This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa File: 50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa (raw, json) Hash identifier: fg+fIATIpZ9606ZSveJEyeNQUDVlB2iQjr4YCU2TQXw= Subject key identifier: E7:43:B9:81:BB:C5:37:90:6B:E4:F1:42:67:49:B9:12:97:E9:BE:FD Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Certificate serial: 019B797E0896BC534AA25600F5E9DD825435 Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa Signing time: Thu 01 Jan 2026 12:17:41 +0000 ROA not before: Thu 01 Jan 2026 12:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212804 IP address blocks: 46.252.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:08:96:bc:53:4a:a2:56:00:f5:e9:dd:82:54:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Validity Not Before: Jan 1 12:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e743b981bbc537906be4f1426749b91297e9befd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4a:76:0c:2b:39:7b:9c:38:4d:11:e3:bb:90: fa:88:6d:ef:f3:cb:f3:fd:c4:d2:eb:70:7b:71:02: 0a:86:67:8b:2d:4d:a4:e6:64:25:aa:1f:01:18:00: b0:76:71:65:43:8c:6e:b1:9f:cf:24:d6:64:0f:6c: 2f:ca:c3:b4:37:d8:d5:c6:b5:d3:0d:b9:4f:03:41: e7:29:fe:37:f4:65:4b:40:a9:dd:e1:1f:de:35:4a: 16:ab:70:b0:c1:9f:47:8a:66:ea:d5:ce:f8:9b:b4: dc:91:d0:eb:9c:dc:f6:cb:bd:78:be:83:57:e6:a5: 79:47:4b:6a:55:ca:e1:3e:dd:24:aa:86:4c:71:38: 7b:b1:96:e8:e3:3e:c2:cb:a3:a2:c2:4c:4b:c7:c7: da:22:ec:e5:75:3a:f3:95:5d:ee:56:f2:67:8c:16: 79:2c:8c:29:76:e9:cc:69:8e:f0:7e:31:99:11:3a: b5:8a:3e:a7:27:f3:17:94:38:ac:27:ac:f7:13:af: 38:19:b1:b8:bf:d2:74:26:0c:79:d4:57:3f:81:c2: 1e:1b:9f:29:21:ef:03:74:02:8d:92:e8:20:d4:7f: b4:63:a1:c8:60:bb:9c:37:40:e1:88:04:3e:98:99: 68:98:c6:7d:05:e3:7f:da:60:56:e9:93:6f:1d:06: 21:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:43:B9:81:BB:C5:37:90:6B:E4:F1:42:67:49:B9:12:97:E9:BE:FD X509v3 Authority Key Identifier: keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.252.0.0/24 Signature Algorithm: sha256WithRSAEncryption 30:46:1d:a9:58:67:c3:37:1b:33:f8:76:c7:92:05:18:bc:e2: 3a:0e:9b:a6:e7:04:43:51:d7:80:c2:bf:9f:68:40:8f:9a:49: d1:27:f5:1d:40:b6:18:fd:2a:0f:55:f0:20:d2:81:0f:dc:c0: 4c:2f:ff:95:e9:00:8b:6c:2b:bd:7f:83:e5:64:66:ce:96:e4: d4:50:10:2e:a4:ee:8e:aa:4e:d4:6d:39:b8:cf:24:25:82:b9: 71:27:df:ca:38:53:aa:c3:7b:9a:89:5b:0f:d9:a1:c1:5c:ae: e8:0f:80:15:06:29:d4:6e:be:aa:0d:d1:cb:4d:95:53:e2:84: c6:65:58:70:06:d3:b6:23:c8:cc:18:ef:dd:de:d4:8a:35:c4: d8:99:6d:86:79:e2:37:95:37:64:0b:a6:55:a3:74:8d:db:b1: 88:ce:19:60:32:4d:82:37:75:cf:b1:48:22:db:12:3c:46:d4: 6a:f0:3f:7e:ee:ef:5e:a3:66:2b:07:a1:72:64:9d:f5:80:51: 50:67:76:30:8b:2b:61:0a:70:47:ca:65:74:54:23:16:e5:f6: aa:fa:3f:e3:5a:93:d2:f9:40:a1:a8:27:ae:5e:b1:67:fb:c3: 77:21:bd:aa:24:68:8a:9a:82:74:fb:0a:2b:b4:2d:a4:c4:37: b7:e0:1f:10 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fgiWvFNKolYA9endglQ1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2 YzQwZmQwHhcNMjYwMTAxMTIxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzQzYjk4MWJiYzUzNzkwNmJlNGYxNDI2NzQ5YjkxMjk3ZTliZWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20p2DCs5e5w4TRHju5D6iG3v88vz /cTS63B7cQIKhmeLLU2k5mQlqh8BGACwdnFlQ4xusZ/PJNZkD2wvysO0N9jVxrXT DblPA0HnKf439GVLQKnd4R/eNUoWq3CwwZ9Himbq1c74m7TckdDrnNz2y714voNX 5qV5R0tqVcrhPt0kqoZMcTh7sZbo4z7Cy6OiwkxLx8faIuzldTrzlV3uVvJnjBZ5 LIwpdunMaY7wfjGZETq1ij6nJ/MXlDisJ6z3E684GbG4v9J0Jgx51Fc/gcIeG58p Ie8DdAKNkugg1H+0Y6HIYLucN0DhiAQ+mJlomMZ9BeN/2mBW6ZNvHQYh0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOdDuYG7xTeQa+TxQmdJuRKX6b79MB8GA1UdIwQY MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt Yzc4NjkxMjg1ODJjLzEvNTBPNWdidkZONUJyNVBGQ1owbTVFcGZwdnYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALvwAMA0G CSqGSIb3DQEBCwUAA4IBAQAwRh2pWGfDNxsz+HbHkgUYvOI6Dpum5wRDUdeAwr+f aECPmknRJ/UdQLYY/SoPVfAg0oEP3MBML/+V6QCLbCu9f4PlZGbOluTUUBAupO6O qk7UbTm4zyQlgrlxJ9/KOFOqw3uaiVsP2aHBXK7oD4AVBinUbr6qDdHLTZVT4oTG ZVhwBtO2I8jMGO/d3tSKNcTYmW2GeeI3lTdkC6ZVo3SN27GIzhlgMk2CN3XPsUgi 2xI8RtRq8D9+7u9eo2YrB6FyZJ31gFFQZ3YwiythCnBHymV0VCMW5faq+j/jWpPS +UChqCeuXrFn+8N3Ib2qJGiKmoJ0+wortC2kxDe34B8Q -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:54 2026 by rpki-client