This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/cGR-cZXHq1SVvLMV3yudMjgOmWE.roa File: cGR-cZXHq1SVvLMV3yudMjgOmWE.roa (raw, json) Hash identifier: 5J+DPS65ZibV4JHjVNRUad5cnyzzDzeOQ+1szjLfH/U= Subject key identifier: 70:64:7E:71:95:C7:AB:54:95:BC:B3:15:DF:2B:9D:32:38:0E:99:61 Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B7C115CEBDB21E9314C8396589AA50B0C Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/cGR-cZXHq1SVvLMV3yudMjgOmWE.roa Signing time: Fri 02 Jan 2026 00:17:51 +0000 ROA not before: Fri 02 Jan 2026 00:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206487 IP address blocks: 5.40.18.0/24 maxlen: 24 5.40.41.0/24 maxlen: 24 5.40.80.0/23 maxlen: 24 5.40.85.0/24 maxlen: 24 5.40.106.0/24 maxlen: 24 5.40.136.0/24 maxlen: 24 5.40.138.0/24 maxlen: 24 5.40.149.0/24 maxlen: 24 5.40.156.0/24 maxlen: 24 5.40.244.0/24 maxlen: 24 5.40.253.0/24 maxlen: 24 62.82.50.0/24 maxlen: 24 62.82.158.0/24 maxlen: 24 62.174.66.0/24 maxlen: 24 62.175.252.0/24 maxlen: 24 62.175.253.0/24 maxlen: 24 89.140.16.0/23 maxlen: 24 95.39.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:5c:eb:db:21:e9:31:4c:83:96:58:9a:a5:0b:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Jan 2 00:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=70647e7195c7ab5495bcb315df2b9d32380e9961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:36:32:56:16:7a:90:21:03:8b:01:25:cd:57: 7c:ed:2c:3d:55:dd:cb:26:78:61:6f:0a:f7:13:7e: 29:9a:85:c6:14:12:25:d1:f1:08:75:9d:6f:08:a6: 79:3c:3b:89:50:2d:c5:7f:17:b9:a4:7e:a6:55:cf: d4:ff:a5:c6:f0:3e:4c:8b:f8:7d:e5:a5:cb:68:50: 94:14:c6:48:dc:ba:9a:dc:81:2b:59:76:90:3c:ab: 98:10:9e:8d:8e:77:79:04:5b:c6:0d:ff:80:07:2f: d6:b4:6a:a5:de:f7:10:fe:5f:82:7e:c7:a7:54:a2: f0:6e:c0:e3:d4:e0:fc:e6:77:49:e4:fa:00:38:f7: 42:83:16:b6:e6:cd:14:01:35:1d:e8:09:26:23:b5: f1:64:4f:55:bc:4f:c8:75:29:fd:dd:6b:b7:f2:08: 61:cb:0e:a2:33:3d:96:da:8e:c8:ab:40:ef:6b:d7: 5f:b4:3b:8e:6f:52:84:98:98:44:23:e4:0b:9e:2a: 22:cc:cd:03:10:bc:f5:f4:0d:6b:b8:0a:07:13:cb: 82:a0:b9:02:b2:58:1c:db:2a:41:81:b5:89:1e:a7: 04:74:c3:f5:83:35:ef:ab:c3:5d:42:40:53:68:7a: 46:67:64:f9:b1:02:84:b9:cb:b8:b1:61:b6:93:47: 75:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:64:7E:71:95:C7:AB:54:95:BC:B3:15:DF:2B:9D:32:38:0E:99:61 X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/cGR-cZXHq1SVvLMV3yudMjgOmWE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.40.18.0/24 5.40.41.0/24 5.40.80.0/23 5.40.85.0/24 5.40.106.0/24 5.40.136.0/24 5.40.138.0/24 5.40.149.0/24 5.40.156.0/24 5.40.244.0/24 5.40.253.0/24 62.82.50.0/24 62.82.158.0/24 62.174.66.0/24 62.175.252.0/23 89.140.16.0/23 95.39.61.0/24 Signature Algorithm: sha256WithRSAEncryption 71:4c:96:3a:af:ed:02:62:89:ac:b4:e4:23:c7:ac:8e:c9:45: 87:d2:61:3a:b3:68:9f:51:f5:06:09:f7:3a:13:e0:4c:e8:d2: d4:44:e2:2d:78:50:30:6f:c5:70:c9:c3:af:a6:35:ae:d3:6c: c7:99:78:a1:98:26:35:47:dc:62:fd:cb:0a:c2:c8:2d:09:54: 90:d3:44:75:4b:61:a5:c3:ad:f6:23:8e:3e:a6:c1:c9:81:62: 40:e5:b0:f2:cb:1d:4b:7e:ff:c8:ef:a0:7e:cc:a6:88:bf:c5: 4b:0b:66:71:a6:10:dc:8b:1c:c2:7e:7b:09:c7:20:cc:bf:73: c5:69:de:3c:20:ac:2c:c4:bf:5e:04:d3:aa:fa:2e:4a:cd:af: 85:ca:3f:10:f9:e7:62:c3:e9:ad:30:a7:58:f9:88:1f:43:77: 28:45:08:d2:08:2a:6a:66:b9:b1:9b:73:1e:f5:be:cf:6b:85: 34:f3:3a:b3:f0:6c:78:e5:b4:70:24:84:e4:a4:97:6f:d1:d9: b9:4a:b8:21:f7:ec:f1:51:16:66:97:0f:bf:6b:24:cc:6f:f3: 39:75:1a:2e:c8:49:33:2b:e3:7c:0a:e6:0a:6d:f5:70:5d:e8: 1b:2f:b8:6d:41:31:e9:95:64:26:97:f8:2d:fa:41:ff:26:ab: 82:e3:eb:60 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgISAZt8EVzr2yHpMUyDlliapQsMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjYwMTAyMDAxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDY0N2U3MTk1YzdhYjU0OTViY2IzMTVkZjJiOWQzMjM4MGU5OTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTYyVhZ6kCEDiwElzVd87Sw9Vd3L Jnhhbwr3E34pmoXGFBIl0fEIdZ1vCKZ5PDuJUC3Ffxe5pH6mVc/U/6XG8D5Mi/h9 5aXLaFCUFMZI3Lqa3IErWXaQPKuYEJ6Njnd5BFvGDf+ABy/WtGql3vcQ/l+Cfsen VKLwbsDj1OD85ndJ5PoAOPdCgxa25s0UATUd6AkmI7XxZE9VvE/IdSn93Wu38ghh yw6iMz2W2o7Iq0Dva9dftDuOb1KEmJhEI+QLnioizM0DELz19A1ruAoHE8uCoLkC slgc2ypBgbWJHqcEdMP1gzXvq8NdQkBTaHpGZ2T5sQKEucu4sWG2k0d1IQIDAQAB o4ICaTCCAmUwHQYDVR0OBBYEFHBkfnGVx6tUlbyzFd8rnTI4DplhMB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvY0dSLWNaWEhxMVNWdkxNVjN5dWRNamdPbVdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQABSgSAwQA BSgpAwQBBShQAwQABShVAwQABShqAwQABSiIAwQABSiKAwQABSiVAwQABSicAwQA BSj0AwQABSj9AwQAPlIyAwQAPlKeAwQAPq5CAwQBPq/8AwQBWYwQAwQAXyc9MA0G CSqGSIb3DQEBCwUAA4IBAQBxTJY6r+0CYomstOQjx6yOyUWH0mE6s2ifUfUGCfc6 E+BM6NLUROIteFAwb8VwycOvpjWu02zHmXihmCY1R9xi/csKwsgtCVSQ00R1S2Gl w632I44+psHJgWJA5bDyyx1Lfv/I76B+zKaIv8VLC2ZxphDcixzCfnsJxyDMv3PF ad48IKwsxL9eBNOq+i5Kza+Fyj8Q+ediw+mtMKdY+YgfQ3coRQjSCCpqZrmxm3Me 9b7Pa4U08zqz8Gx45bRwJITkpJdv0dm5Srgh9+zxURZmlw+/ayTMb/M5dRouyEkz K+N8CuYKbfVwXegbL7htQTHplWQml/gt+kH/JquC4+tg -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:03 2026 by rpki-client