This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/0K2pCDlU0pkDvqWKO7SJxoZ3lsI.roa File: 0K2pCDlU0pkDvqWKO7SJxoZ3lsI.roa (raw, json) Hash identifier: Y26TNiFt+U9/ZCJnbcaya/o2zut2SxPMMS0KeeLWubY= Subject key identifier: D0:AD:A9:08:39:54:D2:99:03:BE:A5:8A:3B:B4:89:C6:86:77:96:C2 Certificate issuer: /CN=5dd7336fa915721ce3bfee217f4e99164db9532b Certificate serial: 019B79EC1CB20CACAF7E58DA8E0FB078A1DE Authority key identifier: 5D:D7:33:6F:A9:15:72:1C:E3:BF:EE:21:7F:4E:99:16:4D:B9:53:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/0K2pCDlU0pkDvqWKO7SJxoZ3lsI.roa Signing time: Thu 01 Jan 2026 14:17:55 +0000 ROA not before: Thu 01 Jan 2026 14:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 27471 IP address blocks: 109.68.56.0/24 maxlen: 24 109.68.57.0/24 maxlen: 24 109.68.58.0/24 maxlen: 24 109.68.59.0/24 maxlen: 24 109.68.60.0/24 maxlen: 24 109.68.61.0/24 maxlen: 24 109.68.62.0/24 maxlen: 24 109.68.63.0/24 maxlen: 24 193.151.72.0/24 maxlen: 24 193.151.73.0/24 maxlen: 24 193.151.74.0/24 maxlen: 24 193.151.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.mft rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:1c:b2:0c:ac:af:7e:58:da:8e:0f:b0:78:a1:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dd7336fa915721ce3bfee217f4e99164db9532b Validity Not Before: Jan 1 14:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0ada9083954d29903bea58a3bb489c6867796c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:40:12:4c:87:b8:e0:f6:a5:d7:e2:61:cb:3e: 5d:f9:26:a2:c4:98:31:15:76:9b:ff:d2:76:76:6f: d2:70:b8:e9:f5:d8:06:d5:8e:0f:48:f5:d5:0a:53: 1b:3a:73:0a:e6:12:c6:92:4e:dd:4c:a9:08:ab:a2: 87:18:a4:1a:03:ff:a7:d6:4b:1e:34:fa:a9:ac:8f: b0:c6:7e:87:e3:aa:85:8f:ad:dc:1e:2c:dc:19:11: 90:fb:84:49:a2:16:fa:1e:f3:65:c5:94:5e:66:32: ba:29:d9:55:cd:2c:f8:4a:6a:45:19:da:f3:4b:0f: b0:1d:c8:33:25:4c:6a:f9:87:f3:e0:b3:01:b4:66: f7:8e:fb:d7:02:e9:d9:95:d1:a7:c7:e9:fa:f5:82: 17:a4:b0:1a:25:07:54:07:54:f7:51:3f:fd:11:b3: eb:ad:88:96:1f:28:71:7e:47:82:06:31:85:af:ba: 81:05:89:0d:2e:b3:8f:5b:09:b1:b3:2e:bc:fb:9b: 13:7a:f6:e3:ec:c0:78:53:1a:1a:25:e2:33:ee:d2: ec:02:2b:22:30:23:41:bd:b8:47:d5:81:9c:bd:3e: f7:39:ea:17:b9:55:5c:63:c8:c1:00:33:6d:d8:14: 90:33:af:78:29:99:9c:2c:26:11:de:5f:bf:c3:e1: a1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AD:A9:08:39:54:D2:99:03:BE:A5:8A:3B:B4:89:C6:86:77:96:C2 X509v3 Authority Key Identifier: keyid:5D:D7:33:6F:A9:15:72:1C:E3:BF:EE:21:7F:4E:99:16:4D:B9:53:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/0K2pCDlU0pkDvqWKO7SJxoZ3lsI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.68.56.0/21 193.151.72.0/22 Signature Algorithm: sha256WithRSAEncryption 46:7e:d6:ef:02:68:39:a9:6d:92:f0:ef:a8:e1:59:85:f9:d2: 07:4f:d6:e7:95:21:32:03:9b:49:8c:d1:df:f2:04:64:0e:1f: b3:53:6b:de:d9:88:ad:25:20:a1:d4:93:81:9f:2e:2f:4e:ca: 99:b1:12:13:f3:ee:3f:3b:e6:1e:27:91:84:fa:24:be:66:6d: 9d:1e:fd:40:18:3b:6d:52:52:b0:6b:e9:d8:42:75:da:6a:75: 57:0c:7f:08:3a:66:25:1b:22:d0:2c:8f:33:92:ba:21:66:58: ec:55:e7:a7:ba:a3:91:65:66:4a:7c:20:bb:38:7f:5b:e3:29: a4:f8:c2:88:0b:54:cc:ce:80:31:4f:84:e9:b6:0a:d6:f1:ca: 9e:b8:23:df:ff:15:bf:3c:8b:61:89:44:29:25:da:ce:8f:60: 07:f9:03:b2:3c:47:a8:6b:bc:46:41:2e:35:a3:54:3b:98:96: 51:76:7a:e2:05:45:b5:e6:9e:63:04:03:0f:00:d3:26:e7:cd: e9:78:07:34:64:20:af:45:ef:60:43:51:52:25:f6:fd:93:c9: e0:ac:2a:77:c1:07:c5:ac:40:34:df:4d:6d:ac:c9:41:6d:e8: b3:87:9f:d7:75:e2:8c:2e:37:fc:1f:27:b4:2e:8c:24:5e:f8: e1:9e:ca:79 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57ByyDKyvfljajg+weKHeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZDczMzZmYTkxNTcyMWNlM2JmZWUyMTdmNGU5OTE2NGRi OTUzMmIwHhcNMjYwMTAxMTQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGFkYTkwODM5NTRkMjk5MDNiZWE1OGEzYmI0ODljNjg2Nzc5NmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUASTIe44Pal1+Jhyz5d+SaixJgx FXab/9J2dm/ScLjp9dgG1Y4PSPXVClMbOnMK5hLGkk7dTKkIq6KHGKQaA/+n1kse NPqprI+wxn6H46qFj63cHizcGRGQ+4RJohb6HvNlxZReZjK6KdlVzSz4SmpFGdrz Sw+wHcgzJUxq+Yfz4LMBtGb3jvvXAunZldGnx+n69YIXpLAaJQdUB1T3UT/9EbPr rYiWHyhxfkeCBjGFr7qBBYkNLrOPWwmxsy68+5sTevbj7MB4UxoaJeIz7tLsAisi MCNBvbhH1YGcvT73OeoXuVVcY8jBADNt2BSQM694KZmcLCYR3l+/w+GhSwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNCtqQg5VNKZA76liju0icaGd5bCMB8GA1UdIwQY MBaAFF3XM2+pFXIc47/uIX9OmRZNuVMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGRjemI2a1ZjaHpqdi00aGYwNlpGazI1VXlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9lNzQ0YmQtZjZkOS00Zjc0LThjMDEt OGM0YmM0NTkyN2EzLzEvMEsycENEbFUwcGtEdnFXS083U0p4b1ozbHNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9lNzQ0YmQtZjZkOS00Zjc0LThjMDEtOGM0YmM0NTkyN2Ez LzEvWGRjemI2a1ZjaHpqdi00aGYwNlpGazI1VXlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDbUQ4AwQC wZdIMA0GCSqGSIb3DQEBCwUAA4IBAQBGftbvAmg5qW2S8O+o4VmF+dIHT9bnlSEy A5tJjNHf8gRkDh+zU2ve2YitJSCh1JOBny4vTsqZsRIT8+4/O+YeJ5GE+iS+Zm2d Hv1AGDttUlKwa+nYQnXaanVXDH8IOmYlGyLQLI8zkrohZljsVeenuqORZWZKfCC7 OH9b4ymk+MKIC1TMzoAxT4TptgrW8cqeuCPf/xW/PIthiUQpJdrOj2AH+QOyPEeo a7xGQS41o1Q7mJZRdnriBUW15p5jBAMPANMm583peAc0ZCCvRe9gQ1FSJfb9k8ng rCp3wQfFrEA0301trMlBbeizh5/XdeKMLjf8Hye0LowkXvjhnsp5 -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:13 2026 by rpki-client