This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/RyOLum9WBpYD9XcaEtkq5xfJ-pw.roa File: RyOLum9WBpYD9XcaEtkq5xfJ-pw.roa (raw, json) Hash identifier: QzwPO43PsmmF8A/TIkYS8Xm7a8SUbYZr7awJYHHN8bU= Subject key identifier: 47:23:8B:BA:6F:56:06:96:03:F5:77:1A:12:D9:2A:E7:17:C9:FA:9C Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe Certificate serial: 019B7D5B270F53D415BA5098E413E309076A Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/RyOLum9WBpYD9XcaEtkq5xfJ-pw.roa Signing time: Fri 02 Jan 2026 06:18:04 +0000 ROA not before: Fri 02 Jan 2026 06:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49556 IP address blocks: 5.159.49.0/24 maxlen: 24 5.159.54.0/24 maxlen: 24 45.94.213.0/24 maxlen: 24 89.46.217.0/24 maxlen: 24 185.239.0.0/24 maxlen: 24 188.212.99.0/24 maxlen: 24 188.240.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.mft rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 11:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:27:0f:53:d4:15:ba:50:98:e4:13:e3:09:07:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe Validity Not Before: Jan 2 06:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=47238bba6f56069603f5771a12d92ae717c9fa9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d8:47:92:cc:3c:28:d4:a0:62:a9:44:e9:df: 31:cf:3d:02:5c:d1:dd:fb:59:67:93:9e:89:b0:fb: 6b:e3:93:67:00:3d:7c:9e:cf:16:f2:53:a9:19:8c: be:f1:62:1c:f7:f4:8c:ab:4d:30:ed:e7:33:ef:81: 25:d2:7c:84:80:4f:0e:3f:ab:1b:41:9c:46:df:6f: 26:72:47:f9:e4:c2:20:ae:e7:22:85:94:4f:ac:5a: 7a:4a:ec:6a:91:8d:cf:99:6d:8d:35:d3:3f:07:06: c9:6a:44:9a:82:52:de:e7:f7:27:29:9b:e2:9e:35: 95:38:fc:c4:b0:30:63:3b:b2:e4:3e:2d:69:6e:fd: b6:6b:35:92:88:9a:f4:5a:13:92:1b:b6:84:37:cc: 79:c6:9b:7e:2e:77:93:42:e1:dc:0a:ff:f9:5e:46: da:2c:89:63:81:90:ff:6b:68:a3:b0:52:8a:66:4b: d7:17:8d:6a:c9:3b:18:f3:bd:4b:e0:2e:ba:e4:b7: a0:37:b0:8e:00:e4:06:ee:f8:0a:11:e4:14:ce:7c: 66:bd:9b:46:01:d5:0e:65:fd:e7:cd:8c:73:da:00: d2:c1:59:25:1c:69:5c:83:79:f8:28:e6:d8:bb:58: d0:09:2b:61:a2:57:34:8b:5b:ba:11:ed:a1:0d:a7: aa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:23:8B:BA:6F:56:06:96:03:F5:77:1A:12:D9:2A:E7:17:C9:FA:9C X509v3 Authority Key Identifier: keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/RyOLum9WBpYD9XcaEtkq5xfJ-pw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.159.49.0/24 5.159.54.0/24 45.94.213.0/24 89.46.217.0/24 185.239.0.0/24 188.212.99.0/24 188.240.196.0/24 Signature Algorithm: sha256WithRSAEncryption 83:43:ba:c4:ae:61:d6:f9:0f:a9:7c:2f:fc:9e:47:78:26:ac: 12:61:18:9a:33:ae:1b:1f:bc:ab:52:be:04:1d:07:d6:06:c8: e9:8c:c0:6c:a5:84:cc:38:56:5c:62:1f:1b:5c:c1:cc:95:6b: 5f:8e:19:ad:e1:28:8f:31:30:14:a2:44:16:f4:64:e8:72:1d: b0:8b:81:2f:79:72:ba:0f:79:fc:0e:f4:a6:70:1b:3d:e8:96: 81:c2:78:41:86:11:8e:8f:0d:6b:f1:f7:b5:78:ed:bf:6e:52: 59:b6:b7:3b:67:a9:b6:0a:87:fb:b1:17:36:43:8a:e6:02:53: f3:3f:75:ab:49:da:26:55:90:f2:74:6e:e7:37:21:ac:cd:05: ec:71:92:d8:93:80:45:a4:8b:f7:0c:90:66:f1:21:03:ab:07: cc:eb:f1:60:44:2f:e7:2e:2b:e4:07:51:f3:c3:32:cc:30:a9: e6:cf:d9:3e:c0:4a:b3:75:6b:b1:e6:d3:cc:21:1d:04:f8:cc: c1:b4:b8:1b:91:bf:97:22:76:e5:8d:6c:b4:eb:78:ce:1b:cb: c0:92:82:3d:05:59:69:92:1a:d1:fe:ca:29:f2:f1:78:38:de: 50:db:d9:ba:39:10:a1:8e:c5:7d:2d:ca:75:af:1b:32:da:82: 80:1a:6f:6b -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt9WycPU9QVulCY5BPjCQdqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz MjdlYmUwHhcNMjYwMTAyMDYxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NzIzOGJiYTZmNTYwNjk2MDNmNTc3MWExMmQ5MmFlNzE3YzlmYTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1thHksw8KNSgYqlE6d8xzz0CXNHd +1lnk56JsPtr45NnAD18ns8W8lOpGYy+8WIc9/SMq00w7ecz74El0nyEgE8OP6sb QZxG328mckf55MIgrucihZRPrFp6SuxqkY3PmW2NNdM/BwbJakSaglLe5/cnKZvi njWVOPzEsDBjO7LkPi1pbv22azWSiJr0WhOSG7aEN8x5xpt+LneTQuHcCv/5Xkba LIljgZD/a2ijsFKKZkvXF41qyTsY871L4C665LegN7COAOQG7vgKEeQUznxmvZtG AdUOZf3nzYxz2gDSwVklHGlcg3n4KObYu1jQCStholc0i1u6Ee2hDaeqeQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFEcji7pvVgaWA/V3GhLZKucXyfqcMB8GA1UdIwQY MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt M2RmYTUxMGQ2YjE2LzEvUnlPTHVtOVdCcFlEOVhjYUV0a3E1eGZKLXB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2 LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQABZ8xAwQA BZ82AwQALV7VAwQAWS7ZAwQAue8AAwQAvNRjAwQAvPDEMA0GCSqGSIb3DQEBCwUA A4IBAQCDQ7rErmHW+Q+pfC/8nkd4JqwSYRiaM64bH7yrUr4EHQfWBsjpjMBspYTM OFZcYh8bXMHMlWtfjhmt4SiPMTAUokQW9GToch2wi4EveXK6D3n8DvSmcBs96JaB wnhBhhGOjw1r8fe1eO2/blJZtrc7Z6m2Cof7sRc2Q4rmAlPzP3WrSdomVZDydG7n NyGszQXscZLYk4BFpIv3DJBm8SEDqwfM6/FgRC/nLivkB1HzwzLMMKnmz9k+wEqz dWux5tPMIR0E+MzBtLgbkb+XInbljWy063jOG8vAkoI9BVlpkhrR/sop8vF4ON5Q 29m6ORChjsV9Lcp1rxsy2oKAGm9r -----END CERTIFICATE-----Generated at Mon Jan 26 20:25:42 2026 by rpki-client