This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/1Z9CK4rPbzAMA97TMp2bKUfntRw.roa File: 1Z9CK4rPbzAMA97TMp2bKUfntRw.roa (raw, json) Hash identifier: LpR7I8xQuFg1r5Rgn2WWeCosLxa5m8Ntho2zm0Of2+c= Subject key identifier: D5:9F:42:2B:8A:CF:6F:30:0C:03:DE:D3:32:9D:9B:29:47:E7:B5:1C Certificate issuer: /CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe Certificate serial: 019B7F138E8C76A4E0C341C13475144D2BB3 Authority key identifier: 51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/1Z9CK4rPbzAMA97TMp2bKUfntRw.roa Signing time: Fri 02 Jan 2026 14:19:06 +0000 ROA not before: Fri 02 Jan 2026 14:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200999 IP address blocks: 5.102.40.0/22 maxlen: 24 5.102.42.0/24 maxlen: 24 45.92.240.0/22 maxlen: 24 45.92.241.0/24 maxlen: 24 45.92.242.0/23 maxlen: 24 45.130.28.0/22 maxlen: 24 46.60.16.0/21 maxlen: 24 64.225.128.0/20 maxlen: 24 64.225.128.0/21 maxlen: 24 64.225.136.0/21 maxlen: 24 74.63.0.0/21 maxlen: 24 74.63.8.0/21 maxlen: 24 91.212.135.0/24 maxlen: 24 91.212.141.0/24 maxlen: 24 91.212.142.0/24 maxlen: 24 91.212.149.0/24 maxlen: 24 91.233.150.0/24 maxlen: 24 91.234.53.0/24 maxlen: 24 124.197.32.0/20 maxlen: 24 124.197.33.0/24 maxlen: 24 124.197.34.0/24 maxlen: 24 124.197.40.0/21 maxlen: 24 185.48.232.0/22 maxlen: 24 185.52.192.0/22 maxlen: 24 185.178.84.0/22 maxlen: 24 185.254.220.0/22 maxlen: 24 193.142.27.0/24 maxlen: 24 193.142.52.0/24 maxlen: 24 193.142.54.0/24 maxlen: 24 194.146.52.0/23 maxlen: 24 194.146.60.0/24 maxlen: 24 194.146.61.0/24 maxlen: 24 194.152.58.0/23 maxlen: 24 2a01:9aa0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:8e:8c:76:a4:e0:c3:41:c1:34:75:14:4d:2b:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe Validity Not Before: Jan 2 14:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d59f422b8acf6f300c03ded3329d9b2947e7b51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:09:ae:5f:0d:13:67:1f:9d:97:94:e3:ae:4d: b7:f9:99:e4:4b:39:0b:68:98:98:18:30:6a:87:e1: 38:f9:89:f7:e6:77:1c:c4:33:d3:21:c6:db:26:d3: af:9f:47:ef:8d:b7:19:3f:18:d4:fc:85:f0:3c:94: d8:a9:d7:cb:f3:dd:15:86:31:dd:5e:e7:f4:4b:c5: 8f:d0:3d:98:7f:27:f2:ca:dd:4a:dc:ed:37:21:bb: 30:2f:08:2e:cd:54:4b:01:44:0a:83:2d:9a:a7:e8: 9c:83:6f:38:f7:07:62:f3:c2:5e:0b:1b:78:c6:92: 7c:a3:f0:d5:8c:8e:4c:93:eb:49:94:35:7e:78:e7: 5e:37:9d:43:f4:d9:45:1f:ef:0d:64:ca:73:78:79: 62:e2:ce:b5:1e:50:e9:b9:e4:be:44:cc:d5:c7:3f: cf:9c:2f:a4:6e:23:51:68:d2:58:32:f4:ff:f4:54: 6f:fe:85:08:f3:40:39:76:e6:78:30:d4:9b:ee:58: aa:f4:d0:a5:b0:78:29:06:6d:89:63:45:54:92:bd: 69:b2:51:c0:be:40:08:02:09:ee:bb:e9:41:c9:62: 98:fe:fd:aa:c6:70:8e:ea:17:58:c8:bb:e0:bc:16: 46:93:02:bf:38:e1:5a:78:68:45:7f:63:6a:ba:18: c7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9F:42:2B:8A:CF:6F:30:0C:03:DE:D3:32:9D:9B:29:47:E7:B5:1C X509v3 Authority Key Identifier: keyid:51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/1Z9CK4rPbzAMA97TMp2bKUfntRw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.102.40.0/22 45.92.240.0/22 45.130.28.0/22 46.60.16.0/21 64.225.128.0/20 74.63.0.0/20 91.212.135.0/24 91.212.141.0-91.212.142.255 91.212.149.0/24 91.233.150.0/24 91.234.53.0/24 124.197.32.0/20 185.48.232.0/22 185.52.192.0/22 185.178.84.0/22 185.254.220.0/22 193.142.27.0/24 193.142.52.0/24 193.142.54.0/24 194.146.52.0/23 194.146.60.0/23 194.152.58.0/23 IPv6: 2a01:9aa0::/32 Signature Algorithm: sha256WithRSAEncryption 8a:5b:65:d3:bd:f4:4c:16:60:df:4f:72:f0:45:e3:a9:34:6a: 68:a1:6c:b3:f3:1f:cb:27:a2:27:5f:f3:12:3b:9d:8f:bb:3e: 08:7a:f3:52:a7:de:a8:a2:ec:5f:f6:c9:78:7f:17:2a:bf:ba: ec:e5:96:63:71:0f:a4:5c:c6:02:ad:a8:01:98:a6:da:a6:82: bc:04:2e:77:34:c5:38:46:87:52:25:27:f2:53:cd:1f:53:d3: 16:4d:1b:74:f3:da:d8:5a:46:92:1c:53:30:9b:33:69:4c:b3: 88:e1:2f:34:79:14:4a:a8:40:8a:f9:a3:26:23:3e:27:bb:2d: df:73:df:5a:2f:13:85:54:f3:82:62:39:a8:e9:77:12:6a:89: 69:d0:5b:aa:07:57:40:04:a3:94:57:f5:24:38:89:9d:45:f0: 2e:4a:33:5c:9b:8a:59:e8:3e:86:79:b1:a2:50:da:e4:ab:77: 6b:d3:48:8f:cb:4e:d7:48:31:b1:7c:ba:1c:a3:27:f9:cc:c7: 90:9e:0c:d2:83:dd:d4:d9:f0:65:3e:05:62:92:c0:9f:ab:04: 55:a5:84:f9:18:4b:20:68:80:b9:1b:c4:2c:9f:89:9d:15:4c: 04:f4:c8:4d:14:7a:a5:57:e1:37:42:49:ef:ee:42:1e:b7:64: ee:4c:cf:d9 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt/E46MdqTgw0HBNHUUTSuzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxZjRiMGIwNDY5ZWIwZDA3MTk5NGNkODIzOGYzNGJlZjAw YzZmYmUwHhcNMjYwMTAyMTQxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTlmNDIyYjhhY2Y2ZjMwMGMwM2RlZDMzMjlkOWIyOTQ3ZTdiNTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wmuXw0TZx+dl5Tjrk23+ZnkSzkL aJiYGDBqh+E4+Yn35nccxDPTIcbbJtOvn0fvjbcZPxjU/IXwPJTYqdfL890VhjHd Xuf0S8WP0D2Yfyfyyt1K3O03IbswLwguzVRLAUQKgy2ap+icg2849wdi88JeCxt4 xpJ8o/DVjI5Mk+tJlDV+eOdeN51D9NlFH+8NZMpzeHli4s61HlDpueS+RMzVxz/P nC+kbiNRaNJYMvT/9FRv/oUI80A5duZ4MNSb7liq9NClsHgpBm2JY0VUkr1pslHA vkAIAgnuu+lByWKY/v2qxnCO6hdYyLvgvBZGkwK/OOFaeGhFf2NquhjH/QIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFNWfQiuKz28wDAPe0zKdmylH57UcMB8GA1UdIwQY MBaAFFH0sLBGnrDQcZlM2COPNL7wDG++MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWZTd3NFYWVzTkJ4bVV6WUk0ODB2dkFNYjc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9kM2FiMjgtN2Y0Ny00MWYzLWIyMzEt Nzg4NDRlMTAxMTMzLzEvMVo5Q0s0clBiekFNQTk3VE1wMmJLVWZudFJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9kM2FiMjgtN2Y0Ny00MWYzLWIyMzEtNzg4NDRlMTAxMTMz LzEvVWZTd3NFYWVzTkJ4bVV6WUk0ODB2dkFNYjc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIG4BggrBgEFBQcBBwEB/wSBqDCBpTCBkwQCAAEwgYwDBAIF ZigDBAItXPADBAItghwDBAMuPBADBARA4YADBARKPwADBABb1IcwDAMEAFvUjQME AFvUjgMEAFvUlQMEAFvplgMEAFvqNQMEBHzFIAMEArkw6AMEArk0wAMEArmyVAME Arn+3AMEAMGOGwMEAMGONAMEAMGONgMEAcKSNAMEAcKSPAMEAcKYOjANBAIAAjAH AwUAKgGaoDANBgkqhkiG9w0BAQsFAAOCAQEAiltl0730TBZg309y8EXjqTRqaKFs s/MfyyeiJ1/zEjudj7s+CHrzUqfeqKLsX/bJeH8XKr+67OWWY3EPpFzGAq2oAZim 2qaCvAQudzTFOEaHUiUn8lPNH1PTFk0bdPPa2FpGkhxTMJszaUyziOEvNHkUSqhA ivmjJiM+J7st33PfWi8ThVTzgmI5qOl3EmqJadBbqgdXQASjlFf1JDiJnUXwLkoz XJuKWeg+hnmxolDa5Kt3a9NIj8tO10gxsXy6HKMn+czHkJ4M0oPd1NnwZT4FYpLA n6sEVaWE+RhLIGiAuRvELJ+JnRVMBPTITRR6pVfhN0JJ7+5CHrdk7kzP2Q== -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:51 2026 by rpki-client