This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/TXiCBJhg6rq8s62hoLnMt8NNdqA.roa File: TXiCBJhg6rq8s62hoLnMt8NNdqA.roa (raw, json) Hash identifier: dZv5u22MSFRlt8p+p4LPzpv3abQs3VtRwuMkiUgQC8E= Subject key identifier: 4D:78:82:04:98:60:EA:BA:BC:B3:AD:A1:A0:B9:CC:B7:C3:4D:76:A0 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E3948047CBF83ED3B2A74C919407530 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/TXiCBJhg6rq8s62hoLnMt8NNdqA.roa Signing time: Fri 02 Jan 2026 10:20:41 +0000 ROA not before: Fri 02 Jan 2026 10:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 399486 IP address blocks: 163.5.32.0/24 maxlen: 24 163.5.64.0/24 maxlen: 24 163.5.112.0/24 maxlen: 24 163.5.160.0/24 maxlen: 24 163.5.169.0/24 maxlen: 24 163.5.210.0/24 maxlen: 24 163.5.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:48:04:7c:bf:83:ed:3b:2a:74:c9:19:40:75:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d7882049860eababcb3ada1a0b9ccb7c34d76a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f4:30:a6:5e:94:2c:c7:26:d1:a3:d8:8b:a6: eb:25:db:d1:ac:50:b0:94:f1:26:44:3d:47:77:3d: 5c:16:59:f0:22:5e:c8:6a:bc:41:7e:97:05:8e:fb: 15:8c:6c:10:d8:2d:60:21:95:c4:94:c7:9e:e8:2b: 0f:19:8b:0b:e2:8d:f3:75:27:ab:d6:e7:c2:71:2b: 95:36:30:7a:c8:05:ea:6a:67:9c:ef:d3:9c:58:59: 7a:ba:fc:5a:f0:97:3b:98:93:4d:38:5a:88:4d:85: 5a:7c:24:74:5b:e7:3b:d3:64:e2:3b:35:8c:a2:7b: dc:d2:5c:03:a0:42:f7:11:c1:68:3f:2c:bd:e1:38: 6c:24:d8:7b:c9:0c:27:2c:af:37:5e:5b:05:a3:db: 89:27:df:85:a5:5a:6b:2d:86:20:dd:bd:82:29:5b: dd:ab:be:75:e1:58:cc:04:a8:cf:93:12:3c:fd:10: 42:b8:cf:52:a8:7c:68:2f:50:76:98:1e:8b:09:ea: d6:db:88:61:3f:35:ff:d4:a2:e7:c6:e6:d3:df:9b: a8:8a:ad:fa:75:05:ed:da:78:21:7a:d6:ec:d3:10: d1:2e:f7:0e:eb:41:94:c9:cf:f0:95:55:db:98:94: ae:50:80:15:af:29:92:63:73:67:ab:10:ea:a0:6d: df:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:78:82:04:98:60:EA:BA:BC:B3:AD:A1:A0:B9:CC:B7:C3:4D:76:A0 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/TXiCBJhg6rq8s62hoLnMt8NNdqA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.32.0/24 163.5.64.0/24 163.5.112.0/24 163.5.160.0/24 163.5.169.0/24 163.5.210.0/24 163.5.221.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:f7:d5:c6:f2:dc:c3:b6:10:32:b4:f2:38:6d:b7:4c:9b:f7: fc:7e:7d:ea:b4:e1:d8:c1:9d:26:3c:df:40:c1:ff:80:05:8a: ba:74:47:f6:72:55:0b:4c:7a:0c:46:e6:12:c0:ce:5f:8c:c4: 0e:18:8b:da:ae:86:ad:7a:48:92:f5:bc:3a:bc:17:20:bf:f6: 3c:69:5b:c2:ea:48:1b:67:ec:18:27:95:aa:76:fd:35:6a:aa: b2:45:86:36:18:32:67:6e:aa:41:ad:bc:8a:08:ed:8e:b5:f3: 02:8d:a3:1c:90:df:84:b8:c6:10:6a:92:8a:76:e4:c1:ad:77: cd:75:27:38:ea:d1:cc:6b:2c:c8:11:d8:bc:c8:b4:53:a8:15: 3f:2e:46:76:3f:9d:5f:d2:61:5b:a6:de:38:c1:c7:4c:bd:19: 46:bc:56:a6:ab:2f:38:15:0d:02:41:87:2d:e9:fb:2b:d4:fa: 97:83:1c:f9:f9:80:7f:fc:73:53:3a:87:9a:e1:a4:e3:31:4c: 76:5b:06:68:2a:e2:fe:34:7d:9a:64:f8:db:a5:f4:92:49:21: ff:bc:9f:0a:2c:16:76:2b:24:b3:5d:5c:ce:6c:a1:91:e5:56: 04:63:67:ff:8e:a8:43:5f:56:df:bf:bc:c7:63:39:c7:3c:88: 07:e6:16:db -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt+OUgEfL+D7TsqdMkZQHUwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDc4ODIwNDk4NjBlYWJhYmNiM2FkYTFhMGI5Y2NiN2MzNGQ3NmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PQwpl6ULMcm0aPYi6brJdvRrFCw lPEmRD1Hdz1cFlnwIl7IarxBfpcFjvsVjGwQ2C1gIZXElMee6CsPGYsL4o3zdSer 1ufCcSuVNjB6yAXqamec79OcWFl6uvxa8Jc7mJNNOFqITYVafCR0W+c702TiOzWM onvc0lwDoEL3EcFoPyy94ThsJNh7yQwnLK83XlsFo9uJJ9+FpVprLYYg3b2CKVvd q7514VjMBKjPkxI8/RBCuM9SqHxoL1B2mB6LCerW24hhPzX/1KLnxubT35uoiq36 dQXt2nghetbs0xDRLvcO60GUyc/wlVXbmJSuUIAVrymSY3NnqxDqoG3fUQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFE14ggSYYOq6vLOtoaC5zLfDTXagMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvVFhpQ0JKaGc2cnE4czYyaG9Mbk10OE5OZHFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAowUgAwQA owVAAwQAowVwAwQAowWgAwQAowWpAwQAowXSAwQAowXdMA0GCSqGSIb3DQEBCwUA A4IBAQA899XG8tzDthAytPI4bbdMm/f8fn3qtOHYwZ0mPN9Awf+ABYq6dEf2clUL THoMRuYSwM5fjMQOGIvaroatekiS9bw6vBcgv/Y8aVvC6kgbZ+wYJ5Wqdv01aqqy RYY2GDJnbqpBrbyKCO2OtfMCjaMckN+EuMYQapKKduTBrXfNdSc46tHMayzIEdi8 yLRTqBU/LkZ2P51f0mFbpt44wcdMvRlGvFamqy84FQ0CQYct6fsr1PqXgxz5+YB/ /HNTOoea4aTjMUx2WwZoKuL+NH2aZPjbpfSSSSH/vJ8KLBZ2KySzXVzObKGR5VYE Y2f/jqhDX1bfv7zHYznHPIgH5hbb -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:01 2026 by rpki-client