This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/5X2HMKIwoWjPQrJSOgXwCfR9WFQ.roa File: 5X2HMKIwoWjPQrJSOgXwCfR9WFQ.roa (raw, json) Hash identifier: Lnef119KZpGhPNrqg8r/PadlU1mmGHZIiXMz5ZSsb6Y= Subject key identifier: E5:7D:87:30:A2:30:A1:68:CF:42:B2:52:3A:05:F0:09:F4:7D:58:54 Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c Certificate serial: 019B7B360D81E1BDF97FF0E5E9861CC2FFF0 Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/5X2HMKIwoWjPQrJSOgXwCfR9WFQ.roa Signing time: Thu 01 Jan 2026 20:18:18 +0000 ROA not before: Thu 01 Jan 2026 20:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49774 IP address blocks: 31.14.16.0/24 maxlen: 24 77.81.178.0/23 maxlen: 23 85.204.138.0/24 maxlen: 24 86.106.170.0/24 maxlen: 24 93.114.96.0/24 maxlen: 24 93.115.246.0/24 maxlen: 24 2a04:fee3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.mft rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:0d:81:e1:bd:f9:7f:f0:e5:e9:86:1c:c2:ff:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c Validity Not Before: Jan 1 20:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e57d8730a230a168cf42b2523a05f009f47d5854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e4:72:33:ee:a0:04:6b:7c:4e:fd:da:7e:f6: 0d:d8:70:05:0e:f2:b6:67:e9:6a:63:a0:4e:4c:ae: 59:ea:d8:a7:29:c0:00:03:fb:a4:35:0e:8d:c9:87: b8:07:40:2a:99:82:aa:f4:5b:42:e0:ac:0a:ba:3a: aa:59:f9:00:f0:12:b2:9d:a6:c5:a8:6d:bc:23:b0: fc:04:d7:e4:60:c3:9f:52:8a:86:0f:c3:fe:4b:71: 22:42:91:75:cc:87:e1:26:a4:9c:dc:f0:a8:22:60: 6b:d9:3e:8f:96:46:2f:8e:ac:1c:83:67:da:6a:a8: 37:90:c2:58:11:49:cc:42:05:7e:1d:de:05:00:bf: 24:71:c0:ac:05:1b:74:ff:f3:d3:92:84:1c:e0:ba: 27:3e:18:b9:92:11:f4:d7:77:8f:07:be:15:4e:5f: 6d:cc:84:70:93:f7:16:ec:37:e4:68:bd:3b:52:31: bd:39:57:93:95:9c:93:1f:b3:d0:42:b8:e5:74:c3: 05:b6:40:9d:76:93:d1:dd:31:51:d5:0f:e3:d7:d4: 80:b7:37:1e:30:5f:2c:70:95:2b:af:db:de:0a:54: 55:bc:cb:ac:be:1e:80:07:c7:f8:53:1d:dd:b3:5f: bd:22:2a:5f:5c:ea:a0:90:4f:26:dd:df:a6:63:7f: b8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7D:87:30:A2:30:A1:68:CF:42:B2:52:3A:05:F0:09:F4:7D:58:54 X509v3 Authority Key Identifier: keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/5X2HMKIwoWjPQrJSOgXwCfR9WFQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.14.16.0/24 77.81.178.0/23 85.204.138.0/24 86.106.170.0/24 93.114.96.0/24 93.115.246.0/24 IPv6: 2a04:fee3::/32 Signature Algorithm: sha256WithRSAEncryption 19:f8:8e:4a:66:4b:6e:d4:31:1e:87:2f:81:7a:20:b0:2d:10: 7c:9c:00:8a:56:76:0d:22:27:82:eb:d5:25:43:1e:f5:3c:cc: d3:75:71:3c:c3:e7:e6:db:a4:c9:40:90:d8:bc:47:bd:bd:68: 85:bf:90:9e:db:0f:86:16:ca:c5:e6:39:6a:ca:03:21:a5:f8: 26:8d:2d:f2:14:53:e3:87:a8:85:3e:d1:a5:12:48:30:29:be: 6d:b5:80:c3:68:77:97:c3:2a:e9:a2:0f:e7:c3:71:06:db:54: a8:44:5e:d2:b2:61:c0:54:8d:3e:fc:ca:9d:0a:a9:96:8f:8f: 63:46:61:f2:dd:aa:67:ef:38:f2:6f:cf:27:e3:f5:34:db:c4: 7d:6b:1f:1e:0b:df:84:97:56:3a:33:ee:de:bb:dd:7c:1a:e3: f6:1d:59:7c:73:f8:63:ee:ce:16:37:4c:03:b8:ae:35:5d:cb: 9c:a7:34:9b:c8:ba:08:58:a3:d9:a0:fa:c2:a2:21:d9:f7:dc: 27:99:75:da:f2:6b:9a:d8:06:95:55:00:e1:87:9d:00:21:f8: d2:ff:31:21:6d:eb:0d:63:08:1a:67:7c:af:2f:28:75:76:77: 99:59:92:9c:99:5a:bf:a4:db:1e:07:d5:6d:3f:b3:8d:f7:10: 06:1b:a6:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt7Ng2B4b35f/Dl6YYcwv/wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkZjEzMmRmMTNlNGJlNTNkODI1MGM4YzQ4NDIwMjY0ZWVm NmMxNGMwHhcNMjYwMTAxMjAxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTdkODczMGEyMzBhMTY4Y2Y0MmIyNTIzYTA1ZjAwOWY0N2Q1ODU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8eRyM+6gBGt8Tv3afvYN2HAFDvK2 Z+lqY6BOTK5Z6tinKcAAA/ukNQ6NyYe4B0AqmYKq9FtC4KwKujqqWfkA8BKynabF qG28I7D8BNfkYMOfUoqGD8P+S3EiQpF1zIfhJqSc3PCoImBr2T6PlkYvjqwcg2fa aqg3kMJYEUnMQgV+Hd4FAL8kccCsBRt0//PTkoQc4LonPhi5khH013ePB74VTl9t zIRwk/cW7DfkaL07UjG9OVeTlZyTH7PQQrjldMMFtkCddpPR3TFR1Q/j19SAtzce MF8scJUrr9veClRVvMusvh6AB8f4Ux3ds1+9IipfXOqgkE8m3d+mY3+4zwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFOV9hzCiMKFoz0KyUjoF8An0fVhUMB8GA1UdIwQY MBaAFH3xMt8T5L5T2CUMjEhCAmTu9sFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYt OTc3ODY3NGVkYzk3LzEvNVgySE1LSXdvV2pQUXJKU09nWHdDZlI5V0ZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYtOTc3ODY3NGVkYzk3 LzEvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQAHw4QAwQB TVGyAwQAVcyKAwQAVmqqAwQAXXJgAwQAXXP2MA0EAgACMAcDBQAqBP7jMA0GCSqG SIb3DQEBCwUAA4IBAQAZ+I5KZktu1DEehy+BeiCwLRB8nACKVnYNIieC69UlQx71 PMzTdXE8w+fm26TJQJDYvEe9vWiFv5Ce2w+GFsrF5jlqygMhpfgmjS3yFFPjh6iF PtGlEkgwKb5ttYDDaHeXwyrpog/nw3EG21SoRF7SsmHAVI0+/MqdCqmWj49jRmHy 3apn7zjyb88n4/U028R9ax8eC9+El1Y6M+7eu918GuP2HVl8c/hj7s4WN0wDuK41 XcucpzSbyLoIWKPZoPrCoiHZ99wnmXXa8mua2AaVVQDhh50AIfjS/zEhbesNYwga Z3yvLyh1dneZWZKcmVq/pNseB9VtP7ON9xAGG6YV -----END CERTIFICATE-----Generated at Sun Jan 25 21:24:38 2026 by rpki-client