This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/X0kSuarZ-g_McCBdBJMAHOmD78E.roa File: X0kSuarZ-g_McCBdBJMAHOmD78E.roa (raw, json) Hash identifier: Gr2z6DPYOsIVXCMbomTNzbkS+4fkBpnvaCGP+zUJOhk= Subject key identifier: 5F:49:12:B9:AA:D9:FA:0F:CC:70:20:5D:04:93:00:1C:E9:83:EF:C1 Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20 Certificate serial: 019BE248A65183648759F051D81BEC9C383A Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/X0kSuarZ-g_McCBdBJMAHOmD78E.roa Signing time: Wed 21 Jan 2026 20:39:30 +0000 ROA not before: Wed 21 Jan 2026 20:39:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7029 IP address blocks: 152.55.216.0/22 maxlen: 22 152.55.220.0/24 maxlen: 24 152.55.222.0/24 maxlen: 24 152.55.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.mft rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e2:48:a6:51:83:64:87:59:f0:51:d8:1b:ec:9c:38:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20 Validity Not Before: Jan 21 20:39:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f4912b9aad9fa0fcc70205d0493001ce983efc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fc:20:c2:77:68:ec:e3:61:ad:b8:41:54:b2: 60:d1:ab:c9:f9:8b:2a:b1:1c:df:a3:42:39:61:2e: 00:da:9b:b6:e1:1d:85:06:95:0a:3e:09:e1:af:af: 42:37:59:8e:05:f4:f6:e0:98:1b:ec:59:a7:92:29: a3:a2:d7:ea:12:83:5e:1c:cb:be:17:6f:50:67:ff: 48:1c:e9:03:29:bc:d9:fe:cf:82:69:b2:63:da:91: e3:ac:ce:8a:fa:53:29:54:84:b8:f4:b0:19:7d:24: 13:f7:97:f5:9c:c2:f9:6e:1a:05:97:7e:34:b5:1a: 59:45:31:59:0e:28:7a:12:de:37:bd:36:6c:2d:23: e7:31:8b:5b:e8:2f:ff:26:e7:a5:f3:f9:fd:0c:9d: c2:cb:64:e9:45:00:dc:38:d7:39:29:43:fd:9c:18: ff:1d:6f:ad:64:7c:3f:2a:98:8c:3b:58:12:77:2e: e2:e1:fd:8e:d7:3f:4a:4f:86:42:21:61:69:7a:f7: 3a:f1:80:b8:1f:e4:d4:c1:fc:38:ae:6f:11:a7:c7: 87:ea:68:dd:4c:5d:97:0e:83:8c:e4:f3:77:3e:68: 5f:71:06:2b:75:17:98:84:2d:a2:fd:9c:a8:8c:61: 82:23:1d:39:58:dd:80:23:25:2b:68:93:5b:5e:1e: 36:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:49:12:B9:AA:D9:FA:0F:CC:70:20:5D:04:93:00:1C:E9:83:EF:C1 X509v3 Authority Key Identifier: keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/X0kSuarZ-g_McCBdBJMAHOmD78E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.55.216.0-152.55.220.255 152.55.222.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:9f:12:86:fe:f8:d6:93:64:33:ab:4b:78:52:4f:ec:59:08: 55:6d:79:dc:97:ce:4a:c6:04:eb:62:de:33:42:ad:c9:c7:31: a7:30:b2:ae:97:e2:4f:e5:55:cd:41:92:8f:ad:b5:86:4e:2b: 1d:5d:ec:a1:e5:31:3d:04:ce:1e:71:db:6f:0c:68:a6:ae:20: 73:2e:f4:5b:05:0a:f0:71:1a:e0:3c:d1:4a:83:c7:70:67:cf: ea:76:66:e1:16:c2:e9:a4:76:76:96:ed:98:fe:ef:00:42:b6: 0c:63:97:18:46:75:64:0d:ec:28:f8:67:19:1b:69:ec:76:bd: 7c:8e:3c:57:69:3d:6e:88:8f:16:e9:d2:33:37:14:48:49:16: bb:00:a1:aa:97:2b:15:3e:9b:d6:9f:0e:d9:fb:78:80:9f:20: ce:19:3b:df:e6:1c:af:a6:5b:a2:7e:d3:f7:07:de:78:7c:34: b9:6e:aa:7a:6d:05:99:8a:e1:46:e1:2e:23:3a:4e:92:cd:20: 79:8f:e0:c0:33:fb:3c:08:dc:8a:d0:2f:d2:23:c9:8c:0b:a0: 27:fc:3e:4b:5e:12:cd:0d:eb:20:2b:19:d5:81:28:ab:30:05: 48:4e:98:a5:26:23:31:2b:54:a7:fb:59:cd:56:07:02:5e:44: 10:5f:23:6a -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZviSKZRg2SHWfBR2BvsnDg6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyYTE1Y2M4ODY1OWY1NzhjYzE1OWM1MmIzYTdlOWVjNTgx OWZiMjAwHhcNMjYwMTIxMjAzOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjQ5MTJiOWFhZDlmYTBmY2M3MDIwNWQwNDkzMDAxY2U5ODNlZmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vwgwndo7ONhrbhBVLJg0avJ+Ysq sRzfo0I5YS4A2pu24R2FBpUKPgnhr69CN1mOBfT24Jgb7FmnkimjotfqEoNeHMu+ F29QZ/9IHOkDKbzZ/s+CabJj2pHjrM6K+lMpVIS49LAZfSQT95f1nML5bhoFl340 tRpZRTFZDih6Et43vTZsLSPnMYtb6C//Juel8/n9DJ3Cy2TpRQDcONc5KUP9nBj/ HW+tZHw/KpiMO1gSdy7i4f2O1z9KT4ZCIWFpevc68YC4H+TUwfw4rm8Rp8eH6mjd TF2XDoOM5PN3PmhfcQYrdReYhC2i/ZyojGGCIx05WN2AIyUraJNbXh427QIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFF9JErmq2foPzHAgXQSTABzpg+/BMB8GA1UdIwQY MBaAFGKhXMiGWfV4zBWcUrOn6exYGfsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAt NDI2OWI1NmJmN2Q0LzEvWDBrU3VhclotZ19NY0NCZEJKTUFIT21ENzhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAtNDI2OWI1NmJmN2Q0 LzEvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAOYN9gD BACYN9wDBAGYN94wDQYJKoZIhvcNAQELBQADggEBAF+fEob++NaTZDOrS3hST+xZ CFVtedyXzkrGBOti3jNCrcnHMacwsq6X4k/lVc1Bko+ttYZOKx1d7KHlMT0Ezh5x 228MaKauIHMu9FsFCvBxGuA80UqDx3Bnz+p2ZuEWwumkdnaW7Zj+7wBCtgxjlxhG dWQN7Cj4Zxkbaex2vXyOPFdpPW6Ijxbp0jM3FEhJFrsAoaqXKxU+m9afDtn7eICf IM4ZO9/mHK+mW6J+0/cH3nh8NLluqnptBZmK4UbhLiM6TpLNIHmP4MAz+zwI3IrQ L9IjyYwLoCf8PkteEs0N6yArGdWBKKswBUhOmKUmIzErVKf7Wc1WBwJeRBBfI2o= -----END CERTIFICATE-----Generated at Sun Jan 25 11:01:53 2026 by rpki-client