This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/7f3d29-418e-4136-8b52-fe502599369e/1/w5DFMmGugpC2zayHbrP3eIF5NMk.roa File: w5DFMmGugpC2zayHbrP3eIF5NMk.roa (raw, json) Hash identifier: w1SpHPQ303joyUlwp38GwAgUdaYGdvz45URhf02GNpg= Subject key identifier: C3:90:C5:32:61:AE:82:90:B6:CD:AC:87:6E:B3:F7:78:81:79:34:C9 Certificate issuer: /CN=1eacc610a7383f19248672030bd9a447cd0941c9 Certificate serial: 019B78A2905E98F1C57DC9B1EC77D3E6D1E8 Authority key identifier: 1E:AC:C6:10:A7:38:3F:19:24:86:72:03:0B:D9:A4:47:CD:09:41:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqzGEKc4PxkkhnIDC9mkR80JQck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/7f3d29-418e-4136-8b52-fe502599369e/1/w5DFMmGugpC2zayHbrP3eIF5NMk.roa Signing time: Thu 01 Jan 2026 08:17:58 +0000 ROA not before: Thu 01 Jan 2026 08:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198859 IP address blocks: 149.154.120.0/21 maxlen: 21 149.154.120.0/23 maxlen: 23 149.154.122.0/23 maxlen: 23 149.154.124.0/24 maxlen: 24 149.154.125.0/24 maxlen: 24 149.154.126.0/24 maxlen: 24 149.154.127.0/24 maxlen: 24 185.131.216.0/22 maxlen: 22 185.131.216.0/23 maxlen: 23 2a03:b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/7f3d29-418e-4136-8b52-fe502599369e/1/HqzGEKc4PxkkhnIDC9mkR80JQck.crl rsync://rpki.ripe.net/repository/DEFAULT/30/7f3d29-418e-4136-8b52-fe502599369e/1/HqzGEKc4PxkkhnIDC9mkR80JQck.mft rsync://rpki.ripe.net/repository/DEFAULT/HqzGEKc4PxkkhnIDC9mkR80JQck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:90:5e:98:f1:c5:7d:c9:b1:ec:77:d3:e6:d1:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eacc610a7383f19248672030bd9a447cd0941c9 Validity Not Before: Jan 1 08:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c390c53261ae8290b6cdac876eb3f778817934c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:68:41:f8:6a:d4:43:9b:5a:df:2a:99:73: c4:dd:e2:76:04:0a:96:ca:ca:dd:bc:d0:1d:1b:62: 5c:d6:ce:77:53:f5:28:e9:74:c4:31:2a:e7:ad:04: 87:44:c6:ee:d5:a4:3d:b9:b3:95:94:28:14:e0:07: f7:f3:42:b7:44:7d:2f:63:c5:c2:50:77:c7:10:32: b8:85:46:f5:64:be:e8:69:44:d4:bf:34:5e:8a:3a: be:30:55:53:e6:ed:f0:aa:b9:be:67:ca:ef:09:d9: 19:fe:68:e1:b2:24:c3:18:d9:eb:c1:3c:ca:9a:eb: 56:37:d9:36:eb:58:9a:fd:04:cb:ef:9a:da:08:70: 17:b8:b5:c8:be:1b:1b:3d:00:36:56:65:9d:49:89: 1c:ec:0d:39:ce:23:7d:8b:95:40:a5:31:6a:f9:af: 16:55:4b:6e:4a:cb:24:b8:b1:35:e5:de:d7:50:d3: 75:d5:7a:0d:c6:3b:ee:15:50:76:d5:7a:90:2b:dd: 8f:32:3d:be:f5:da:d0:7c:3c:48:28:1b:94:9b:62: 1a:34:3c:56:f8:8d:f1:cc:17:4a:98:7b:ea:aa:9c: 36:ba:4a:62:09:b0:9e:7d:92:db:8a:33:21:3d:d2: e5:55:8e:29:2c:a8:2c:6f:3d:92:2a:09:0b:8b:37: 6f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:90:C5:32:61:AE:82:90:B6:CD:AC:87:6E:B3:F7:78:81:79:34:C9 X509v3 Authority Key Identifier: keyid:1E:AC:C6:10:A7:38:3F:19:24:86:72:03:0B:D9:A4:47:CD:09:41:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqzGEKc4PxkkhnIDC9mkR80JQck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/7f3d29-418e-4136-8b52-fe502599369e/1/w5DFMmGugpC2zayHbrP3eIF5NMk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/7f3d29-418e-4136-8b52-fe502599369e/1/HqzGEKc4PxkkhnIDC9mkR80JQck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.154.120.0/21 185.131.216.0/22 IPv6: 2a03:b80::/32 Signature Algorithm: sha256WithRSAEncryption 41:ad:74:fc:a1:de:cc:65:94:e7:1b:97:ee:8f:67:b7:06:26: 51:04:e2:44:8e:09:33:1f:12:1e:16:50:5c:fc:a0:c2:6d:c7: 24:1b:9b:c2:93:a2:ed:30:02:f0:b1:aa:fa:03:bf:17:1f:ac: a9:38:27:66:46:8f:3f:a6:70:22:f8:ae:09:c5:81:aa:71:5e: 33:60:bd:36:d0:46:7a:2c:07:b3:30:86:49:43:22:10:1f:50: 57:6e:d1:aa:e1:90:01:cf:02:45:ca:57:b2:de:32:3f:ba:fe: 6c:66:3c:48:e5:ed:b0:08:ef:20:57:da:a7:8d:c5:62:4b:db: 2d:53:02:ff:94:33:1c:f5:53:83:b6:92:2d:a9:cc:24:34:f7: e8:24:84:eb:c9:fb:99:6e:58:b1:c6:33:10:51:fc:5c:75:74: 2d:7d:5b:a1:2e:2b:69:c9:b3:8c:d3:af:64:fe:0a:69:07:1e: cd:b1:ff:ea:a5:41:92:1e:26:43:8a:b7:5b:f1:60:f0:af:89: 5f:18:e6:f7:81:b4:ba:31:da:52:80:2b:84:7d:65:7e:3c:64: 8f:c6:0a:be:94:0f:09:51:f5:b9:a3:a2:56:ea:b5:b2:fe:ea: cc:93:18:e1:60:1f:b0:ce:cb:6d:b7:f6:37:40:32:01:aa:79: dd:9c:ed:77 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4opBemPHFfcmx7HfT5tHoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWNjNjEwYTczODNmMTkyNDg2NzIwMzBiZDlhNDQ3Y2Qw OTQxYzkwHhcNMjYwMTAxMDgxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMzkwYzUzMjYxYWU4MjkwYjZjZGFjODc2ZWIzZjc3ODgxNzkzNGM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsc1oQfhq1EObWt8qmXPE3eJ2BAqW ysrdvNAdG2Jc1s53U/Uo6XTEMSrnrQSHRMbu1aQ9ubOVlCgU4Af380K3RH0vY8XC UHfHEDK4hUb1ZL7oaUTUvzReijq+MFVT5u3wqrm+Z8rvCdkZ/mjhsiTDGNnrwTzK mutWN9k261ia/QTL75raCHAXuLXIvhsbPQA2VmWdSYkc7A05ziN9i5VApTFq+a8W VUtuSsskuLE15d7XUNN11XoNxjvuFVB21XqQK92PMj2+9drQfDxIKBuUm2IaNDxW +I3xzBdKmHvqqpw2ukpiCbCefZLbijMhPdLlVY4pLKgsbz2SKgkLizdvfwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFMOQxTJhroKQts2sh26z93iBeTTJMB8GA1UdIwQY MBaAFB6sxhCnOD8ZJIZyAwvZpEfNCUHJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHF6R0VLYzRQeGtraG5JREM5bWtSODBKUWNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC83ZjNkMjktNDE4ZS00MTM2LThiNTIt ZmU1MDI1OTkzNjllLzEvdzVERk1tR3VncEMyemF5SGJyUDNlSUY1Tk1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC83ZjNkMjktNDE4ZS00MTM2LThiNTItZmU1MDI1OTkzNjll LzEvSHF6R0VLYzRQeGtraG5JREM5bWtSODBKUWNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDlZp4AwQC uYPYMA0EAgACMAcDBQAqAwuAMA0GCSqGSIb3DQEBCwUAA4IBAQBBrXT8od7MZZTn G5fuj2e3BiZRBOJEjgkzHxIeFlBc/KDCbcckG5vCk6LtMALwsar6A78XH6ypOCdm Ro8/pnAi+K4JxYGqcV4zYL020EZ6LAezMIZJQyIQH1BXbtGq4ZABzwJFyley3jI/ uv5sZjxI5e2wCO8gV9qnjcViS9stUwL/lDMc9VODtpItqcwkNPfoJITryfuZblix xjMQUfxcdXQtfVuhLitpybOM069k/gppBx7Nsf/qpUGSHiZDirdb8WDwr4lfGOb3 gbS6MdpSgCuEfWV+PGSPxgq+lA8JUfW5o6JW6rWy/urMkxjhYB+wzsttt/Y3QDIB qnndnO13 -----END CERTIFICATE-----Generated at Mon Feb 9 20:45:39 2026 by rpki-client