This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/Y65RtoblGFrM6kNQIdL_hG2y410.roa File: Y65RtoblGFrM6kNQIdL_hG2y410.roa (raw, json) Hash identifier: G1WxV/wAwI2Rrcwu6rxSRhE3f9jBtq0K/v7G7l1eVZY= Subject key identifier: 63:AE:51:B6:86:E5:18:5A:CC:EA:43:50:21:D2:FF:84:6D:B2:E3:5D Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Certificate serial: 019B77C6891FBD54A0F006E3CE0FD2E80E10 Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/Y65RtoblGFrM6kNQIdL_hG2y410.roa Signing time: Thu 01 Jan 2026 04:17:38 +0000 ROA not before: Thu 01 Jan 2026 04:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50563 IP address blocks: 5.154.0.0/24 maxlen: 24 5.154.44.0/24 maxlen: 24 84.236.143.0/24 maxlen: 24 88.148.52.0/23 maxlen: 23 88.148.52.0/24 maxlen: 24 88.148.53.0/24 maxlen: 24 88.148.115.0/24 maxlen: 24 89.46.140.0/23 maxlen: 23 89.46.140.0/24 maxlen: 24 89.46.141.0/24 maxlen: 24 94.76.141.0/24 maxlen: 24 94.76.146.0/24 maxlen: 24 94.76.171.0/24 maxlen: 24 176.56.116.0/24 maxlen: 24 176.227.145.0/24 maxlen: 24 178.156.57.0/24 maxlen: 24 178.156.121.0/24 maxlen: 24 185.27.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.mft rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:89:1f:bd:54:a0:f0:06:e3:ce:0f:d2:e8:0e:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Validity Not Before: Jan 1 04:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63ae51b686e5185accea435021d2ff846db2e35d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:71:41:e8:4a:b8:3b:75:c2:9a:cf:2c:0d: 87:88:1b:b4:95:74:23:05:cd:9d:32:6c:4c:e9:8d: 2b:f3:b1:5c:44:f1:c6:09:40:ee:5b:c2:27:65:7d: cd:ca:aa:1d:5d:2d:e1:48:30:83:f1:81:5c:fc:35: d9:3d:28:09:d2:3c:00:05:56:c1:96:63:af:c9:b0: 47:40:3e:99:0a:a1:e6:b2:62:b3:1b:36:7c:ec:39: a4:3d:d8:9c:b8:43:a4:02:f0:43:24:32:d0:24:40: 42:93:f2:95:80:09:8d:b3:b7:b8:47:b6:a9:2b:ea: 13:fe:85:85:7a:b3:f8:24:87:99:a6:a3:cd:08:64: 3a:90:6b:69:b9:6b:d5:84:1f:23:21:cf:50:69:52: b5:00:17:08:a6:82:d6:c5:b5:59:17:06:87:50:72: 85:94:bb:39:40:0b:d6:8b:79:97:c5:25:d4:76:02: 80:e8:dc:7f:67:c2:13:9a:db:d3:9e:03:3d:28:c9: 39:af:3f:d9:c8:13:6a:dc:d6:0d:04:2f:c3:e4:73: cc:d0:8f:c7:2a:9f:cf:0d:67:9f:87:fd:68:44:ad: f1:fd:0c:6e:7e:26:eb:ff:0c:04:08:d9:ed:68:5e: 62:5a:d8:f4:e6:8e:43:ba:81:bb:aa:29:f2:8b:e4: 7d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:AE:51:B6:86:E5:18:5A:CC:EA:43:50:21:D2:FF:84:6D:B2:E3:5D X509v3 Authority Key Identifier: keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/Y65RtoblGFrM6kNQIdL_hG2y410.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.154.0.0/24 5.154.44.0/24 84.236.143.0/24 88.148.52.0/23 88.148.115.0/24 89.46.140.0/23 94.76.141.0/24 94.76.146.0/24 94.76.171.0/24 176.56.116.0/24 176.227.145.0/24 178.156.57.0/24 178.156.121.0/24 185.27.125.0/24 Signature Algorithm: sha256WithRSAEncryption a4:51:c2:a2:30:de:44:9f:cd:47:26:34:6e:84:af:f6:e6:6b: 3a:ba:a6:0e:da:e2:b0:b2:be:ac:39:17:93:d2:5c:e5:cd:af: 21:3a:e5:e4:36:d7:e0:ff:bc:fd:2e:0f:92:a3:6b:70:f1:3c: 38:8e:ab:c6:ce:28:4c:28:b9:2a:7f:4d:b5:43:ed:ae:c2:e8: b3:b6:b1:71:b4:d2:b1:7a:10:d3:7e:6c:27:fb:b2:5a:36:e1: 89:cf:59:80:26:8c:ff:82:c2:2e:a0:8e:07:50:cc:10:2f:b7: d3:da:48:8d:03:11:90:b6:e5:c0:91:80:98:b6:33:0b:e6:67: 0a:10:f6:a1:d1:17:1d:13:0c:13:f0:0c:f0:46:a4:d4:d0:46: 57:f3:fe:0e:b4:e6:ce:23:9e:20:e0:21:9b:24:3a:0c:04:f0: 83:de:43:8b:53:f5:7c:c1:85:cf:3d:e1:14:36:b2:55:3a:7b: 88:a8:9a:9d:90:ba:65:41:54:86:64:83:e8:f4:ca:d0:c5:2b: c9:1a:b9:1e:94:af:38:9b:7e:87:c5:d3:ac:55:c6:64:3f:b5: 2e:f8:eb:b9:ec:4a:2d:8b:48:fc:b3:4f:2c:92:94:aa:fb:08: eb:81:f4:2b:b7:cd:20:ed:57:58:04:ee:e7:ec:6d:e9:2d:e7: 84:10:00:dd -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZt3xokfvVSg8Abjzg/S6A4QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYWYxN2IwMDE1ZGJiN2NkOTkyZjI2Y2RmZjAxYzRlMjYy MGI3M2UwHhcNMjYwMTAxMDQxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2FlNTFiNjg2ZTUxODVhY2NlYTQzNTAyMWQyZmY4NDZkYjJlMzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQ5xQehKuDt1wprPLA2HiBu0lXQj Bc2dMmxM6Y0r87FcRPHGCUDuW8InZX3NyqodXS3hSDCD8YFc/DXZPSgJ0jwABVbB lmOvybBHQD6ZCqHmsmKzGzZ87DmkPdicuEOkAvBDJDLQJEBCk/KVgAmNs7e4R7ap K+oT/oWFerP4JIeZpqPNCGQ6kGtpuWvVhB8jIc9QaVK1ABcIpoLWxbVZFwaHUHKF lLs5QAvWi3mXxSXUdgKA6Nx/Z8ITmtvTngM9KMk5rz/ZyBNq3NYNBC/D5HPM0I/H Kp/PDWefh/1oRK3x/Qxufibr/wwECNntaF5iWtj05o5DuoG7qinyi+R9xQIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFGOuUbaG5RhazOpDUCHS/4RtsuNdMB8GA1UdIwQY MBaAFNqvF7ABXbt82ZLybN/wHE4mILc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAt Y2YwNmQxOTgzYmExLzEvWTY1UnRvYmxHRnJNNmtOUUlkTF9oRzJ5NDEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAtY2YwNmQxOTgzYmEx LzEvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQABZoAAwQA BZosAwQAVOyPAwQBWJQ0AwQAWJRzAwQBWS6MAwQAXkyNAwQAXkySAwQAXkyrAwQA sDh0AwQAsOORAwQAspw5AwQAspx5AwQAuRt9MA0GCSqGSIb3DQEBCwUAA4IBAQCk UcKiMN5En81HJjRuhK/25ms6uqYO2uKwsr6sOReT0lzlza8hOuXkNtfg/7z9Lg+S o2tw8Tw4jqvGzihMKLkqf021Q+2uwuiztrFxtNKxehDTfmwn+7JaNuGJz1mAJoz/ gsIuoI4HUMwQL7fT2kiNAxGQtuXAkYCYtjML5mcKEPah0RcdEwwT8AzwRqTU0EZX 8/4OtObOI54g4CGbJDoMBPCD3kOLU/V8wYXPPeEUNrJVOnuIqJqdkLplQVSGZIPo 9MrQxSvJGrkelK84m36HxdOsVcZkP7Uu+Ou57Eoti0j8s08skpSq+wjrgfQrt80g 7VdYBO7n7G3pLeeEEADd -----END CERTIFICATE-----Generated at Sun Jan 25 07:15:42 2026 by rpki-client