This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/BP5zyD1Yb6_DJAWNAVJopw3ugvA.roa File: BP5zyD1Yb6_DJAWNAVJopw3ugvA.roa (raw, json) Hash identifier: R0evmhsFwp67OEoQ9Qh1d5wcuASe7CasychQPk0UEXc= Subject key identifier: 04:FE:73:C8:3D:58:6F:AF:C3:24:05:8D:01:52:68:A7:0D:EE:82:F0 Certificate issuer: /CN=d00b37b6f4b445645e6993a9c5ec608492425f0e Certificate serial: 019B7EA61993503EFA7CAB497C8A9E73D6C0 Authority key identifier: D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/BP5zyD1Yb6_DJAWNAVJopw3ugvA.roa Signing time: Fri 02 Jan 2026 12:19:33 +0000 ROA not before: Fri 02 Jan 2026 12:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42473 IP address blocks: 152.53.0.0/16 maxlen: 24 152.53.6.0/24 maxlen: 24 152.53.7.0/24 maxlen: 24 152.53.8.0/24 maxlen: 24 152.53.9.0/24 maxlen: 24 152.53.24.0/24 maxlen: 24 152.53.25.0/24 maxlen: 24 152.53.26.0/24 maxlen: 24 152.53.27.0/24 maxlen: 24 152.53.30.0/24 maxlen: 24 152.53.36.0/22 maxlen: 24 152.53.41.0/24 maxlen: 24 152.53.48.0/22 maxlen: 22 152.53.58.0/24 maxlen: 24 152.53.59.0/24 maxlen: 24 152.53.62.0/24 maxlen: 24 152.53.63.0/24 maxlen: 24 152.53.64.0/22 maxlen: 24 152.53.69.0/24 maxlen: 24 152.53.74.0/24 maxlen: 24 152.53.75.0/24 maxlen: 24 152.53.78.0/24 maxlen: 24 152.53.79.0/24 maxlen: 24 152.53.80.0/22 maxlen: 22 152.53.84.0/22 maxlen: 22 152.53.88.0/22 maxlen: 22 152.53.92.0/22 maxlen: 22 152.53.96.0/24 maxlen: 24 152.53.97.0/24 maxlen: 24 152.53.98.0/24 maxlen: 24 152.53.100.0/22 maxlen: 22 152.53.104.0/22 maxlen: 22 152.53.108.0/22 maxlen: 22 152.53.112.0/22 maxlen: 22 152.53.116.0/22 maxlen: 22 152.53.124.0/22 maxlen: 22 152.53.128.0/20 maxlen: 22 152.53.160.0/22 maxlen: 22 152.53.164.0/22 maxlen: 22 152.53.168.0/22 maxlen: 22 152.53.176.0/22 maxlen: 22 152.53.180.0/22 maxlen: 22 152.53.224.0/22 maxlen: 22 152.53.228.0/22 maxlen: 22 152.53.236.0/22 maxlen: 22 152.53.240.0/22 maxlen: 22 152.53.244.0/22 maxlen: 22 152.53.248.0/22 maxlen: 22 152.53.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0As3tvS0RWReaZOpxexghJJCXw4.crl rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0As3tvS0RWReaZOpxexghJJCXw4.mft rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:19:93:50:3e:fa:7c:ab:49:7c:8a:9e:73:d6:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d00b37b6f4b445645e6993a9c5ec608492425f0e Validity Not Before: Jan 2 12:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04fe73c83d586fafc324058d015268a70dee82f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:68:69:1c:ab:f6:8a:07:a2:1b:8e:3a:c3:19: 5d:6e:88:34:8a:73:4a:97:2d:3f:38:63:1d:76:bb: 6b:32:63:f0:39:97:da:c2:c5:c8:e4:bd:d8:76:dd: 4a:20:07:3e:7b:3a:64:94:20:f1:8c:c5:6b:23:48: 32:17:3c:74:32:14:e9:63:0d:35:29:ea:83:ec:7c: ae:ee:95:7c:12:74:8b:5b:ff:f0:97:b0:ad:4d:8d: 5a:f4:17:80:60:d7:01:2b:3e:7d:e8:18:1a:80:64: 0a:51:8e:2d:25:5c:72:75:1c:9f:74:a5:6b:69:a6: 4f:07:35:56:e9:6f:5f:14:11:e5:64:48:a4:90:8d: c2:74:7d:3e:f7:cd:7e:51:f6:ab:e9:8b:a1:b4:6f: 6b:61:99:ba:cf:6f:a5:f4:92:d5:ab:70:43:3c:15: 0c:a0:46:03:69:23:03:49:f1:d8:92:1d:c7:30:54: de:3c:1b:f3:e4:f1:d5:82:da:f1:65:0b:10:aa:0f: e5:bb:f4:87:c2:9d:02:62:e4:bd:8d:4f:b1:e4:52: b7:78:78:83:67:4f:da:d3:0d:d7:5d:aa:ea:c8:d8: 5f:16:6e:64:43:26:45:37:b3:6b:a6:90:db:fb:46: ed:24:93:e5:3e:06:8e:71:9a:68:e3:c2:13:6e:73: 17:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:FE:73:C8:3D:58:6F:AF:C3:24:05:8D:01:52:68:A7:0D:EE:82:F0 X509v3 Authority Key Identifier: keyid:D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/BP5zyD1Yb6_DJAWNAVJopw3ugvA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0As3tvS0RWReaZOpxexghJJCXw4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.53.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:d0:c6:f2:57:16:8e:39:d2:3d:d7:38:55:34:5d:de:e5:a9: 82:c3:d2:4e:72:38:09:70:a2:af:79:3f:ef:a0:2b:f7:24:ff: 40:0b:f9:1e:43:d0:13:ce:8f:2b:52:96:6e:3d:54:41:77:c0: 15:ca:e4:5a:aa:3a:df:5e:62:3a:84:3d:9e:35:5d:50:07:16: 5d:02:ad:42:3c:00:59:b2:28:9e:d2:28:ee:a5:51:6d:62:3d: 61:ed:6c:30:30:44:10:06:b8:9d:56:e6:78:de:85:8b:36:7f: 30:60:93:7b:82:d4:46:f6:7e:e0:4a:eb:e5:d9:8a:44:33:bd: a0:82:44:97:4b:e1:12:42:a7:9b:df:4e:f7:c2:98:e8:75:20: 52:a2:f5:4d:70:99:b7:ab:07:8c:34:81:c1:82:2d:50:8a:1d: 09:e3:1f:ed:9e:45:47:e9:70:68:17:c0:d7:a2:9f:f4:2c:2d: 8c:f0:c9:f1:10:72:e8:a9:ca:76:5f:5d:b6:ad:5e:16:76:f5: 79:83:c3:e9:30:2f:b2:9b:33:a9:51:57:cd:ce:78:1f:23:5a: 4a:8c:d2:84:59:26:67:c8:f1:65:70:df:8b:6a:28:1e:f7:a6: 6e:11:d0:a3:2b:b2:20:bb:20:c6:06:61:e3:60:6d:9c:4a:16: ee:7a:cf:2b -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt+phmTUD76fKtJfIqec9bAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwMGIzN2I2ZjRiNDQ1NjQ1ZTY5OTNhOWM1ZWM2MDg0OTI0 MjVmMGUwHhcNMjYwMTAyMTIxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGZlNzNjODNkNTg2ZmFmYzMyNDA1OGQwMTUyNjhhNzBkZWU4MmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmhpHKv2igeiG446wxldbog0inNK ly0/OGMddrtrMmPwOZfawsXI5L3Ydt1KIAc+ezpklCDxjMVrI0gyFzx0MhTpYw01 KeqD7Hyu7pV8EnSLW//wl7CtTY1a9BeAYNcBKz596BgagGQKUY4tJVxydRyfdKVr aaZPBzVW6W9fFBHlZEikkI3CdH0+981+Ufar6YuhtG9rYZm6z2+l9JLVq3BDPBUM oEYDaSMDSfHYkh3HMFTePBvz5PHVgtrxZQsQqg/lu/SHwp0CYuS9jU+x5FK3eHiD Z0/a0w3XXarqyNhfFm5kQyZFN7NrppDb+0btJJPlPgaOcZpo48ITbnMXIQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFAT+c8g9WG+vwyQFjQFSaKcN7oLwMB8GA1UdIwQY MBaAFNALN7b0tEVkXmmTqcXsYISSQl8OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEFzM3R2UzBSV1JlYVpPcHhleGdoSkpDWHc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83MzBmYzUtNzMwMS00YTYwLTg2ZDEt N2RiNjg2OGQ4NDc0LzEvQlA1enlEMVliNl9ESkFXTkFWSm9wdzN1Z3ZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC83MzBmYzUtNzMwMS00YTYwLTg2ZDEtN2RiNjg2OGQ4NDc0 LzEvMEFzM3R2UzBSV1JlYVpPcHhleGdoSkpDWHc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAmDUwDQYJ KoZIhvcNAQELBQADggEBAA/QxvJXFo450j3XOFU0Xd7lqYLD0k5yOAlwoq95P++g K/ck/0AL+R5D0BPOjytSlm49VEF3wBXK5FqqOt9eYjqEPZ41XVAHFl0CrUI8AFmy KJ7SKO6lUW1iPWHtbDAwRBAGuJ1W5njehYs2fzBgk3uC1Eb2fuBK6+XZikQzvaCC RJdL4RJCp5vfTvfCmOh1IFKi9U1wmberB4w0gcGCLVCKHQnjH+2eRUfpcGgXwNei n/QsLYzwyfEQcuipynZfXbatXhZ29XmDw+kwL7KbM6lRV83OeB8jWkqM0oRZJmfI 8WVw34tqKB73pm4R0KMrsiC7IMYGYeNgbZxKFu56zys= -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:44 2026 by rpki-client