This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/_5wD3GhDQ1YTzFTjqBTWs_Q3la0.roa File: _5wD3GhDQ1YTzFTjqBTWs_Q3la0.roa (raw, json) Hash identifier: wo2o5ggTBU2w++bpEVrPqvzmJ1RgxdR3NpxYQHN0044= Subject key identifier: FF:9C:03:DC:68:43:43:56:13:CC:54:E3:A8:14:D6:B3:F4:37:95:AD Certificate issuer: /CN=d670034104f1bf658144b4aa45b41a3f5779dc0f Certificate serial: 019B797DF1384F7E0EF4E7361A2E522FDEDE Authority key identifier: D6:70:03:41:04:F1:BF:65:81:44:B4:AA:45:B4:1A:3F:57:79:DC:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nADQQTxv2WBRLSqRbQaP1d53A8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/_5wD3GhDQ1YTzFTjqBTWs_Q3la0.roa Signing time: Thu 01 Jan 2026 12:17:35 +0000 ROA not before: Thu 01 Jan 2026 12:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3292 IP address blocks: 192.66.103.0/24 maxlen: 24 192.66.104.0/24 maxlen: 24 192.66.105.0/24 maxlen: 24 192.66.106.0/24 maxlen: 24 192.66.107.0/24 maxlen: 24 192.66.108.0/24 maxlen: 24 192.66.109.0/24 maxlen: 24 192.66.110.0/24 maxlen: 24 192.66.111.0/24 maxlen: 24 192.66.112.0/24 maxlen: 24 192.66.113.0/24 maxlen: 24 192.66.114.0/24 maxlen: 24 192.66.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/1nADQQTxv2WBRLSqRbQaP1d53A8.crl rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/1nADQQTxv2WBRLSqRbQaP1d53A8.mft rsync://rpki.ripe.net/repository/DEFAULT/1nADQQTxv2WBRLSqRbQaP1d53A8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:f1:38:4f:7e:0e:f4:e7:36:1a:2e:52:2f:de:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d670034104f1bf658144b4aa45b41a3f5779dc0f Validity Not Before: Jan 1 12:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff9c03dc6843435613cc54e3a814d6b3f43795ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c3:67:c1:8e:cf:7e:e0:6f:46:12:c7:6d:0d: fb:56:6c:7d:fb:ea:fb:e3:a1:5e:7c:84:cb:10:85: 41:25:54:ac:96:31:ab:21:2f:a8:b9:0e:ac:b0:32: ea:75:b1:f9:f3:68:72:f1:0c:99:e9:73:ab:e7:44: 08:49:9b:9e:90:5d:a7:be:10:fc:b6:28:81:71:33: f5:35:b5:12:de:cb:89:ca:df:7e:00:8e:d9:56:8e: 20:f1:22:1e:ed:1b:7d:09:34:67:4b:70:c3:ce:78: 41:53:f9:8b:d1:3e:78:1f:84:01:71:2e:04:4b:17: ad:25:43:68:db:95:d1:37:59:93:ac:9b:f0:8e:d7: 18:3b:fe:00:39:7b:99:10:17:16:19:12:1c:2d:cd: 37:72:91:f2:23:c5:9c:52:0d:53:8b:78:a9:ab:50: a5:06:9c:82:3e:1e:e8:c8:3e:90:1e:e5:04:d3:b2: cf:7d:ae:f4:03:5a:33:89:15:e2:35:2c:d2:5c:fe: 61:c5:f9:57:fc:74:06:d3:f0:42:10:02:6b:32:f3: 1c:8b:05:33:69:ae:2b:22:50:2b:ad:de:3c:dd:a3: da:f7:ab:5b:cc:0a:93:02:46:05:df:a2:08:51:fc: cc:dd:ed:b8:7c:a8:47:4b:aa:f7:11:a2:f4:6e:34: 0d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:9C:03:DC:68:43:43:56:13:CC:54:E3:A8:14:D6:B3:F4:37:95:AD X509v3 Authority Key Identifier: keyid:D6:70:03:41:04:F1:BF:65:81:44:B4:AA:45:B4:1A:3F:57:79:DC:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nADQQTxv2WBRLSqRbQaP1d53A8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/_5wD3GhDQ1YTzFTjqBTWs_Q3la0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/1nADQQTxv2WBRLSqRbQaP1d53A8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.66.103.0-192.66.115.255 Signature Algorithm: sha256WithRSAEncryption ab:42:a7:71:43:5a:7b:8e:2f:dd:cb:ef:90:47:12:fb:5d:24: 90:38:e6:4d:61:e2:3e:af:ff:af:55:e8:f7:aa:21:09:a5:0d: ae:81:a2:fd:36:b4:53:42:e5:47:31:31:8d:e8:c8:3a:53:cc: 32:cb:5e:9a:eb:7c:71:05:ef:b6:0f:32:9c:93:f2:30:42:b9: 33:7d:eb:66:c9:48:ab:d9:01:fe:71:e9:88:66:dc:5d:1d:da: d2:db:98:da:d5:72:f4:a4:46:e0:88:63:f9:c7:12:ad:b8:f2: 86:4d:a4:63:fd:6f:a0:d8:16:6a:6e:33:9f:20:7a:f8:9d:d3: d3:95:97:b2:5f:ed:52:46:fc:df:7c:e2:89:b4:86:ad:be:c8: 23:52:27:c1:69:87:00:5f:e7:13:69:45:5b:69:86:97:12:42: 3e:26:a0:88:ab:f1:a0:9f:fa:e0:7a:b2:c1:d7:86:4e:59:12: c4:66:03:fc:d3:e3:29:9b:d4:89:a2:27:c4:10:ab:b6:13:6b: be:cf:3f:7e:3e:17:92:25:48:7c:9c:a8:b6:65:92:06:38:b1: 08:b3:02:9b:5d:41:a1:13:ec:df:db:0d:82:5a:6c:53:40:11: 59:e2:01:8d:67:bf:01:2e:5d:1f:1a:e4:17:b8:f4:1d:93:57: 3d:37:ae:18 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt5ffE4T34O9Oc2Gi5SL97eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NzAwMzQxMDRmMWJmNjU4MTQ0YjRhYTQ1YjQxYTNmNTc3 OWRjMGYwHhcNMjYwMTAxMTIxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjljMDNkYzY4NDM0MzU2MTNjYzU0ZTNhODE0ZDZiM2Y0Mzc5NWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2MNnwY7PfuBvRhLHbQ37Vmx9++r7 46FefITLEIVBJVSsljGrIS+ouQ6ssDLqdbH582hy8QyZ6XOr50QISZuekF2nvhD8 tiiBcTP1NbUS3suJyt9+AI7ZVo4g8SIe7Rt9CTRnS3DDznhBU/mL0T54H4QBcS4E SxetJUNo25XRN1mTrJvwjtcYO/4AOXuZEBcWGRIcLc03cpHyI8WcUg1Ti3ipq1Cl BpyCPh7oyD6QHuUE07LPfa70A1oziRXiNSzSXP5hxflX/HQG0/BCEAJrMvMciwUz aa4rIlArrd483aPa96tbzAqTAkYF36IIUfzM3e24fKhHS6r3EaL0bjQNmQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFP+cA9xoQ0NWE8xU46gU1rP0N5WtMB8GA1UdIwQY MBaAFNZwA0EE8b9lgUS0qkW0Gj9XedwPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMW5BRFFRVHh2MldCUkxTcVJiUWFQMWQ1M0E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMWNiYzMtMjhhMS00ZTUzLWEwYTQt ZjkxNzJjY2JjNWFmLzEvXzV3RDNHaERRMVlUekZUanFCVFdzX1EzbGEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9lMWNiYzMtMjhhMS00ZTUzLWEwYTQtZjkxNzJjY2JjNWFm LzEvMW5BRFFRVHh2MldCUkxTcVJiUWFQMWQ1M0E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADAQmcD BALAQnAwDQYJKoZIhvcNAQELBQADggEBAKtCp3FDWnuOL93L75BHEvtdJJA45k1h 4j6v/69V6PeqIQmlDa6Bov02tFNC5UcxMY3oyDpTzDLLXprrfHEF77YPMpyT8jBC uTN962bJSKvZAf5x6Yhm3F0d2tLbmNrVcvSkRuCIY/nHEq248oZNpGP9b6DYFmpu M58gevid09OVl7Jf7VJG/N984om0hq2+yCNSJ8FphwBf5xNpRVtphpcSQj4moIir 8aCf+uB6ssHXhk5ZEsRmA/zT4ymb1ImiJ8QQq7YTa77PP34+F5IlSHycqLZlkgY4 sQizAptdQaET7N/bDYJabFNAEVniAY1nvwEuXR8a5Be49B2TVz03rhg= -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:32 2026 by rpki-client