This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/F5RZYJk-5VMxs0EMgIcqj1TaI9s.roa File: F5RZYJk-5VMxs0EMgIcqj1TaI9s.roa (raw, json) Hash identifier: uzDB2dl0AkdDkTc/vHCDi1fsal/DPTgfPRRQCsLYWcM= Subject key identifier: 17:94:59:60:99:3E:E5:53:31:B3:41:0C:80:87:2A:8F:54:DA:23:DB Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Certificate serial: 019B78A36C7A155EB3B57FFB43A6533A923B Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/F5RZYJk-5VMxs0EMgIcqj1TaI9s.roa Signing time: Thu 01 Jan 2026 08:18:54 +0000 ROA not before: Thu 01 Jan 2026 08:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20836 IP address blocks: 149.154.157.0/24 maxlen: 24 151.236.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.mft rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:6c:7a:15:5e:b3:b5:7f:fb:43:a6:53:3a:92:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Validity Not Before: Jan 1 08:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17945960993ee55331b3410c80872a8f54da23db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e8:d0:23:c5:45:ad:c6:ed:94:24:75:dd:11: d2:e4:2f:3f:ac:f4:88:00:45:51:a0:ee:c0:79:c0: 41:29:55:34:22:65:05:59:7d:9b:f2:79:e6:52:07: 15:d9:51:dd:09:1d:bc:eb:a4:b8:cc:f6:98:5c:0e: 81:a9:b0:98:f7:e8:59:df:57:60:6c:24:db:70:b3: 83:87:6c:12:d1:42:02:4c:bb:82:13:8c:bb:89:27: 8d:1d:e5:d3:53:45:9e:e0:92:6e:8c:01:fe:43:5a: 2c:26:9e:e6:6e:87:c3:c8:97:fe:db:8b:aa:d4:fa: 3e:1a:02:87:1b:36:cc:d5:02:51:22:d0:95:cb:87: 76:f6:5e:c5:0e:31:e6:6a:1e:b6:40:00:e7:30:6e: 3d:41:71:73:f6:75:d2:75:d1:ab:fa:e4:f1:8e:2a: 6b:3a:8e:f5:c8:70:fd:4d:ed:fd:22:73:f9:74:37: 8b:53:56:f4:77:0b:fa:88:01:a3:88:11:f0:90:5d: 14:59:e2:3f:22:ff:87:29:eb:57:25:e9:3d:ad:fd: 11:3d:d1:40:6c:47:09:4b:67:c2:71:41:6e:56:ac: d8:bf:a1:96:ef:d4:6e:09:4f:84:1d:b0:a5:d9:51: 2e:c0:aa:7b:ee:c9:dc:be:92:c4:da:67:fd:00:b0: 52:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:94:59:60:99:3E:E5:53:31:B3:41:0C:80:87:2A:8F:54:DA:23:DB X509v3 Authority Key Identifier: keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/F5RZYJk-5VMxs0EMgIcqj1TaI9s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.154.157.0/24 151.236.18.0/24 Signature Algorithm: sha256WithRSAEncryption 00:50:4c:00:92:44:13:e7:c8:ba:32:cc:63:81:a0:8b:25:ac: 0a:a9:c7:89:40:ae:36:7b:c7:9e:29:6f:e2:c9:7a:5d:be:8f: 59:44:a1:d4:8d:fa:07:39:41:65:6b:bf:9c:2c:69:ae:46:2b: 12:aa:b0:f8:51:e0:a9:f5:1c:c8:e9:ae:3c:df:ec:ed:c8:65: 02:67:34:24:e2:de:33:48:af:82:29:87:b4:83:08:16:52:c4: eb:20:69:7a:0e:c4:c7:47:53:78:dd:c0:b7:df:93:a1:f3:b3: e8:4d:fb:e7:f1:85:a2:da:37:2a:56:dd:11:7e:72:c4:29:e7: b9:ee:00:be:8d:23:6e:a1:a1:16:59:62:a0:b6:dc:d0:a1:4e: 9e:56:d6:88:cb:3b:c2:76:d1:21:24:19:e1:07:e7:92:c6:55: 15:be:f4:1c:52:93:ea:53:22:d0:f7:da:c2:8b:3c:f2:18:3a: e9:c7:8e:06:90:95:26:38:df:b9:8a:84:3b:9c:3f:a9:90:2f: ed:78:c5:a6:51:2b:28:79:b5:15:9d:da:04:f3:a4:90:b8:27: a3:9b:15:71:f0:1b:27:01:16:04:78:59:89:88:e2:4e:1f:62: 2a:d5:63:ab:1f:6e:2a:af:70:9f:5d:47:ea:a5:95:70:2d:f9: 14:ae:e8:c0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4o2x6FV6ztX/7Q6ZTOpI7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMTdiNDcyYzg0MWMxZDY4NTUwYTI0ZjE5MzZkMjljYzZj MjhmNmEwHhcNMjYwMTAxMDgxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNzk0NTk2MDk5M2VlNTUzMzFiMzQxMGM4MDg3MmE4ZjU0ZGEyM2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+jQI8VFrcbtlCR13RHS5C8/rPSI AEVRoO7AecBBKVU0ImUFWX2b8nnmUgcV2VHdCR2866S4zPaYXA6BqbCY9+hZ31dg bCTbcLODh2wS0UICTLuCE4y7iSeNHeXTU0We4JJujAH+Q1osJp7mbofDyJf+24uq 1Po+GgKHGzbM1QJRItCVy4d29l7FDjHmah62QADnMG49QXFz9nXSddGr+uTxjipr Oo71yHD9Te39InP5dDeLU1b0dwv6iAGjiBHwkF0UWeI/Iv+HKetXJek9rf0RPdFA bEcJS2fCcUFuVqzYv6GW79RuCU+EHbCl2VEuwKp77sncvpLE2mf9ALBS4wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBeUWWCZPuVTMbNBDICHKo9U2iPbMB8GA1UdIwQY MBaAFNIXtHLIQcHWhVCiTxk20pzGwo9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGIt YjM4ZTI2NzdiM2RjLzEvRjVSWllKay01Vk14czBFTWdJY3FqMVRhSTlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGItYjM4ZTI2NzdiM2Rj LzEvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAlZqdAwQA l+wSMA0GCSqGSIb3DQEBCwUAA4IBAQAAUEwAkkQT58i6MsxjgaCLJawKqceJQK42 e8eeKW/iyXpdvo9ZRKHUjfoHOUFla7+cLGmuRisSqrD4UeCp9RzI6a483+ztyGUC ZzQk4t4zSK+CKYe0gwgWUsTrIGl6DsTHR1N43cC335Oh87PoTfvn8YWi2jcqVt0R fnLEKee57gC+jSNuoaEWWWKgttzQoU6eVtaIyzvCdtEhJBnhB+eSxlUVvvQcUpPq UyLQ99rCizzyGDrpx44GkJUmON+5ioQ7nD+pkC/teMWmUSsoebUVndoE86SQuCej mxVx8BsnARYEeFmJiOJOH2Iq1WOrH24qr3CfXUfqpZVwLfkUrujA -----END CERTIFICATE-----Generated at Sun Jan 25 16:39:01 2026 by rpki-client