This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/hS2aW8FUkBTQalOuciQCsDXmneo.roa File: hS2aW8FUkBTQalOuciQCsDXmneo.roa (raw, json) Hash identifier: Pa+owwfEnOZARjAauR/QvY9V1pwMcDiCDnFUwH+c7nw= Subject key identifier: 85:2D:9A:5B:C1:54:90:14:D0:6A:53:AE:72:24:02:B0:35:E6:9D:EA Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d Certificate serial: 019B7D5AF252F62C233183B8FBEC3067DCDD Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/hS2aW8FUkBTQalOuciQCsDXmneo.roa Signing time: Fri 02 Jan 2026 06:17:50 +0000 ROA not before: Fri 02 Jan 2026 06:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25052 IP address blocks: 31.133.101.0/24 maxlen: 24 83.229.80.0/24 maxlen: 24 83.229.81.0/24 maxlen: 24 109.207.77.0/24 maxlen: 24 109.207.78.0/24 maxlen: 24 185.162.127.0/24 maxlen: 24 185.220.206.0/24 maxlen: 24 2a06:c5c0:400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.mft rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:f2:52:f6:2c:23:31:83:b8:fb:ec:30:67:dc:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d Validity Not Before: Jan 2 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=852d9a5bc1549014d06a53ae722402b035e69dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e4:49:c5:63:e5:e2:c9:9e:a1:a6:9f:df:b1: 96:91:e9:54:1b:9a:f1:2f:a7:31:d2:a0:91:4d:27: 6d:c5:e2:e2:5a:6c:08:34:f6:40:ae:3d:03:dc:c9: 41:22:79:4f:f8:25:66:48:80:39:23:6e:cc:89:5e: 57:31:c3:fd:a4:55:e3:ec:68:27:6a:a2:58:b8:b8: 06:a2:8c:0c:14:25:54:25:9d:26:fe:02:ac:f5:94: 02:ef:42:54:f0:2e:64:61:4a:0d:d9:f7:77:e8:2b: e8:b4:e6:56:c1:2d:04:20:26:ce:77:2a:56:0f:61: f7:18:66:2f:97:95:41:1a:3c:5a:8d:0b:7b:83:34: 73:7b:39:f8:f5:75:08:12:36:e1:54:99:9b:54:e2: d4:8d:37:5d:89:ed:75:52:2d:ae:8b:0d:83:7c:5b: cc:3a:0e:25:11:f3:bc:8a:a2:7c:a5:b0:b7:d4:93: d7:02:bd:18:6f:df:d8:35:89:fc:27:72:a9:50:e5: ed:1c:c9:48:63:18:c7:d2:42:d3:0d:aa:12:41:8d: 02:7f:7c:48:10:66:36:2f:ca:5a:56:1d:2b:84:d0: 74:8c:8a:52:7f:cd:28:c6:37:8e:8e:60:d3:9e:ab: b2:19:de:c5:7b:6f:75:3c:ba:c3:82:e2:93:32:16: 82:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:2D:9A:5B:C1:54:90:14:D0:6A:53:AE:72:24:02:B0:35:E6:9D:EA X509v3 Authority Key Identifier: keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/hS2aW8FUkBTQalOuciQCsDXmneo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.133.101.0/24 83.229.80.0/23 109.207.77.0-109.207.78.255 185.162.127.0/24 185.220.206.0/24 IPv6: 2a06:c5c0:400::/48 Signature Algorithm: sha256WithRSAEncryption 71:7a:f0:f7:77:31:5b:b9:a9:91:c7:c1:38:c2:a7:2b:c6:55: 65:0f:ea:6c:bf:ec:7c:b1:57:4f:42:ed:ec:d6:8d:3f:20:94: 28:22:c9:4d:36:37:a0:f9:5d:74:86:cc:06:7b:71:3c:0a:d3: a5:f9:c9:ac:0a:03:e3:3e:d1:af:9b:60:66:6a:0d:47:21:64: 9a:2b:c0:18:73:4e:88:dd:56:d3:30:36:7f:8c:15:1a:dc:0f: b9:25:cf:a0:d9:c0:68:13:08:4b:30:b9:9f:c1:88:62:1e:5b: 44:b7:7b:1a:55:fa:85:07:b8:c1:e5:38:6e:c4:66:0e:d6:da: 1f:7b:d4:13:95:31:fe:ef:cd:52:db:d3:b8:1e:be:6c:77:90: 6b:31:72:59:81:30:fd:10:c5:9a:6f:b2:2b:7c:e4:cc:e7:b9: f4:ca:bc:03:d4:d2:69:5f:5d:74:81:33:26:55:7d:d1:49:05: 6e:67:b4:4c:11:c6:7e:e0:fa:20:22:e9:ff:ca:15:c4:ad:9c: b9:ed:35:32:c1:fd:33:fb:ff:59:de:62:6c:ff:af:d8:de:d7: 79:36:3a:e0:e9:8c:92:dd:a4:12:ce:1b:dd:0a:21:d0:cd:ee: 3a:9a:6c:19:31:d4:30:ed:c0:19:35:b2:55:bd:3b:cb:21:22: 2e:ba:2d:83 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISAZt9WvJS9iwjMYO4++wwZ9zdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4 MmVkNmQwHhcNMjYwMTAyMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTJkOWE1YmMxNTQ5MDE0ZDA2YTUzYWU3MjI0MDJiMDM1ZTY5ZGVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApORJxWPl4smeoaaf37GWkelUG5rx L6cx0qCRTSdtxeLiWmwINPZArj0D3MlBInlP+CVmSIA5I27MiV5XMcP9pFXj7Ggn aqJYuLgGoowMFCVUJZ0m/gKs9ZQC70JU8C5kYUoN2fd36CvotOZWwS0EICbOdypW D2H3GGYvl5VBGjxajQt7gzRzezn49XUIEjbhVJmbVOLUjTddie11Ui2uiw2DfFvM Og4lEfO8iqJ8pbC31JPXAr0Yb9/YNYn8J3KpUOXtHMlIYxjH0kLTDaoSQY0Cf3xI EGY2L8paVh0rhNB0jIpSf80oxjeOjmDTnquyGd7Fe291PLrDguKTMhaC/wIDAQAB o4ICOjCCAjYwHQYDVR0OBBYEFIUtmlvBVJAU0GpTrnIkArA15p3qMB8GA1UdIwQY MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut MjZkMWU1NDU3OGYxLzEvaFMyYVc4RlVrQlRRYWxPdWNpUUNzRFhtbmVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzAsBAIAATAmAwQAH4VlAwQB U+VQMAwDBABtz00DBABtz04DBAC5on8DBAC53M4wDwQCAAIwCQMHACoGxcAEADAN BgkqhkiG9w0BAQsFAAOCAQEAcXrw93cxW7mpkcfBOMKnK8ZVZQ/qbL/sfLFXT0Lt 7NaNPyCUKCLJTTY3oPlddIbMBntxPArTpfnJrAoD4z7Rr5tgZmoNRyFkmivAGHNO iN1W0zA2f4wVGtwPuSXPoNnAaBMISzC5n8GIYh5bRLd7GlX6hQe4weU4bsRmDtba H3vUE5Ux/u/NUtvTuB6+bHeQazFyWYEw/RDFmm+yK3zkzOe59Mq8A9TSaV9ddIEz JlV90UkFbme0TBHGfuD6ICLp/8oVxK2cue01MsH9M/v/Wd5ibP+v2N7XeTY64OmM kt2kEs4b3Qoh0M3uOppsGTHUMO3AGTWyVb07yyEiLrotgw== -----END CERTIFICATE-----Generated at Sun Jan 25 18:08:24 2026 by rpki-client