This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/CUW86B2DR7frkjRXhMj0tpGfzR0.roa File: CUW86B2DR7frkjRXhMj0tpGfzR0.roa (raw, json) Hash identifier: +AMltbCrgBtIU8+BHyMcK4ZbfgEd7AgGyNWp1F2ZA24= Subject key identifier: 09:45:BC:E8:1D:83:47:B7:EB:92:34:57:84:C8:F4:B6:91:9F:CD:1D Certificate issuer: /CN=7c3e585a59b523bb86d660a7168e1c1eba094da0 Certificate serial: 019B7F8441B375EA848A310F4C851C6C6626 Authority key identifier: 7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/CUW86B2DR7frkjRXhMj0tpGfzR0.roa Signing time: Fri 02 Jan 2026 16:22:12 +0000 ROA not before: Fri 02 Jan 2026 16:22:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201589 IP address blocks: 5.101.36.0/24 maxlen: 24 5.101.37.0/24 maxlen: 24 5.101.38.0/24 maxlen: 24 5.101.39.0/24 maxlen: 24 5.101.71.0/24 maxlen: 24 31.184.232.0/24 maxlen: 24 31.184.233.0/24 maxlen: 24 31.184.234.0/24 maxlen: 24 31.184.235.0/24 maxlen: 24 185.238.152.0/24 maxlen: 24 185.238.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.mft rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:41:b3:75:ea:84:8a:31:0f:4c:85:1c:6c:66:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c3e585a59b523bb86d660a7168e1c1eba094da0 Validity Not Before: Jan 2 16:22:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0945bce81d8347b7eb92345784c8f4b6919fcd1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:6e:21:4b:46:6c:a2:87:07:84:31:c9:5a:6c: 8b:09:ae:cf:bb:41:27:46:cc:11:69:6b:8f:41:3a: db:de:cd:04:ad:f4:f9:d7:c6:8b:63:b2:72:18:94: a0:0c:c3:c9:a1:44:f8:60:f8:e0:cb:dd:30:a6:67: 82:00:b3:31:e3:9b:21:4b:05:f1:c7:ac:3f:2d:7f: 8d:f3:7c:85:1d:48:29:5c:6d:b3:7a:cf:e1:78:7e: 95:ac:19:d1:85:ab:32:24:0a:1f:df:5c:96:36:31: b6:00:3c:ff:b0:88:26:41:d4:27:71:4f:18:bf:77: 17:e4:03:c2:fa:41:39:2c:0f:28:ca:f6:42:8c:62: 69:79:25:94:c6:c8:1e:91:7e:de:28:a2:76:a6:6d: 19:b9:14:6f:e8:98:c7:d5:5f:34:a0:d5:90:88:82: 94:85:af:00:51:28:31:bc:34:48:ca:88:67:3b:f8: a5:e8:75:55:27:76:1f:d5:c3:8d:ca:ba:5e:86:56: 41:8e:5e:f5:7d:6e:35:ee:f0:55:8d:ee:2b:cf:81: 2b:b9:8a:5f:28:27:9b:55:6c:07:f2:c8:37:d8:77: f9:a3:a2:68:79:c6:97:70:41:03:ce:7b:01:5e:29: 22:f7:73:df:97:b3:21:f1:2e:8f:50:62:77:cc:5a: 2b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:45:BC:E8:1D:83:47:B7:EB:92:34:57:84:C8:F4:B6:91:9F:CD:1D X509v3 Authority Key Identifier: keyid:7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/CUW86B2DR7frkjRXhMj0tpGfzR0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.101.36.0/22 5.101.71.0/24 31.184.232.0/22 185.238.152.0/24 185.238.155.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:d7:72:61:dc:79:5e:bc:81:54:4e:bf:92:b1:e6:6a:3f:61: bc:ad:d6:5f:b7:fb:0b:19:da:74:18:35:16:49:a2:56:44:bb: 69:e7:ee:45:df:fe:0b:4d:85:c4:2d:dc:ba:c9:5d:3e:6a:39: 01:c2:ab:b7:02:7a:16:4d:30:72:26:db:29:40:9b:2a:c1:b3: 6c:09:ca:cd:83:6f:30:06:2a:8e:3f:32:3f:6d:10:9e:96:08: cd:97:2c:ef:e5:30:20:ba:6e:5c:74:a7:4b:05:6d:74:1d:a5: 7f:23:e2:0e:22:ca:61:86:3e:34:99:dd:64:37:87:20:c7:a0: 28:9c:c3:0c:61:23:ce:cf:17:7c:08:4f:28:07:62:97:9f:89: 04:32:31:c3:99:1e:a9:d2:a0:7b:12:3d:2f:b1:4c:b2:de:dc: de:e7:b6:4f:a3:70:7b:d9:72:da:0c:fe:8f:43:54:c4:5a:3f: fe:c4:6a:e5:0e:86:33:34:cf:76:cf:4b:5b:c6:6f:d7:ee:6e: 80:db:0a:a0:64:70:97:c3:86:d7:12:e5:e7:2c:ff:3d:43:77: 32:19:93:a6:a0:fb:c5:e5:34:6e:9f:3a:d5:89:72:e4:33:20: 51:45:8e:28:2e:30:ac:19:c0:4c:26:eb:6e:78:36:08:e3:86: 2d:be:27:f6 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt/hEGzdeqEijEPTIUcbGYmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjM2U1ODVhNTliNTIzYmI4NmQ2NjBhNzE2OGUxYzFlYmEw OTRkYTAwHhcNMjYwMTAyMTYyMjEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTQ1YmNlODFkODM0N2I3ZWI5MjM0NTc4NGM4ZjRiNjkxOWZjZDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjm4hS0ZsoocHhDHJWmyLCa7Pu0En RswRaWuPQTrb3s0ErfT518aLY7JyGJSgDMPJoUT4YPjgy90wpmeCALMx45shSwXx x6w/LX+N83yFHUgpXG2zes/heH6VrBnRhasyJAof31yWNjG2ADz/sIgmQdQncU8Y v3cX5APC+kE5LA8oyvZCjGJpeSWUxsgekX7eKKJ2pm0ZuRRv6JjH1V80oNWQiIKU ha8AUSgxvDRIyohnO/il6HVVJ3Yf1cONyrpehlZBjl71fW417vBVje4rz4EruYpf KCebVWwH8sg32Hf5o6JoecaXcEEDznsBXiki93Pfl7Mh8S6PUGJ3zFor8QIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFAlFvOgdg0e365I0V4TI9LaRn80dMB8GA1UdIwQY MBaAFHw+WFpZtSO7htZgpxaOHB66CU2gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZkQ1WVdsbTFJN3VHMW1DbkZvNGNIcm9KVGFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8yNmUzMmEtMzViYS00NDNmLWJjMWUt NmRjMWY1NjAzMWViLzEvQ1VXODZCMkRSN2Zya2pSWGhNajB0cEdmelIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS8yNmUzMmEtMzViYS00NDNmLWJjMWUtNmRjMWY1NjAzMWVi LzEvZkQ1WVdsbTFJN3VHMW1DbkZvNGNIcm9KVGFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCBWUkAwQA BWVHAwQCH7joAwQAue6YAwQAue6bMA0GCSqGSIb3DQEBCwUAA4IBAQBe13Jh3Hle vIFUTr+SseZqP2G8rdZft/sLGdp0GDUWSaJWRLtp5+5F3/4LTYXELdy6yV0+ajkB wqu3AnoWTTByJtspQJsqwbNsCcrNg28wBiqOPzI/bRCelgjNlyzv5TAgum5cdKdL BW10HaV/I+IOIsphhj40md1kN4cgx6AonMMMYSPOzxd8CE8oB2KXn4kEMjHDmR6p 0qB7Ej0vsUyy3tze57ZPo3B72XLaDP6PQ1TEWj/+xGrlDoYzNM92z0tbxm/X7m6A 2wqgZHCXw4bXEuXnLP89Q3cyGZOmoPvF5TRunzrViXLkMyBRRY4oLjCsGcBMJutu eDYI44Ytvif2 -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:02 2026 by rpki-client