This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/1lPDb-Qc7dgd58_k0ugXvgO36w8.roa File: 1lPDb-Qc7dgd58_k0ugXvgO36w8.roa (raw, json) Hash identifier: up0wKM+by5cZA7R34zmGPf+ho8Ei16Ys0MiWkd/R1jk= Subject key identifier: D6:53:C3:6F:E4:1C:ED:D8:1D:E7:CF:E4:D2:E8:17:BE:03:B7:EB:0F Certificate issuer: /CN=61877f4ce0d361617724d4b289a8918c5c6d722d Certificate serial: 019B7DCA0611889F849F63B7EAD52DF2A2ED Authority key identifier: 61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/1lPDb-Qc7dgd58_k0ugXvgO36w8.roa Signing time: Fri 02 Jan 2026 08:19:10 +0000 ROA not before: Fri 02 Jan 2026 08:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35625 IP address blocks: 45.86.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/YYd_TODTYWF3JNSyiaiRjFxtci0.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/YYd_TODTYWF3JNSyiaiRjFxtci0.mft rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:06:11:88:9f:84:9f:63:b7:ea:d5:2d:f2:a2:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61877f4ce0d361617724d4b289a8918c5c6d722d Validity Not Before: Jan 2 08:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d653c36fe41cedd81de7cfe4d2e817be03b7eb0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ff:43:b6:d9:7c:f1:c4:76:af:73:2f:5b:ed: 7c:15:5b:25:14:eb:55:03:13:3b:52:56:8a:a8:ac: b0:ae:06:ce:f6:e9:d1:36:1a:29:ca:85:6d:84:c1: f4:ef:a2:03:8b:14:a4:14:29:7f:16:b8:ee:d1:eb: 5e:1e:07:87:ed:de:a9:16:b2:97:2e:e6:67:a0:ea: 80:9f:b6:c3:c5:a3:05:ea:92:d6:94:34:44:f5:ac: ba:04:42:6d:a1:61:35:4f:76:89:fb:96:a2:1c:9d: 33:11:52:c4:59:d7:ba:f6:d4:fd:bf:58:25:3c:35: 73:f8:b0:69:5f:81:d7:d8:fa:b0:0e:30:e8:42:f0: cb:a7:af:3d:ae:74:e0:dd:f6:0a:fe:a1:d1:dd:2f: 50:1c:11:fc:12:39:f4:c7:3e:af:23:cf:41:e9:c0: 87:52:62:5c:b2:ef:17:9e:3f:91:d8:ab:1e:f6:a4: 86:f9:1e:d8:ea:ac:90:9d:d2:2c:dd:75:dd:88:ce: 66:4c:1c:28:e9:b4:13:59:54:79:a2:c5:bd:cf:82: 21:4b:56:07:1a:63:65:cd:23:26:5c:f4:93:ca:e0: c4:43:a7:70:60:a5:68:60:a2:88:e8:65:9d:cd:2c: 99:f2:cb:0f:4d:19:80:c6:15:64:16:55:55:a8:5f: d5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:53:C3:6F:E4:1C:ED:D8:1D:E7:CF:E4:D2:E8:17:BE:03:B7:EB:0F X509v3 Authority Key Identifier: keyid:61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/1lPDb-Qc7dgd58_k0ugXvgO36w8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/YYd_TODTYWF3JNSyiaiRjFxtci0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.86.205.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:cf:1a:a9:40:fc:31:95:1d:ea:0a:da:1e:0b:14:7e:63:4d: 6f:0d:0e:56:48:ab:9e:e4:41:cd:b9:71:46:7a:95:1a:f0:95: a0:13:d0:cc:f3:79:0e:b0:c8:00:65:57:1a:41:c3:bb:1d:e8: fb:23:10:1e:ea:0f:fd:82:05:6d:02:7d:10:b8:27:67:93:eb: fc:66:b2:dc:34:3e:a6:dc:6f:e9:18:f1:44:36:74:4e:f9:e4: 9f:eb:5e:e0:09:e0:e0:20:18:78:d5:61:18:13:f1:77:13:9c: 47:d8:ea:c3:c6:d1:ab:ed:d1:4a:b8:5f:d2:28:fc:1e:a7:0d: b7:0b:e5:cd:34:4a:b3:04:1c:83:bd:de:92:e0:f5:cd:ff:21: a1:29:73:0c:ae:2e:86:9b:9a:91:15:a2:91:d8:90:e9:b9:c1: 6e:b5:39:1a:89:05:ef:37:c9:2f:44:1d:d1:eb:80:dc:d8:6a: 49:fe:a9:9a:1d:5a:ea:85:ac:2c:05:43:19:8a:5a:bd:ff:5e: 50:8d:dd:33:ee:0b:8f:66:b8:01:45:c8:2a:6b:5c:a3:45:99: 24:61:16:26:7b:fe:47:4a:be:01:b9:f0:85:c3:ab:b5:4c:8f: dc:eb:c8:9e:c6:2b:e4:cb:9d:a3:6f:c0:f9:87:31:8a:7c:dd: 11:77:f6:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9ygYRiJ+En2O36tUt8qLtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxODc3ZjRjZTBkMzYxNjE3NzI0ZDRiMjg5YTg5MThjNWM2 ZDcyMmQwHhcNMjYwMTAyMDgxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjUzYzM2ZmU0MWNlZGQ4MWRlN2NmZTRkMmU4MTdiZTAzYjdlYjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6v9Dttl88cR2r3MvW+18FVslFOtV AxM7UlaKqKywrgbO9unRNhopyoVthMH076IDixSkFCl/Frju0eteHgeH7d6pFrKX LuZnoOqAn7bDxaMF6pLWlDRE9ay6BEJtoWE1T3aJ+5aiHJ0zEVLEWde69tT9v1gl PDVz+LBpX4HX2PqwDjDoQvDLp689rnTg3fYK/qHR3S9QHBH8Ejn0xz6vI89B6cCH UmJcsu8Xnj+R2Kse9qSG+R7Y6qyQndIs3XXdiM5mTBwo6bQTWVR5osW9z4IhS1YH GmNlzSMmXPSTyuDEQ6dwYKVoYKKI6GWdzSyZ8ssPTRmAxhVkFlVVqF/VaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNZTw2/kHO3YHefP5NLoF74Dt+sPMB8GA1UdIwQY MBaAFGGHf0zg02FhdyTUsomokYxcbXItMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVlkX1RPRFRZV0YzSk5TeWlhaVJqRnh0Y2kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jNDNiMmYtMTBiYS00MTcwLWI1MjEt YzcyMjIxN2U1M2I2LzEvMWxQRGItUWM3ZGdkNThfazB1Z1h2Z08zNnc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9jNDNiMmYtMTBiYS00MTcwLWI1MjEtYzcyMjIxN2U1M2I2 LzEvWVlkX1RPRFRZV0YzSk5TeWlhaVJqRnh0Y2kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVbNMA0G CSqGSIb3DQEBCwUAA4IBAQCMzxqpQPwxlR3qCtoeCxR+Y01vDQ5WSKue5EHNuXFG epUa8JWgE9DM83kOsMgAZVcaQcO7Hej7IxAe6g/9ggVtAn0QuCdnk+v8ZrLcND6m 3G/pGPFENnRO+eSf617gCeDgIBh41WEYE/F3E5xH2OrDxtGr7dFKuF/SKPwepw23 C+XNNEqzBByDvd6S4PXN/yGhKXMMri6Gm5qRFaKR2JDpucFutTkaiQXvN8kvRB3R 64Dc2GpJ/qmaHVrqhawsBUMZilq9/15Qjd0z7guPZrgBRcgqa1yjRZkkYRYme/5H Sr4BufCFw6u1TI/c68iexivky52jb8D5hzGKfN0Rd/aj -----END CERTIFICATE-----Generated at Sun Jan 25 17:36:26 2026 by rpki-client