This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/oYj8IRsjMXERXaM9fv_aTVNDMiM.roa File: oYj8IRsjMXERXaM9fv_aTVNDMiM.roa (raw, json) Hash identifier: 1h5HkPjPP0vcntiwcGgkqpVFeA7WFjBNEknGQLJcQbE= Subject key identifier: A1:88:FC:21:1B:23:31:71:11:5D:A3:3D:7E:FF:DA:4D:53:43:32:23 Certificate issuer: /CN=48395eb4c0ee2daa5392cd99fc45efbc4a754e90 Certificate serial: 019B7758FE434C8EA6093E06CC0F04097FB0 Authority key identifier: 48:39:5E:B4:C0:EE:2D:AA:53:92:CD:99:FC:45:EF:BC:4A:75:4E:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SDletMDuLapTks2Z_EXvvEp1TpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/oYj8IRsjMXERXaM9fv_aTVNDMiM.roa Signing time: Thu 01 Jan 2026 02:17:59 +0000 ROA not before: Thu 01 Jan 2026 02:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200845 IP address blocks: 45.150.12.0/22 maxlen: 24 2a0f:8a00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/SDletMDuLapTks2Z_EXvvEp1TpA.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/SDletMDuLapTks2Z_EXvvEp1TpA.mft rsync://rpki.ripe.net/repository/DEFAULT/SDletMDuLapTks2Z_EXvvEp1TpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:fe:43:4c:8e:a6:09:3e:06:cc:0f:04:09:7f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48395eb4c0ee2daa5392cd99fc45efbc4a754e90 Validity Not Before: Jan 1 02:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a188fc211b233171115da33d7effda4d53433223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:55:b7:1d:ff:8a:0c:8a:08:af:c6:8b:d0:a0: be:c9:30:7c:ae:8a:75:89:d2:98:e0:fe:52:c5:00: 0f:06:1d:b8:d6:26:83:2e:dd:33:8c:16:09:de:a0: b9:27:ab:58:3d:8e:fa:b6:8b:61:9b:8c:3f:1b:4b: af:00:81:4f:4f:9e:35:76:fb:38:df:89:1d:d8:ad: 47:56:a8:21:5b:36:9f:02:c4:97:0b:00:3b:2d:ef: 2f:98:2f:20:8e:19:89:4b:a0:0f:68:47:5b:b2:bc: a9:b3:f3:cc:0b:fe:15:95:78:dd:3d:22:75:8f:7d: 18:8c:5a:4a:e2:e0:c4:c2:af:a6:23:26:6b:68:60: 7f:87:05:c5:3c:07:b3:bb:d5:1d:fc:db:69:c7:08: df:91:0f:e6:c7:ed:28:a1:4c:a9:6c:15:75:9d:40: 36:03:08:56:f6:77:07:a7:5a:78:cd:02:ec:d5:d8: 89:31:67:fe:97:1f:4d:be:8e:4e:57:ba:b2:f5:fb: 42:3a:28:e3:ea:e1:f4:ac:8b:4b:32:7e:94:68:73: 98:bc:ab:d0:12:ed:18:83:91:c5:43:1f:03:8c:76: 77:cc:8d:84:f6:9e:94:e0:75:47:81:a3:9b:57:61: cd:eb:7d:93:7f:87:39:9b:d1:83:00:7c:de:40:65: 88:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:88:FC:21:1B:23:31:71:11:5D:A3:3D:7E:FF:DA:4D:53:43:32:23 X509v3 Authority Key Identifier: keyid:48:39:5E:B4:C0:EE:2D:AA:53:92:CD:99:FC:45:EF:BC:4A:75:4E:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SDletMDuLapTks2Z_EXvvEp1TpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/oYj8IRsjMXERXaM9fv_aTVNDMiM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/SDletMDuLapTks2Z_EXvvEp1TpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.150.12.0/22 IPv6: 2a0f:8a00::/29 Signature Algorithm: sha256WithRSAEncryption 27:eb:3f:96:59:ed:4c:6e:d2:5a:5b:68:db:07:19:7e:83:3f: b6:dd:5b:bc:ce:2d:20:53:e1:9d:32:e6:99:00:cf:26:42:62: 80:e1:0e:c2:72:2f:ca:ad:18:ee:d9:26:79:21:7f:83:31:f3: 99:0e:e2:45:15:fa:de:dd:92:46:0c:bf:7b:c2:44:fa:be:ee: 93:97:50:ae:33:6f:d1:f3:07:cf:05:2b:88:04:43:1f:da:82: 7f:f2:30:c0:01:55:30:2a:f5:d5:ba:2f:41:83:2e:23:e7:9e: 22:72:ff:27:7b:0d:79:73:eb:cf:69:b6:02:af:18:5c:3a:36: b6:4a:9f:1c:24:cf:72:b0:4d:39:23:7b:b1:f1:ee:2e:09:d6: 0d:60:cc:9f:a5:b6:ec:9f:a8:0e:1d:11:9d:fb:6c:76:e0:10: 4a:62:2e:7f:8c:67:d9:38:66:ae:32:f2:95:09:1a:76:0d:c9: 09:f4:b6:49:3b:f1:03:6c:f8:e8:a2:01:36:3f:e2:90:f3:35: df:55:ad:a0:7f:99:52:b1:84:2a:0e:b6:ec:b0:1c:85:6b:f3: c1:b7:af:ea:e5:b8:b9:a2:84:58:e9:56:ab:25:ff:ea:8e:6a: b4:8f:43:bc:cd:d3:c5:65:18:6b:83:7d:5b:e9:b9:9d:12:d1: 26:0c:19:7c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WP5DTI6mCT4GzA8ECX+wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4Mzk1ZWI0YzBlZTJkYWE1MzkyY2Q5OWZjNDVlZmJjNGE3 NTRlOTAwHhcNMjYwMTAxMDIxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTg4ZmMyMTFiMjMzMTcxMTE1ZGEzM2Q3ZWZmZGE0ZDUzNDMzMjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVW3Hf+KDIoIr8aL0KC+yTB8rop1 idKY4P5SxQAPBh241iaDLt0zjBYJ3qC5J6tYPY76tothm4w/G0uvAIFPT541dvs4 34kd2K1HVqghWzafAsSXCwA7Le8vmC8gjhmJS6APaEdbsryps/PMC/4VlXjdPSJ1 j30YjFpK4uDEwq+mIyZraGB/hwXFPAezu9Ud/NtpxwjfkQ/mx+0ooUypbBV1nUA2 AwhW9ncHp1p4zQLs1diJMWf+lx9Nvo5OV7qy9ftCOijj6uH0rItLMn6UaHOYvKvQ Eu0Yg5HFQx8DjHZ3zI2E9p6U4HVHgaObV2HN632Tf4c5m9GDAHzeQGWIDQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKGI/CEbIzFxEV2jPX7/2k1TQzIjMB8GA1UdIwQY MBaAFEg5XrTA7i2qU5LNmfxF77xKdU6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0RsZXRNRHVMYXBUa3MyWl9FWHZ2RXAxVHBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83YTk5NjEtMjEzZS00Y2M0LThmOTYt N2Y1NzliYTA5OGJlLzEvb1lqOElSc2pNWEVSWGFNOWZ2X2FUVk5ETWlNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy83YTk5NjEtMjEzZS00Y2M0LThmOTYtN2Y1NzliYTA5OGJl LzEvU0RsZXRNRHVMYXBUa3MyWl9FWHZ2RXAxVHBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZYMMA0E AgACMAcDBQMqD4oAMA0GCSqGSIb3DQEBCwUAA4IBAQAn6z+WWe1MbtJaW2jbBxl+ gz+23Vu8zi0gU+GdMuaZAM8mQmKA4Q7Cci/KrRju2SZ5IX+DMfOZDuJFFfre3ZJG DL97wkT6vu6Tl1CuM2/R8wfPBSuIBEMf2oJ/8jDAAVUwKvXVui9Bgy4j554icv8n ew15c+vPabYCrxhcOja2Sp8cJM9ysE05I3ux8e4uCdYNYMyfpbbsn6gOHRGd+2x2 4BBKYi5/jGfZOGauMvKVCRp2DckJ9LZJO/EDbPjoogE2P+KQ8zXfVa2gf5lSsYQq DrbssByFa/PBt6/q5bi5ooRY6VarJf/qjmq0j0O8zdPFZRhrg31b6bmdEtEmDBl8 -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:55 2026 by rpki-client