This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/lD1ppSJGIrbcHjRyH32pcjQWSQg.roa File: lD1ppSJGIrbcHjRyH32pcjQWSQg.roa (raw, json) Hash identifier: N+lDDGuiH0S3zoN1v2Vqq3xbhxTDBYY6pTqkIDA5Q38= Subject key identifier: 94:3D:69:A5:22:46:22:B6:DC:1E:34:72:1F:7D:A9:72:34:16:49:08 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E390D20453D9758A9B47B39B37CF827 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/lD1ppSJGIrbcHjRyH32pcjQWSQg.roa Signing time: Fri 02 Jan 2026 10:20:26 +0000 ROA not before: Fri 02 Jan 2026 10:20:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5065 IP address blocks: 163.5.72.0/24 maxlen: 24 163.5.77.0/24 maxlen: 24 163.5.158.0/24 maxlen: 24 163.5.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 04:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:0d:20:45:3d:97:58:a9:b4:7b:39:b3:7c:f8:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=943d69a5224622b6dc1e34721f7da97234164908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0f:56:99:60:dc:73:df:37:9f:81:3b:b3:8e: de:45:ec:98:aa:ae:9e:31:f1:ca:a2:dd:de:74:65: 1e:f2:86:7f:20:13:39:8c:6c:76:cf:a9:8b:c3:96: a7:6f:86:19:43:a5:0e:3b:73:3f:d9:eb:dc:8f:af: 2b:97:ab:61:4f:2d:13:f7:8c:ae:16:c9:e6:4c:2e: 28:ed:b1:35:a9:03:48:91:c4:52:82:17:7e:1d:7a: 1c:f3:0a:55:d2:41:da:52:75:d7:cd:81:ed:22:92: b4:2a:bd:2c:67:8e:e7:a7:bc:d5:5b:68:4c:a3:a3: 49:c8:36:fe:5c:24:36:42:e2:ad:b6:87:7a:47:19: f8:0f:43:1c:95:97:af:e0:5d:6a:a6:13:d3:86:70: 18:e1:43:1c:0c:61:32:37:e9:35:ba:95:f9:fb:c1: 3e:a6:2c:70:16:d5:90:4d:2a:20:65:81:95:03:64: dd:47:8c:df:d8:dd:ae:61:03:7b:1d:e6:9e:8f:d8: 7a:fe:f0:3d:c6:99:d9:9e:9e:29:c4:f5:dc:3d:7d: 6b:05:a1:80:16:4e:22:52:40:07:28:b2:49:8f:48: 6b:96:1a:93:b5:4d:c6:33:a2:cc:53:e1:d1:b3:18: 73:8c:5e:b7:63:b0:1e:6f:85:d8:3f:cc:06:27:13: c7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3D:69:A5:22:46:22:B6:DC:1E:34:72:1F:7D:A9:72:34:16:49:08 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/lD1ppSJGIrbcHjRyH32pcjQWSQg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.72.0/24 163.5.77.0/24 163.5.158.0/24 163.5.163.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:73:dc:fd:ba:d7:68:13:9e:fb:8f:14:94:04:68:76:dc:02: c9:7e:e8:a5:65:c3:88:20:eb:4c:2b:fe:cb:6a:ba:1f:f5:8e: a3:43:2f:60:25:8e:49:92:ad:56:e5:3d:53:e8:e3:cc:77:6c: bc:a0:99:8c:40:73:d5:0f:48:5d:8d:1f:56:8b:39:08:5d:f8: 5e:84:be:99:20:33:07:17:90:31:f7:92:4d:96:ca:c8:42:07: 4d:f7:33:98:60:d0:b3:db:57:3f:42:a4:a6:73:d6:1d:df:80: 2e:28:4a:3e:f7:b0:4e:ea:e2:35:ad:cf:49:56:69:d9:ab:7f: 90:65:2e:76:92:d7:03:ef:2c:6e:df:50:c0:6e:28:2c:b8:dd: 6c:6e:83:f7:a4:28:9b:37:c7:bf:52:43:a8:87:14:77:45:40: c4:74:5b:93:fd:0a:45:40:b5:5f:33:cd:00:fc:cd:35:bb:83: 61:07:ad:2b:ff:6a:10:29:52:57:6f:31:82:ee:a4:a1:0c:6d: 55:9a:c8:64:fe:f5:47:e9:b3:bb:bb:fa:47:64:f5:d1:67:63: e9:45:05:1d:a3:b2:84:71:04:15:45:de:94:6f:bb:34:9b:1b: cf:4c:2f:e4:3d:ef:e4:f3:6f:c4:b9:f7:d7:bf:7f:3f:7b:c7: 84:c6:29:77 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt+OQ0gRT2XWKm0ezmzfPgnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDNkNjlhNTIyNDYyMmI2ZGMxZTM0NzIxZjdkYTk3MjM0MTY0OTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtA9WmWDcc983n4E7s47eReyYqq6e MfHKot3edGUe8oZ/IBM5jGx2z6mLw5anb4YZQ6UOO3M/2evcj68rl6thTy0T94yu FsnmTC4o7bE1qQNIkcRSghd+HXoc8wpV0kHaUnXXzYHtIpK0Kr0sZ47np7zVW2hM o6NJyDb+XCQ2QuKttod6Rxn4D0MclZev4F1qphPThnAY4UMcDGEyN+k1upX5+8E+ pixwFtWQTSogZYGVA2TdR4zf2N2uYQN7Heaej9h6/vA9xpnZnp4pxPXcPX1rBaGA Fk4iUkAHKLJJj0hrlhqTtU3GM6LMU+HRsxhzjF63Y7Aeb4XYP8wGJxPHtQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFJQ9aaUiRiK23B40ch99qXI0FkkIMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvbEQxcHBTSkdJcmJjSGpSeUgzMnBjalFXU1FnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAowVIAwQA owVNAwQAowWeAwQAowWjMA0GCSqGSIb3DQEBCwUAA4IBAQCfc9z9utdoE577jxSU BGh23ALJfuilZcOIIOtMK/7Larof9Y6jQy9gJY5Jkq1W5T1T6OPMd2y8oJmMQHPV D0hdjR9WizkIXfhehL6ZIDMHF5Ax95JNlsrIQgdN9zOYYNCz21c/QqSmc9Yd34Au KEo+97BO6uI1rc9JVmnZq3+QZS52ktcD7yxu31DAbigsuN1sboP3pCibN8e/UkOo hxR3RUDEdFuT/QpFQLVfM80A/M01u4NhB60r/2oQKVJXbzGC7qShDG1Vmshk/vVH 6bO7u/pHZPXRZ2PpRQUdo7KEcQQVRd6Ub7s0mxvPTC/kPe/k82/EuffXv38/e8eE xil3 -----END CERTIFICATE-----Generated at Mon Jan 19 11:29:52 2026 by rpki-client