This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/U55vNO8NTIZa5a2i9IljDqw3Clc.roa File: U55vNO8NTIZa5a2i9IljDqw3Clc.roa (raw, json) Hash identifier: /LHZvCmY+cBaYxmF4I6FIpvJrL++5C/ooG3K9dof7ag= Subject key identifier: 53:9E:6F:34:EF:0D:4C:86:5A:E5:AD:A2:F4:89:63:0E:AC:37:0A:57 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E3929DFC881D4222BF609802CA3337B Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/U55vNO8NTIZa5a2i9IljDqw3Clc.roa Signing time: Fri 02 Jan 2026 10:20:34 +0000 ROA not before: Fri 02 Jan 2026 10:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 132825 IP address blocks: 163.5.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:29:df:c8:81:d4:22:2b:f6:09:80:2c:a3:33:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=539e6f34ef0d4c865ae5ada2f489630eac370a57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:69:8b:67:dd:dd:b5:88:e0:2e:29:d6:7b:93: 09:f5:1d:cb:38:11:a0:a2:23:50:e2:38:50:8d:8d: d1:8d:ed:89:db:46:e4:08:dd:11:86:04:45:65:29: ea:8c:c5:98:98:ee:8e:14:a8:5f:46:46:09:29:4e: 72:ca:48:a0:ec:eb:b4:9d:3e:6a:14:f9:02:9b:6e: 54:83:d5:5b:99:bc:85:ba:82:da:cd:a0:45:9a:b9: 7e:39:39:58:de:b4:a6:6c:07:16:a3:d1:82:d6:8b: 72:6b:55:09:14:55:bd:e7:e7:b3:88:d5:16:6a:5f: 65:5c:94:fa:50:de:83:c2:cd:66:26:29:4c:5b:45: b3:fc:8e:13:54:c9:1f:31:61:94:1f:bd:7d:70:db: d7:02:6f:00:7f:2c:0b:17:ab:28:77:63:2d:87:ba: 93:12:b6:b0:74:bb:29:cc:46:d4:3c:55:b2:75:a7: c6:db:88:54:70:59:a5:52:eb:05:ef:72:11:2b:bd: cd:b5:ff:4d:93:81:99:8f:d6:87:b0:1e:9b:40:a0: 2c:52:a3:5d:b0:e7:5e:2d:c7:e5:6c:c2:b5:9b:93: 46:7b:f1:3e:40:ac:08:b4:2c:ac:b4:5d:ac:7b:cc: 6c:9e:46:64:c6:5a:eb:9a:e7:b2:cd:14:5c:b5:d9: 1c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9E:6F:34:EF:0D:4C:86:5A:E5:AD:A2:F4:89:63:0E:AC:37:0A:57 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/U55vNO8NTIZa5a2i9IljDqw3Clc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.70.0/24 Signature Algorithm: sha256WithRSAEncryption 35:8c:6f:90:ae:21:b7:3c:4a:a5:9f:de:90:d2:01:32:95:71: d2:90:5e:ad:de:ab:fc:91:b4:bf:21:6e:b6:51:47:06:a2:55: bd:66:ac:f5:3e:f7:0c:6b:87:90:3d:f7:bc:95:fd:64:7d:d8: 29:f0:e4:52:0c:54:ad:b8:f7:2b:d3:76:1d:1d:a4:af:79:7d: e0:7b:e2:ed:25:3f:02:db:8f:72:dc:cc:49:24:83:06:e8:b5: 74:ff:78:ec:f3:c8:f9:f8:80:96:38:d2:39:ba:2c:44:fb:2c: 1f:c7:2f:30:7f:f1:cb:fa:8d:f2:bc:8a:60:7d:d6:c2:f9:5a: bc:d7:49:28:d0:93:5d:72:e6:2c:db:59:bb:91:99:25:76:f4: f2:93:60:b8:46:45:77:11:94:6e:1c:83:ea:70:b7:b7:82:6c: 11:21:ae:3d:dc:c7:a2:9a:6a:05:45:89:9e:02:53:8b:2f:e1: 83:44:14:95:e4:6a:ca:1d:d0:e3:23:83:bf:6d:78:97:8e:44: da:a3:53:cf:7a:49:d7:d7:62:ee:8f:7e:16:9a:10:4c:06:b2: b6:17:8f:7a:6f:31:f9:14:f2:7a:35:a2:13:86:23:0c:34:2d: e1:2b:58:c5:29:cd:96:b4:3c:a6:01:6b:e6:6f:15:d7:b7:0f: 21:b1:d3:67 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OSnfyIHUIiv2CYAsozN7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MzllNmYzNGVmMGQ0Yzg2NWFlNWFkYTJmNDg5NjMwZWFjMzcwYTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGmLZ93dtYjgLinWe5MJ9R3LOBGg oiNQ4jhQjY3Rje2J20bkCN0RhgRFZSnqjMWYmO6OFKhfRkYJKU5yykig7Ou0nT5q FPkCm25Ug9VbmbyFuoLazaBFmrl+OTlY3rSmbAcWo9GC1otya1UJFFW95+eziNUW al9lXJT6UN6Dws1mJilMW0Wz/I4TVMkfMWGUH719cNvXAm8AfywLF6sod2Mth7qT ErawdLspzEbUPFWydafG24hUcFmlUusF73IRK73Ntf9Nk4GZj9aHsB6bQKAsUqNd sOdeLcflbMK1m5NGe/E+QKwItCystF2se8xsnkZkxlrrmueyzRRctdkcAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFOebzTvDUyGWuWtovSJYw6sNwpXMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvVTU1dk5POE5USVphNWEyaTlJbGpEcXczQ2xjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowVGMA0G CSqGSIb3DQEBCwUAA4IBAQA1jG+QriG3PEqln96Q0gEylXHSkF6t3qv8kbS/IW62 UUcGolW9Zqz1PvcMa4eQPfe8lf1kfdgp8ORSDFStuPcr03YdHaSveX3ge+LtJT8C 249y3MxJJIMG6LV0/3js88j5+ICWONI5uixE+ywfxy8wf/HL+o3yvIpgfdbC+Vq8 10ko0JNdcuYs21m7kZkldvTyk2C4RkV3EZRuHIPqcLe3gmwRIa493MeimmoFRYme AlOLL+GDRBSV5GrKHdDjI4O/bXiXjkTao1PPeknX12Luj34WmhBMBrK2F496bzH5 FPJ6NaIThiMMNC3hK1jFKc2WtDymAWvmbxXXtw8hsdNn -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:22 2026 by rpki-client