This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d0c3e5-99c5-4f12-9da2-c59e94bff743/1/5WlkBW9jzB02ilWwcESnZBhBZcw.roa File: 5WlkBW9jzB02ilWwcESnZBhBZcw.roa (raw, json) Hash identifier: BeHCp8no7SRXOueP/j4ph7p2OgVkylIBkA/kOhEkKPk= Subject key identifier: E5:69:64:05:6F:63:CC:1D:36:8A:55:B0:70:44:A7:64:18:41:65:CC Certificate issuer: /CN=3e1fd138f102d7dcb1583b4494102f0fe587e45d Certificate serial: 019B7E38FD708B8C490482308950A48EF646 Authority key identifier: 3E:1F:D1:38:F1:02:D7:DC:B1:58:3B:44:94:10:2F:0F:E5:87:E4:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph_ROPEC19yxWDtElBAvD-WH5F0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d0c3e5-99c5-4f12-9da2-c59e94bff743/1/5WlkBW9jzB02ilWwcESnZBhBZcw.roa Signing time: Fri 02 Jan 2026 10:20:22 +0000 ROA not before: Fri 02 Jan 2026 10:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12703 IP address blocks: 5.153.64.0/19 maxlen: 24 5.172.152.0/21 maxlen: 24 46.249.192.0/19 maxlen: 24 84.19.224.0/19 maxlen: 24 87.246.64.0/18 maxlen: 24 185.64.88.0/22 maxlen: 24 193.29.223.0/24 maxlen: 24 195.47.244.0/24 maxlen: 24 195.248.70.0/24 maxlen: 24 212.20.224.0/19 maxlen: 24 217.30.112.0/20 maxlen: 24 2a02:16e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d0c3e5-99c5-4f12-9da2-c59e94bff743/1/Ph_ROPEC19yxWDtElBAvD-WH5F0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/d0c3e5-99c5-4f12-9da2-c59e94bff743/1/Ph_ROPEC19yxWDtElBAvD-WH5F0.mft rsync://rpki.ripe.net/repository/DEFAULT/Ph_ROPEC19yxWDtElBAvD-WH5F0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:fd:70:8b:8c:49:04:82:30:89:50:a4:8e:f6:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e1fd138f102d7dcb1583b4494102f0fe587e45d Validity Not Before: Jan 2 10:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e56964056f63cc1d368a55b07044a764184165cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:62:ac:3b:b7:1a:ef:21:84:33:c2:bf:46:79: f5:dd:db:9a:a8:01:93:3e:6d:aa:dc:17:00:da:86: 4c:2c:b0:bc:28:01:f5:43:cc:15:1c:1f:ee:58:ec: 6c:f3:72:aa:a6:88:a2:07:42:b2:61:88:68:0e:42: f1:2d:ae:07:2d:63:41:3d:f5:ef:a6:d8:43:9c:39: 4b:cd:b6:36:15:48:fa:09:2e:2c:04:78:9f:5e:27: 36:06:c6:a7:65:1f:25:0d:fe:4b:81:19:e5:0a:d2: 7a:a0:95:1f:b6:c3:d2:ee:20:e2:b5:4a:06:06:ee: c9:52:b1:a8:eb:dd:06:4a:be:3f:fa:b9:f4:58:25: bf:a3:3c:4a:76:0d:61:33:58:3f:ed:4b:66:b0:73: 00:aa:70:0d:77:1c:db:44:59:68:9d:21:4b:fa:fd: 41:1b:7a:89:e4:73:15:c4:e4:8c:a4:92:fe:64:ba: 90:3a:92:60:5e:6e:24:ca:51:d4:c5:f4:2e:f1:fd: ca:0a:24:77:69:04:d9:61:4a:54:09:94:01:3e:be: 48:c3:c9:0c:ed:34:c5:fe:d9:87:4b:ee:2f:85:d7: d9:72:8b:36:b8:31:bb:aa:17:af:49:eb:1a:30:ba: f4:73:a4:80:ae:17:d2:25:94:45:ba:bf:df:47:42: f5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:69:64:05:6F:63:CC:1D:36:8A:55:B0:70:44:A7:64:18:41:65:CC X509v3 Authority Key Identifier: keyid:3E:1F:D1:38:F1:02:D7:DC:B1:58:3B:44:94:10:2F:0F:E5:87:E4:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph_ROPEC19yxWDtElBAvD-WH5F0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d0c3e5-99c5-4f12-9da2-c59e94bff743/1/5WlkBW9jzB02ilWwcESnZBhBZcw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d0c3e5-99c5-4f12-9da2-c59e94bff743/1/Ph_ROPEC19yxWDtElBAvD-WH5F0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.153.64.0/19 5.172.152.0/21 46.249.192.0/19 84.19.224.0/19 87.246.64.0/18 185.64.88.0/22 193.29.223.0/24 195.47.244.0/24 195.248.70.0/24 212.20.224.0/19 217.30.112.0/20 IPv6: 2a02:16e0::/32 Signature Algorithm: sha256WithRSAEncryption 32:94:2c:a9:f5:39:f2:fe:28:9b:de:d2:47:a8:cd:67:04:e5: 96:12:8d:80:7b:d7:15:b9:97:eb:67:19:fb:00:49:3a:7d:54: 14:14:c1:cb:1d:aa:9f:e1:e8:c5:19:49:57:21:c0:a0:b8:c3: 7f:d1:f0:58:1c:56:29:3a:9b:34:70:91:51:d4:4e:ea:5f:c7: 3c:3b:2b:bd:ab:d1:89:5f:67:da:21:ce:f5:b8:79:8a:c6:85: 8b:57:23:da:57:6e:08:3e:72:bd:ec:b5:56:e1:0a:5c:5a:7f: 66:61:30:4c:da:f0:91:35:b4:f0:9c:e0:4e:05:0d:cf:4f:b5: 21:bd:40:90:31:90:2e:e6:83:7a:04:a4:50:fb:3f:57:6a:5f: d7:53:e7:4a:bc:57:f4:0d:b2:2e:41:c1:a3:45:16:37:ce:6c: 73:6a:b0:74:7c:0b:49:4e:fe:2f:3c:5a:d5:b5:e4:b3:54:db: 85:5b:d2:4c:ae:5d:b3:e1:a2:15:57:12:90:80:d5:07:46:3c: 2f:55:a0:71:5b:6e:5c:5a:43:de:d8:58:67:36:06:a5:74:0b: 94:e9:af:d5:46:46:c5:3d:63:c7:08:1f:c9:dd:15:2f:ec:62: 20:8b:d3:0e:6e:eb:1b:9b:a5:5c:16:1c:c6:71:40:ae:b5:40: e7:56:fe:b9 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgISAZt+OP1wi4xJBIIwiVCkjvZGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMWZkMTM4ZjEwMmQ3ZGNiMTU4M2I0NDk0MTAyZjBmZTU4 N2U0NWQwHhcNMjYwMTAyMTAyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTY5NjQwNTZmNjNjYzFkMzY4YTU1YjA3MDQ0YTc2NDE4NDE2NWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1WKsO7ca7yGEM8K/Rnn13duaqAGT Pm2q3BcA2oZMLLC8KAH1Q8wVHB/uWOxs83KqpoiiB0KyYYhoDkLxLa4HLWNBPfXv pthDnDlLzbY2FUj6CS4sBHifXic2BsanZR8lDf5LgRnlCtJ6oJUftsPS7iDitUoG Bu7JUrGo690GSr4/+rn0WCW/ozxKdg1hM1g/7UtmsHMAqnANdxzbRFlonSFL+v1B G3qJ5HMVxOSMpJL+ZLqQOpJgXm4kylHUxfQu8f3KCiR3aQTZYUpUCZQBPr5Iw8kM 7TTF/tmHS+4vhdfZcos2uDG7qhevSesaMLr0c6SArhfSJZRFur/fR0L1OQIDAQAB o4ICVDCCAlAwHQYDVR0OBBYEFOVpZAVvY8wdNopVsHBEp2QYQWXMMB8GA1UdIwQY MBaAFD4f0TjxAtfcsVg7RJQQLw/lh+RdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGhfUk9QRUMxOXl4V0R0RWxCQXZELVdINUYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMGMzZTUtOTljNS00ZjEyLTlkYTIt YzU5ZTk0YmZmNzQzLzEvNVdsa0JXOWp6QjAyaWxXd2NFU25aQmhCWmN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9kMGMzZTUtOTljNS00ZjEyLTlkYTItYzU5ZTk0YmZmNzQz LzEvUGhfUk9QRUMxOXl4V0R0RWxCQXZELVdINUYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBIBAIAATBCAwQFBZlAAwQD BayYAwQFLvnAAwQFVBPgAwQGV/ZAAwQCuUBYAwQAwR3fAwQAwy/0AwQAw/hGAwQF 1BTgAwQE2R5wMA0EAgACMAcDBQAqAhbgMA0GCSqGSIb3DQEBCwUAA4IBAQAylCyp 9Tny/iib3tJHqM1nBOWWEo2Ae9cVuZfrZxn7AEk6fVQUFMHLHaqf4ejFGUlXIcCg uMN/0fBYHFYpOps0cJFR1E7qX8c8Oyu9q9GJX2faIc71uHmKxoWLVyPaV24IPnK9 7LVW4QpcWn9mYTBM2vCRNbTwnOBOBQ3PT7UhvUCQMZAu5oN6BKRQ+z9Xal/XU+dK vFf0DbIuQcGjRRY3zmxzarB0fAtJTv4vPFrVteSzVNuFW9JMrl2z4aIVVxKQgNUH RjwvVaBxW25cWkPe2FhnNgaldAuU6a/VRkbFPWPHCB/J3RUv7GIgi9MObusbm6Vc FhzGcUCutUDnVv65 -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:29 2026 by rpki-client