This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/DeXRHNQguHL5MnAkd4vLEkBdPuk.roa File: DeXRHNQguHL5MnAkd4vLEkBdPuk.roa (raw, json) Hash identifier: jikgNispZLFdYZRRNfLqNGOKvltI0BZLoTS7Ocsy8To= Subject key identifier: 0D:E5:D1:1C:D4:20:B8:72:F9:32:70:24:77:8B:CB:12:40:5D:3E:E9 Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c Certificate serial: 019BF558689FDC3A5EC458E224054E3C326F Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/DeXRHNQguHL5MnAkd4vLEkBdPuk.roa Signing time: Sun 25 Jan 2026 13:29:30 +0000 ROA not before: Sun 25 Jan 2026 13:29:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25160 IP address blocks: 144.56.8.0/24 maxlen: 24 144.56.10.0/24 maxlen: 24 144.56.11.0/24 maxlen: 24 144.56.18.0/24 maxlen: 24 144.56.19.0/24 maxlen: 24 144.56.25.0/24 maxlen: 24 144.56.26.0/24 maxlen: 24 144.56.30.0/24 maxlen: 24 144.56.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.mft rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:58:68:9f:dc:3a:5e:c4:58:e2:24:05:4e:3c:32:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16055801b775e774306321455fd463fbd9273c4c Validity Not Before: Jan 25 13:29:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0de5d11cd420b872f9327024778bcb12405d3ee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:89:cc:49:7a:52:02:39:92:b9:fe:02:aa:cb: dc:1c:80:4b:e0:1d:a5:fe:13:e4:bf:88:7a:7c:cb: 6e:27:39:e7:16:60:5e:a3:9a:6c:68:7e:c9:50:86: 12:8a:55:cc:18:3b:99:f9:8c:f4:76:a2:10:a5:41: 66:d8:40:2f:c4:bd:6e:57:42:d5:d7:78:05:69:7a: 2b:6c:61:7b:ec:dc:53:5a:cf:8d:32:06:2a:5e:37: d8:97:ce:04:52:2c:77:8e:a8:91:a3:27:37:b1:1c: 09:af:17:e1:3d:83:de:23:3f:b6:aa:02:7b:c3:ca: 62:21:ea:4f:bd:9d:31:90:cf:34:0f:23:1b:ff:f4: 1d:9a:48:10:3c:21:ac:dc:6d:f4:49:58:6a:58:f9: 80:f5:fa:82:71:98:a6:12:5c:07:fb:cf:02:08:ef: 8d:d4:bb:b8:82:c3:b7:50:e4:1a:76:6d:f2:b2:6d: f6:bd:5f:d2:7e:c0:69:2a:f9:31:91:58:ac:ed:db: 8a:b7:07:2e:b7:63:42:7c:b4:ad:6b:b5:9b:a8:aa: a0:d9:62:5d:0e:ca:d9:c6:6c:7b:0b:22:19:e9:a7: e7:2b:93:a0:3f:62:c7:c8:de:96:61:43:71:b8:52: ce:fa:b4:20:d3:b4:9b:84:95:10:f9:df:b7:f2:bb: bc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E5:D1:1C:D4:20:B8:72:F9:32:70:24:77:8B:CB:12:40:5D:3E:E9 X509v3 Authority Key Identifier: keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/DeXRHNQguHL5MnAkd4vLEkBdPuk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.56.8.0/24 144.56.10.0/23 144.56.18.0/23 144.56.25.0-144.56.26.255 144.56.30.0/24 144.56.32.0/24 Signature Algorithm: sha256WithRSAEncryption 51:0b:7c:8d:9a:d9:00:a1:78:29:bc:bc:dc:a3:c5:33:72:d5: 65:92:b0:d4:83:fc:5b:6c:ef:e6:d1:1c:b7:ae:08:b8:4a:c7: 29:43:c7:a8:49:38:15:04:6c:62:72:79:5e:41:21:3c:98:a9: 97:ee:67:92:d7:14:29:3d:4e:b2:bc:fb:7c:4b:e1:49:bd:94: 85:83:fb:84:5d:19:85:1d:c9:04:6b:34:92:94:61:7f:bf:69: 9a:e5:b4:cb:98:11:7a:40:f5:89:99:c1:04:d4:43:30:3c:8d: 6a:f6:e9:bb:94:d9:25:50:4e:41:dd:47:9d:b2:f5:d4:6a:70: 59:91:24:d3:b8:1c:fd:31:a8:48:29:6e:c6:c9:ff:cc:ee:91: 97:16:3e:be:2d:11:b1:ee:5b:0b:41:8d:96:f6:c1:db:67:cf: 5b:fa:da:97:b8:b6:18:c4:ab:b9:d1:e0:3c:30:45:26:00:11: d0:62:01:b8:57:1e:b5:f0:d8:07:86:c7:19:99:95:5f:6e:d2: 16:82:be:b3:3c:1e:7f:0e:b8:69:90:ea:e8:1b:c9:0d:be:ca: eb:11:32:7f:44:5c:1b:0d:b7:f8:f4:d1:c5:c8:b0:2c:98:6d: 01:03:91:0b:4d:83:47:10:29:79:d7:76:ef:19:33:26:e7:80: 91:f6:ca:4c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZv1WGif3DpexFjiJAVOPDJvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MDU1ODAxYjc3NWU3NzQzMDYzMjE0NTVmZDQ2M2ZiZDky NzNjNGMwHhcNMjYwMTI1MTMyOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGU1ZDExY2Q0MjBiODcyZjkzMjcwMjQ3NzhiY2IxMjQwNWQzZWU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04nMSXpSAjmSuf4CqsvcHIBL4B2l /hPkv4h6fMtuJznnFmBeo5psaH7JUIYSilXMGDuZ+Yz0dqIQpUFm2EAvxL1uV0LV 13gFaXorbGF77NxTWs+NMgYqXjfYl84EUix3jqiRoyc3sRwJrxfhPYPeIz+2qgJ7 w8piIepPvZ0xkM80DyMb//QdmkgQPCGs3G30SVhqWPmA9fqCcZimElwH+88CCO+N 1Lu4gsO3UOQadm3ysm32vV/SfsBpKvkxkVis7duKtwcut2NCfLSta7WbqKqg2WJd DsrZxmx7CyIZ6afnK5OgP2LHyN6WYUNxuFLO+rQg07SbhJUQ+d+38ru8mQIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFA3l0RzUILhy+TJwJHeLyxJAXT7pMB8GA1UdIwQY MBaAFBYFWAG3ded0MGMhRV/UY/vZJzxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgt MTM1NzE3ZWYzODhhLzEvRGVYUkhOUWd1SEw1TW5Ba2Q0dkxFa0JkUHVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgtMTM1NzE3ZWYzODhh LzEvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAkDgIAwQB kDgKAwQBkDgSMAwDBACQOBkDBACQOBoDBACQOB4DBACQOCAwDQYJKoZIhvcNAQEL BQADggEBAFELfI2a2QCheCm8vNyjxTNy1WWSsNSD/Fts7+bRHLeuCLhKxylDx6hJ OBUEbGJyeV5BITyYqZfuZ5LXFCk9TrK8+3xL4Um9lIWD+4RdGYUdyQRrNJKUYX+/ aZrltMuYEXpA9YmZwQTUQzA8jWr26buU2SVQTkHdR52y9dRqcFmRJNO4HP0xqEgp bsbJ/8zukZcWPr4tEbHuWwtBjZb2wdtnz1v62pe4thjEq7nR4DwwRSYAEdBiAbhX HrXw2AeGxxmZlV9u0haCvrM8Hn8OuGmQ6ugbyQ2+yusRMn9EXBsNt/j00cXIsCyY bQEDkQtNg0cQKXnXdu8ZMybngJH2ykw= -----END CERTIFICATE-----Generated at Tue Feb 10 01:49:08 2026 by rpki-client