This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/4d76f5-42ec-453e-8992-d8973acaf41d/1/XASNzZ7eNfFZgvbJT8Q1lC9Tw84.roa File: XASNzZ7eNfFZgvbJT8Q1lC9Tw84.roa (raw, json) Hash identifier: pBgoU7wOpw4nY7mOMS9Fl6YvITNZqmO4sxUzQmgNOCY= Subject key identifier: 5C:04:8D:CD:9E:DE:35:F1:59:82:F6:C9:4F:C4:35:94:2F:53:C3:CE Certificate issuer: /CN=7afb5441d8ef8e41aa28dd51cdde925943aef7fa Certificate serial: 019B7A5B092802DF223EE40206FA95834D9E Authority key identifier: 7A:FB:54:41:D8:EF:8E:41:AA:28:DD:51:CD:DE:92:59:43:AE:F7:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evtUQdjvjkGqKN1Rzd6SWUOu9_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/4d76f5-42ec-453e-8992-d8973acaf41d/1/XASNzZ7eNfFZgvbJT8Q1lC9Tw84.roa Signing time: Thu 01 Jan 2026 16:19:04 +0000 ROA not before: Thu 01 Jan 2026 16:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215621 IP address blocks: 116.199.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/4d76f5-42ec-453e-8992-d8973acaf41d/1/evtUQdjvjkGqKN1Rzd6SWUOu9_o.crl rsync://rpki.ripe.net/repository/DEFAULT/47/4d76f5-42ec-453e-8992-d8973acaf41d/1/evtUQdjvjkGqKN1Rzd6SWUOu9_o.mft rsync://rpki.ripe.net/repository/DEFAULT/evtUQdjvjkGqKN1Rzd6SWUOu9_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:09:28:02:df:22:3e:e4:02:06:fa:95:83:4d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7afb5441d8ef8e41aa28dd51cdde925943aef7fa Validity Not Before: Jan 1 16:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c048dcd9ede35f15982f6c94fc435942f53c3ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:87:55:f6:5a:83:41:b3:4c:34:da:14:6b:41: 2a:b8:e6:e9:bb:ed:1a:fa:c1:30:2b:c2:2e:07:a5: 2e:71:f9:5a:5f:1e:94:07:5a:c8:55:ed:39:c0:b4: 87:22:04:35:e8:75:c3:fe:20:49:91:fc:f2:a4:a5: dd:43:2f:e6:a6:70:9b:30:c1:4a:64:e4:18:b9:91: 10:dd:e6:29:e2:60:a6:d6:6f:eb:3f:96:7d:73:38: de:37:a1:66:f4:bf:0d:63:ad:10:6e:7c:f8:a0:a9: 55:5f:90:f5:96:3b:9d:6c:2e:c5:eb:7c:af:23:ae: 15:2e:d9:3c:1f:65:14:c4:30:fc:18:e7:8b:70:53: ce:c8:ed:ea:4f:19:14:78:22:90:d3:e5:8c:2b:fa: e3:ec:4f:d7:0c:c7:57:56:81:7d:c4:02:53:14:6d: 15:46:ed:7a:a9:b6:eb:8a:0a:d5:16:47:34:69:64: 20:92:96:eb:7d:81:e3:d8:07:a7:0f:b4:31:41:99: f5:d0:48:d1:8c:5d:e8:55:e3:f0:37:d6:c7:7a:db: 3d:aa:a9:9d:ac:76:15:a1:ad:1d:2f:d2:44:6c:9a: 07:1e:85:7e:83:68:76:f3:c4:32:0e:a2:c0:3d:77: 62:22:c8:ad:b2:e5:01:82:71:9e:99:5f:73:0f:34: d5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:04:8D:CD:9E:DE:35:F1:59:82:F6:C9:4F:C4:35:94:2F:53:C3:CE X509v3 Authority Key Identifier: keyid:7A:FB:54:41:D8:EF:8E:41:AA:28:DD:51:CD:DE:92:59:43:AE:F7:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evtUQdjvjkGqKN1Rzd6SWUOu9_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4d76f5-42ec-453e-8992-d8973acaf41d/1/XASNzZ7eNfFZgvbJT8Q1lC9Tw84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4d76f5-42ec-453e-8992-d8973acaf41d/1/evtUQdjvjkGqKN1Rzd6SWUOu9_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.199.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:66:f3:be:b0:77:6c:07:51:49:f9:8b:e7:83:46:3e:c1:e7: 76:7a:51:24:e4:23:04:fc:65:bf:5c:27:a7:1e:3a:b3:ed:03: dc:46:ce:bd:6d:12:a8:e8:14:35:a9:4e:2e:5f:99:51:3f:c1: d4:57:8c:98:e1:46:a5:81:2b:6f:6b:35:a5:0b:d2:ad:35:d7: ac:98:c4:2c:0c:89:af:7f:90:c3:47:e5:8c:f8:e3:54:90:73: ee:90:50:a0:4c:f1:56:64:c3:7a:ca:04:34:7a:f6:46:f6:d7: 54:17:4f:45:1f:bd:18:c8:40:1d:d7:ee:52:43:b0:43:e4:58: 8c:74:bd:c2:26:e8:20:0b:06:f3:13:cb:df:ac:cb:71:e4:2d: 32:28:2c:cf:01:ef:13:09:22:0e:14:91:92:5e:c2:32:4a:40: 6a:71:b4:8f:da:6a:e6:f4:11:46:16:f9:2f:1b:83:c2:da:38: b7:28:af:99:bc:11:f8:cc:06:65:94:28:83:bb:7a:87:ec:7c: 8a:09:ec:55:74:d0:d3:ec:9c:82:56:af:4c:86:c4:da:fe:3c: 67:a2:2e:c1:5b:e2:ec:13:75:71:48:37:fb:67:39:0e:e7:63: a2:29:da:ee:c0:05:23:76:8f:ef:fa:93:f6:15:8c:f9:b4:be: 32:fc:8a:6b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WwkoAt8iPuQCBvqVg02eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhZmI1NDQxZDhlZjhlNDFhYTI4ZGQ1MWNkZGU5MjU5NDNh ZWY3ZmEwHhcNMjYwMTAxMTYxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzA0OGRjZDllZGUzNWYxNTk4MmY2Yzk0ZmM0MzU5NDJmNTNjM2NlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYdV9lqDQbNMNNoUa0EquObpu+0a +sEwK8IuB6UucflaXx6UB1rIVe05wLSHIgQ16HXD/iBJkfzypKXdQy/mpnCbMMFK ZOQYuZEQ3eYp4mCm1m/rP5Z9czjeN6Fm9L8NY60Qbnz4oKlVX5D1ljudbC7F63yv I64VLtk8H2UUxDD8GOeLcFPOyO3qTxkUeCKQ0+WMK/rj7E/XDMdXVoF9xAJTFG0V Ru16qbbrigrVFkc0aWQgkpbrfYHj2AenD7QxQZn10EjRjF3oVePwN9bHets9qqmd rHYVoa0dL9JEbJoHHoV+g2h288QyDqLAPXdiIsitsuUBgnGemV9zDzTVgwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFwEjc2e3jXxWYL2yU/ENZQvU8POMB8GA1UdIwQY MBaAFHr7VEHY745BqijdUc3ekllDrvf6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXZ0VVFkanZqa0dxS04xUnpkNlNXVU91OV9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80ZDc2ZjUtNDJlYy00NTNlLTg5OTIt ZDg5NzNhY2FmNDFkLzEvWEFTTnpaN2VOZkZaZ3ZiSlQ4UTFsQzlUdzg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny80ZDc2ZjUtNDJlYy00NTNlLTg5OTItZDg5NzNhY2FmNDFk LzEvZXZ0VVFkanZqa0dxS04xUnpkNlNXVU91OV9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdMfgMA0G CSqGSIb3DQEBCwUAA4IBAQB+ZvO+sHdsB1FJ+Yvng0Y+wed2elEk5CME/GW/XCen Hjqz7QPcRs69bRKo6BQ1qU4uX5lRP8HUV4yY4UalgStvazWlC9KtNdesmMQsDImv f5DDR+WM+ONUkHPukFCgTPFWZMN6ygQ0evZG9tdUF09FH70YyEAd1+5SQ7BD5FiM dL3CJuggCwbzE8vfrMtx5C0yKCzPAe8TCSIOFJGSXsIySkBqcbSP2mrm9BFGFvkv G4PC2ji3KK+ZvBH4zAZllCiDu3qH7HyKCexVdNDT7JyCVq9MhsTa/jxnoi7BW+Ls E3VxSDf7ZzkO52OiKdruwAUjdo/v+pP2FYz5tL4y/Ipr -----END CERTIFICATE-----Generated at Sun Jan 25 10:37:59 2026 by rpki-client