This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/I9YhkXL4_92lYMiJza_GlL1PdnA.roa File: I9YhkXL4_92lYMiJza_GlL1PdnA.roa (raw, json) Hash identifier: lMZ99O89kjhiz5I4kqtb1qY19GvOflbfo65zzKkcDAE= Subject key identifier: 23:D6:21:91:72:F8:FF:DD:A5:60:C8:89:CD:AF:C6:94:BD:4F:76:70 Certificate issuer: /CN=6dd1dc4d2eb7bf2a3f08d545755477055143f174 Certificate serial: 019B7D5B78D66F7524A0D680D58117E8D768 Authority key identifier: 6D:D1:DC:4D:2E:B7:BF:2A:3F:08:D5:45:75:54:77:05:51:43:F1:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdHcTS63vyo_CNVFdVR3BVFD8XQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/I9YhkXL4_92lYMiJza_GlL1PdnA.roa Signing time: Fri 02 Jan 2026 06:18:25 +0000 ROA not before: Fri 02 Jan 2026 06:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212635 IP address blocks: 45.159.140.0/22 maxlen: 24 2a10:6e40::/30 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/bdHcTS63vyo_CNVFdVR3BVFD8XQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/bdHcTS63vyo_CNVFdVR3BVFD8XQ.mft rsync://rpki.ripe.net/repository/DEFAULT/bdHcTS63vyo_CNVFdVR3BVFD8XQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:78:d6:6f:75:24:a0:d6:80:d5:81:17:e8:d7:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dd1dc4d2eb7bf2a3f08d545755477055143f174 Validity Not Before: Jan 2 06:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23d6219172f8ffdda560c889cdafc694bd4f7670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e5:c2:39:4a:e4:9a:5b:cf:e6:61:94:b2:86: c8:c3:a7:66:f6:89:e2:7c:14:61:a5:e2:d3:e5:ab: 31:bd:e1:49:86:f3:9e:c9:51:23:3f:39:d5:22:f8: 0d:96:8f:29:85:11:d4:b0:cf:90:b1:4f:c7:77:d5: ab:b8:6d:33:e4:3b:22:f0:fd:ad:9c:73:36:27:f3: 49:9c:c3:71:72:ea:67:3a:1c:f1:89:76:35:f5:35: 79:db:15:fb:7e:a1:b4:d6:e0:fe:6f:1e:9f:3f:6d: e7:6d:5d:f7:bd:ac:c2:f6:9e:a4:4b:64:c2:ea:67: 2c:1e:75:be:64:3b:46:c2:75:7d:88:8d:b9:df:75: a0:94:87:01:ed:f4:5d:2c:c1:2c:da:20:ac:03:80: 1c:98:d0:b3:1e:e1:0d:49:e3:f1:81:d6:03:3d:82: f7:73:fa:06:97:ec:5c:73:59:9a:f5:5a:9f:a1:64: 5b:2d:11:20:49:83:64:a5:7f:89:2a:e0:83:d7:97: db:fc:73:52:6e:5d:5f:de:c4:47:3f:7b:89:b4:27: 71:a4:2d:a7:df:5c:33:0d:5e:d3:30:cb:62:20:14: 2e:8e:f2:35:27:ee:20:5b:f1:95:f3:14:a2:54:2f: ad:91:bb:b2:6d:4a:5c:f1:ec:90:e4:c8:28:48:51: 21:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D6:21:91:72:F8:FF:DD:A5:60:C8:89:CD:AF:C6:94:BD:4F:76:70 X509v3 Authority Key Identifier: keyid:6D:D1:DC:4D:2E:B7:BF:2A:3F:08:D5:45:75:54:77:05:51:43:F1:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdHcTS63vyo_CNVFdVR3BVFD8XQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/I9YhkXL4_92lYMiJza_GlL1PdnA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/bdHcTS63vyo_CNVFdVR3BVFD8XQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.159.140.0/22 IPv6: 2a10:6e40::/30 Signature Algorithm: sha256WithRSAEncryption 45:57:c8:2e:5d:3e:72:5f:a2:28:1c:0a:df:b1:89:a0:f6:d4: ba:45:04:a7:10:d2:0c:ad:98:9a:5f:7b:b5:15:11:1b:53:8b: 59:ff:39:30:eb:b5:bf:cd:27:5d:2a:d3:ab:cc:0e:5a:af:4f: 86:f8:8c:fe:24:ba:55:e0:bf:7b:7e:2b:35:78:a3:7f:5c:aa: 48:79:b7:93:03:a6:7c:c9:86:c0:00:66:47:44:03:8e:38:b6: ab:88:f7:3b:6e:69:f3:66:2f:0e:2d:c9:54:50:cb:cb:cb:c4: 7e:9f:39:21:21:a8:95:f5:70:c4:17:9e:02:6d:08:f1:e3:8a: 5a:33:43:5a:83:d4:41:3e:37:84:9e:92:05:1c:e5:1f:db:b3: c9:07:6c:d3:ff:b8:09:c3:17:e1:ed:c6:9d:43:42:28:65:41: 04:bb:57:4a:8c:8f:21:40:db:bc:7a:18:c3:05:9a:0f:00:29: 20:85:42:5f:8b:4f:d7:ee:8c:50:c4:4c:19:49:99:04:36:0d: 7e:b3:91:2f:db:f5:e5:bd:d8:8e:28:75:8d:a6:1d:66:d3:ad: 65:43:5c:1e:f5:34:e2:44:93:62:08:56:d4:0a:73:1b:83:05: c5:35:fe:94:ab:a6:13:41:d4:9b:0c:39:f6:7e:aa:f6:d6:22: 93:3e:d0:e9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9W3jWb3UkoNaA1YEX6NdoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZDFkYzRkMmViN2JmMmEzZjA4ZDU0NTc1NTQ3NzA1NTE0 M2YxNzQwHhcNMjYwMTAyMDYxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyM2Q2MjE5MTcyZjhmZmRkYTU2MGM4ODljZGFmYzY5NGJkNGY3NjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+XCOUrkmlvP5mGUsobIw6dm9oni fBRhpeLT5asxveFJhvOeyVEjPznVIvgNlo8phRHUsM+QsU/Hd9WruG0z5Dsi8P2t nHM2J/NJnMNxcupnOhzxiXY19TV52xX7fqG01uD+bx6fP23nbV33vazC9p6kS2TC 6mcsHnW+ZDtGwnV9iI2533WglIcB7fRdLMEs2iCsA4AcmNCzHuENSePxgdYDPYL3 c/oGl+xcc1ma9VqfoWRbLREgSYNkpX+JKuCD15fb/HNSbl1f3sRHP3uJtCdxpC2n 31wzDV7TMMtiIBQujvI1J+4gW/GV8xSiVC+tkbuybUpc8eyQ5MgoSFEhMQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCPWIZFy+P/dpWDIic2vxpS9T3ZwMB8GA1UdIwQY MBaAFG3R3E0ut78qPwjVRXVUdwVRQ/F0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRIY1RTNjN2eW9fQ05WRmRWUjNCVkZEOFhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9iZWU0ODMtZWViMy00YzUzLWE0NTYt ZmI0YzU0YjY3MzNhLzEvSTlZaGtYTDRfOTJsWU1pSnphX0dsTDFQZG5BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9iZWU0ODMtZWViMy00YzUzLWE0NTYtZmI0YzU0YjY3MzNh LzEvYmRIY1RTNjN2eW9fQ05WRmRWUjNCVkZEOFhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZ+MMA0E AgACMAcDBQIqEG5AMA0GCSqGSIb3DQEBCwUAA4IBAQBFV8guXT5yX6IoHArfsYmg 9tS6RQSnENIMrZiaX3u1FREbU4tZ/zkw67W/zSddKtOrzA5ar0+G+Iz+JLpV4L97 fis1eKN/XKpIebeTA6Z8yYbAAGZHRAOOOLariPc7bmnzZi8OLclUUMvLy8R+nzkh IaiV9XDEF54CbQjx44paM0Nag9RBPjeEnpIFHOUf27PJB2zT/7gJwxfh7cadQ0Io ZUEEu1dKjI8hQNu8ehjDBZoPACkghUJfi0/X7oxQxEwZSZkENg1+s5Ev2/XlvdiO KHWNph1m061lQ1we9TTiRJNiCFbUCnMbgwXFNf6Uq6YTQdSbDDn2fqr21iKTPtDp -----END CERTIFICATE-----Generated at Mon Jan 26 07:27:49 2026 by rpki-client