This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/H_VfesekEwBudWH_8DQh6aKcOw0.roa File: H_VfesekEwBudWH_8DQh6aKcOw0.roa (raw, json) Hash identifier: 56IhWo+MgCgnD6PDWUOyAjOU3jZFSSsm3KQcc9WaOgw= Subject key identifier: 1F:F5:5F:7A:C7:A4:13:00:6E:75:61:FF:F0:34:21:E9:A2:9C:3B:0D Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Certificate serial: 019B7D5CC3A6E3A9E7CE4F13DD5CF71DEC58 Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/H_VfesekEwBudWH_8DQh6aKcOw0.roa Signing time: Fri 02 Jan 2026 06:19:49 +0000 ROA not before: Fri 02 Jan 2026 06:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207456 IP address blocks: 31.171.132.0/22 maxlen: 24 45.154.4.0/22 maxlen: 24 109.235.52.0/22 maxlen: 24 109.235.53.0/24 maxlen: 24 109.235.54.0/23 maxlen: 24 185.68.196.0/22 maxlen: 24 185.153.188.0/22 maxlen: 24 185.196.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.mft rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c3:a6:e3:a9:e7:ce:4f:13:dd:5c:f7:1d:ec:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Validity Not Before: Jan 2 06:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ff55f7ac7a413006e7561fff03421e9a29c3b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:50:6b:f4:bf:e0:58:52:de:5c:b1:75:18:66: 81:a3:f1:90:41:eb:72:b0:56:0c:9f:05:e8:50:56: a8:e0:58:e1:7b:90:34:72:b0:14:c4:d8:03:84:79: 88:6a:67:19:d9:a8:18:40:cc:01:a4:0a:2e:9d:77: 01:e7:8c:bb:29:14:1c:bf:4d:c3:cf:d4:96:fb:7b: 73:a2:7a:fc:5a:82:ea:15:60:03:1c:a1:b6:6a:7e: 6f:8e:b8:3b:21:f8:33:44:1a:83:2a:f0:e8:02:70: 1a:4f:e5:10:bb:48:17:f0:87:41:6e:5d:e9:24:77: 3d:04:e4:1b:6e:15:cf:8c:5a:89:5a:d1:5e:01:8a: 36:04:1a:28:a2:e3:88:d9:0d:ca:7d:c5:4c:ac:25: cd:96:35:3e:11:0b:49:bb:92:7d:45:cc:f3:05:df: 00:1b:47:6f:85:4a:0b:ba:a9:0d:c7:2e:a6:38:d8: 4b:45:a1:ce:ff:66:87:ca:3a:23:9d:c5:cf:8c:5b: 52:de:c8:3a:04:83:fe:8a:01:4e:8c:61:02:fa:8f: 41:19:7f:b9:f8:a2:97:24:16:2c:ad:d1:23:0a:5f: 19:39:73:c4:73:07:a7:5e:59:54:15:35:94:8d:b3: 4c:c1:26:6d:b2:d5:7b:95:c8:8d:ae:c6:bf:7e:c5: 2f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F5:5F:7A:C7:A4:13:00:6E:75:61:FF:F0:34:21:E9:A2:9C:3B:0D X509v3 Authority Key Identifier: keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/H_VfesekEwBudWH_8DQh6aKcOw0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.171.132.0/22 45.154.4.0/22 109.235.52.0/22 185.68.196.0/22 185.153.188.0/22 185.196.92.0/22 Signature Algorithm: sha256WithRSAEncryption 81:0a:5a:03:a3:af:7f:18:3a:83:b0:db:09:6d:b8:78:3e:b1: fe:d7:ae:7b:7e:8b:29:4a:11:50:01:0c:d7:19:4d:c5:67:60: b4:dc:d9:d3:a7:9d:d4:4e:30:82:da:17:f9:7b:a5:5d:5e:2d: 75:c2:a7:28:ae:11:dd:89:27:ed:e9:c4:e0:bb:e0:c8:60:c5: f6:76:dd:92:4a:72:41:38:2b:22:30:7b:51:c9:ac:ef:55:29: 02:f0:6c:33:e4:31:32:68:d1:24:b6:bf:9e:45:55:86:4b:4f: 4d:63:c8:b9:07:6e:4a:5a:67:87:6b:79:4e:34:08:bb:40:d4: 95:91:c7:e3:4b:c6:8d:b6:a5:74:a8:56:fe:9e:40:7a:0f:c9: 96:fc:b7:e3:f5:34:93:29:70:a4:be:d2:ca:e6:a3:41:ff:3e: 31:03:59:b6:56:be:51:e4:6a:8d:fa:3a:a8:ef:b3:56:71:61: 39:ad:17:c6:0a:97:99:22:56:91:05:92:15:bb:53:ca:17:cf: 88:78:a5:2a:7b:04:58:2c:97:37:b5:bb:35:74:79:6b:19:ef: 22:b3:25:5c:77:0b:63:29:0c:b8:06:6c:0a:5b:f1:dd:ac:36: d6:e8:b0:e3:a1:d9:05:8c:a0:e2:39:c4:c3:f2:77:1c:fc:21: 8b:28:bb:7e -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt9XMOm46nnzk8T3Vz3HexYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZGM5YzIxOGI1MTBjMDdiYzY2NTliMDlmYmQzMmFmZTY4 YWJmZDIwHhcNMjYwMTAyMDYxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZmY1NWY3YWM3YTQxMzAwNmU3NTYxZmZmMDM0MjFlOWEyOWMzYjBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFBr9L/gWFLeXLF1GGaBo/GQQety sFYMnwXoUFao4Fjhe5A0crAUxNgDhHmIamcZ2agYQMwBpAounXcB54y7KRQcv03D z9SW+3tzonr8WoLqFWADHKG2an5vjrg7IfgzRBqDKvDoAnAaT+UQu0gX8IdBbl3p JHc9BOQbbhXPjFqJWtFeAYo2BBooouOI2Q3KfcVMrCXNljU+EQtJu5J9RczzBd8A G0dvhUoLuqkNxy6mONhLRaHO/2aHyjojncXPjFtS3sg6BIP+igFOjGEC+o9BGX+5 +KKXJBYsrdEjCl8ZOXPEcwenXllUFTWUjbNMwSZtstV7lciNrsa/fsUvzQIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFB/1X3rHpBMAbnVh//A0IeminDsNMB8GA1UdIwQY MBaAFFLcnCGLUQwHvGZZsJ+9Mq/mir/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYt NTJmOTdiMjc3ZDFmLzEvSF9WZmVzZWtFd0J1ZFdIXzhEUWg2YUtjT3cwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYtNTJmOTdiMjc3ZDFm LzEvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCH6uEAwQC LZoEAwQCbes0AwQCuUTEAwQCuZm8AwQCucRcMA0GCSqGSIb3DQEBCwUAA4IBAQCB CloDo69/GDqDsNsJbbh4PrH+1657fospShFQAQzXGU3FZ2C03NnTp53UTjCC2hf5 e6VdXi11wqcorhHdiSft6cTgu+DIYMX2dt2SSnJBOCsiMHtRyazvVSkC8Gwz5DEy aNEktr+eRVWGS09NY8i5B25KWmeHa3lONAi7QNSVkcfjS8aNtqV0qFb+nkB6D8mW /Lfj9TSTKXCkvtLK5qNB/z4xA1m2Vr5R5GqN+jqo77NWcWE5rRfGCpeZIlaRBZIV u1PKF8+IeKUqewRYLJc3tbs1dHlrGe8isyVcdwtjKQy4BmwKW/HdrDbW6LDjodkF jKDiOcTD8ncc/CGLKLt+ -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:48 2026 by rpki-client