This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/k7SwSm-lR2tiZUN1enrqRZh95B0.roa File: k7SwSm-lR2tiZUN1enrqRZh95B0.roa (raw, json) Hash identifier: F4SSqixujMFRC8AtyIaRgNjOXkxcmSPAezm1/5O7V+0= Subject key identifier: 93:B4:B0:4A:6F:A5:47:6B:62:65:43:75:7A:7A:EA:45:98:7D:E4:1D Certificate issuer: /CN=77f8e7fbd4ab69507fb1fe3579af343a56639086 Certificate serial: 019B77C6BC49FAF296943576E09B3ED87E04 Authority key identifier: 77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/k7SwSm-lR2tiZUN1enrqRZh95B0.roa Signing time: Thu 01 Jan 2026 04:17:51 +0000 ROA not before: Thu 01 Jan 2026 04:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197075 IP address blocks: 5.152.144.0/24 maxlen: 24 5.152.154.0/24 maxlen: 24 5.152.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.mft rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:bc:49:fa:f2:96:94:35:76:e0:9b:3e:d8:7e:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77f8e7fbd4ab69507fb1fe3579af343a56639086 Validity Not Before: Jan 1 04:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93b4b04a6fa5476b626543757a7aea45987de41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b6:ea:c5:17:be:4c:2c:06:67:9c:44:3e:9b: 53:7c:ed:dc:6a:9a:33:12:7e:01:ba:64:22:a8:52: ee:f4:79:b7:59:72:bf:e7:c7:2b:17:cc:6f:54:0b: ea:31:96:3a:d0:58:11:35:ef:94:0c:08:92:2a:9c: 95:dc:a2:6c:7f:b7:a6:89:41:97:d9:da:42:e7:bb: b9:da:06:3d:fc:9c:c3:c3:0f:4d:ff:04:36:8b:57: b6:42:ab:88:1f:a3:8f:6a:0a:72:84:4f:de:ca:9a: ba:ec:12:8a:bf:4e:7c:d8:23:79:1d:a3:d6:1b:2c: 90:fc:5d:18:37:18:73:d0:f1:e7:52:36:23:25:27: 93:be:a2:ef:fc:c8:38:77:4c:f7:a9:a6:ea:45:75: 4d:93:a7:77:a2:87:67:b6:f5:5d:af:e4:e1:b6:c4: a8:70:af:21:ce:02:3f:01:81:43:d3:8b:e3:35:e5: 3f:e5:45:3c:f2:e8:62:97:b5:65:d8:8d:4e:d1:9c: 1f:b8:a8:16:ea:52:5b:7f:c5:f8:a2:88:50:dc:26: 05:ee:6c:88:43:29:b1:0f:8b:f8:f4:6e:8f:4a:2d: a0:a6:e0:79:c3:32:14:66:c9:77:42:9e:24:56:b4: 4c:3a:19:e9:23:a7:ee:e9:0b:ac:a4:10:80:3b:12: 50:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B4:B0:4A:6F:A5:47:6B:62:65:43:75:7A:7A:EA:45:98:7D:E4:1D X509v3 Authority Key Identifier: keyid:77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/k7SwSm-lR2tiZUN1enrqRZh95B0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.152.144.0/24 5.152.154.0/24 5.152.156.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:f1:62:46:d1:76:cc:d0:27:77:bc:fd:d4:0b:77:ea:20:23: 36:cf:09:8a:9d:e9:33:b9:fb:e3:93:8f:c5:1b:41:86:b7:25: c0:c3:93:6a:f4:84:55:80:e1:0b:60:42:9b:0c:da:9a:b8:cc: c7:02:e8:75:81:ed:4b:11:79:d9:fb:35:06:03:8d:84:73:27: 9a:ed:0a:5e:04:e5:73:28:7f:b7:7f:e7:19:58:44:bf:a1:30: 23:87:b3:ee:b9:72:c9:3d:1c:90:12:c5:37:c3:5d:e8:9e:d0: 4a:d5:db:60:57:b9:7c:b1:9a:6a:79:bc:9c:e8:9d:6d:4b:87: 44:89:92:b5:80:86:d7:eb:cd:57:61:1f:39:02:b9:fa:2c:b3: 04:d0:8b:7c:76:2e:e7:36:65:34:75:3f:6f:a2:af:19:38:6e: 5a:23:0e:8d:a5:0d:96:70:e4:f9:a5:b3:51:f9:ee:e5:c1:d0: 27:47:6c:89:52:65:09:e2:c9:e6:3e:e7:b2:41:64:e8:ca:92: 36:f9:94:11:d3:2a:48:48:c4:18:20:0c:cb:a2:6e:63:5d:e6: 77:c0:2b:8f:93:5e:f9:21:95:db:f9:e9:59:b7:c0:ba:2a:46: 47:14:3c:fd:26:3b:29:ed:16:48:a0:17:01:2c:b7:ff:9c:04: 73:62:7b:72 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3xrxJ+vKWlDV24Js+2H4EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3ZjhlN2ZiZDRhYjY5NTA3ZmIxZmUzNTc5YWYzNDNhNTY2 MzkwODYwHhcNMjYwMTAxMDQxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2I0YjA0YTZmYTU0NzZiNjI2NTQzNzU3YTdhZWE0NTk4N2RlNDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37bqxRe+TCwGZ5xEPptTfO3capoz En4BumQiqFLu9Hm3WXK/58crF8xvVAvqMZY60FgRNe+UDAiSKpyV3KJsf7emiUGX 2dpC57u52gY9/JzDww9N/wQ2i1e2QquIH6OPagpyhE/eypq67BKKv0582CN5HaPW GyyQ/F0YNxhz0PHnUjYjJSeTvqLv/Mg4d0z3qabqRXVNk6d3oodntvVdr+ThtsSo cK8hzgI/AYFD04vjNeU/5UU88uhil7Vl2I1O0ZwfuKgW6lJbf8X4oohQ3CYF7myI QymxD4v49G6PSi2gpuB5wzIUZsl3Qp4kVrRMOhnpI6fu6QuspBCAOxJQowIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFJO0sEpvpUdrYmVDdXp66kWYfeQdMB8GA1UdIwQY MBaAFHf45/vUq2lQf7H+NXmvNDpWY5CGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZF9qbi05U3JhVkJfc2Y0MWVhODBPbFpqa0lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC82YzI3MzYtYWIwMi00ODk3LTk1Njgt NzdmNmU5NGUzZGNjLzEvazdTd1NtLWxSMnRpWlVOMWVucnFSWmg5NUIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC82YzI3MzYtYWIwMi00ODk3LTk1NjgtNzdmNmU5NGUzZGNj LzEvZF9qbi05U3JhVkJfc2Y0MWVhODBPbFpqa0lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABZiQAwQA BZiaAwQABZicMA0GCSqGSIb3DQEBCwUAA4IBAQAv8WJG0XbM0Cd3vP3UC3fqICM2 zwmKnekzufvjk4/FG0GGtyXAw5Nq9IRVgOELYEKbDNqauMzHAuh1ge1LEXnZ+zUG A42Ecyea7QpeBOVzKH+3f+cZWES/oTAjh7PuuXLJPRyQEsU3w13ontBK1dtgV7l8 sZpqebyc6J1tS4dEiZK1gIbX681XYR85Arn6LLME0It8di7nNmU0dT9voq8ZOG5a Iw6NpQ2WcOT5pbNR+e7lwdAnR2yJUmUJ4snmPueyQWToypI2+ZQR0ypISMQYIAzL om5jXeZ3wCuPk175IZXb+elZt8C6KkZHFDz9Jjsp7RZIoBcBLLf/nARzYnty -----END CERTIFICATE-----Generated at Mon Jan 26 02:31:58 2026 by rpki-client