This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A1zyFiQ06OqJaxRn4ysNLuK7kMg.roa File: A1zyFiQ06OqJaxRn4ysNLuK7kMg.roa (raw, json) Hash identifier: rRzPdkvcXuJue2JpZIhgZxczCCZjP/lzOhJ9D67FXII= Subject key identifier: 03:5C:F2:16:24:34:E8:EA:89:6B:14:67:E3:2B:0D:2E:E2:BB:90:C8 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E392128E47C0BDDD994627CDD2654FC Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A1zyFiQ06OqJaxRn4ysNLuK7kMg.roa Signing time: Fri 02 Jan 2026 10:20:31 +0000 ROA not before: Fri 02 Jan 2026 10:20:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40676 IP address blocks: 163.5.82.0/24 maxlen: 24 163.5.99.0/24 maxlen: 24 163.5.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:21:28:e4:7c:0b:dd:d9:94:62:7c:dd:26:54:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=035cf2162434e8ea896b1467e32b0d2ee2bb90c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:91:d9:3a:f1:d1:a0:41:66:4a:7f:34:a8:25: 2a:7e:83:b8:d0:df:01:12:f5:0b:cb:16:53:09:3f: 01:93:48:ef:a0:78:00:49:0c:93:10:9b:0d:fc:72: 05:9d:f5:63:8b:44:04:1d:3b:ff:56:86:d6:58:d9: b4:5d:5a:ba:62:18:b2:bd:e2:e5:d6:19:9c:1d:d8: 66:7b:c1:92:71:e6:62:ac:e6:73:1d:ba:89:3d:c6: 35:29:35:1b:cf:64:1b:ea:44:00:98:ce:c5:06:e7: f1:bc:72:e3:6f:11:e1:c3:c2:36:2d:d7:1a:3b:fb: f7:be:8d:f8:67:9b:7f:74:93:f1:28:32:92:50:df: 13:c2:a1:c3:dd:46:62:c1:d2:bf:42:7e:3a:ab:99: 4f:a4:ca:f8:cc:7a:0d:ea:b1:b6:ec:c0:8e:fc:af: fc:d9:96:db:3e:ac:21:0c:96:7a:18:68:e8:bf:82: 08:9a:38:c7:2a:a5:fe:9c:4e:16:a9:95:59:be:23: d0:8b:41:52:a4:28:68:7d:cc:0a:d1:88:d6:94:4f: 37:c5:18:c0:6d:d4:4e:b7:bb:8d:2f:83:40:4d:0d: bf:17:07:f7:d7:b0:d6:20:99:29:a9:dd:c5:30:56: 66:d4:1a:48:16:fe:0c:45:42:3d:bd:22:d8:f6:30: 71:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5C:F2:16:24:34:E8:EA:89:6B:14:67:E3:2B:0D:2E:E2:BB:90:C8 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A1zyFiQ06OqJaxRn4ysNLuK7kMg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.82.0/24 163.5.99.0/24 163.5.202.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:d6:66:87:64:1b:a2:c9:f3:22:5c:0f:5a:b1:df:9f:89:2e: fa:a5:32:59:d1:6a:c0:ba:44:e3:0c:17:cf:96:ee:46:5f:72: ee:38:23:d9:b4:5e:b1:1f:b9:55:32:71:5e:8b:7c:60:fd:29: 9e:b2:ec:95:59:92:21:1b:40:f2:6f:84:fd:ae:62:7a:5f:13: 2a:9d:a4:d6:fc:d0:1a:b1:41:c6:1e:18:4d:69:41:86:65:e1: 5c:df:90:c5:3b:1a:c8:7f:6a:38:30:e0:86:04:55:ac:e3:b7: 23:22:e0:a6:59:36:2b:40:46:66:65:0a:88:83:4f:15:8a:ae: 66:88:9a:59:68:3b:35:31:69:ad:e5:96:1f:8e:4f:13:9f:ce: b2:42:35:52:fd:ae:24:ec:b1:4e:f1:3e:fc:4f:b1:37:32:a3: 11:75:52:9d:56:80:ca:56:f2:76:fb:2f:f8:9f:74:7b:21:b7: 6f:91:be:e2:88:d9:ab:17:13:1e:7c:bb:37:f3:bd:7e:de:f7: c8:64:10:36:6b:45:80:89:0c:b1:55:85:bc:87:7a:08:8e:d6: c3:8d:e8:d1:45:91:fc:0a:89:a9:7e:b4:6e:a4:b3:cb:5c:93: 16:4e:31:06:e3:1e:91:53:84:a5:9e:31:63:6e:37:84:ba:e9: d5:91:cc:75 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt+OSEo5HwL3dmUYnzdJlT8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzVjZjIxNjI0MzRlOGVhODk2YjE0NjdlMzJiMGQyZWUyYmI5MGM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpHZOvHRoEFmSn80qCUqfoO40N8B EvULyxZTCT8Bk0jvoHgASQyTEJsN/HIFnfVji0QEHTv/VobWWNm0XVq6YhiyveLl 1hmcHdhme8GSceZirOZzHbqJPcY1KTUbz2Qb6kQAmM7FBufxvHLjbxHhw8I2Ldca O/v3vo34Z5t/dJPxKDKSUN8TwqHD3UZiwdK/Qn46q5lPpMr4zHoN6rG27MCO/K/8 2ZbbPqwhDJZ6GGjov4IImjjHKqX+nE4WqZVZviPQi0FSpChofcwK0YjWlE83xRjA bdROt7uNL4NATQ2/Fwf317DWIJkpqd3FMFZm1BpIFv4MRUI9vSLY9jBx6QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFANc8hYkNOjqiWsUZ+MrDS7iu5DIMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvQTF6eUZpUTA2T3FKYXhSbjR5c05MdUs3a01nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAowVSAwQA owVjAwQAowXKMA0GCSqGSIb3DQEBCwUAA4IBAQCa1maHZBuiyfMiXA9asd+fiS76 pTJZ0WrAukTjDBfPlu5GX3LuOCPZtF6xH7lVMnFei3xg/SmesuyVWZIhG0Dyb4T9 rmJ6XxMqnaTW/NAasUHGHhhNaUGGZeFc35DFOxrIf2o4MOCGBFWs47cjIuCmWTYr QEZmZQqIg08Viq5miJpZaDs1MWmt5ZYfjk8Tn86yQjVS/a4k7LFO8T78T7E3MqMR dVKdVoDKVvJ2+y/4n3R7Ibdvkb7iiNmrFxMefLs3871+3vfIZBA2a0WAiQyxVYW8 h3oIjtbDjejRRZH8CompfrRupLPLXJMWTjEG4x6RU4SlnjFjbjeEuunVkcx1 -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:43 2026 by rpki-client