This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/nUF12WZsvpoiPI9C00eeFdJfaVo.roa File: nUF12WZsvpoiPI9C00eeFdJfaVo.roa (raw, json) Hash identifier: 9SbxvhyRlkdpKS3ff2WOCyOa7It2KK0x1wSPI6mJgOw= Subject key identifier: 9D:41:75:D9:66:6C:BE:9A:22:3C:8F:42:D3:47:9E:15:D2:5F:69:5A Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a Certificate serial: 019B79ED2E23B70936E9572A8292095F2803 Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/nUF12WZsvpoiPI9C00eeFdJfaVo.roa Signing time: Thu 01 Jan 2026 14:19:05 +0000 ROA not before: Thu 01 Jan 2026 14:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215366 IP address blocks: 45.67.157.0/24 maxlen: 24 2a09:7ac1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:2e:23:b7:09:36:e9:57:2a:82:92:09:5f:28:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a Validity Not Before: Jan 1 14:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d4175d9666cbe9a223c8f42d3479e15d25f695a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:cd:21:99:71:92:ff:81:22:28:df:fb:00:e2: f9:01:d3:75:12:3f:c4:d2:42:da:11:37:31:31:c9: c0:d9:e2:dd:2d:dc:94:82:06:77:ba:fb:80:45:e0: cc:f9:9e:90:a7:45:6e:dd:72:9b:7e:7f:7b:f9:b6: ed:fa:bb:74:b4:80:1c:04:9e:1a:85:3b:85:1d:5e: f6:db:d2:63:4d:98:2c:ad:19:83:40:4f:5d:0f:53: 98:f0:18:02:20:1e:48:e7:44:62:a0:8e:c5:53:be: 78:7a:f0:8d:ba:3b:6d:0f:46:bf:e6:3d:3e:5f:f6: b7:c5:4a:a8:02:c2:48:40:0a:4f:b6:ff:fb:5d:26: 29:93:8a:31:b7:8e:32:35:01:59:af:56:4d:30:35: 3f:7c:a4:f8:38:ed:a8:c2:c0:99:41:4f:2b:22:26: 47:e8:9a:7b:e3:45:fe:c1:fa:05:fe:e9:5f:15:22: b0:6c:7a:06:16:13:a3:8c:ef:bf:09:94:b8:19:52: 6a:0b:7e:00:87:8d:35:7d:de:da:01:cf:6f:d3:ae: 7c:79:8d:77:d3:c1:0b:62:87:6c:c5:ba:d7:b9:14: 00:fe:da:01:d4:e7:13:0c:27:5b:2d:15:fa:cc:27: 08:11:d8:a2:62:44:c9:ec:00:e0:27:65:02:02:41: 22:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:41:75:D9:66:6C:BE:9A:22:3C:8F:42:D3:47:9E:15:D2:5F:69:5A X509v3 Authority Key Identifier: keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/nUF12WZsvpoiPI9C00eeFdJfaVo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.157.0/24 IPv6: 2a09:7ac1::/48 Signature Algorithm: sha256WithRSAEncryption 0a:33:61:70:b3:e0:1c:46:d6:cc:27:4e:67:16:61:e1:95:3e: af:98:c0:fa:63:fa:48:04:ec:2b:ab:9f:a6:06:30:bb:5d:af: 7a:6d:8e:c6:30:d6:df:a0:41:f9:f7:51:e5:43:40:cb:74:b9: 7b:c4:59:77:72:55:66:f9:70:d5:23:b5:34:98:d5:2a:46:2c: 14:67:dc:49:36:50:3c:ab:6d:9f:f7:c0:88:91:30:de:94:7f: 7a:c9:49:e8:f4:79:3b:e1:10:66:5c:6d:93:4b:4a:87:a2:97: 95:7d:e4:25:78:01:d0:04:22:99:2a:cc:fc:97:a3:6d:e8:65: 03:3d:c0:91:ee:eb:09:a2:b2:8e:66:3d:6e:2b:d1:b2:42:07: 11:25:bf:c7:55:67:67:53:71:bd:7d:4f:0e:94:20:0f:7d:c9: 75:5e:14:e3:3b:f6:9f:82:65:e8:04:54:96:35:5e:23:e9:68: ec:6e:67:bc:50:64:b3:7a:2d:89:59:40:da:71:c9:16:50:55: 9b:7a:d4:8f:6d:ef:c5:78:b6:f1:84:cd:cb:1a:b2:b6:50:b1: cf:36:61:e5:81:fc:34:83:0b:23:12:06:b4:9a:76:15:e1:3e: b4:ab:71:7b:9d:18:c0:89:74:32:74:c4:59:3a:fa:9d:0d:43: a2:4a:54:be -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt57S4jtwk26VcqgpIJXygDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDI3ZWE0OWY5NzJkMTljNTYzOTNhNjg5ZTdjYmViOTkw ZDVkN2EwHhcNMjYwMTAxMTQxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDQxNzVkOTY2NmNiZTlhMjIzYzhmNDJkMzQ3OWUxNWQyNWY2OTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkc0hmXGS/4EiKN/7AOL5AdN1Ej/E 0kLaETcxMcnA2eLdLdyUggZ3uvuAReDM+Z6Qp0Vu3XKbfn97+bbt+rt0tIAcBJ4a hTuFHV7229JjTZgsrRmDQE9dD1OY8BgCIB5I50RioI7FU754evCNujttD0a/5j0+ X/a3xUqoAsJIQApPtv/7XSYpk4oxt44yNQFZr1ZNMDU/fKT4OO2owsCZQU8rIiZH 6Jp740X+wfoF/ulfFSKwbHoGFhOjjO+/CZS4GVJqC34Ah401fd7aAc9v0658eY13 08ELYodsxbrXuRQA/toB1OcTDCdbLRX6zCcIEdiiYkTJ7ADgJ2UCAkEibwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJ1BddlmbL6aIjyPQtNHnhXSX2laMB8GA1UdIwQY MBaAFLVCfqSfly0ZxWOTponny+uZDV16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1Mjgt MGM0OTU0NzdjYTEwLzEvblVGMTJXWnN2cG9pUEk5QzAwZWVGZEpmYVZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1MjgtMGM0OTU0NzdjYTEw LzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALUOdMA8E AgACMAkDBwAqCXrBAAAwDQYJKoZIhvcNAQELBQADggEBAAozYXCz4BxG1swnTmcW YeGVPq+YwPpj+kgE7Curn6YGMLtdr3ptjsYw1t+gQfn3UeVDQMt0uXvEWXdyVWb5 cNUjtTSY1SpGLBRn3Ek2UDyrbZ/3wIiRMN6Uf3rJSej0eTvhEGZcbZNLSoeil5V9 5CV4AdAEIpkqzPyXo23oZQM9wJHu6wmiso5mPW4r0bJCBxElv8dVZ2dTcb19Tw6U IA99yXVeFOM79p+CZegEVJY1XiPpaOxuZ7xQZLN6LYlZQNpxyRZQVZt61I9t78V4 tvGEzcsasrZQsc82YeWB/DSDCyMSBrSadhXhPrSrcXudGMCJdDJ0xFk6+p0NQ6JK VL4= -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:09 2026 by rpki-client