This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/daeXMrzEAqd38wMdJINQigPD8vc.roa File: daeXMrzEAqd38wMdJINQigPD8vc.roa (raw, json) Hash identifier: ShXlYhSSGu5MrcyXdjcPIT/W6kKn6Y3kcr0zGtEqXRw= Subject key identifier: 75:A7:97:32:BC:C4:02:A7:77:F3:03:1D:24:83:50:8A:03:C3:F2:F7 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E3946920A71E1A08A7CE263689B24D5 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/daeXMrzEAqd38wMdJINQigPD8vc.roa Signing time: Fri 02 Jan 2026 10:20:41 +0000 ROA not before: Fri 02 Jan 2026 10:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 395793 IP address blocks: 163.5.17.0/24 maxlen: 24 163.5.25.0/24 maxlen: 24 163.5.35.0/24 maxlen: 24 163.5.40.0/24 maxlen: 24 163.5.44.0/24 maxlen: 24 163.5.54.0/24 maxlen: 24 163.5.110.0/24 maxlen: 24 163.5.126.0/24 maxlen: 24 163.5.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:46:92:0a:71:e1:a0:8a:7c:e2:63:68:9b:24:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75a79732bcc402a777f3031d2483508a03c3f2f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d0:49:a1:be:c5:ec:a1:8e:3a:33:4d:4c:fa: cb:df:07:2b:78:ad:0b:18:04:fa:68:a4:e4:24:a1: bb:10:a0:9c:d2:d7:02:04:7e:dc:a1:94:e7:94:7a: cf:96:19:29:90:1a:ee:0d:50:dd:72:f0:5a:35:5c: e3:0d:b2:15:fb:5f:30:d5:95:6e:54:9f:41:26:b1: 9b:7d:30:83:75:5c:9d:3e:a5:a7:93:8f:ef:ce:df: 2c:3a:f3:08:d2:ad:67:fe:d2:b7:0f:e8:60:ff:99: 5f:e2:fc:0e:f9:34:06:ae:08:48:d1:c3:ee:d1:e5: 96:c7:0f:f7:85:6a:d9:7d:88:7d:08:05:7c:35:f0: ee:51:0f:fc:e9:fd:c6:90:69:13:94:f0:89:fd:ba: 07:cd:e7:3e:92:6b:35:1a:13:92:93:19:53:57:7b: 82:05:c6:40:f3:d9:89:e8:57:e2:f5:48:98:84:c9: 3a:c7:bc:82:a0:91:d2:0e:bf:5b:9b:74:30:d5:bf: cb:24:b5:15:40:9c:8c:87:e2:4d:56:0b:fd:06:68: 91:f3:36:ed:79:0f:35:a7:5a:c2:49:52:8a:81:c0: 6c:c6:f8:f6:a8:d2:04:fe:06:3e:58:b0:9b:95:05: 48:a9:8b:a9:5c:dd:5c:16:16:83:af:15:eb:6b:d6: 81:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A7:97:32:BC:C4:02:A7:77:F3:03:1D:24:83:50:8A:03:C3:F2:F7 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/daeXMrzEAqd38wMdJINQigPD8vc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.17.0/24 163.5.25.0/24 163.5.35.0/24 163.5.40.0/24 163.5.44.0/24 163.5.54.0/24 163.5.110.0/24 163.5.126.0/24 163.5.253.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ce:0d:b0:b4:05:1c:5d:be:08:fa:d4:c6:16:f1:ca:be:5f: 8e:fe:44:49:3d:ce:d0:ff:c1:26:81:03:3e:10:df:be:eb:c5: 40:91:d4:94:0b:b8:fd:81:20:64:55:fb:fb:3e:cb:e0:44:b4: c9:7c:95:6b:bb:8a:d2:d9:f2:4a:a0:d3:71:e9:4f:15:5f:d6: 97:02:67:ef:57:6d:0b:34:32:fe:9c:e5:7d:93:d2:71:69:53: a8:78:0b:7d:e5:19:c5:2e:19:76:b3:b1:ba:0a:69:76:eb:cf: 5c:86:27:30:2c:fb:2c:8f:0a:3c:e1:f1:eb:54:c0:ee:e8:f2: 0f:26:4b:e8:94:e3:14:4a:75:2c:87:19:09:47:ec:03:38:3a: 73:ed:81:54:92:02:31:e0:e3:82:ee:16:06:cd:bc:bc:8e:4e: ea:8e:43:cd:9b:ca:13:0b:33:41:d7:3b:60:b8:75:42:c6:c2: 76:49:d0:23:43:ff:82:32:4c:01:2e:96:93:77:6f:1e:6e:fd: 2c:c7:3d:96:f1:98:d0:ad:1a:4f:b7:8b:93:fe:5b:77:c7:3e: e7:50:d3:af:19:90:74:bb:7b:dd:a7:4b:3b:56:1a:76:51:ec: a6:79:0a:40:71:30:c5:7b:a9:bc:93:e0:2b:5c:df:29:95:0a: d5:30:ea:ea -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt+OUaSCnHhoIp84mNomyTVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWE3OTczMmJjYzQwMmE3NzdmMzAzMWQyNDgzNTA4YTAzYzNmMmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NBJob7F7KGOOjNNTPrL3wcreK0L GAT6aKTkJKG7EKCc0tcCBH7coZTnlHrPlhkpkBruDVDdcvBaNVzjDbIV+18w1ZVu VJ9BJrGbfTCDdVydPqWnk4/vzt8sOvMI0q1n/tK3D+hg/5lf4vwO+TQGrghI0cPu 0eWWxw/3hWrZfYh9CAV8NfDuUQ/86f3GkGkTlPCJ/boHzec+kms1GhOSkxlTV3uC BcZA89mJ6Ffi9UiYhMk6x7yCoJHSDr9bm3Qw1b/LJLUVQJyMh+JNVgv9BmiR8zbt eQ81p1rCSVKKgcBsxvj2qNIE/gY+WLCblQVIqYupXN1cFhaDrxXra9aBqwIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFHWnlzK8xAKnd/MDHSSDUIoDw/L3MB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvZGFlWE1yekVBcWQzOHdNZEpJTlFpZ1BEOHZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAowURAwQA owUZAwQAowUjAwQAowUoAwQAowUsAwQAowU2AwQAowVuAwQAowV+AwQAowX9MA0G CSqGSIb3DQEBCwUAA4IBAQBTzg2wtAUcXb4I+tTGFvHKvl+O/kRJPc7Q/8EmgQM+ EN++68VAkdSUC7j9gSBkVfv7PsvgRLTJfJVru4rS2fJKoNNx6U8VX9aXAmfvV20L NDL+nOV9k9JxaVOoeAt95RnFLhl2s7G6Cml2689chicwLPssjwo84fHrVMDu6PIP JkvolOMUSnUshxkJR+wDODpz7YFUkgIx4OOC7hYGzby8jk7qjkPNm8oTCzNB1ztg uHVCxsJ2SdAjQ/+CMkwBLpaTd28ebv0sxz2W8ZjQrRpPt4uT/lt3xz7nUNOvGZB0 u3vdp0s7Vhp2UeymeQpAcTDFe6m8k+ArXN8plQrVMOrq -----END CERTIFICATE-----Generated at Sun Jan 18 04:08:44 2026 by rpki-client