This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/gU4rt6UfX908kKCYCroARSroPkQ.roa File: gU4rt6UfX908kKCYCroARSroPkQ.roa (raw, json) Hash identifier: j63IJzIDAdlriUlQV4IJaH+lIR+tUTSbCwMefhCYMjM= Subject key identifier: 81:4E:2B:B7:A5:1F:5F:DD:3C:90:A0:98:0A:BA:00:45:2A:E8:3E:44 Certificate issuer: /CN=331bce2ee806e93621112dbd618536f775f44fba Certificate serial: 019BA27EBFAFD3B07B463FFCF588FA7B02A6 Authority key identifier: 33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/gU4rt6UfX908kKCYCroARSroPkQ.roa Signing time: Fri 09 Jan 2026 11:22:54 +0000 ROA not before: Fri 09 Jan 2026 11:22:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43260 IP address blocks: 5.252.204.0/24 maxlen: 24 5.252.205.0/24 maxlen: 24 5.252.207.0/24 maxlen: 24 45.67.233.0/24 maxlen: 24 45.67.234.0/24 maxlen: 24 45.67.235.0/24 maxlen: 24 185.122.200.0/24 maxlen: 24 185.122.201.0/24 maxlen: 24 185.122.202.0/24 maxlen: 24 185.122.203.0/24 maxlen: 24 185.130.56.0/24 maxlen: 24 185.130.57.0/24 maxlen: 24 185.130.58.0/24 maxlen: 24 185.130.59.0/24 maxlen: 24 185.198.72.0/24 maxlen: 24 185.198.73.0/24 maxlen: 24 185.198.74.0/24 maxlen: 24 185.198.75.0/24 maxlen: 24 2a07:cd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.mft rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a2:7e:bf:af:d3:b0:7b:46:3f:fc:f5:88:fa:7b:02:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=331bce2ee806e93621112dbd618536f775f44fba Validity Not Before: Jan 9 11:22:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=814e2bb7a51f5fdd3c90a0980aba00452ae83e44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:76:cc:f2:b4:98:e1:da:6c:ca:db:ad:1d:73: 3a:a3:a0:38:ef:e2:cb:c9:2a:46:f9:ac:ac:14:06: 09:74:6e:d0:d4:0f:23:5b:f8:f6:05:df:fb:e2:da: b7:26:eb:d2:2e:a4:d2:e5:60:64:df:e1:6c:5a:9d: 35:37:9d:e2:28:48:b9:c6:58:a0:9c:a1:79:28:d7: 81:65:de:59:0d:c9:30:2b:84:91:5e:fb:ea:7e:90: 97:34:5d:3c:2c:71:67:56:ba:c5:45:d8:da:b3:81: 13:2a:b6:cf:84:00:a1:14:ec:a6:d7:10:6b:92:15: 27:fa:e6:49:69:d9:38:eb:ba:29:d9:2b:82:14:6a: 89:6f:fc:d4:fe:46:6e:fa:95:7c:f5:34:12:f0:91: 09:6b:02:da:9b:fd:62:09:23:98:fb:bf:3d:4c:b0: 98:1b:42:9e:f8:6f:d1:07:ef:52:32:cc:22:3d:bd: 07:b6:46:94:ec:d1:88:1b:7a:e3:d6:49:b1:73:ff: 8d:01:95:af:90:cd:c7:31:d7:cc:27:2e:bf:81:6e: 15:aa:84:8a:48:31:39:3a:af:4e:69:cb:e2:67:72: b6:1c:f2:82:59:14:e2:b0:52:a4:37:ee:80:ec:1f: 9a:83:c1:b0:eb:50:d4:db:2e:5d:34:b9:15:c7:66: 83:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:4E:2B:B7:A5:1F:5F:DD:3C:90:A0:98:0A:BA:00:45:2A:E8:3E:44 X509v3 Authority Key Identifier: keyid:33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/gU4rt6UfX908kKCYCroARSroPkQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.252.204.0/23 5.252.207.0/24 45.67.233.0-45.67.235.255 185.122.200.0/22 185.130.56.0/22 185.198.72.0/22 IPv6: 2a07:cd00::/48 Signature Algorithm: sha256WithRSAEncryption 77:ae:30:99:d1:68:1a:c4:c5:96:0a:6f:f5:b9:91:6f:e6:e6: ed:1f:74:c8:6e:fd:ca:ec:69:01:54:38:49:b7:9c:8f:63:03: 51:a0:d7:0f:c3:e8:05:14:34:df:bd:89:34:1a:f7:dc:d4:76: 7f:5e:9d:a5:ed:6f:c8:8c:4d:da:ff:c9:1d:23:ba:40:ba:f0: 43:3c:6a:ba:eb:79:dd:ec:e5:7a:93:85:fd:20:17:4f:e6:95: 71:46:b0:6c:bd:e8:75:91:e2:26:3d:ec:8b:66:7d:19:36:e3: 2b:ba:2c:52:66:71:16:aa:39:da:c1:3c:f3:1d:14:da:1f:07: c4:03:71:9b:3e:44:e4:b7:d2:9e:28:ef:bf:42:8d:7d:33:7c: fb:c2:c3:75:b1:57:2d:8a:52:90:c7:2b:a9:bd:48:0a:de:b9: 1e:46:81:d4:9e:21:0e:c6:0f:05:42:a0:d2:27:72:af:da:19: b0:46:a9:14:66:d6:96:bb:29:dc:90:72:bb:c8:a3:ac:00:e8: 9c:60:4f:3b:f0:f7:b5:ff:9a:39:89:d8:0b:04:82:c5:05:33: 9c:a4:b6:16:6c:0e:0b:a0:bd:b4:da:28:47:da:28:e9:ba:df: af:88:e5:89:34:85:71:cc:b2:ac:34:4c:b0:3c:e9:56:85:15: cb:1c:cf:e5 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISAZuifr+v07B7Rj/89Yj6ewKmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzMWJjZTJlZTgwNmU5MzYyMTExMmRiZDYxODUzNmY3NzVm NDRmYmEwHhcNMjYwMTA5MTEyMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTRlMmJiN2E1MWY1ZmRkM2M5MGEwOTgwYWJhMDA0NTJhZTgzZTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0nbM8rSY4dpsytutHXM6o6A47+LL ySpG+aysFAYJdG7Q1A8jW/j2Bd/74tq3JuvSLqTS5WBk3+FsWp01N53iKEi5xlig nKF5KNeBZd5ZDckwK4SRXvvqfpCXNF08LHFnVrrFRdjas4ETKrbPhAChFOym1xBr khUn+uZJadk467op2SuCFGqJb/zU/kZu+pV89TQS8JEJawLam/1iCSOY+789TLCY G0Ke+G/RB+9SMswiPb0HtkaU7NGIG3rj1kmxc/+NAZWvkM3HMdfMJy6/gW4VqoSK SDE5Oq9OacviZ3K2HPKCWRTisFKkN+6A7B+ag8Gw61DU2y5dNLkVx2aDcQIDAQAB o4ICQDCCAjwwHQYDVR0OBBYEFIFOK7elH1/dPJCgmAq6AEUq6D5EMB8GA1UdIwQY MBaAFDMbzi7oBuk2IREtvWGFNvd19E+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXh2T0x1Z0c2VFloRVMyOVlZVTI5M1gwVDdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YmEzY2EtZDZmZC00MTE2LTkxNDYt YWVhYzE2MjI3YzI1LzEvZ1U0cnQ2VWZYOTA4a0tDWUNyb0FSU3JvUGtRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS80YmEzY2EtZDZmZC00MTE2LTkxNDYtYWVhYzE2MjI3YzI1 LzEvTXh2T0x1Z0c2VFloRVMyOVlZVTI5M1gwVDdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTAyBAIAATAsAwQBBfzMAwQA BfzPMAwDBAAtQ+kDBAItQ+gDBAK5esgDBAK5gjgDBAK5xkgwDwQCAAIwCQMHACoH zQAAADANBgkqhkiG9w0BAQsFAAOCAQEAd64wmdFoGsTFlgpv9bmRb+bm7R90yG79 yuxpAVQ4Sbecj2MDUaDXD8PoBRQ0372JNBr33NR2f16dpe1vyIxN2v/JHSO6QLrw Qzxquut53ezlepOF/SAXT+aVcUawbL3odZHiJj3si2Z9GTbjK7osUmZxFqo52sE8 8x0U2h8HxANxmz5E5LfSnijvv0KNfTN8+8LDdbFXLYpSkMcrqb1ICt65HkaB1J4h DsYPBUKg0idyr9oZsEapFGbWlrsp3JByu8ijrADonGBPO/D3tf+aOYnYCwSCxQUz nKS2FmwOC6C9tNooR9oo6brfr4jliTSFccyyrDRMsDzpVoUVyxzP5Q== -----END CERTIFICATE-----Generated at Mon Jan 19 16:51:40 2026 by rpki-client