This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/1BivsgHv80evKrJUr40JTZlUflQ.roa File: 1BivsgHv80evKrJUr40JTZlUflQ.roa (raw, json) Hash identifier: V8wFTbk/nUscM1lOnu4fmHl0eVlRMSa47L0o0dXKIUQ= Subject key identifier: D4:18:AF:B2:01:EF:F3:47:AF:2A:B2:54:AF:8D:09:4D:99:54:7E:54 Certificate issuer: /CN=015b6d1596ac0501a71a393447051a62ff1dda16 Certificate serial: 019B7BA36BB785E98EE9E18DF56C2B65C2BC Authority key identifier: 01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/1BivsgHv80evKrJUr40JTZlUflQ.roa Signing time: Thu 01 Jan 2026 22:17:46 +0000 ROA not before: Thu 01 Jan 2026 22:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41039 IP address blocks: 5.153.176.0/23 maxlen: 23 5.153.178.0/24 maxlen: 24 5.153.179.0/24 maxlen: 24 5.153.181.0/24 maxlen: 24 5.153.184.0/24 maxlen: 24 5.153.185.0/24 maxlen: 24 5.153.186.0/24 maxlen: 24 5.153.187.0/24 maxlen: 24 5.153.188.0/24 maxlen: 24 92.242.96.0/19 maxlen: 24 92.242.110.0/23 maxlen: 24 92.242.110.0/24 maxlen: 24 128.0.93.0/24 maxlen: 24 195.184.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.mft rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:6b:b7:85:e9:8e:e9:e1:8d:f5:6c:2b:65:c2:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015b6d1596ac0501a71a393447051a62ff1dda16 Validity Not Before: Jan 1 22:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d418afb201eff347af2ab254af8d094d99547e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4f:42:80:8a:c7:f3:7c:15:35:a3:58:96:9b: 4e:97:a1:de:30:c8:30:2b:79:87:36:2b:ac:34:36: fb:24:af:d6:62:f8:a3:3a:d9:8e:5f:f7:56:b5:54: 21:19:6f:5e:86:37:50:ed:84:83:63:6a:60:05:32: 64:a0:d0:78:d6:54:c9:ab:37:d1:08:b7:ec:8a:26: e6:9a:43:a0:4d:9b:75:bc:f2:b1:60:55:da:47:cc: f3:4f:34:dc:c5:28:c9:0e:c6:cb:a0:99:51:3c:5d: 0b:81:72:b3:94:c0:e2:66:64:3e:1b:3e:ba:fa:94: 22:76:37:d5:e0:a8:30:6c:1f:95:fb:4a:c2:05:8f: 39:46:91:62:b3:87:f8:47:fc:44:09:5c:68:b3:ae: 67:d4:f9:87:91:9e:ea:18:17:fa:77:11:17:bc:ef: 17:b2:ea:11:25:92:70:f6:9b:bd:1e:97:2b:92:23: 4d:f3:e7:32:d6:4b:b4:d3:12:cc:ad:83:cd:20:52: b9:55:a5:a7:40:48:5b:c6:1e:ce:76:79:16:fe:b8: 8b:55:d2:82:82:2c:08:20:f2:68:a8:b1:26:25:8a: ed:da:63:46:36:1c:f4:3e:45:cf:c9:f5:72:3f:31: da:71:71:15:77:6f:e3:60:3e:04:71:66:56:d4:d6: a3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:18:AF:B2:01:EF:F3:47:AF:2A:B2:54:AF:8D:09:4D:99:54:7E:54 X509v3 Authority Key Identifier: keyid:01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/1BivsgHv80evKrJUr40JTZlUflQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.153.176.0/22 5.153.181.0/24 5.153.184.0-5.153.188.255 92.242.96.0/19 128.0.93.0/24 195.184.192.0/19 Signature Algorithm: sha256WithRSAEncryption 61:34:7c:d1:4a:74:3f:39:a7:8f:51:a4:69:d2:39:79:c0:58: 3f:c0:8d:37:c5:d1:b5:5c:d6:b2:5b:48:83:5f:a1:ec:92:6c: 57:b0:40:52:27:d2:77:fe:75:1c:42:3d:00:78:56:4f:5f:98: 90:39:ed:47:d8:61:0b:d1:0d:62:22:d5:33:74:d6:46:c4:c9: bd:85:af:d9:95:90:bd:77:a9:c5:ce:56:6e:fa:b3:90:9f:f6: e9:c7:b1:31:ff:ee:49:8f:51:34:62:b7:fa:6e:ad:34:09:19: a6:b7:a6:fe:46:1b:72:85:03:f3:10:5e:13:ed:0d:b3:f2:a9: 6a:24:4d:da:fb:fb:e4:e5:de:f9:55:14:d7:d9:64:13:bf:75: 67:08:f0:78:16:13:53:4a:f9:20:52:54:9d:15:5d:c8:0d:db: f7:a7:2f:6d:22:31:b5:39:4b:2c:ad:27:34:2f:f3:73:95:7b: 42:92:ee:73:d6:63:0d:6e:25:0d:69:ee:88:cd:5d:52:53:b6: 8e:24:7e:d6:ca:be:1d:03:09:c5:64:41:d1:c5:c0:1a:f4:fd: cc:b3:22:0d:73:87:b8:99:89:63:74:df:9f:72:7c:7d:fe:6f: d0:fe:15:5c:1e:b3:4f:2d:25:e8:52:26:45:76:16:f2:22:ac: 01:2b:f9:3e -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt7o2u3hemO6eGN9WwrZcK8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNWI2ZDE1OTZhYzA1MDFhNzFhMzkzNDQ3MDUxYTYyZmYx ZGRhMTYwHhcNMjYwMTAxMjIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNDE4YWZiMjAxZWZmMzQ3YWYyYWIyNTRhZjhkMDk0ZDk5NTQ3ZTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtE9CgIrH83wVNaNYlptOl6HeMMgw K3mHNiusNDb7JK/WYvijOtmOX/dWtVQhGW9ehjdQ7YSDY2pgBTJkoNB41lTJqzfR CLfsiibmmkOgTZt1vPKxYFXaR8zzTzTcxSjJDsbLoJlRPF0LgXKzlMDiZmQ+Gz66 +pQidjfV4KgwbB+V+0rCBY85RpFis4f4R/xECVxos65n1PmHkZ7qGBf6dxEXvO8X suoRJZJw9pu9HpcrkiNN8+cy1ku00xLMrYPNIFK5VaWnQEhbxh7OdnkW/riLVdKC giwIIPJoqLEmJYrt2mNGNhz0PkXPyfVyPzHacXEVd2/jYD4EcWZW1Naj8wIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFNQYr7IB7/NHryqyVK+NCU2ZVH5UMB8GA1UdIwQY MBaAFAFbbRWWrAUBpxo5NEcFGmL/HdoWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgt ZmVlOGYzNzkwNTY3LzEvMUJpdnNnSHY4MGV2S3JKVXI0MEpUWmxVZmxRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgtZmVlOGYzNzkwNTY3 LzEvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQCBZmwAwQA BZm1MAwDBAMFmbgDBAAFmbwDBAVc8mADBACAAF0DBAXDuMAwDQYJKoZIhvcNAQEL BQADggEBAGE0fNFKdD85p49RpGnSOXnAWD/AjTfF0bVc1rJbSINfoeySbFewQFIn 0nf+dRxCPQB4Vk9fmJA57UfYYQvRDWIi1TN01kbEyb2Fr9mVkL13qcXOVm76s5Cf 9unHsTH/7kmPUTRit/purTQJGaa3pv5GG3KFA/MQXhPtDbPyqWokTdr7++Tl3vlV FNfZZBO/dWcI8HgWE1NK+SBSVJ0VXcgN2/enL20iMbU5SyytJzQv83OVe0KS7nPW Yw1uJQ1p7ojNXVJTto4kftbKvh0DCcVkQdHFwBr0/cyzIg1zh7iZiWN0359yfH3+ b9D+FVwes08tJehSJkV2FvIirAEr+T4= -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:45 2026 by rpki-client