This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/V1fv0PRZ5CpDWPPvRu478iyPQ9I.roa File: V1fv0PRZ5CpDWPPvRu478iyPQ9I.roa (raw, json) Hash identifier: 0Z0tmwu4tKJJi1mKZlQiQ2SWuiQ8eE4d6/mfucGJ7uA= Subject key identifier: 57:57:EF:D0:F4:59:E4:2A:43:58:F3:EF:46:EE:3B:F2:2C:8F:43:D2 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E3924D649BB7116BDB726F51AC2AA5C Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/V1fv0PRZ5CpDWPPvRu478iyPQ9I.roa Signing time: Fri 02 Jan 2026 10:20:32 +0000 ROA not before: Fri 02 Jan 2026 10:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55720 IP address blocks: 163.5.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:24:d6:49:bb:71:16:bd:b7:26:f5:1a:c2:aa:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5757efd0f459e42a4358f3ef46ee3bf22c8f43d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bf:53:52:d0:ce:68:82:ea:2a:da:de:5d:dc: 8a:62:da:e2:7c:4f:5f:f7:24:a7:7f:e5:c4:82:74: 64:a3:89:69:60:5d:0c:19:c5:97:fc:00:ae:91:f4: 36:5d:d7:77:c7:31:9e:1b:82:63:ad:93:be:b6:4d: 5a:57:00:3b:41:67:ce:9d:ef:b1:57:39:7a:8b:dc: 46:85:aa:4b:92:05:40:bc:34:24:56:45:1b:7c:57: 2f:9d:ac:00:ce:74:3c:0f:a8:fa:11:46:53:3b:ea: b9:45:69:6d:31:45:e5:b8:11:be:24:72:56:7f:de: 91:f1:00:35:0c:5c:68:95:08:02:5a:c4:80:ee:28: 1f:1d:18:8e:a6:2b:ac:3a:8a:70:17:76:21:8a:a0: f6:29:4e:b1:54:db:02:68:91:96:00:e9:79:b3:74: 87:e3:28:34:a8:7d:97:13:c1:02:ca:21:8d:66:a3: 8b:e4:03:39:14:05:3c:6e:a8:3a:ea:2c:b0:8a:f7: 0c:d9:bd:1b:6b:98:24:b2:f1:4c:73:b3:e8:86:d5: bb:1e:2e:8e:87:9a:a5:aa:51:70:92:79:94:06:a9: 50:fa:db:4b:48:18:7e:3a:ec:5d:54:e7:c8:44:82: a5:cd:60:c4:63:cb:5a:07:21:83:09:39:a6:03:9b: ba:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:57:EF:D0:F4:59:E4:2A:43:58:F3:EF:46:EE:3B:F2:2C:8F:43:D2 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/V1fv0PRZ5CpDWPPvRu478iyPQ9I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.139.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:a5:b1:3e:d5:44:b3:d2:b1:78:34:71:98:0c:92:fe:f4:48: a9:6d:a5:c5:9e:d2:5c:5e:4a:11:6c:45:c2:24:53:ab:97:7d: 53:88:dd:13:22:7c:44:74:56:70:7f:09:a1:6f:d6:23:6a:1a: 01:58:97:63:bb:8b:6e:21:0c:9d:69:2b:72:b4:30:81:73:45: a3:16:63:88:9f:3f:90:af:98:c0:af:57:e1:59:97:9c:dd:46: c5:e3:cb:45:e9:3c:7f:8d:f0:64:5e:28:d9:3b:dc:15:5e:3b: 9b:81:87:0e:30:5b:58:84:c7:4d:05:23:cd:99:5f:cf:3c:e5: e8:7f:a0:14:b1:4e:d1:9c:22:d2:33:1e:61:e4:11:c6:c2:68: c5:ed:0b:84:ee:60:b6:2c:29:85:41:57:ca:8c:5c:a1:2b:f2: f1:e9:5a:a0:17:6b:dd:94:ae:59:fd:ad:03:5a:c9:ec:58:1b: 72:d9:09:42:86:3c:97:2b:ad:46:34:3b:8c:d2:bc:24:9b:fc: a7:b0:30:d6:47:f2:97:6a:31:09:f4:e2:26:91:5a:43:2b:3d: 2f:9b:04:ae:e6:4b:9a:71:42:7f:d3:3f:62:c9:f8:32:15:21: a2:f6:e1:1b:6a:68:10:54:c6:37:51:4f:3b:73:35:07:cc:dd: 2d:44:28:ac -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OSTWSbtxFr23JvUawqpcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NzU3ZWZkMGY0NTllNDJhNDM1OGYzZWY0NmVlM2JmMjJjOGY0M2QyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo79TUtDOaILqKtreXdyKYtrifE9f 9ySnf+XEgnRko4lpYF0MGcWX/ACukfQ2Xdd3xzGeG4JjrZO+tk1aVwA7QWfOne+x Vzl6i9xGhapLkgVAvDQkVkUbfFcvnawAznQ8D6j6EUZTO+q5RWltMUXluBG+JHJW f96R8QA1DFxolQgCWsSA7igfHRiOpiusOopwF3YhiqD2KU6xVNsCaJGWAOl5s3SH 4yg0qH2XE8ECyiGNZqOL5AM5FAU8bqg66iywivcM2b0ba5gksvFMc7PohtW7Hi6O h5qlqlFwknmUBqlQ+ttLSBh+OuxdVOfIRIKlzWDEY8taByGDCTmmA5u6+QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFdX79D0WeQqQ1jz70buO/Isj0PSMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvVjFmdjBQUlo1Q3BEV1BQdlJ1NDc4aXlQUTlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWLMA0G CSqGSIb3DQEBCwUAA4IBAQBMpbE+1USz0rF4NHGYDJL+9EipbaXFntJcXkoRbEXC JFOrl31TiN0TInxEdFZwfwmhb9YjahoBWJdju4tuIQydaStytDCBc0WjFmOInz+Q r5jAr1fhWZec3UbF48tF6Tx/jfBkXijZO9wVXjubgYcOMFtYhMdNBSPNmV/PPOXo f6AUsU7RnCLSMx5h5BHGwmjF7QuE7mC2LCmFQVfKjFyhK/Lx6VqgF2vdlK5Z/a0D WsnsWBty2QlChjyXK61GNDuM0rwkm/ynsDDWR/KXajEJ9OImkVpDKz0vmwSu5kua cUJ/0z9iyfgyFSGi9uEbamgQVMY3UU87czUHzN0tRCis -----END CERTIFICATE-----Generated at Sun Jan 18 04:08:30 2026 by rpki-client