This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/aYEe0Wp6s-0vMrsmI0r1Am-aAmE.roa File: aYEe0Wp6s-0vMrsmI0r1Am-aAmE.roa (raw, json) Hash identifier: 0zIQeQUHMUd4XTm26NFK/GYzSa6prZHKRHgzCL5iipE= Subject key identifier: 69:81:1E:D1:6A:7A:B3:ED:2F:32:BB:26:23:4A:F5:02:6F:9A:02:61 Certificate issuer: /CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e Certificate serial: 019B7FF1DE585BA2B72FECDADC8087AF93FD Authority key identifier: E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/aYEe0Wp6s-0vMrsmI0r1Am-aAmE.roa Signing time: Fri 02 Jan 2026 18:21:56 +0000 ROA not before: Fri 02 Jan 2026 18:21:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212362 IP address blocks: 45.129.105.0/24 maxlen: 24 2a0e:47c6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.mft rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:de:58:5b:a2:b7:2f:ec:da:dc:80:87:af:93:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e Validity Not Before: Jan 2 18:21:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69811ed16a7ab3ed2f32bb26234af5026f9a0261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:42:47:ea:c0:6b:69:86:ea:f0:39:a7:a7: 94:81:82:64:1a:2b:ec:89:66:a7:0b:e1:ac:6b:57: eb:23:0e:3f:b2:35:1a:9d:be:fe:93:e7:e8:81:56: a8:c4:af:bd:82:b4:61:ee:89:33:42:b4:78:96:ff: a8:ba:0b:83:e9:1d:17:18:bb:c1:8b:c0:52:94:9d: e1:81:b2:8e:65:30:66:c2:9d:38:ad:f8:29:df:c7: 0e:2b:b7:c4:99:9a:f6:19:e2:e5:f6:2c:47:68:00: ce:de:24:a8:56:ca:47:27:f5:be:2f:4c:15:bd:50: ac:ca:a7:a6:f9:36:81:30:a7:1f:0b:52:0b:7a:2f: 6e:ab:99:08:57:a3:a6:54:be:17:6d:e2:f8:2a:73: bf:1e:87:5f:6c:70:7b:c9:0f:fd:19:23:50:9f:12: dc:9d:b1:1a:ee:2e:aa:5b:34:4d:8f:5b:91:43:0c: ae:4a:60:4a:81:9b:18:83:c7:c5:02:7d:e9:dc:84: 67:97:cc:ff:46:32:84:3b:bc:12:25:2a:37:f3:14: 51:4a:e3:40:28:c5:0b:eb:73:2b:4f:c9:21:f3:a1: ee:a5:d4:f7:24:0c:6d:d7:05:c3:41:bf:2a:82:56: da:4a:41:39:50:de:25:c3:fd:eb:c2:56:87:78:a2: 91:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:81:1E:D1:6A:7A:B3:ED:2F:32:BB:26:23:4A:F5:02:6F:9A:02:61 X509v3 Authority Key Identifier: keyid:E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/aYEe0Wp6s-0vMrsmI0r1Am-aAmE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.129.105.0/24 IPv6: 2a0e:47c6::/32 Signature Algorithm: sha256WithRSAEncryption 0d:8e:d2:1f:cf:93:f7:b5:ec:43:2d:38:aa:96:ed:c6:db:46: bc:17:d1:2f:dc:00:7a:48:64:8f:f5:76:f5:3b:ac:2e:55:ec: 6a:63:26:9b:b5:96:17:f7:33:3f:4d:75:c2:37:6c:ad:94:d2: 91:34:5f:c1:e1:0a:38:b2:1a:a3:21:f6:f0:d3:6d:c5:b4:c6: 91:39:ff:0a:32:fa:20:6c:12:a4:cd:7b:6a:0b:4b:38:c9:44: 5e:e0:59:bb:d4:04:29:a9:5a:39:e2:72:db:1c:e2:c8:67:f3: 59:d5:bc:fc:67:24:16:01:6e:8b:b6:9a:8e:49:e7:28:6f:b5: f6:5a:ce:74:14:62:a6:a3:c0:c0:50:c7:e9:4c:e9:94:e6:14: b4:d0:02:f6:84:dd:07:ac:ef:22:7e:ae:ca:f4:84:7b:c2:e1: 95:c1:17:bd:cf:d3:52:eb:51:b3:9a:a5:0c:32:64:44:97:a9: 7e:ee:fc:9f:34:f2:b6:d3:86:cd:ba:34:d2:01:3c:b3:0c:d2: 33:bb:11:74:33:c7:9e:d3:08:58:1c:90:8b:eb:d7:da:46:ab: 88:65:85:5a:a3:ec:b8:25:26:57:1a:68:87:ee:18:13:64:c1: a3:38:df:a5:77:e1:cf:96:31:d0:71:1c:8d:89:f7:eb:fd:96: 7e:df:0f:4e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8d5YW6K3L+za3ICHr5P9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4OGMwNDc3MWUyYmZhYzhmNjBmMWI0YzljYmQwOTNhYWZl YTk3NGUwHhcNMjYwMTAyMTgyMTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTgxMWVkMTZhN2FiM2VkMmYzMmJiMjYyMzRhZjUwMjZmOWEwMjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyNCR+rAa2mG6vA5p6eUgYJkGivs iWanC+Gsa1frIw4/sjUanb7+k+fogVaoxK+9grRh7okzQrR4lv+ouguD6R0XGLvB i8BSlJ3hgbKOZTBmwp04rfgp38cOK7fEmZr2GeLl9ixHaADO3iSoVspHJ/W+L0wV vVCsyqem+TaBMKcfC1ILei9uq5kIV6OmVL4XbeL4KnO/HodfbHB7yQ/9GSNQnxLc nbEa7i6qWzRNj1uRQwyuSmBKgZsYg8fFAn3p3IRnl8z/RjKEO7wSJSo38xRRSuNA KMUL63MrT8kh86HupdT3JAxt1wXDQb8qglbaSkE5UN4lw/3rwlaHeKKRAwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGmBHtFqerPtLzK7JiNK9QJvmgJhMB8GA1UdIwQY MBaAFOiMBHceK/rI9g8bTJy9CTqv6pdOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNkl3RWR4NHItc2oyRHh0TW5MMEpPcV9xbDA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8yYWU3YzMtOThhNS00Y2RhLTliYWUt YmE2NDVmMTk5MTVhLzEvYVlFZTBXcDZzLTB2TXJzbUkwcjFBbS1hQW1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8yYWU3YzMtOThhNS00Y2RhLTliYWUtYmE2NDVmMTk5MTVh LzEvNkl3RWR4NHItc2oyRHh0TW5MMEpPcV9xbDA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYFpMA0E AgACMAcDBQAqDkfGMA0GCSqGSIb3DQEBCwUAA4IBAQANjtIfz5P3texDLTiqlu3G 20a8F9Ev3AB6SGSP9Xb1O6wuVexqYyabtZYX9zM/TXXCN2ytlNKRNF/B4Qo4shqj Ifbw023FtMaROf8KMvogbBKkzXtqC0s4yURe4Fm71AQpqVo54nLbHOLIZ/NZ1bz8 ZyQWAW6LtpqOSecob7X2Ws50FGKmo8DAUMfpTOmU5hS00AL2hN0HrO8ifq7K9IR7 wuGVwRe9z9NS61GzmqUMMmREl6l+7vyfNPK204bNujTSATyzDNIzuxF0M8ee0whY HJCL69faRquIZYVao+y4JSZXGmiH7hgTZMGjON+ld+HPljHQcRyNiffr/ZZ+3w9O -----END CERTIFICATE-----Generated at Mon Jan 26 21:32:39 2026 by rpki-client