This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/53B8FRI7nRRNBbxhMzXE9n-mCys.roa File: 53B8FRI7nRRNBbxhMzXE9n-mCys.roa (raw, json) Hash identifier: wLJkzwgPSg2ecFqsLih9Nw7Px9kiK752n9vZL4ROi5o= Subject key identifier: E7:70:7C:15:12:3B:9D:14:4D:05:BC:61:33:35:C4:F6:7F:A6:0B:2B Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30 Certificate serial: 019B7EA458EF23054D4265A559A895D3C95D Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/53B8FRI7nRRNBbxhMzXE9n-mCys.roa Signing time: Fri 02 Jan 2026 12:17:38 +0000 ROA not before: Fri 02 Jan 2026 12:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48519 IP address blocks: 185.119.136.0/22 maxlen: 24 195.253.48.0/22 maxlen: 22 195.253.52.0/23 maxlen: 23 195.253.65.0/24 maxlen: 24 195.253.66.0/24 maxlen: 24 195.253.84.0/22 maxlen: 22 195.253.88.0/23 maxlen: 23 195.253.90.0/23 maxlen: 23 195.253.96.0/19 maxlen: 24 2a01:5b0:2::/48 maxlen: 48 2a01:5b0:5::/48 maxlen: 48 2a01:5b0:6::/48 maxlen: 48 2a01:5b0:8::/46 maxlen: 48 2a01:5b0:10::/45 maxlen: 48 2a01:5b0:12::/47 maxlen: 47 2a01:5b0:20::/43 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.mft rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:58:ef:23:05:4d:42:65:a5:59:a8:95:d3:c9:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30 Validity Not Before: Jan 2 12:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7707c15123b9d144d05bc613335c4f67fa60b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:72:52:77:e3:4e:a4:59:e0:f7:c2:ab:bb:ed: f8:89:bb:19:31:4c:e4:55:5a:b9:87:dc:9f:f4:85: 18:d8:6e:6a:55:a1:fa:31:91:4a:73:75:01:7d:03: fe:4a:aa:b8:8d:88:df:94:0a:42:44:3c:04:6e:36: d7:68:e0:55:86:dc:79:aa:27:79:1a:79:29:58:e5: ec:8b:7a:8f:a2:91:43:10:93:b7:db:76:0c:60:17: 10:26:ee:1f:be:dd:25:df:07:16:d7:4e:32:7e:5a: 34:2f:ea:d8:be:ea:d7:55:3c:fe:59:f1:8f:cd:9f: c2:05:2f:df:99:cf:4f:0e:98:5c:80:a4:63:f5:c7: c8:52:d3:8f:88:6c:e4:ff:c2:9a:21:4b:44:c7:da: 94:2b:e2:f6:1e:b5:c9:de:e1:b1:7d:93:93:8b:93: 2a:45:59:f0:3a:93:b0:63:b3:38:83:51:01:13:29: c2:98:c8:fc:34:5b:d0:15:e3:57:71:ca:93:51:15: 5d:95:30:b8:ba:60:a0:27:8b:59:ea:12:6e:d4:4c: b2:61:81:40:54:24:87:a5:89:db:41:cd:f0:20:01: ad:62:86:25:47:c8:4c:1c:64:f4:a7:7c:15:67:21: 61:cd:41:09:84:f4:c8:a8:68:2f:b4:e8:a6:37:55: c8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:70:7C:15:12:3B:9D:14:4D:05:BC:61:33:35:C4:F6:7F:A6:0B:2B X509v3 Authority Key Identifier: keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/53B8FRI7nRRNBbxhMzXE9n-mCys.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.119.136.0/22 195.253.48.0-195.253.53.255 195.253.65.0-195.253.66.255 195.253.84.0-195.253.91.255 195.253.96.0/19 IPv6: 2a01:5b0:2::/48 2a01:5b0:5::-2a01:5b0:6:ffff:ffff:ffff:ffff:ffff 2a01:5b0:8::/46 2a01:5b0:10::/45 2a01:5b0:20::/43 Signature Algorithm: sha256WithRSAEncryption 8c:a7:29:39:ac:b1:6d:46:ea:c3:c6:a4:d6:0b:53:ab:44:6c: 0a:6c:f1:f2:a0:93:84:8d:5e:3a:37:2f:66:6c:6d:57:e2:42: f5:a6:08:af:74:a5:de:87:99:f1:fc:93:12:bf:20:c5:70:34: 8f:1a:19:59:1a:cc:68:60:31:88:8f:e3:83:e7:5b:28:fd:2e: e2:3c:27:ef:6b:be:56:30:99:5c:a9:87:27:f0:b7:b4:ec:4b: a7:4b:74:db:9c:06:d8:21:83:3d:a4:73:aa:2c:98:2c:31:c0: d3:c8:8c:92:f6:c1:57:94:f0:a5:42:af:49:2f:95:f8:a1:b2: f1:07:5b:a8:2f:15:f6:49:03:4e:e7:62:9a:14:e3:33:53:8c: ae:e0:33:07:81:6e:1b:02:45:79:cf:cb:a9:ed:5d:b0:7f:fb: bb:5c:b4:39:02:bc:be:23:3d:c9:46:33:1f:c1:0a:7b:79:7b: 74:c3:e2:05:2e:06:e7:ca:b7:d4:af:2c:84:5d:91:8c:44:e8: f2:29:14:33:50:60:34:d9:df:2a:30:5e:ea:3a:48:51:b0:85: d4:45:c6:11:26:d2:01:6d:74:65:67:61:9c:11:09:a9:fc:7d: 99:e8:a7:82:d7:8c:e5:fe:ef:4d:c5:4c:0b:9e:3a:0a:93:5c: 67:38:10:fc -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgISAZt+pFjvIwVNQmWlWaiV08ldMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwYzFlNDI2ZjU4ZTQyYWUzMGU1NmNkYjdmZjRkOGY5ZGRk ODViMzAwHhcNMjYwMTAyMTIxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzcwN2MxNTEyM2I5ZDE0NGQwNWJjNjEzMzM1YzRmNjdmYTYwYjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3JSd+NOpFng98Kru+34ibsZMUzk VVq5h9yf9IUY2G5qVaH6MZFKc3UBfQP+Sqq4jYjflApCRDwEbjbXaOBVhtx5qid5 GnkpWOXsi3qPopFDEJO323YMYBcQJu4fvt0l3wcW104yflo0L+rYvurXVTz+WfGP zZ/CBS/fmc9PDphcgKRj9cfIUtOPiGzk/8KaIUtEx9qUK+L2HrXJ3uGxfZOTi5Mq RVnwOpOwY7M4g1EBEynCmMj8NFvQFeNXccqTURVdlTC4umCgJ4tZ6hJu1EyyYYFA VCSHpYnbQc3wIAGtYoYlR8hMHGT0p3wVZyFhzUEJhPTIqGgvtOimN1XIHQIDAQAB o4ICezCCAncwHQYDVR0OBBYEFOdwfBUSO50UTQW8YTM1xPZ/pgsrMB8GA1UdIwQY MBaAFFDB5Cb1jkKuMOVs23/02Pnd2FswMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU1Ia0p2V09RcTR3NVd6YmZfVFktZDNZV3pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi85YzZkYWQtMzc3YS00NDRlLWIwZGMt MDYzY2U2Y2Y0NjBkLzEvNTNCOEZSSTduUlJOQmJ4aE16WEU5bi1tQ3lzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi85YzZkYWQtMzc3YS00NDRlLWIwZGMtMDYzY2U2Y2Y0NjBk LzEvVU1Ia0p2V09RcTR3NVd6YmZfVFktZDNZV3pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MDwEAgABMDYDBAK5d4gw DAMEBMP9MAMEAcP9NDAMAwQAw/1BAwQAw/1CMAwDBALD/VQDBALD/VgDBAXD/WAw PgQCAAIwOAMHACoBBbAAAjASAwcAKgEFsAAFAwcAKgEFsAAGAwcCKgEFsAAIAwcD KgEFsAAQAwcFKgEFsAAgMA0GCSqGSIb3DQEBCwUAA4IBAQCMpyk5rLFtRurDxqTW C1OrRGwKbPHyoJOEjV46Ny9mbG1X4kL1pgivdKXeh5nx/JMSvyDFcDSPGhlZGsxo YDGIj+OD51so/S7iPCfva75WMJlcqYcn8Le07EunS3TbnAbYIYM9pHOqLJgsMcDT yIyS9sFXlPClQq9JL5X4obLxB1uoLxX2SQNO52KaFOMzU4yu4DMHgW4bAkV5z8up 7V2wf/u7XLQ5Ary+Iz3JRjMfwQp7eXt0w+IFLgbnyrfUryyEXZGMROjyKRQzUGA0 2d8qMF7qOkhRsIXURcYRJtIBbXRlZ2GcEQmp/H2Z6KeC14zl/u9NxUwLnjoKk1xn OBD8 -----END CERTIFICATE-----Generated at Sun Jan 25 21:05:32 2026 by rpki-client