This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/D_jYfwuBOjkANvdaFHDPTLr66JQ.roa File: D_jYfwuBOjkANvdaFHDPTLr66JQ.roa (raw, json) Hash identifier: vAK4Fi/RAnr6XiRotftdXv2sD1o6dY70W8WZ/V0XyK4= Subject key identifier: 0F:F8:D8:7F:0B:81:3A:39:00:36:F7:5A:14:70:CF:4C:BA:FA:E8:94 Certificate issuer: /CN=d82cb43ca3c0c57816cee360478d0cf882207fd2 Certificate serial: 019B78349EB3577D232F05C2D80E1026DA60 Authority key identifier: D8:2C:B4:3C:A3:C0:C5:78:16:CE:E3:60:47:8D:0C:F8:82:20:7F:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/D_jYfwuBOjkANvdaFHDPTLr66JQ.roa Signing time: Thu 01 Jan 2026 06:17:52 +0000 ROA not before: Thu 01 Jan 2026 06:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58065 IP address blocks: 5.157.6.0/24 maxlen: 24 5.157.11.0/24 maxlen: 24 5.157.19.0/24 maxlen: 24 5.157.21.0/24 maxlen: 24 5.157.23.0/24 maxlen: 24 5.157.24.0/24 maxlen: 24 5.157.26.0/24 maxlen: 24 5.157.29.0/24 maxlen: 24 5.157.32.0/24 maxlen: 24 5.157.33.0/24 maxlen: 24 5.157.34.0/24 maxlen: 24 5.157.37.0/24 maxlen: 24 5.157.43.0/24 maxlen: 24 5.157.51.0/24 maxlen: 24 5.157.53.0/24 maxlen: 24 5.157.55.0/24 maxlen: 24 5.157.57.0/24 maxlen: 24 23.92.115.0/24 maxlen: 24 23.92.116.0/24 maxlen: 24 23.92.126.0/24 maxlen: 24 37.72.186.0/24 maxlen: 24 104.160.3.0/24 maxlen: 24 104.160.11.0/24 maxlen: 24 104.160.16.0/24 maxlen: 24 104.160.17.0/24 maxlen: 24 107.150.64.0/24 maxlen: 24 107.150.65.0/24 maxlen: 24 107.150.67.0/24 maxlen: 24 107.150.69.0/24 maxlen: 24 107.150.70.0/24 maxlen: 24 107.150.71.0/24 maxlen: 24 107.150.88.0/24 maxlen: 24 107.150.89.0/24 maxlen: 24 107.150.90.0/24 maxlen: 24 107.150.91.0/24 maxlen: 24 130.185.153.0/24 maxlen: 24 151.237.188.0/24 maxlen: 24 162.212.168.0/24 maxlen: 24 162.212.169.0/24 maxlen: 24 162.212.170.0/24 maxlen: 24 162.212.171.0/24 maxlen: 24 162.212.172.0/24 maxlen: 24 162.212.173.0/24 maxlen: 24 162.212.174.0/24 maxlen: 24 162.212.175.0/24 maxlen: 24 2a02:5740:4::/48 maxlen: 48 2a02:5740:9::/48 maxlen: 48 2a02:5740:14::/48 maxlen: 48 2a02:5740:24::/48 maxlen: 48 2a02:5740:26::/48 maxlen: 48 2a02:5740:153::/48 maxlen: 48 2a02:5740:200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/2Cy0PKPAxXgWzuNgR40M-IIgf9I.crl rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/2Cy0PKPAxXgWzuNgR40M-IIgf9I.mft rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:9e:b3:57:7d:23:2f:05:c2:d8:0e:10:26:da:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d82cb43ca3c0c57816cee360478d0cf882207fd2 Validity Not Before: Jan 1 06:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0ff8d87f0b813a390036f75a1470cf4cbafae894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ee:c0:e9:e6:88:98:c2:23:22:72:2f:b3:2c: ed:ba:2c:74:ed:01:d8:6f:d1:e9:77:2e:8a:0f:d0: 9a:8e:8f:d7:66:80:49:f8:3e:3e:25:1d:c1:ab:a0: 06:de:b3:26:44:6c:b6:a2:a3:55:85:1d:bb:d3:ee: 82:be:0b:a9:df:2a:ed:46:41:26:e8:01:27:2b:9f: 2c:91:62:02:1b:29:a9:64:75:c6:67:12:bd:79:f3: f6:f0:04:7f:54:92:5c:be:9f:d0:76:1f:34:ac:10: e6:9c:01:b8:63:d7:be:d5:47:0a:c6:ff:ac:2d:15: 9b:a8:a3:a3:cc:79:ca:8c:21:e2:e3:89:4b:d4:66: 94:8a:c0:09:18:d0:4b:3a:f1:f1:db:f5:3f:7a:7d: 14:0b:5a:43:10:73:5a:b6:31:0a:27:e8:b2:62:a8: 43:11:ed:08:19:00:9f:34:a4:cc:e0:b3:fa:9f:4a: 1d:ce:77:fc:d1:43:06:c5:be:1e:40:38:44:80:24: e6:f7:32:0d:de:5b:e2:43:96:7e:27:db:4c:0f:7b: e1:fe:bc:fa:a1:5d:bb:61:b1:1f:4f:7f:52:1e:68: 60:a6:35:e1:b1:64:2c:53:78:d8:5b:67:e5:42:dd: da:f2:76:b0:d8:24:02:0d:45:b0:71:e9:48:98:58: 82:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F8:D8:7F:0B:81:3A:39:00:36:F7:5A:14:70:CF:4C:BA:FA:E8:94 X509v3 Authority Key Identifier: keyid:D8:2C:B4:3C:A3:C0:C5:78:16:CE:E3:60:47:8D:0C:F8:82:20:7F:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/D_jYfwuBOjkANvdaFHDPTLr66JQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/2Cy0PKPAxXgWzuNgR40M-IIgf9I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.157.6.0/24 5.157.11.0/24 5.157.19.0/24 5.157.21.0/24 5.157.23.0-5.157.24.255 5.157.26.0/24 5.157.29.0/24 5.157.32.0-5.157.34.255 5.157.37.0/24 5.157.43.0/24 5.157.51.0/24 5.157.53.0/24 5.157.55.0/24 5.157.57.0/24 23.92.115.0-23.92.116.255 23.92.126.0/24 37.72.186.0/24 104.160.3.0/24 104.160.11.0/24 104.160.16.0/23 107.150.64.0/23 107.150.67.0/24 107.150.69.0-107.150.71.255 107.150.88.0/22 130.185.153.0/24 151.237.188.0/24 162.212.168.0/21 IPv6: 2a02:5740:4::/48 2a02:5740:9::/48 2a02:5740:14::/48 2a02:5740:24::/48 2a02:5740:26::/48 2a02:5740:153::/48 2a02:5740:200::/48 Signature Algorithm: sha256WithRSAEncryption 50:9f:8c:b9:db:e9:55:f4:5c:8b:6a:df:b1:41:63:31:ca:cc: 8e:4d:fe:da:6c:7c:e9:3b:21:80:da:95:1e:46:4b:1a:07:d7: 31:aa:8c:0f:37:a9:47:0f:ab:b2:4b:a9:be:e4:a2:e2:a3:5d: b2:78:59:e8:b6:c7:9b:6f:d6:77:79:2b:cd:87:b6:6e:6b:42: 4e:09:0b:5e:3e:8c:b6:c8:e3:02:0d:1b:c0:85:a6:4d:ca:09: 30:96:6a:2a:f3:6a:6b:d5:fb:66:2a:0f:99:d9:d2:a0:25:a9: f1:a7:5e:19:39:97:fb:db:41:9e:03:f4:c3:47:52:a0:6a:f5: 20:22:45:15:62:67:fa:2e:b8:fb:f3:98:79:60:2c:91:61:f3: e7:71:79:ee:56:c8:bf:2d:03:aa:f3:bf:29:d4:bf:bc:93:87: 3a:a7:5e:51:7d:6f:3b:1a:7a:ea:16:39:37:27:cf:b0:ca:d7: b2:d2:30:84:c2:34:95:fe:a1:01:cd:c9:7b:c4:63:a7:b1:b5: cf:4f:a5:98:ff:b3:eb:a7:4d:1a:26:e2:40:42:65:90:70:c0: ae:58:ad:d1:75:03:a0:10:79:36:20:3c:f3:09:c9:65:60:c8: 65:b2:dc:fd:db:23:84:fb:b6:bc:59:8c:6e:7e:11:9b:7e:c8: 03:c7:6f:ee -----BEGIN CERTIFICATE----- MIIGCDCCBPCgAwIBAgISAZt4NJ6zV30jLwXC2A4QJtpgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MmNiNDNjYTNjMGM1NzgxNmNlZTM2MDQ3OGQwY2Y4ODIy MDdmZDIwHhcNMjYwMTAxMDYxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmY4ZDg3ZjBiODEzYTM5MDAzNmY3NWExNDcwY2Y0Y2JhZmFlODk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzu7A6eaImMIjInIvsyztuix07QHY b9Hpdy6KD9Cajo/XZoBJ+D4+JR3Bq6AG3rMmRGy2oqNVhR270+6Cvgup3yrtRkEm 6AEnK58skWICGympZHXGZxK9efP28AR/VJJcvp/Qdh80rBDmnAG4Y9e+1UcKxv+s LRWbqKOjzHnKjCHi44lL1GaUisAJGNBLOvHx2/U/en0UC1pDEHNatjEKJ+iyYqhD Ee0IGQCfNKTM4LP6n0odznf80UMGxb4eQDhEgCTm9zIN3lviQ5Z+J9tMD3vh/rz6 oV27YbEfT39SHmhgpjXhsWQsU3jYW2flQt3a8naw2CQCDUWwcelImFiCOwIDAQAB o4IDFDCCAxAwHQYDVR0OBBYEFA/42H8LgTo5ADb3WhRwz0y6+uiUMB8GA1UdIwQY MBaAFNgstDyjwMV4Fs7jYEeNDPiCIH/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkN5MFBLUEF4WGdXenVOZ1I0ME0tSUlnZjlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8zYjUxYjgtMTBjNi00MzhiLWExMjAt MTVmMTNlM2Y3ZDg1LzEvRF9qWWZ3dUJPamtBTnZkYUZIRFBUTHI2NkpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8zYjUxYjgtMTBjNi00MzhiLWExMjAtMTVmMTNlM2Y3ZDg1 LzEvMkN5MFBLUEF4WGdXenVOZ1I0ME0tSUlnZjlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIBKAYIKwYBBQUHAQcBAf8EggEXMIIBEzCByQQCAAEwgcID BAAFnQYDBAAFnQsDBAAFnRMDBAAFnRUwDAMEAAWdFwMEAAWdGAMEAAWdGgMEAAWd HTAMAwQFBZ0gAwQABZ0iAwQABZ0lAwQABZ0rAwQABZ0zAwQABZ01AwQABZ03AwQA BZ05MAwDBAAXXHMDBAAXXHQDBAAXXH4DBAAlSLoDBABooAMDBABooAsDBAFooBAD BAFrlkADBABrlkMwDAMEAGuWRQMEA2uWQAMEAmuWWAMEAIK5mQMEAJftvAMEA6LU qDBFBAIAAjA/AwcAKgJXQAAEAwcAKgJXQAAJAwcAKgJXQAAUAwcAKgJXQAAkAwcA KgJXQAAmAwcAKgJXQAFTAwcAKgJXQAIAMA0GCSqGSIb3DQEBCwUAA4IBAQBQn4y5 2+lV9FyLat+xQWMxysyOTf7abHzpOyGA2pUeRksaB9cxqowPN6lHD6uyS6m+5KLi o12yeFnotsebb9Z3eSvNh7Zua0JOCQtePoy2yOMCDRvAhaZNygkwlmoq82pr1ftm Kg+Z2dKgJanxp14ZOZf720GeA/TDR1KgavUgIkUVYmf6Lrj785h5YCyRYfPncXnu Vsi/LQOq878p1L+8k4c6p15RfW87GnrqFjk3J8+wytey0jCEwjSV/qEBzcl7xGOn sbXPT6WY/7Prp00aJuJAQmWQcMCuWK3RdQOgEHk2IDzzCcllYMhlstz92yOE+7a8 WYxufhGbfsgDx2/u -----END CERTIFICATE-----Generated at Mon Jan 26 01:15:58 2026 by rpki-client