This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/ExzXOd7XjnHXy3XAmImZuxvVV1I.roa File: ExzXOd7XjnHXy3XAmImZuxvVV1I.roa (raw, json) Hash identifier: oLzwzlk8o4rqNWUPnGFpb0+JQEfblu5zBsOZQRC2TdI= Subject key identifier: 13:1C:D7:39:DE:D7:8E:71:D7:CB:75:C0:98:89:99:BB:1B:D5:57:52 Certificate issuer: /CN=2fb87a2c309d75553a46e1025775e9aa41f6b337 Certificate serial: 019B7F8209ADAD7ABD76CD759377E0FA2EF9 Authority key identifier: 2F:B8:7A:2C:30:9D:75:55:3A:46:E1:02:57:75:E9:AA:41:F6:B3:37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L7h6LDCddVU6RuECV3XpqkH2szc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/ExzXOd7XjnHXy3XAmImZuxvVV1I.roa Signing time: Fri 02 Jan 2026 16:19:47 +0000 ROA not before: Fri 02 Jan 2026 16:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208463 IP address blocks: 45.135.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/L7h6LDCddVU6RuECV3XpqkH2szc.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/L7h6LDCddVU6RuECV3XpqkH2szc.mft rsync://rpki.ripe.net/repository/DEFAULT/L7h6LDCddVU6RuECV3XpqkH2szc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:09:ad:ad:7a:bd:76:cd:75:93:77:e0:fa:2e:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fb87a2c309d75553a46e1025775e9aa41f6b337 Validity Not Before: Jan 2 16:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=131cd739ded78e71d7cb75c0988999bb1bd55752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a2:c5:d2:56:0a:a8:6b:de:81:da:ed:b9:60: eb:e8:14:a2:c5:9b:b8:cd:7e:bd:2d:22:33:41:27: dd:c9:75:3e:6e:67:1a:40:9c:aa:b4:4a:d0:f6:4e: c2:0c:89:f8:f1:10:1d:a5:b6:52:8e:bc:64:27:30: 16:56:e7:0c:fe:3f:de:eb:ba:7a:d9:00:7c:25:fb: 29:7a:75:6c:e7:b9:92:ec:34:08:f3:54:ac:39:96: 51:2e:05:b3:79:1a:20:4c:49:69:9e:eb:e3:b6:60: 07:b0:e9:59:0b:1b:33:39:a2:8c:95:58:94:18:df: 1d:bc:79:4e:08:99:67:c9:d5:e7:f6:00:4c:35:25: ec:ae:db:31:97:89:05:2e:56:78:f4:4d:48:cb:80: 57:37:47:2a:5e:95:48:89:0e:3f:a7:e0:18:22:00: 60:b6:8d:c5:56:54:30:f3:1d:50:d8:9d:7d:b5:96: cd:cd:0d:45:f9:dc:6e:65:5e:48:6b:7d:c8:b0:fd: 8e:09:3c:25:db:85:96:63:15:e4:eb:be:d7:89:55: 6c:4d:f0:f1:7e:1d:66:01:40:94:d3:57:f2:d4:fd: ad:b0:6d:0d:e9:be:37:f7:f1:bb:f6:24:1e:97:8e: 90:83:24:d1:44:a5:2f:5a:1e:d9:1a:2b:f8:17:d5: eb:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1C:D7:39:DE:D7:8E:71:D7:CB:75:C0:98:89:99:BB:1B:D5:57:52 X509v3 Authority Key Identifier: keyid:2F:B8:7A:2C:30:9D:75:55:3A:46:E1:02:57:75:E9:AA:41:F6:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L7h6LDCddVU6RuECV3XpqkH2szc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/ExzXOd7XjnHXy3XAmImZuxvVV1I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/L7h6LDCddVU6RuECV3XpqkH2szc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.135.108.0/22 Signature Algorithm: sha256WithRSAEncryption 01:da:99:5c:41:de:58:f1:3a:52:fc:cb:d5:04:2c:06:bf:d8: c1:59:cb:9a:b9:9a:35:f8:92:3a:84:0e:d3:4b:c6:75:b5:93: 77:45:69:33:aa:fc:ea:16:4b:76:50:b4:c9:3f:d9:c9:80:59: e4:f2:b9:70:ab:d9:91:9e:cd:8a:82:1d:d0:0b:ff:15:26:ad: 14:18:67:83:5f:9e:26:79:6f:db:44:86:cf:68:38:4d:bb:d3: c7:33:6e:14:31:e7:e6:de:26:03:45:bf:e4:df:66:db:59:81: 18:b0:18:2e:fc:5d:3c:7d:e9:54:a0:f4:89:98:c2:db:28:19: e0:82:2b:21:5a:81:c1:99:78:cd:72:34:ea:0b:d3:ed:06:6e: b4:b5:be:50:d5:4c:e7:c1:54:e8:c9:69:13:83:93:ff:44:34: 4a:61:7a:2d:f3:e4:30:c9:52:1f:48:00:fe:86:e8:1e:d3:63: e7:79:d9:55:4c:74:d8:42:7e:53:88:bf:60:8c:70:23:03:e3: 1e:0b:9c:7b:68:cf:47:83:73:0f:bf:b6:66:a0:78:28:3c:b8: 6a:5b:31:e4:65:5e:83:d3:81:5f:38:73:63:f9:32:6d:45:0e: 09:f2:93:44:ad:2b:cf:0a:72:c8:fa:68:1b:03:cf:b1:1e:b9: 21:11:34:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/ggmtrXq9ds11k3fg+i75MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYjg3YTJjMzA5ZDc1NTUzYTQ2ZTEwMjU3NzVlOWFhNDFm NmIzMzcwHhcNMjYwMTAyMTYxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzFjZDczOWRlZDc4ZTcxZDdjYjc1YzA5ODg5OTliYjFiZDU1NzUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaLF0lYKqGvegdrtuWDr6BSixZu4 zX69LSIzQSfdyXU+bmcaQJyqtErQ9k7CDIn48RAdpbZSjrxkJzAWVucM/j/e67p6 2QB8JfspenVs57mS7DQI81SsOZZRLgWzeRogTElpnuvjtmAHsOlZCxszOaKMlViU GN8dvHlOCJlnydXn9gBMNSXsrtsxl4kFLlZ49E1Iy4BXN0cqXpVIiQ4/p+AYIgBg to3FVlQw8x1Q2J19tZbNzQ1F+dxuZV5Ia33IsP2OCTwl24WWYxXk677XiVVsTfDx fh1mAUCU01fy1P2tsG0N6b439/G79iQel46QgyTRRKUvWh7ZGiv4F9XrOwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBMc1zne145x18t1wJiJmbsb1VdSMB8GA1UdIwQY MBaAFC+4eiwwnXVVOkbhAld16apB9rM3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDdoNkxEQ2RkVlU2UnVFQ1YzWHBxa0gyc3pjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zY2ZkOTQtN2Q1MS00NTlhLTgzOTMt NzcxN2ViMzE5MTYwLzEvRXh6WE9kN1hqbkhYeTNYQW1JbVp1eHZWVjFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8zY2ZkOTQtN2Q1MS00NTlhLTgzOTMtNzcxN2ViMzE5MTYw LzEvTDdoNkxEQ2RkVlU2UnVFQ1YzWHBxa0gyc3pjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYdsMA0G CSqGSIb3DQEBCwUAA4IBAQAB2plcQd5Y8TpS/MvVBCwGv9jBWcuauZo1+JI6hA7T S8Z1tZN3RWkzqvzqFkt2ULTJP9nJgFnk8rlwq9mRns2Kgh3QC/8VJq0UGGeDX54m eW/bRIbPaDhNu9PHM24UMefm3iYDRb/k32bbWYEYsBgu/F08felUoPSJmMLbKBng gishWoHBmXjNcjTqC9PtBm60tb5Q1UznwVToyWkTg5P/RDRKYXot8+QwyVIfSAD+ huge02PnedlVTHTYQn5TiL9gjHAjA+MeC5x7aM9Hg3MPv7ZmoHgoPLhqWzHkZV6D 04FfOHNj+TJtRQ4J8pNErSvPCnLI+mgbA8+xHrkhETTx -----END CERTIFICATE-----Generated at Fri Jan 9 12:39:12 2026 by rpki-client