This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/a5s-gMpktaLGZlzOxR33lFo6dOo.roa File: a5s-gMpktaLGZlzOxR33lFo6dOo.roa (raw, json) Hash identifier: mXjJlbND9S4u74dBiV73zdpj+RxHFakUZvkXy0yG2t8= Subject key identifier: 6B:9B:3E:80:CA:64:B5:A2:C6:66:5C:CE:C5:1D:F7:94:5A:3A:74:EA Certificate issuer: /CN=5bee051a93901ecc01744079aa4ac2fb077b9fc1 Certificate serial: 019B7C1194AB3181ECB81823115326186F94 Authority key identifier: 5B:EE:05:1A:93:90:1E:CC:01:74:40:79:AA:4A:C2:FB:07:7B:9F:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-4FGpOQHswBdEB5qkrC-wd7n8E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/a5s-gMpktaLGZlzOxR33lFo6dOo.roa Signing time: Fri 02 Jan 2026 00:18:05 +0000 ROA not before: Fri 02 Jan 2026 00:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49558 IP address blocks: 45.128.224.0/22 maxlen: 22 91.213.39.0/24 maxlen: 24 91.228.64.0/22 maxlen: 22 194.4.164.0/22 maxlen: 22 195.20.137.0/24 maxlen: 24 2a0d:8540::/29 maxlen: 29 2a0e:4240::/29 maxlen: 29 2a11:500::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/W-4FGpOQHswBdEB5qkrC-wd7n8E.crl rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/W-4FGpOQHswBdEB5qkrC-wd7n8E.mft rsync://rpki.ripe.net/repository/DEFAULT/W-4FGpOQHswBdEB5qkrC-wd7n8E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:94:ab:31:81:ec:b8:18:23:11:53:26:18:6f:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bee051a93901ecc01744079aa4ac2fb077b9fc1 Validity Not Before: Jan 2 00:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b9b3e80ca64b5a2c6665ccec51df7945a3a74ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9b:2c:7b:4e:92:6f:6f:4d:e2:8f:17:14:60: 56:44:6d:20:32:fe:3b:08:6a:a2:17:be:88:e0:71: 04:dd:17:f5:bb:b5:a3:26:1b:1c:ed:b6:4b:39:9d: 9f:03:d8:ac:0b:0e:f1:2f:c7:59:e2:41:dc:fe:b4: 81:23:a8:74:c1:ec:f5:ae:21:82:c2:92:c0:7b:3c: e1:a5:d6:d6:32:e5:df:c6:f8:8b:1f:03:f2:e7:9a: 42:7c:0a:70:e8:36:bb:63:b9:99:59:57:4b:f5:88: 22:94:a0:ce:6b:73:f6:32:53:c7:d0:62:93:34:89: f0:c6:fa:14:8e:ce:1d:ef:f9:e8:4e:03:bf:44:93: 7b:39:3e:ae:0f:e6:5c:4a:32:9d:cd:fd:16:70:96: f3:a2:2d:cb:91:6d:e5:99:9f:27:f3:17:b2:5c:47: 19:56:e0:0e:23:f8:68:7d:65:e4:7f:74:fb:17:46: 7a:46:c4:9f:40:64:49:6e:f8:1f:47:37:b9:61:85: f3:2b:41:41:33:46:b0:b8:10:34:c8:33:ac:2c:35: 34:91:70:53:d8:1a:ee:57:60:38:f8:19:2c:13:46: 84:b6:05:5e:42:09:29:2f:5d:51:72:b2:85:0e:1a: 2f:34:9d:ab:a8:69:a5:86:67:23:bf:1e:39:0e:d0: dc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9B:3E:80:CA:64:B5:A2:C6:66:5C:CE:C5:1D:F7:94:5A:3A:74:EA X509v3 Authority Key Identifier: keyid:5B:EE:05:1A:93:90:1E:CC:01:74:40:79:AA:4A:C2:FB:07:7B:9F:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-4FGpOQHswBdEB5qkrC-wd7n8E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/a5s-gMpktaLGZlzOxR33lFo6dOo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/W-4FGpOQHswBdEB5qkrC-wd7n8E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.128.224.0/22 91.213.39.0/24 91.228.64.0/22 194.4.164.0/22 195.20.137.0/24 IPv6: 2a0d:8540::/29 2a0e:4240::/29 2a11:500::/29 Signature Algorithm: sha256WithRSAEncryption 0b:6b:3e:ce:15:e2:98:a8:d0:40:dc:0e:dd:d8:76:33:40:ea: b8:59:9b:dc:4b:e6:0c:6d:db:c2:24:c3:54:cb:c2:56:23:da: 8b:50:f3:04:30:15:5f:51:1e:92:1f:57:38:55:fd:f6:a4:28: 2e:8e:04:08:e9:71:ac:7e:70:b5:cb:4d:2c:b6:2c:78:79:f8: 28:bd:37:a9:c5:97:3e:17:8b:0c:2b:36:ff:5a:81:7d:8b:f2: 71:0c:27:6c:61:1a:6b:f1:86:42:9c:b5:48:fc:87:0f:cc:22: 0a:b5:32:e9:2e:d2:05:cd:ac:06:e3:6f:f8:fd:2b:46:bc:57: 33:62:10:35:cf:d5:d2:94:8a:b4:84:58:3e:e5:fd:b9:e9:3f: 36:15:23:de:99:d9:33:e7:db:7d:e3:65:7e:a9:75:21:71:9f: c4:e4:ea:26:50:ef:95:e5:ac:40:34:95:79:1b:7f:b9:a1:c2: 74:3d:27:de:8e:74:cb:94:bd:df:8d:c0:4d:68:6b:70:a8:59: 2e:ae:86:89:43:92:fe:85:86:e7:57:b9:03:c7:94:cd:6c:3b: 13:b1:35:08:ea:f1:e3:ee:5e:b0:03:ef:de:c8:66:46:8d:37: 94:79:ba:59:69:73:86:47:fd:c3:ca:ef:29:db:ec:63:2c:cf: 51:71:90:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt8EZSrMYHsuBgjEVMmGG+UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViZWUwNTFhOTM5MDFlY2MwMTc0NDA3OWFhNGFjMmZiMDc3 YjlmYzEwHhcNMjYwMTAyMDAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YjliM2U4MGNhNjRiNWEyYzY2NjVjY2VjNTFkZjc5NDVhM2E3NGVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJsse06Sb29N4o8XFGBWRG0gMv47 CGqiF76I4HEE3Rf1u7WjJhsc7bZLOZ2fA9isCw7xL8dZ4kHc/rSBI6h0wez1riGC wpLAezzhpdbWMuXfxviLHwPy55pCfApw6Da7Y7mZWVdL9YgilKDOa3P2MlPH0GKT NInwxvoUjs4d7/noTgO/RJN7OT6uD+ZcSjKdzf0WcJbzoi3LkW3lmZ8n8xeyXEcZ VuAOI/hofWXkf3T7F0Z6RsSfQGRJbvgfRze5YYXzK0FBM0awuBA0yDOsLDU0kXBT 2BruV2A4+BksE0aEtgVeQgkpL11RcrKFDhovNJ2rqGmlhmcjvx45DtDcLQIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFGubPoDKZLWixmZczsUd95RaOnTqMB8GA1UdIwQY MBaAFFvuBRqTkB7MAXRAeapKwvsHe5/BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVy00RkdwT1FIc3dCZEVCNXFrckMtd2Q3bjhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni84ZWZmNDItNWI1NS00ZTZmLTgyMjIt YTUyYTg3OTVkOTU2LzEvYTVzLWdNcGt0YUxHWmx6T3hSMzNsRm82ZE9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni84ZWZmNDItNWI1NS00ZTZmLTgyMjItYTUyYTg3OTVkOTU2 LzEvVy00RkdwT1FIc3dCZEVCNXFrckMtd2Q3bjhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAkBAIAATAeAwQCLYDgAwQA W9UnAwQCW+RAAwQCwgSkAwQAwxSJMBsEAgACMBUDBQMqDYVAAwUDKg5CQAMFAyoR BQAwDQYJKoZIhvcNAQELBQADggEBAAtrPs4V4pio0EDcDt3YdjNA6rhZm9xL5gxt 28Ikw1TLwlYj2otQ8wQwFV9RHpIfVzhV/fakKC6OBAjpcax+cLXLTSy2LHh5+Ci9 N6nFlz4XiwwrNv9agX2L8nEMJ2xhGmvxhkKctUj8hw/MIgq1Muku0gXNrAbjb/j9 K0a8VzNiEDXP1dKUirSEWD7l/bnpPzYVI96Z2TPn233jZX6pdSFxn8Tk6iZQ75Xl rEA0lXkbf7mhwnQ9J96OdMuUvd+NwE1oa3CoWS6uholDkv6FhudXuQPHlM1sOxOx NQjq8ePuXrAD797IZkaNN5R5ullpc4ZH/cPK7ynb7GMsz1FxkCw= -----END CERTIFICATE-----Generated at Sun Jan 25 20:31:18 2026 by rpki-client