This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/5lLzlOSe2EMzTCpU7J1Pn4O1Qb8.roa File: 5lLzlOSe2EMzTCpU7J1Pn4O1Qb8.roa (raw, json) Hash identifier: yloQb3FNDE4bgwNWi1qn6U4HxV6wapprJyRxX2uAb+o= Subject key identifier: E6:52:F3:94:E4:9E:D8:43:33:4C:2A:54:EC:9D:4F:9F:83:B5:41:BF Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f Certificate serial: 019B77595A222822BDAFEBA176639CAAA3D1 Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/5lLzlOSe2EMzTCpU7J1Pn4O1Qb8.roa Signing time: Thu 01 Jan 2026 02:18:23 +0000 ROA not before: Thu 01 Jan 2026 02:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29205 IP address blocks: 45.156.236.0/22 maxlen: 24 91.230.36.0/23 maxlen: 23 185.49.12.0/22 maxlen: 24 185.49.15.0/24 maxlen: 24 185.100.228.0/24 maxlen: 24 185.100.231.0/24 maxlen: 24 185.192.102.0/24 maxlen: 24 188.214.16.0/21 maxlen: 24 188.215.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:5a:22:28:22:bd:af:eb:a1:76:63:9c:aa:a3:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f Validity Not Before: Jan 1 02:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e652f394e49ed843334c2a54ec9d4f9f83b541bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dd:ff:56:f6:e8:6b:b0:aa:b6:70:ec:27:47: 35:e1:03:3d:3d:09:eb:a3:af:29:2e:e7:1e:24:d3: c9:fd:c0:5a:0b:db:bd:ea:c4:1a:41:af:bc:47:5d: a3:27:de:a6:34:d0:48:19:5c:b0:2a:bb:64:e5:97: 17:0f:5e:ca:9f:6f:b8:5b:2d:f8:fc:4d:a4:2f:8e: d6:a0:17:72:24:03:e6:b7:ef:46:3a:f8:a8:c8:7a: 95:5e:4f:75:cb:10:35:bd:1f:f4:f6:13:5e:70:e5: 6a:79:6f:41:e1:c6:48:a1:57:27:80:25:3a:4b:a5: 06:e0:5f:7c:2f:88:ee:c0:60:13:46:b1:05:c6:58: c1:cc:b5:9a:b0:1a:d7:eb:ce:ad:fc:3b:6d:e4:19: 2e:f8:85:f5:03:38:4a:2b:77:07:7d:f7:a7:8d:54: 27:54:c4:35:ce:c8:ea:b5:d6:56:96:ef:e9:33:5c: 81:1d:4e:50:ce:e9:d8:8c:45:2d:28:6f:e1:bc:c9: c2:1b:ed:17:6c:4f:4a:a6:4b:fc:8f:74:b8:64:e6: 1b:e2:b4:f8:e8:d9:d8:d1:8d:9d:da:c4:47:9d:e9: 9e:77:9d:2f:f9:b8:fd:d2:26:90:dd:54:2d:8a:b0: fc:c3:12:ce:d2:b4:b3:80:60:1f:5e:40:67:98:d6: 72:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:52:F3:94:E4:9E:D8:43:33:4C:2A:54:EC:9D:4F:9F:83:B5:41:BF X509v3 Authority Key Identifier: keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/5lLzlOSe2EMzTCpU7J1Pn4O1Qb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.156.236.0/22 91.230.36.0/23 185.49.12.0/22 185.100.228.0/24 185.100.231.0/24 185.192.102.0/24 188.214.16.0/21 188.215.64.0/24 Signature Algorithm: sha256WithRSAEncryption 58:ef:ca:7b:b0:1c:4e:0d:2d:e4:d7:e4:49:de:b6:2e:cc:ce: ea:94:16:96:f7:3e:ee:4d:1d:ba:9e:f2:7a:b3:4e:5d:c0:d7: 31:a4:56:44:32:21:22:d5:e8:4c:d0:2f:aa:0d:5c:40:92:a5: 92:ae:08:f1:93:b4:eb:bd:f4:d8:66:c6:94:88:52:b4:f6:c0: 59:78:60:6c:18:a5:20:ad:a7:f8:a3:4f:ac:7a:bc:8e:83:e7: de:fb:d3:14:2e:7e:8f:16:48:03:88:14:29:8b:bd:30:6d:c6: 38:c5:69:9f:ba:89:0c:ce:0b:4d:5e:61:83:4b:a4:b1:c7:87: f4:9c:46:55:64:9c:52:98:84:ee:84:05:9a:ca:f1:84:31:b8: df:fc:3a:de:18:8e:ca:e1:03:ba:5d:ab:ab:cc:bc:f0:1c:e6: 0a:be:7d:b3:6f:37:7b:99:08:f0:db:22:eb:50:6d:46:53:4f: 21:91:c1:a5:65:d5:0a:81:98:4d:19:9d:39:e1:f0:48:db:f2: 9e:5c:da:58:69:86:ed:af:ea:2d:e2:e3:6a:bd:ba:57:ad:f9: 80:5e:aa:a4:a5:44:ca:9c:44:1b:64:14:07:fa:0a:9c:c2:65: c6:9f:87:3c:2e:1d:4b:f5:56:60:52:63:d9:a9:1f:0a:89:9c: 3b:c7:a0:eb -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt3WVoiKCK9r+uhdmOcqqPRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmN2RhNTY4YWQwMjdiOWUyNDljMTNlMjIzZDMyMjc2OTg4 MWEyOWYwHhcNMjYwMTAxMDIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjUyZjM5NGU0OWVkODQzMzM0YzJhNTRlYzlkNGY5ZjgzYjU0MWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN3/Vvboa7CqtnDsJ0c14QM9PQnr o68pLuceJNPJ/cBaC9u96sQaQa+8R12jJ96mNNBIGVywKrtk5ZcXD17Kn2+4Wy34 /E2kL47WoBdyJAPmt+9GOvioyHqVXk91yxA1vR/09hNecOVqeW9B4cZIoVcngCU6 S6UG4F98L4juwGATRrEFxljBzLWasBrX686t/Dtt5Bku+IX1AzhKK3cHffenjVQn VMQ1zsjqtdZWlu/pM1yBHU5QzunYjEUtKG/hvMnCG+0XbE9Kpkv8j3S4ZOYb4rT4 6NnY0Y2d2sRHnemed50v+bj90iaQ3VQtirD8wxLO0rSzgGAfXkBnmNZyYwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFOZS85TknthDM0wqVOydT5+DtUG/MB8GA1UdIwQY MBaAFF99pWitAnueJJwT4iPTInaYgaKfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUt Mzc1NzUzOWMyYWM5LzEvNWxMemxPU2UyRU16VENwVTdKMVBuNE8xUWI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUtMzc1NzUzOWMyYWM5 LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCLZzsAwQB W+YkAwQCuTEMAwQAuWTkAwQAuWTnAwQAucBmAwQDvNYQAwQAvNdAMA0GCSqGSIb3 DQEBCwUAA4IBAQBY78p7sBxODS3k1+RJ3rYuzM7qlBaW9z7uTR26nvJ6s05dwNcx pFZEMiEi1ehM0C+qDVxAkqWSrgjxk7TrvfTYZsaUiFK09sBZeGBsGKUgraf4o0+s eryOg+fe+9MULn6PFkgDiBQpi70wbcY4xWmfuokMzgtNXmGDS6Sxx4f0nEZVZJxS mITuhAWayvGEMbjf/DreGI7K4QO6XaurzLzwHOYKvn2zbzd7mQjw2yLrUG1GU08h kcGlZdUKgZhNGZ054fBI2/KeXNpYaYbtr+ot4uNqvbpXrfmAXqqkpUTKnEQbZBQH +gqcwmXGn4c8Lh1L9VZgUmPZqR8KiZw7x6Dr -----END CERTIFICATE-----Generated at Mon Jan 26 11:05:05 2026 by rpki-client