This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/Lj4vCV3CzpslBrQs2uQPQz0J-lI.roa File: Lj4vCV3CzpslBrQs2uQPQz0J-lI.roa (raw, json) Hash identifier: 4PkaGjUOJQRMD/3HjoXORV26Z0v+UJe+d4n4F+P5Bew= Subject key identifier: 2E:3E:2F:09:5D:C2:CE:9B:25:06:B4:2C:DA:E4:0F:43:3D:09:FA:52 Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B7C115AABF7473447E6B02DBB98B92779 Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/Lj4vCV3CzpslBrQs2uQPQz0J-lI.roa Signing time: Fri 02 Jan 2026 00:17:50 +0000 ROA not before: Fri 02 Jan 2026 00:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200845 IP address blocks: 5.40.32.0/23 maxlen: 24 5.40.32.0/24 maxlen: 24 5.40.33.0/24 maxlen: 24 5.40.86.0/24 maxlen: 24 5.40.128.0/24 maxlen: 24 5.40.191.0/24 maxlen: 24 5.40.252.0/24 maxlen: 24 62.82.84.0/24 maxlen: 24 62.82.238.0/24 maxlen: 24 62.175.202.0/24 maxlen: 24 84.124.116.0/24 maxlen: 24 89.140.40.0/23 maxlen: 24 89.140.112.0/24 maxlen: 24 89.140.120.0/24 maxlen: 24 89.140.122.0/24 maxlen: 24 89.140.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:5a:ab:f7:47:34:47:e6:b0:2d:bb:98:b9:27:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Jan 2 00:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e3e2f095dc2ce9b2506b42cdae40f433d09fa52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:c5:a6:0b:24:2a:87:6a:38:2f:59:89:96:94: ba:40:ca:48:92:c2:68:a9:06:48:49:ce:6b:18:9c: d9:76:81:51:c1:b0:a1:df:ce:17:9c:5e:ff:c3:3e: 4a:97:9a:f5:60:cc:aa:6a:7d:9f:47:5d:af:68:06: 6b:89:1d:9f:12:5c:95:c8:48:a4:1e:5f:e4:15:be: 32:f9:7a:05:26:69:f3:d4:e4:69:6e:32:74:9c:ca: 24:5d:9a:b0:84:77:6f:72:78:e2:bb:35:6a:81:68: f0:b8:2f:45:2c:d1:44:1d:85:50:64:42:69:c2:15: 3c:0e:fa:39:a1:54:2c:86:41:f9:59:93:16:77:00: 29:00:6e:75:03:c7:12:c7:6f:36:10:8b:ec:7f:62: 88:80:3d:a7:d1:1e:9d:ff:c9:f5:52:07:c3:6b:01: 43:92:a5:ce:17:d8:ff:8c:7d:a1:45:b8:2d:07:35: 62:6a:f0:ae:34:81:cb:17:a1:92:de:b7:e9:0a:76: df:f4:6b:92:7f:7d:ab:98:b0:15:25:4e:3f:1b:a3: b3:bc:76:73:3c:e1:2c:52:b0:05:78:ec:62:d7:ad: f3:2a:b4:a0:4e:43:ce:d9:c2:a3:18:9d:34:2e:67: fa:6e:52:e9:43:12:56:6a:22:28:cb:5e:b6:72:25: b9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:3E:2F:09:5D:C2:CE:9B:25:06:B4:2C:DA:E4:0F:43:3D:09:FA:52 X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/Lj4vCV3CzpslBrQs2uQPQz0J-lI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.40.32.0/23 5.40.86.0/24 5.40.128.0/24 5.40.191.0/24 5.40.252.0/24 62.82.84.0/24 62.82.238.0/24 62.175.202.0/24 84.124.116.0/24 89.140.40.0/23 89.140.112.0/24 89.140.120.0/24 89.140.122.0/24 89.140.197.0/24 Signature Algorithm: sha256WithRSAEncryption 53:22:b7:21:d8:61:74:c2:aa:e5:20:db:82:0d:8a:13:53:31: b9:37:d7:04:f2:b7:bd:f2:62:3d:38:d3:ce:c3:65:47:b2:e8: 24:03:07:7d:5a:9e:22:59:28:8b:a6:a1:b2:1f:44:95:d9:37: 5a:c0:48:6d:3b:b2:7f:ac:a1:a5:ff:0d:90:17:90:b8:3f:18: 1d:84:ca:73:55:da:bb:e4:64:02:bc:06:f2:20:e0:b3:79:ea: cb:c7:7f:86:8a:b6:1a:f6:2d:e3:e3:eb:b8:7c:a6:3f:14:25: 7f:49:02:0f:29:d9:1c:1e:92:94:65:db:27:84:c2:29:cd:e9: a4:d1:f3:b6:5c:a8:c6:ae:c7:54:79:71:20:59:5d:c4:ba:ec: 18:0e:24:9d:e8:cc:1e:9d:00:d0:a3:34:3c:27:1f:29:a1:ad: ad:74:86:88:6e:99:a3:02:27:4a:51:81:d6:36:4a:45:a8:08: 5e:ea:a3:d0:db:fc:12:f2:3f:4e:4e:88:48:49:67:2e:53:c9: 5c:af:70:13:c2:ea:b5:b8:d2:d0:7d:e2:5f:dd:96:1f:f5:8b: d8:b0:cf:a0:62:3f:a8:e7:f1:92:e4:9f:dd:28:50:5d:bc:2c: f9:aa:2a:06:6d:c3:3e:cb:d9:91:7c:9f:3c:8d:1b:35:e1:39: bb:59:54:51 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZt8EVqr90c0R+awLbuYuSd5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjYwMTAyMDAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTNlMmYwOTVkYzJjZTliMjUwNmI0MmNkYWU0MGY0MzNkMDlmYTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8WmCyQqh2o4L1mJlpS6QMpIksJo qQZISc5rGJzZdoFRwbCh384XnF7/wz5Kl5r1YMyqan2fR12vaAZriR2fElyVyEik Hl/kFb4y+XoFJmnz1ORpbjJ0nMokXZqwhHdvcnjiuzVqgWjwuC9FLNFEHYVQZEJp whU8Dvo5oVQshkH5WZMWdwApAG51A8cSx282EIvsf2KIgD2n0R6d/8n1UgfDawFD kqXOF9j/jH2hRbgtBzViavCuNIHLF6GS3rfpCnbf9GuSf32rmLAVJU4/G6OzvHZz POEsUrAFeOxi163zKrSgTkPO2cKjGJ00Lmf6blLpQxJWaiIoy162ciW5JwIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFC4+Lwldws6bJQa0LNrkD0M9CfpSMB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvTGo0dkNWM0N6cHNsQnJRczJ1UVBRejBKLWxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQBBSggAwQA BShWAwQABSiAAwQABSi/AwQABSj8AwQAPlJUAwQAPlLuAwQAPq/KAwQAVHx0AwQB WYwoAwQAWYxwAwQAWYx4AwQAWYx6AwQAWYzFMA0GCSqGSIb3DQEBCwUAA4IBAQBT Irch2GF0wqrlINuCDYoTUzG5N9cE8re98mI9ONPOw2VHsugkAwd9Wp4iWSiLpqGy H0SV2TdawEhtO7J/rKGl/w2QF5C4PxgdhMpzVdq75GQCvAbyIOCzeerLx3+GirYa 9i3j4+u4fKY/FCV/SQIPKdkcHpKUZdsnhMIpzemk0fO2XKjGrsdUeXEgWV3EuuwY DiSd6MwenQDQozQ8Jx8poa2tdIaIbpmjAidKUYHWNkpFqAhe6qPQ2/wS8j9OTohI SWcuU8lcr3ATwuq1uNLQfeJf3ZYf9YvYsM+gYj+o5/GS5J/dKFBdvCz5qioGbcM+ y9mRfJ88jRs14Tm7WVRR -----END CERTIFICATE-----Generated at Sun Jan 25 13:07:35 2026 by rpki-client