This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/bb0fc3-d5f9-4bf5-9683-9edf0d17fb91/1/5zXq-FtbfKVjtSSz3geS2vHCvmY.roa File: 5zXq-FtbfKVjtSSz3geS2vHCvmY.roa (raw, json) Hash identifier: wO+/2FCBNgWvsvAqT9cT/K3eUtj2DJtruhQHyhf5M3Y= Subject key identifier: E7:35:EA:F8:5B:5B:7C:A5:63:B5:24:B3:DE:07:92:DA:F1:C2:BE:66 Certificate issuer: /CN=962ae3463938b26f83b76f0c4df81dfabb15a4eb Certificate serial: 019B7BA4CC04EEABA662876B97A8E2A58554 Authority key identifier: 96:2A:E3:46:39:38:B2:6F:83:B7:6F:0C:4D:F8:1D:FA:BB:15:A4:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lirjRjk4sm-Dt28MTfgd-rsVpOs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/bb0fc3-d5f9-4bf5-9683-9edf0d17fb91/1/5zXq-FtbfKVjtSSz3geS2vHCvmY.roa Signing time: Thu 01 Jan 2026 22:19:16 +0000 ROA not before: Thu 01 Jan 2026 22:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40975 IP address blocks: 86.104.254.0/23 maxlen: 23 86.107.192.0/24 maxlen: 24 89.35.6.0/23 maxlen: 23 185.84.64.0/23 maxlen: 23 185.84.66.0/24 maxlen: 24 217.19.14.0/23 maxlen: 23 2a03:6fe0::/32 maxlen: 32 2a03:6fe0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/bb0fc3-d5f9-4bf5-9683-9edf0d17fb91/1/lirjRjk4sm-Dt28MTfgd-rsVpOs.crl rsync://rpki.ripe.net/repository/DEFAULT/11/bb0fc3-d5f9-4bf5-9683-9edf0d17fb91/1/lirjRjk4sm-Dt28MTfgd-rsVpOs.mft rsync://rpki.ripe.net/repository/DEFAULT/lirjRjk4sm-Dt28MTfgd-rsVpOs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:cc:04:ee:ab:a6:62:87:6b:97:a8:e2:a5:85:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=962ae3463938b26f83b76f0c4df81dfabb15a4eb Validity Not Before: Jan 1 22:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e735eaf85b5b7ca563b524b3de0792daf1c2be66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:83:38:1c:b6:05:ec:1c:92:92:e7:bd:b4:f6: 45:0c:d7:37:37:42:a6:49:8a:b3:0a:46:b3:83:5d: 93:2a:d8:77:94:6b:97:82:93:56:5b:5a:2c:99:29: d6:79:6a:e3:2a:6d:ec:a7:d8:d5:bf:6b:7e:39:d1: 53:c3:b7:39:c8:66:af:9d:c0:e8:b4:50:27:6f:60: e2:ab:4c:9e:0b:2b:53:48:bb:89:e1:3a:83:cf:d2: 3e:93:d4:a9:c5:14:c5:76:b3:7e:6f:09:cb:33:80: 05:cb:17:9f:60:ab:f3:50:c9:c4:43:0f:51:5b:45: 49:55:86:17:59:bc:b8:92:e1:7e:b5:d8:b4:47:7c: 41:76:13:a5:11:16:08:f4:4b:c2:52:50:ad:9e:e3: cb:6e:1d:cd:32:70:b3:14:38:91:77:06:b0:42:0a: 9f:9d:f5:2b:ba:1f:bc:c0:35:16:d8:cf:13:34:9e: 36:94:fd:f7:7e:b8:91:d4:9f:b3:a3:11:28:de:8b: a1:8f:5b:95:15:b9:ac:15:3e:fc:59:54:41:02:c5: 85:31:1d:f9:e8:48:0e:da:45:3f:ec:19:ed:8e:85: fb:3e:51:40:c7:f1:83:6b:c7:e3:cb:5c:10:22:c0: 5c:b7:02:f3:cb:73:5c:f2:f4:32:4e:54:4f:47:61: 68:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:35:EA:F8:5B:5B:7C:A5:63:B5:24:B3:DE:07:92:DA:F1:C2:BE:66 X509v3 Authority Key Identifier: keyid:96:2A:E3:46:39:38:B2:6F:83:B7:6F:0C:4D:F8:1D:FA:BB:15:A4:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lirjRjk4sm-Dt28MTfgd-rsVpOs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/bb0fc3-d5f9-4bf5-9683-9edf0d17fb91/1/5zXq-FtbfKVjtSSz3geS2vHCvmY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/bb0fc3-d5f9-4bf5-9683-9edf0d17fb91/1/lirjRjk4sm-Dt28MTfgd-rsVpOs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.104.254.0/23 86.107.192.0/24 89.35.6.0/23 185.84.64.0-185.84.66.255 217.19.14.0/23 IPv6: 2a03:6fe0::/32 Signature Algorithm: sha256WithRSAEncryption 01:79:f6:0c:e8:5a:a6:d4:47:54:38:e4:b8:a7:f5:e7:8b:f4: 2a:3a:26:4e:57:7a:27:64:2f:ff:70:c7:41:87:96:f6:21:81: 3a:2b:17:d0:57:8c:bf:43:ed:60:3b:4b:d4:a4:c5:0b:b5:1e: ed:25:24:59:76:d0:fe:c7:fa:4c:e9:21:ff:c3:fd:e9:b7:bf: 5a:20:1d:af:f6:6f:98:8f:1d:e7:58:f5:58:1a:7c:6b:c5:80: e0:98:28:14:4e:2a:4e:83:3e:04:aa:2b:88:7b:c3:a3:63:85: d8:fa:d0:1a:f7:b1:81:e1:f1:cd:56:7b:89:4e:f3:83:bf:a5: 9d:5f:7e:2e:9e:12:54:6f:48:01:0c:4e:50:62:0d:2a:7b:62: 3a:32:c2:e3:e9:a5:6c:41:34:3b:ec:f9:c6:97:3e:22:8e:9a: 6f:e0:3c:87:7e:e0:21:67:be:c8:1d:1f:9e:8e:c2:12:ed:48: 7e:18:5f:46:e3:73:97:26:85:ea:c1:82:bf:a3:18:cb:25:94: eb:28:9a:65:c5:e9:d0:62:85:ae:21:d3:99:d4:a6:c1:d1:f7: 55:95:a4:78:a5:f3:c2:a7:f5:14:eb:b7:f7:8a:c7:bf:90:24: ba:c1:12:89:e5:9e:7f:d7:ee:e3:97:42:fe:d7:80:b0:47:d2: 6f:57:aa:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZt7pMwE7qumYodrl6jipYVUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MmFlMzQ2MzkzOGIyNmY4M2I3NmYwYzRkZjgxZGZhYmIx NWE0ZWIwHhcNMjYwMTAxMjIxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzM1ZWFmODViNWI3Y2E1NjNiNTI0YjNkZTA3OTJkYWYxYzJiZTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YM4HLYF7BySkue9tPZFDNc3N0Km SYqzCkazg12TKth3lGuXgpNWW1osmSnWeWrjKm3sp9jVv2t+OdFTw7c5yGavncDo tFAnb2Diq0yeCytTSLuJ4TqDz9I+k9SpxRTFdrN+bwnLM4AFyxefYKvzUMnEQw9R W0VJVYYXWby4kuF+tdi0R3xBdhOlERYI9EvCUlCtnuPLbh3NMnCzFDiRdwawQgqf nfUruh+8wDUW2M8TNJ42lP33friR1J+zoxEo3ouhj1uVFbmsFT78WVRBAsWFMR35 6EgO2kU/7BntjoX7PlFAx/GDa8fjy1wQIsBctwLzy3Nc8vQyTlRPR2FoawIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFOc16vhbW3ylY7Uks94Hktrxwr5mMB8GA1UdIwQY MBaAFJYq40Y5OLJvg7dvDE34Hfq7FaTrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGlyalJqazRzbS1EdDI4TVRmZ2QtcnNWcE9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iYjBmYzMtZDVmOS00YmY1LTk2ODMt OWVkZjBkMTdmYjkxLzEvNXpYcS1GdGJmS1ZqdFNTejNnZVMydkhDdm1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iYjBmYzMtZDVmOS00YmY1LTk2ODMtOWVkZjBkMTdmYjkx LzEvbGlyalJqazRzbS1EdDI4TVRmZ2QtcnNWcE9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQBVmj+AwQA VmvAAwQBWSMGMAwDBAa5VEADBAC5VEIDBAHZEw4wDQQCAAIwBwMFACoDb+AwDQYJ KoZIhvcNAQELBQADggEBAAF59gzoWqbUR1Q45Lin9eeL9Co6Jk5XeidkL/9wx0GH lvYhgTorF9BXjL9D7WA7S9SkxQu1Hu0lJFl20P7H+kzpIf/D/em3v1ogHa/2b5iP HedY9VgafGvFgOCYKBROKk6DPgSqK4h7w6Njhdj60Br3sYHh8c1We4lO84O/pZ1f fi6eElRvSAEMTlBiDSp7YjoywuPppWxBNDvs+caXPiKOmm/gPId+4CFnvsgdH56O whLtSH4YX0bjc5cmherBgr+jGMsllOsommXF6dBiha4h05nUpsHR91WVpHil88Kn 9RTrt/eKx7+QJLrBEonlnn/X7uOXQv7XgLBH0m9XqtQ= -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:30 2026 by rpki-client