37:ee:27:07: e7:cc:07:17:fe:b7:1d:4f:e2:04:a5:8f:2b:5a:5f:d9:32:7a: 64:07:c5:c9:75:e9:2b:a5:75:17:b0:0d:5a:af:79:00:24:fb: b9:9e:2a:4f:ec:f1:25:4d:41:a8:55:4b:cf:5f:a1:aa:03:77: 29:5c:a7:48:15:7b:25:e4:1f:e3:11:32:63:6d:ca:f9:82:8e: 26:f5:fe:ea:02:68:10:3d:82:d5:0a:e7:31:28:35:19:b2:cb: 19:ed:b6:b8:6c:f0:87:99:cd:58:bf:00:31:78:3d:79:c9:ed: 19:24:75:89:07:06:89:d9:08:e4:1f:82:e1:51:f0:75:71:f5: c6:1b:58:90:53:35:ed:1e:e4:4e:e0:91:42:de:ab:14:ba:73: bf:5b:e1:d2:b9:be:bf:7b:8b:bf:c2:5b:89:6d:61:bb:df:3e: b6:09:b8:eb:71:54:c1:11:ae:a2:0b:b3:8b:c3:06:f3:23:ca: 6a:47:98:7d:3d:35:42:4b:48:42:5f:c9:78:a9:b5:63:85:f1: 81:90:1e:a3:d3:31:fc:4c:52:72:49:5a:05:94:a7:e8:cb:3c: 8f:7c:0d:7e:5a:56:6c:9f:1b:20:20:92:df:ec:bb:b2:80:bf: 0d:40:19:3c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/g4XHD+sZQvvulBfTkGzYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YmYzYTcyY2FkNmY0YjNkYzMwNWI0Y2JlMzEwODcwNTFk OTgzZjYwHhcNMjYwMTAyMTYyMTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzRiMjcxYzE5Y2M3ZjQyYWU4NWVlZTY4YWVkOGE1OTk3ZmI0MGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8GYLGS1ZlUu/hBjjr762PEdIgOrb ra3F2k5QKIagygfaZGFwPvbU0spQXUFR/MpcCHncH6iK+xliQzbnCmYUkaSUhK/Q xwYFAyewAaTHqLxNKiBeHm7QBZlgtp4BcnHsYlNlDhr84WrMPQo3M8JBtdS5aNAV Pun3r91rE6dH6sEq5PFCPuPm9HFcDXmwDW4ONjd3Gnr5jiGwoE3QVqDus/oLl1Q2 pG/X279Qc7TdKN26uyQXgGb7Uzy1BfcrsWgoKuQHyBEjl5Azaf0+DsKx9hdEBj6C z2WpoNg2ZAYhYJIAvgaDqBKz2ZfdUutJQgzJ3zElrLPN2U689SqY78/R0QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFNdLJxwZzH9CroXu5ortilmX+0ClMB8GA1UdIwQY MBaAFOW/OnLK1vSz3DBbTL4xCHBR2YP2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWI4NmNzclc5TFBjTUZ0TXZqRUljRkhaZ19ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8yMzEzYjgtZGUwMi00MjI4LTkwMGEt MDliZTlkYjExZjY2LzEvMTBzbkhCbk1mMEt1aGU3bWl1MktXWmY3UUtVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC8yMzEzYjgtZGUwMi00MjI4LTkwMGEtMDliZTlkYjExZjY2 LzEvNWI4NmNzclc5TFBjTUZ0TXZqRUljRkhaZ19ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALQ8QMA8E AgACMAkDBwAqDhyAAAEwDQYJKoZIhvcNAQELBQADggEBAEh792W2djh3nOdJvJBl N+4nB+fMBxf+tx1P4gSljytaX9kyemQHxcl16SuldRewDVqveQAk+7meKk/s8SVN QahVS89foaoDdylcp0gVeyXkH+MRMmNtyvmCjib1/uoCaBA9gtUK5zEoNRmyyxnt trhs8IeZzVi/ADF4PXnJ7RkkdYkHBonZCOQfguFR8HVx9cYbWJBTNe0e5E7gkULe qxS6c79b4dK5vr97i7/CW4ltYbvfPrYJuOtxVMERrqILs4vDBvMjympHmH09NUJL SEJfyXiptWOF8YGQHqPTMfxMUnJJWgWUp+jLPI98DX5aVmyfGyAgkt/su7KAvw1A GTw= -----END CERTIFICATE-----Generated at Sun Jan 25 15:02:45 2026 by rpki-client