This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/c_cWOPcEQMft8Aer9o0bFFTuzpw.roa File: c_cWOPcEQMft8Aer9o0bFFTuzpw.roa (raw, json) Hash identifier: 3Xhi5i/L7JVUSZVPSdHXaHOfLiEna+V7BTZ9aCjfTKo= Subject key identifier: 73:F7:16:38:F7:04:40:C7:ED:F0:07:AB:F6:8D:1B:14:54:EE:CE:9C Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019B7E3924961FBEDECFE2DB425EECE9C724 Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/c_cWOPcEQMft8Aer9o0bFFTuzpw.roa Signing time: Fri 02 Jan 2026 10:20:32 +0000 ROA not before: Fri 02 Jan 2026 10:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19148 IP address blocks: 152.163.48.0/22 maxlen: 22 152.163.76.0/22 maxlen: 22 152.163.124.0/22 maxlen: 22 152.163.152.0/22 maxlen: 22 152.163.176.0/22 maxlen: 22 152.163.200.0/22 maxlen: 22 152.163.228.0/22 maxlen: 22 152.163.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:24:96:1f:be:de:cf:e2:db:42:5e:ec:e9:c7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Jan 2 10:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=73f71638f70440c7edf007abf68d1b1454eece9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c2:c8:0c:ad:c8:82:a5:fe:49:99:ae:68:2a: a1:3e:d8:57:cd:a8:58:09:55:34:48:aa:70:a1:be: f9:26:b6:a5:cb:cf:1d:3b:cc:55:38:95:75:21:fa: 54:1d:56:25:ba:87:25:c1:40:85:4a:78:6f:22:ff: 77:15:e3:c9:d6:c1:96:79:d3:1a:28:19:ce:99:7a: 31:7e:09:aa:29:2f:e4:66:70:82:31:21:8c:ae:fe: 69:ca:d9:8c:5b:8f:9a:27:24:73:33:27:b5:27:f3: ce:d1:bb:02:09:b2:90:d3:f8:84:1c:4b:9e:2b:c1: 59:0c:23:6e:2b:9e:e2:ac:bd:a8:2a:67:e7:6d:e9: 8a:92:7b:e8:57:dd:b9:7c:dd:1d:91:fc:c0:22:4e: ab:19:22:dc:af:2c:c4:59:4e:1e:c3:a4:93:b7:c7: 19:ca:6e:7b:94:f2:2f:91:79:c0:92:13:0e:6c:e0: 42:b8:47:d7:bf:bc:e5:4e:d4:fa:d0:e2:a6:98:a4: d8:39:df:f1:d5:67:d5:7f:5f:e9:e7:0b:b5:1d:98: f6:95:15:bc:ae:10:0f:13:a8:d6:71:25:a4:e1:55: 5a:17:6d:25:a7:30:4b:b0:a4:3a:70:44:5b:f2:98: 43:4f:23:21:bc:46:41:48:f7:d5:43:db:10:86:a2: 1f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F7:16:38:F7:04:40:C7:ED:F0:07:AB:F6:8D:1B:14:54:EE:CE:9C X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/c_cWOPcEQMft8Aer9o0bFFTuzpw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.163.48.0/22 152.163.76.0/22 152.163.124.0/22 152.163.152.0/22 152.163.176.0/22 152.163.200.0/22 152.163.228.0/22 152.163.252.0/22 Signature Algorithm: sha256WithRSAEncryption 69:51:ce:fd:da:d2:5e:2d:5a:99:64:4b:57:44:d1:3e:08:3d: b8:37:9d:e8:63:36:21:2a:45:a5:7f:c5:16:eb:e3:fa:53:6b: 94:32:75:03:fc:37:e4:ae:12:39:9d:35:0a:9f:4a:61:9f:30: 22:11:76:3d:d7:5d:bc:cb:3e:ef:e4:dc:a5:59:4d:5d:a2:3a: 48:37:6e:08:dc:5e:7a:2c:8a:df:ee:06:20:32:c4:af:1e:bc: 3a:c1:de:64:e4:5d:84:d6:fd:4a:2d:b0:6f:93:7f:2a:98:b8: be:6e:ab:45:47:75:da:b3:2b:4b:83:a1:9a:ab:bd:3a:da:97: 40:94:7d:91:c9:fb:56:10:6f:3e:74:df:c5:c2:15:c4:89:0f: 00:b6:e1:1e:87:71:32:fb:46:d8:53:21:36:11:1a:06:a6:08: 64:78:0e:25:4a:13:f4:73:15:75:ad:9d:46:15:4e:86:5f:3e: ee:c6:9e:9d:82:a9:e6:b9:1a:db:36:d0:8c:02:1f:eb:3b:43: 03:0f:2f:72:1b:78:5a:01:18:72:e9:f4:01:15:01:e6:e7:85: 1d:23:47:0a:fb:e5:77:e6:51:a1:60:9f:88:2d:6e:4d:da:07: f9:41:93:60:21:d4:a0:73:26:59:96:f6:f9:77:3c:54:89:48: 5f:1b:56:5a -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt+OSSWH77ez+LbQl7s6cckMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjYwMTAyMTAyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3M2Y3MTYzOGY3MDQ0MGM3ZWRmMDA3YWJmNjhkMWIxNDU0ZWVjZTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcLIDK3IgqX+SZmuaCqhPthXzahY CVU0SKpwob75Jraly88dO8xVOJV1IfpUHVYluoclwUCFSnhvIv93FePJ1sGWedMa KBnOmXoxfgmqKS/kZnCCMSGMrv5pytmMW4+aJyRzMye1J/PO0bsCCbKQ0/iEHEue K8FZDCNuK57irL2oKmfnbemKknvoV925fN0dkfzAIk6rGSLcryzEWU4ew6STt8cZ ym57lPIvkXnAkhMObOBCuEfXv7zlTtT60OKmmKTYOd/x1WfVf1/p5wu1HZj2lRW8 rhAPE6jWcSWk4VVaF20lpzBLsKQ6cERb8phDTyMhvEZBSPfVQ9sQhqIf4QIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFHP3Fjj3BEDH7fAHq/aNGxRU7s6cMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvY19jV09QY0VRTWZ0OEFlcjlvMGJGRlR1enB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCmKMwAwQC mKNMAwQCmKN8AwQCmKOYAwQCmKOwAwQCmKPIAwQCmKPkAwQCmKP8MA0GCSqGSIb3 DQEBCwUAA4IBAQBpUc792tJeLVqZZEtXRNE+CD24N53oYzYhKkWlf8UW6+P6U2uU MnUD/DfkrhI5nTUKn0phnzAiEXY91128yz7v5NylWU1dojpIN24I3F56LIrf7gYg MsSvHrw6wd5k5F2E1v1KLbBvk38qmLi+bqtFR3XasytLg6Gaq7062pdAlH2RyftW EG8+dN/FwhXEiQ8AtuEeh3Ey+0bYUyE2ERoGpghkeA4lShP0cxV1rZ1GFU6GXz7u xp6dgqnmuRrbNtCMAh/rO0MDDy9yG3haARhy6fQBFQHm54UdI0cK++V35lGhYJ+I LW5N2gf5QZNgIdSgcyZZlvb5dzxUiUhfG1Za -----END CERTIFICATE-----Generated at Sun Jan 25 13:01:54 2026 by rpki-client