This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/tLBl5sqYIORcYxoiPAGpkSvAEb0.roa File: tLBl5sqYIORcYxoiPAGpkSvAEb0.roa (raw, json) Hash identifier: GMSHalNloa4MLmQuNKJAMYyesz8tlVOh/OMa6p0O3XA= Subject key identifier: B4:B0:65:E6:CA:98:20:E4:5C:63:1A:22:3C:01:A9:91:2B:C0:11:BD Certificate issuer: /CN=052b864969e9680764899015e163ece77bb4cb76 Certificate serial: 019B7F826CC631E78F476112AD2903B10072 Authority key identifier: 05:2B:86:49:69:E9:68:07:64:89:90:15:E1:63:EC:E7:7B:B4:CB:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSuGSWnpaAdkiZAV4WPs53u0y3Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/tLBl5sqYIORcYxoiPAGpkSvAEb0.roa Signing time: Fri 02 Jan 2026 16:20:12 +0000 ROA not before: Fri 02 Jan 2026 16:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59445 IP address blocks: 5.144.80.0/24 maxlen: 24 5.144.84.0/22 maxlen: 22 5.144.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/BSuGSWnpaAdkiZAV4WPs53u0y3Y.crl rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/BSuGSWnpaAdkiZAV4WPs53u0y3Y.mft rsync://rpki.ripe.net/repository/DEFAULT/BSuGSWnpaAdkiZAV4WPs53u0y3Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:6c:c6:31:e7:8f:47:61:12:ad:29:03:b1:00:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=052b864969e9680764899015e163ece77bb4cb76 Validity Not Before: Jan 2 16:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4b065e6ca9820e45c631a223c01a9912bc011bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a6:e2:d0:26:0b:ff:bf:b4:ff:8c:62:83:56: ef:0d:33:bd:91:e0:98:f3:91:e2:c5:10:7d:82:bd: 0f:07:ae:88:1e:c3:6c:e9:d9:10:48:8e:dd:ad:0e: 24:d0:58:85:1a:ca:e3:e0:3b:ad:2d:5b:4f:da:7c: e7:42:15:53:6f:38:e4:65:d8:19:bf:f3:d9:16:df: e4:85:e5:ac:ad:03:a7:2e:27:26:43:5e:44:dc:2b: ce:5f:e6:ed:02:fa:21:5b:f8:96:2c:72:19:6b:12: 21:bd:f7:14:65:1b:85:38:16:f8:9c:5e:d2:5a:a7: e4:12:24:7c:78:0a:94:e3:47:49:ac:73:54:36:4a: 0e:c7:ec:91:2d:2b:6c:df:aa:76:e9:d5:e7:4d:19: 3f:75:2c:8c:4e:1e:6a:0f:14:0e:fa:f1:8a:ba:55: 29:44:98:74:28:93:f7:bd:c3:1d:65:38:9f:cd:8b: 0d:61:11:85:8d:a4:3c:d0:ba:3c:ec:f9:e9:9e:42: 3f:ff:51:0a:1b:17:c7:45:88:dc:1e:e8:f4:9f:ef: 00:53:60:ca:9c:cc:43:cb:a1:80:8d:f6:0d:ee:2e: 8e:b0:07:ea:ff:c3:eb:ce:6e:3c:12:0f:e4:89:b6: 1c:45:71:8f:12:d6:e1:9f:40:da:d7:6f:51:a4:db: 94:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B0:65:E6:CA:98:20:E4:5C:63:1A:22:3C:01:A9:91:2B:C0:11:BD X509v3 Authority Key Identifier: keyid:05:2B:86:49:69:E9:68:07:64:89:90:15:E1:63:EC:E7:7B:B4:CB:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSuGSWnpaAdkiZAV4WPs53u0y3Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/tLBl5sqYIORcYxoiPAGpkSvAEb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/BSuGSWnpaAdkiZAV4WPs53u0y3Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.144.80.0/24 5.144.84.0/22 5.144.90.0/24 Signature Algorithm: sha256WithRSAEncryption 55:7c:2d:ee:85:c0:30:42:94:1b:14:7d:8e:80:1b:84:52:eb: 2d:fa:79:70:7d:4a:e3:02:a3:67:12:90:d7:c9:ee:0c:08:23: 59:26:ec:07:2a:74:f2:86:e1:5f:8e:dc:c8:ba:5f:6a:5b:0d: ce:17:b9:72:a0:d1:00:e7:31:66:49:df:3b:40:13:72:e0:fc: 60:31:3e:3e:ac:34:b3:f4:a3:7f:2a:77:f0:ee:22:40:42:dd: 8b:b5:7f:57:fc:78:da:a2:1f:68:92:fc:ee:5f:65:4b:33:9f: ba:ba:42:8b:d4:fc:a4:1a:22:ea:c8:8d:23:db:ca:20:82:aa: ca:2c:c4:f2:60:a8:f9:2f:77:e9:21:a2:d5:3c:8f:cc:00:09: 9d:6e:8a:cc:c7:e3:95:ad:cb:27:b7:58:b7:6a:c5:19:36:2d: 07:5c:91:52:d7:ca:b8:40:be:44:b0:2c:44:1d:c0:2d:44:c9: d5:06:f2:8d:94:4c:bd:a3:c7:87:2e:4d:39:3d:ba:5e:e9:d3: e5:c7:14:b4:ce:f7:59:fe:66:40:50:e2:25:63:91:db:55:8d: a1:b5:aa:1e:6e:a5:70:f5:14:7c:51:d4:20:28:65:e8:9b:6f: 83:f5:ea:0a:c3:0c:db:55:b7:9c:51:9b:d6:f3:fb:d6:f1:36: 41:6c:80:26 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/gmzGMeePR2ESrSkDsQByMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MmI4NjQ5NjllOTY4MDc2NDg5OTAxNWUxNjNlY2U3N2Ji NGNiNzYwHhcNMjYwMTAyMTYyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGIwNjVlNmNhOTgyMGU0NWM2MzFhMjIzYzAxYTk5MTJiYzAxMWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqbi0CYL/7+0/4xig1bvDTO9keCY 85HixRB9gr0PB66IHsNs6dkQSI7drQ4k0FiFGsrj4DutLVtP2nznQhVTbzjkZdgZ v/PZFt/kheWsrQOnLicmQ15E3CvOX+btAvohW/iWLHIZaxIhvfcUZRuFOBb4nF7S WqfkEiR8eAqU40dJrHNUNkoOx+yRLSts36p26dXnTRk/dSyMTh5qDxQO+vGKulUp RJh0KJP3vcMdZTifzYsNYRGFjaQ80Lo87PnpnkI//1EKGxfHRYjcHuj0n+8AU2DK nMxDy6GAjfYN7i6OsAfq/8Przm48Eg/kibYcRXGPEtbhn0Da129RpNuUAQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFLSwZebKmCDkXGMaIjwBqZErwBG9MB8GA1UdIwQY MBaAFAUrhklp6WgHZImQFeFj7Od7tMt2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlN1R1NXbnBhQWRraVpBVjRXUHM1M3UweTNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC80NzU5ZjktN2ZkZi00OTE2LWE5OTUt Njk3MGVjZDlhNjEwLzEvdExCbDVzcVlJT1JjWXhvaVBBR3BrU3ZBRWIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC80NzU5ZjktN2ZkZi00OTE2LWE5OTUtNjk3MGVjZDlhNjEw LzEvQlN1R1NXbnBhQWRraVpBVjRXUHM1M3UweTNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABZBQAwQC BZBUAwQABZBaMA0GCSqGSIb3DQEBCwUAA4IBAQBVfC3uhcAwQpQbFH2OgBuEUust +nlwfUrjAqNnEpDXye4MCCNZJuwHKnTyhuFfjtzIul9qWw3OF7lyoNEA5zFmSd87 QBNy4PxgMT4+rDSz9KN/Knfw7iJAQt2LtX9X/Hjaoh9okvzuX2VLM5+6ukKL1Pyk GiLqyI0j28oggqrKLMTyYKj5L3fpIaLVPI/MAAmdborMx+OVrcsnt1i3asUZNi0H XJFS18q4QL5EsCxEHcAtRMnVBvKNlEy9o8eHLk05Pbpe6dPlxxS0zvdZ/mZAUOIl Y5HbVY2htaoebqVw9RR8UdQgKGXom2+D9eoKwwzbVbecUZvW8/vW8TZBbIAm -----END CERTIFICATE-----Generated at Tue Feb 10 04:27:36 2026 by rpki-client