This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/X-rb6UVs7Rg-pTPOYel6lRYX8Qs.roa File: X-rb6UVs7Rg-pTPOYel6lRYX8Qs.roa (raw, json) Hash identifier: /5oEg9HQ2fglh7XGyrtU5/w6Cst3KFy0X0Y2pIvtxcw= Subject key identifier: 5F:EA:DB:E9:45:6C:ED:18:3E:A5:33:CE:61:E9:7A:95:16:17:F1:0B Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB5F88040063FCBDE9A300F9D5802E Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/X-rb6UVs7Rg-pTPOYel6lRYX8Qs.roa Signing time: Fri 02 Jan 2026 08:20:38 +0000 ROA not before: Fri 02 Jan 2026 08:20:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43201 IP address blocks: 5.42.216.0/24 maxlen: 24 37.72.131.0/24 maxlen: 24 46.175.132.0/24 maxlen: 24 91.213.155.0/24 maxlen: 24 193.8.74.0/24 maxlen: 24 194.104.139.0/24 maxlen: 24 194.104.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 10:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:5f:88:04:00:63:fc:bd:e9:a3:00:f9:d5:80:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5feadbe9456ced183ea533ce61e97a951617f10b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:69:3e:d9:c5:4a:dd:df:5d:b1:c6:9b:a8:30: 34:b5:ce:d5:57:cb:c6:41:15:1e:43:d9:d9:2b:e1: c0:97:90:68:2e:cb:4f:59:4b:a6:5e:59:48:f1:33: 43:6f:c9:7b:cc:83:90:61:a1:9d:7a:45:b2:c9:ed: 5d:ac:77:1b:3b:e7:c3:3a:66:f0:66:eb:df:8e:76: ff:ed:38:b4:9c:ae:ae:2b:80:03:61:70:03:c1:bc: 10:29:70:3c:0c:e9:98:52:1e:66:b0:09:32:0e:23: 13:32:12:fc:09:52:72:63:22:97:99:eb:13:cc:1e: 4a:10:6d:c1:73:5d:37:63:a0:49:9c:8b:5c:ce:46: 8d:da:af:7d:03:2f:12:56:88:d5:9e:92:5c:f6:73: b8:76:94:b5:ec:44:85:56:55:7a:49:d0:89:0b:cf: 69:6e:2a:f2:4d:cb:36:58:ab:a3:ae:bd:70:d7:05: 11:7a:f1:f7:3d:0e:d5:ef:90:bd:f5:6f:96:7e:bd: dd:07:b2:ef:b8:98:ec:0b:4d:58:ba:3b:d8:ee:b5: 56:0b:4e:7d:90:dc:e0:dc:fd:88:f3:3e:6e:2c:ec: b0:7e:bf:b9:79:f7:e0:b7:04:d9:2e:8a:4c:a3:9c: 99:ed:66:49:40:c6:c3:1b:11:5a:4b:ee:1c:38:95: 5e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EA:DB:E9:45:6C:ED:18:3E:A5:33:CE:61:E9:7A:95:16:17:F1:0B X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/X-rb6UVs7Rg-pTPOYel6lRYX8Qs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.42.216.0/24 37.72.131.0/24 46.175.132.0/24 91.213.155.0/24 193.8.74.0/24 194.104.139.0-194.104.140.255 Signature Algorithm: sha256WithRSAEncryption 53:6a:76:63:74:ae:9f:cb:fb:00:4a:2b:c8:7d:73:4f:9b:ac: 8d:de:48:01:fd:e2:67:7e:62:df:45:ff:c5:b8:08:2a:5e:87: cb:ec:b9:f7:39:65:1f:3a:dc:d4:60:a5:2c:1c:b9:cb:9c:af: 05:36:00:b3:bc:b2:5f:0e:8c:c3:c6:1d:29:cb:d0:1e:55:67: 9d:ec:8f:cb:60:66:a7:41:5f:13:bd:54:42:26:b7:73:7c:8a: 7f:f6:fd:03:f5:58:2c:74:48:59:03:6e:39:22:dd:a6:fb:84: 7f:91:dd:a7:98:1c:90:8c:90:e2:da:18:df:23:72:20:14:d8: 24:fd:dc:4f:7b:9c:f7:4c:ac:4f:ff:42:e3:c5:f2:8d:e1:59: 16:db:73:11:f2:ea:00:cd:51:99:d9:f3:84:de:3c:f3:e8:64: e2:a8:57:c3:7e:15:aa:9d:14:5b:f4:42:b6:8e:16:26:4f:a2: 52:69:d8:7d:7d:e3:15:b8:b8:52:59:b9:14:85:a5:59:d3:25: 06:94:26:75:ee:64:9b:d9:8d:14:c0:e9:c8:c7:98:1a:2a:24: ca:a2:c4:39:2f:51:c8:d8:f9:9d:a7:b5:7d:7f:22:8b:aa:be: fe:b1:f2:21:bd:b2:24:53:97:0e:e2:8c:6b:05:c0:15:cf:1c: fc:b1:71:aa -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt9y1+IBABj/L3powD51YAuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZmVhZGJlOTQ1NmNlZDE4M2VhNTMzY2U2MWU5N2E5NTE2MTdmMTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2k+2cVK3d9dscabqDA0tc7VV8vG QRUeQ9nZK+HAl5BoLstPWUumXllI8TNDb8l7zIOQYaGdekWyye1drHcbO+fDOmbw Zuvfjnb/7Ti0nK6uK4ADYXADwbwQKXA8DOmYUh5msAkyDiMTMhL8CVJyYyKXmesT zB5KEG3Bc103Y6BJnItczkaN2q99Ay8SVojVnpJc9nO4dpS17ESFVlV6SdCJC89p biryTcs2WKujrr1w1wURevH3PQ7V75C99W+Wfr3dB7LvuJjsC01YujvY7rVWC059 kNzg3P2I8z5uLOywfr+5effgtwTZLopMo5yZ7WZJQMbDGxFaS+4cOJVetwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFF/q2+lFbO0YPqUzzmHpepUWF/ELMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvWC1yYjZVVnM3UmctcFRQT1llbDZsUllYOFFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQABSrYAwQA JUiDAwQALq+EAwQAW9WbAwQAwQhKMAwDBADCaIsDBADCaIwwDQYJKoZIhvcNAQEL BQADggEBAFNqdmN0rp/L+wBKK8h9c0+brI3eSAH94md+Yt9F/8W4CCpeh8vsufc5 ZR863NRgpSwcucucrwU2ALO8sl8OjMPGHSnL0B5VZ53sj8tgZqdBXxO9VEImt3N8 in/2/QP1WCx0SFkDbjki3ab7hH+R3aeYHJCMkOLaGN8jciAU2CT93E97nPdMrE// QuPF8o3hWRbbcxHy6gDNUZnZ84TePPPoZOKoV8N+FaqdFFv0QraOFiZPolJp2H19 4xW4uFJZuRSFpVnTJQaUJnXuZJvZjRTA6cjHmBoqJMqixDkvUcjY+Z2ntX1/Iouq vv6x8iG9siRTlw7ijGsFwBXPHPyxcao= -----END CERTIFICATE-----Generated at Thu Jan 15 17:02:50 2026 by rpki-client