This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/5GBYGeRvszqITfVMXxVO12xJMMU.roa File: 5GBYGeRvszqITfVMXxVO12xJMMU.roa (raw, json) Hash identifier: OvOXjJpfo1n6ub3YS0OoLvXJddPxsoBU80DsscLhUa8= Subject key identifier: E4:60:58:19:E4:6F:B3:3A:88:4D:F5:4C:5F:15:4E:D7:6C:49:30:C5 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B123DAACCCCEC08B4EA6F4331EC872B7F Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/5GBYGeRvszqITfVMXxVO12xJMMU.roa Signing time: Fri 12 Dec 2025 11:06:29 +0000 ROA not before: Fri 12 Dec 2025 11:06:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 209641 IP address blocks: 45.89.66.0/24 maxlen: 24 45.89.67.0/24 maxlen: 24 45.128.176.0/24 maxlen: 24 45.128.177.0/24 maxlen: 24 45.128.178.0/24 maxlen: 24 45.128.179.0/24 maxlen: 24 45.132.252.0/24 maxlen: 24 45.133.247.0/24 maxlen: 24 91.217.80.0/24 maxlen: 24 94.142.138.0/24 maxlen: 24 94.142.139.0/24 maxlen: 24 94.142.140.0/24 maxlen: 24 94.142.141.0/24 maxlen: 24 94.142.142.0/24 maxlen: 24 185.5.248.0/22 maxlen: 22 185.5.248.0/23 maxlen: 23 185.5.250.0/23 maxlen: 23 185.5.250.0/24 maxlen: 24 185.105.116.0/24 maxlen: 24 185.105.117.0/24 maxlen: 24 185.125.216.0/22 maxlen: 22 185.125.218.0/23 maxlen: 23 185.200.188.0/24 maxlen: 24 193.109.85.0/24 maxlen: 24 193.124.176.0/20 maxlen: 20 193.124.176.0/22 maxlen: 22 193.124.176.0/24 maxlen: 24 193.124.177.0/24 maxlen: 24 193.124.178.0/24 maxlen: 24 193.124.179.0/24 maxlen: 24 193.124.184.0/21 maxlen: 21 193.124.184.0/24 maxlen: 24 193.124.191.0/24 maxlen: 24 193.168.224.0/24 maxlen: 24 194.67.196.0/22 maxlen: 22 194.67.202.0/24 maxlen: 24 194.67.203.0/24 maxlen: 24 194.67.204.0/22 maxlen: 22 194.67.208.0/20 maxlen: 20 195.47.250.0/24 maxlen: 24 2a0a:9300:2::/48 maxlen: 48 2a0a:9300:d0::/48 maxlen: 48 2a0a:9300:d1::/48 maxlen: 48 2a0a:9300:d2::/48 maxlen: 48 2a0a:9302:1::/48 maxlen: 48 2a0a:9307::/32 maxlen: 32 2a0d:2dc0::/32 maxlen: 32 2a0d:2dc1::/32 maxlen: 32 2a0d:2dc2::/32 maxlen: 32 2a0d:2dc3::/32 maxlen: 32 2a0e:d603::/32 maxlen: 32 2a0f:7b82::/32 maxlen: 32 2a0f:7b83::/32 maxlen: 32 2a0f:7b84::/32 maxlen: 32 2a0f:7b85::/32 maxlen: 32 2a0f:7b86::/32 maxlen: 32 2a0f:7b87::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 17:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:3d:aa:cc:cc:ec:08:b4:ea:6f:43:31:ec:87:2b:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Dec 12 11:06:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e4605819e46fb33a884df54c5f154ed76c4930c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:52:54:35:48:be:6c:a6:71:7d:c8:82:b5:37: c0:9a:95:79:47:09:f7:38:94:6e:9b:32:22:2f:3f: f3:ea:33:a2:90:c2:ab:47:5c:6b:0f:7b:a5:a1:57: e7:bb:04:45:3d:f8:b0:49:ed:ff:61:bf:3f:7e:f6: a4:80:6f:0c:8b:fc:46:97:02:d8:18:a3:07:01:fe: c3:43:bd:c1:b8:90:e3:8a:1e:0f:da:d2:f0:cb:bd: e0:24:8c:80:ce:fc:15:75:cc:bb:81:9c:c7:78:a0: a4:c7:c6:2f:c5:47:28:4d:e1:3b:34:ed:cf:e6:0e: 06:14:b7:22:a7:2f:dd:82:7c:27:96:8b:aa:1f:e5: 91:4a:d4:3e:7f:33:ef:b1:70:ad:cb:dc:96:22:1a: 09:bd:18:72:cf:58:d9:3e:a5:18:c9:5a:37:62:7f: 24:d0:d9:df:a8:03:0a:8a:12:3b:36:bd:d3:80:98: e9:db:86:51:46:be:5e:39:d4:e5:3e:27:31:36:82: 37:41:24:6e:31:5d:ce:9f:ed:1d:89:ee:7f:2a:ee: 16:d7:b7:ed:c9:eb:50:62:88:88:84:b9:2e:74:f1: b7:c4:05:ba:8b:1a:27:d4:80:1f:8f:e9:d4:b9:2f: 71:5a:71:5b:e5:78:c4:aa:b0:7e:9f:a3:a6:0d:f3: 3c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:60:58:19:E4:6F:B3:3A:88:4D:F5:4C:5F:15:4E:D7:6C:49:30:C5 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/5GBYGeRvszqITfVMXxVO12xJMMU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.66.0/23 45.128.176.0/22 45.132.252.0/24 45.133.247.0/24 91.217.80.0/24 94.142.138.0-94.142.142.255 185.5.248.0/22 185.105.116.0/23 185.125.216.0/22 185.200.188.0/24 193.109.85.0/24 193.124.176.0/20 193.168.224.0/24 194.67.196.0/22 194.67.202.0-194.67.223.255 195.47.250.0/24 IPv6: 2a0a:9300:2::/48 2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff 2a0a:9302:1::/48 2a0a:9307::/32 2a0d:2dc0::/30 2a0e:d603::/32 2a0f:7b82::-2a0f:7b87:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption cb:97:06:c1:ee:74:23:5e:ce:66:85:2e:0d:81:aa:42:6a:9a: 30:b7:6e:d7:df:eb:87:fa:b9:1f:a1:fc:ed:b7:7c:f0:48:66: d9:67:2b:a0:79:6c:a5:f4:27:09:c4:6f:2e:f7:bd:b0:3e:29: 46:65:09:9e:aa:c9:c9:38:00:64:d3:9f:60:a3:6f:c1:dd:9c: db:c8:3c:97:23:ed:e3:48:01:94:af:56:58:7a:ea:81:63:da: f9:94:97:88:2c:5e:a3:21:84:4b:e3:d7:8f:62:e3:48:a1:e2: 87:a7:0e:5b:3a:05:4e:f2:7b:1a:85:36:72:3e:d5:47:34:a5: a7:6e:13:52:29:5a:d0:39:ef:32:8e:57:8d:0d:08:06:da:72: 8e:8a:e3:74:6a:f5:9e:00:b5:32:b3:22:96:4d:32:b1:d6:64: b9:26:d0:c5:88:e8:cc:d3:3e:b2:b3:7a:98:93:b2:0c:e8:42: 2b:b6:45:5c:58:fb:d9:25:4d:cd:bf:75:a9:37:5b:9b:32:4d: 6c:0e:7c:4c:85:02:45:ce:95:49:ff:ca:ad:47:93:e2:35:e6: 8e:dd:c1:1b:78:60:76:39:dd:e2:eb:e1:69:72:42:e8:03:0e: 64:d8:59:fb:86:07:2b:08:4d:cb:8f:5c:f7:66:97:b9:e0:04: 34:ce:56:74 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISAZsSParMzOwItOpvQzHshyt/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjUxMjEyMTEwNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNDYwNTgxOWU0NmZiMzNhODg0ZGY1NGM1ZjE1NGVkNzZjNDkzMGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11JUNUi+bKZxfciCtTfAmpV5Rwn3 OJRumzIiLz/z6jOikMKrR1xrD3uloVfnuwRFPfiwSe3/Yb8/fvakgG8Mi/xGlwLY GKMHAf7DQ73BuJDjih4P2tLwy73gJIyAzvwVdcy7gZzHeKCkx8YvxUcoTeE7NO3P 5g4GFLcipy/dgnwnlouqH+WRStQ+fzPvsXCty9yWIhoJvRhyz1jZPqUYyVo3Yn8k 0NnfqAMKihI7Nr3TgJjp24ZRRr5eOdTlPicxNoI3QSRuMV3On+0die5/Ku4W17ft yetQYoiIhLkudPG3xAW6ixon1IAfj+nUuS9xWnFb5XjEqrB+n6OmDfM8UwIDAQAB o4ICyTCCAsUwHQYDVR0OBBYEFORgWBnkb7M6iE31TF8VTtdsSTDFMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvNUdCWUdlUnZzenFJVGZWTVh4Vk8xMnhKTU1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHeBggrBgEFBQcBBwEB/wSBzjCByzB2BAIAATBwAwQBLVlC AwQCLYCwAwQALYT8AwQALYX3AwQAW9lQMAwDBAFejooDBABejo4DBAK5BfgDBAG5 aXQDBAK5fdgDBAC5yLwDBADBbVUDBATBfLADBADBqOADBALCQ8QwDAMEAcJDygME BcJDwAMEAMMv+jBRBAIAAjBLAwcAKgqTAAACMBIDBwQqCpMAANADBwAqCpMAANID BwAqCpMCAAEDBQAqCpMHAwUCKg0twAMFACoO1gMwDgMFASoPe4IDBQMqD3uAMA0G CSqGSIb3DQEBCwUAA4IBAQDLlwbB7nQjXs5mhS4NgapCapowt27X3+uH+rkfofzt t3zwSGbZZyugeWyl9CcJxG8u972wPilGZQmeqsnJOABk059go2/B3ZzbyDyXI+3j SAGUr1ZYeuqBY9r5lJeILF6jIYRL49ePYuNIoeKHpw5bOgVO8nsahTZyPtVHNKWn bhNSKVrQOe8yjleNDQgG2nKOiuN0avWeALUysyKWTTKx1mS5JtDFiOjM0z6ys3qY k7IM6EIrtkVcWPvZJU3Nv3WpN1ubMk1sDnxMhQJFzpVJ/8qtR5PiNeaO3cEbeGB2 Od3i6+FpckLoAw5k2Fn7hgcrCE3Lj1z3Zpe54AQ0zlZ0 -----END CERTIFICATE-----Generated at Wed Dec 17 22:21:20 2025 by rpki-client