This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/1-TG0tV05zw2HKHoaqhOevQ98FzQ.roa File: 1-TG0tV05zw2HKHoaqhOevQ98FzQ.roa (raw, json) Hash identifier: /7MNkNnhqW72HOp0UmjMqbjYSzKMbtvhE/I2ngN+NxU= Subject key identifier: F9:31:B4:B5:5D:39:CF:0D:87:28:7A:1A:AA:13:9E:BD:0F:7C:17:34 Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725 Certificate serial: 019B2C413583251A068A44EB33565DDAAF23 Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/1-TG0tV05zw2HKHoaqhOevQ98FzQ.roa Signing time: Wed 17 Dec 2025 12:20:29 +0000 ROA not before: Wed 17 Dec 2025 12:20:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 51074 IP address blocks: 5.221.0.0/16 maxlen: 16 31.184.128.0/18 maxlen: 24 37.130.200.0/21 maxlen: 24 37.130.202.0/23 maxlen: 23 178.252.128.0/18 maxlen: 24 178.252.138.0/24 maxlen: 24 185.115.148.0/24 maxlen: 24 185.115.149.0/24 maxlen: 24 185.115.150.0/24 maxlen: 24 2a02:2b58::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.mft rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:41:35:83:25:1a:06:8a:44:eb:33:56:5d:da:af:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725 Validity Not Before: Dec 17 12:20:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=f931b4b55d39cf0d87287a1aaa139ebd0f7c1734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a3:7f:4e:7a:75:e3:e2:e2:d3:1c:2a:9a:e1: f0:2c:14:9f:ab:c4:49:3f:4c:b0:80:bd:fa:aa:c7: 2e:b9:be:82:38:ae:b5:88:14:7f:c7:05:61:fb:b9: 7b:b5:3e:d7:6d:77:0e:3f:cb:e5:ce:fb:04:e0:29: bb:63:db:b6:76:4a:ec:fc:6e:40:f3:f7:00:42:9e: 81:75:e2:df:6d:bb:51:ce:c0:c1:d5:7a:7d:47:85: d0:06:68:57:17:37:dc:1d:3e:a2:1d:4f:5e:7f:8b: b8:28:f1:b6:fa:5e:d9:88:d2:43:99:dd:63:1c:4b: a1:ca:c9:68:c5:bc:d4:1c:83:7c:d2:7f:8e:db:90: 52:69:00:f8:8b:62:26:95:3d:57:92:80:ad:a5:65: d5:7d:36:ed:17:fc:7e:ec:91:03:21:89:58:94:c3: 22:46:f8:a8:de:43:ac:29:0c:76:b4:3b:2d:da:94: ce:ae:d9:82:65:ab:22:c0:81:fb:d8:ca:dc:e5:db: 10:d7:47:d8:c2:2e:57:e6:45:f2:71:1f:c3:62:d2: 5c:c9:55:fe:82:bd:07:cb:b0:80:43:50:93:e0:3b: 56:d6:ee:72:49:48:41:9c:cb:13:7f:b8:ac:c0:78: a8:69:f3:ab:ac:67:4b:91:aa:b0:b2:79:d0:60:d0: aa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:31:B4:B5:5D:39:CF:0D:87:28:7A:1A:AA:13:9E:BD:0F:7C:17:34 X509v3 Authority Key Identifier: keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/1-TG0tV05zw2HKHoaqhOevQ98FzQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.221.0.0/16 31.184.128.0/18 37.130.200.0/21 178.252.128.0/18 185.115.148.0-185.115.150.255 IPv6: 2a02:2b58::/29 Signature Algorithm: sha256WithRSAEncryption 14:4d:ac:04:72:cf:61:77:b5:df:f6:f0:9a:90:2e:99:f6:67: 7b:23:e8:c3:eb:15:7c:ac:c0:ac:8b:3e:ce:09:cb:74:1a:25: 6b:94:af:e1:35:97:35:b2:77:0f:25:90:af:6f:76:7d:7e:57: 90:43:62:43:bf:e0:3d:39:2f:83:e9:c8:85:0b:b0:e9:5c:58: 59:aa:f5:d8:b9:7b:4b:fc:0f:2a:95:dd:7a:e0:cd:db:f6:8d: 15:fe:64:18:3e:9d:12:64:d0:22:d9:9a:06:0c:01:81:2e:08: 59:df:ee:dc:79:59:fc:1b:bf:8c:16:88:cb:de:c1:75:d6:ba: 34:d7:88:ef:db:9e:29:1d:12:06:21:0b:c7:bf:ec:10:60:6b: 4a:00:a3:32:66:9d:09:0a:bc:f0:08:e1:e8:78:48:b2:44:a7: 5b:ad:a0:42:0f:da:6d:c9:39:4b:5c:fb:8a:8b:d9:08:d2:ef: 35:21:d8:02:7e:e8:f0:c4:60:b4:b9:7f:96:4c:aa:69:4c:60: 5a:61:5b:72:ab:18:be:77:26:94:1a:29:3e:29:3c:fa:7b:3e: 91:6e:96:a1:3b:41:0e:b5:20:32:1c:39:1b:f0:fc:07:70:e9: 08:bb:ed:03:2a:67:65:00:22:c6:eb:a4:11:f4:67:69:ce:f2: 5c:92:02:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZssQTWDJRoGikTrM1Zd2q8jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhZmI2NDVmMTM0ZjRmZGFkYTQ1ZTcwYmNmY2Q5M2I4OTdk YmQ3MjUwHhcNMjUxMjE3MTIyMDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOTMxYjRiNTVkMzljZjBkODcyODdhMWFhYTEzOWViZDBmN2MxNzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKN/Tnp14+Li0xwqmuHwLBSfq8RJ P0ywgL36qscuub6COK61iBR/xwVh+7l7tT7XbXcOP8vlzvsE4Cm7Y9u2dkrs/G5A 8/cAQp6BdeLfbbtRzsDB1Xp9R4XQBmhXFzfcHT6iHU9ef4u4KPG2+l7ZiNJDmd1j HEuhysloxbzUHIN80n+O25BSaQD4i2ImlT1XkoCtpWXVfTbtF/x+7JEDIYlYlMMi Rvio3kOsKQx2tDst2pTOrtmCZasiwIH72Mrc5dsQ10fYwi5X5kXycR/DYtJcyVX+ gr0Hy7CAQ1CT4DtW1u5ySUhBnMsTf7iswHioafOrrGdLkaqwsnnQYNCq5QIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFPkxtLVdOc8Nhyh6GqoTnr0PfBc0MB8GA1UdIwQY MBaAFNr7ZF8TT0/a2kXnC8/Nk7iX29clMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnZ0a1h4TlBUOXJhUmVjTHo4MlR1SmZiMXlVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi83YTQ4ZjUtYmQyNC00ZGM0LThjY2Et NmJhMGEwY2UwMWVkLzEvMS1URzB0VjA1encySEtIb2FxaE9ldlE5OEZ6US5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNTIvN2E0OGY1LWJkMjQtNGRjNC04Y2NhLTZiYTBhMGNlMDFl ZC8xLzJ2dGtYeE5QVDlyYVJlY0x6ODJUdUpmYjF5VS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBNBggrBgEFBQcBBwEB/wQ+MDwwKwQCAAEwJQMDAAXdAwQG H7iAAwQDJYLIAwQGsvyAMAwDBAK5c5QDBAC5c5YwDQQCAAIwBwMFAyoCK1gwDQYJ KoZIhvcNAQELBQADggEBABRNrARyz2F3td/28JqQLpn2Z3sj6MPrFXyswKyLPs4J y3QaJWuUr+E1lzWydw8lkK9vdn1+V5BDYkO/4D05L4PpyIULsOlcWFmq9di5e0v8 DyqV3Xrgzdv2jRX+ZBg+nRJk0CLZmgYMAYEuCFnf7tx5Wfwbv4wWiMvewXXWujTX iO/bnikdEgYhC8e/7BBga0oAozJmnQkKvPAI4eh4SLJEp1utoEIP2m3JOUtc+4qL 2QjS7zUh2AJ+6PDEYLS5f5ZMqmlMYFphW3KrGL53JpQaKT4pPPp7PpFulqE7QQ61 IDIcORvw/Adw6Qi77QMqZ2UAIsbrpBH0Z2nO8lySAkM= -----END CERTIFICATE-----Generated at Fri Dec 19 13:46:48 2025 by rpki-client