This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/590jpJtvHm4aq9pkOcasjjPKR5w.roa File: 590jpJtvHm4aq9pkOcasjjPKR5w.roa (raw, json) Hash identifier: wNrNH6FKCaxwz0q75agrzuG0OijfKBZxBY6JT4ecZe4= Subject key identifier: E7:DD:23:A4:9B:6F:1E:6E:1A:AB:DA:64:39:C6:AC:8E:33:CA:47:9C Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019B7E3921F46CDE594D0AD78DE07B103A7A Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/590jpJtvHm4aq9pkOcasjjPKR5w.roa Signing time: Fri 02 Jan 2026 10:20:32 +0000 ROA not before: Fri 02 Jan 2026 10:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6079 IP address blocks: 72.63.0.0/22 maxlen: 22 72.63.28.0/22 maxlen: 22 72.63.60.0/22 maxlen: 22 72.63.92.0/22 maxlen: 22 72.63.124.0/22 maxlen: 22 72.63.156.0/22 maxlen: 22 72.63.188.0/22 maxlen: 22 72.63.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:21:f4:6c:de:59:4d:0a:d7:8d:e0:7b:10:3a:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Jan 2 10:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7dd23a49b6f1e6e1aabda6439c6ac8e33ca479c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:68:70:23:9c:0d:d4:39:f6:cb:36:23:6e:e6: 67:ff:15:79:6d:e3:03:9e:d6:58:ae:3e:7f:a1:fb: e4:59:de:b5:dd:b2:a2:a0:a0:e9:e3:8b:47:d8:ce: f1:c4:d8:5c:66:f2:be:bf:75:1e:9a:65:47:44:26: ad:37:5b:5c:b4:cf:b8:cd:03:d7:08:93:9b:0a:a4: bd:f7:9c:58:61:66:0c:dc:7f:30:60:53:c9:80:4f: a1:7a:53:4d:95:34:8c:8d:1d:d6:17:ab:0b:1b:af: 6d:1a:63:7e:29:84:10:56:6e:c9:b9:12:b0:95:27: 55:fe:71:20:29:20:30:59:8b:8a:51:ba:9a:d1:52: 49:b5:09:16:a5:94:a4:95:c8:56:75:fa:68:48:d3: d6:90:56:9f:40:6e:ac:81:74:3e:ce:20:e2:40:bc: 40:e1:80:8a:59:42:8a:61:4c:9f:b9:71:46:bf:7d: 89:b1:33:6e:d0:aa:cc:6e:c6:6e:a5:2f:bc:45:93: f7:f7:6d:e7:39:37:f7:53:fa:71:9a:0e:60:50:b1: c1:0b:3e:99:e0:02:06:75:4c:b9:56:a3:90:27:59: 74:67:76:ee:6a:2b:f3:91:b4:dc:57:7c:c3:71:5e: e4:46:65:88:38:fa:73:43:cf:73:38:0e:b1:91:e2: af:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DD:23:A4:9B:6F:1E:6E:1A:AB:DA:64:39:C6:AC:8E:33:CA:47:9C X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/590jpJtvHm4aq9pkOcasjjPKR5w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.63.0.0/22 72.63.28.0/22 72.63.60.0/22 72.63.92.0/22 72.63.124.0/22 72.63.156.0/22 72.63.188.0/22 72.63.220.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:58:1c:3e:8f:8e:53:b0:63:6d:cc:b0:97:69:8d:26:b1:8d: c2:ef:fc:52:c3:31:39:df:61:07:96:ed:16:27:2e:5c:93:50: c1:4d:0d:56:29:2d:4e:af:18:2f:cd:9a:6e:e4:08:e5:e3:c0: 65:b8:af:7c:ab:b1:3e:7f:64:c7:db:b0:e2:12:f4:de:5a:8d: 51:e9:7f:08:38:ad:7c:36:32:20:30:fc:58:9f:fe:75:dc:23: 9f:34:c4:d8:1d:24:0d:78:9d:7d:90:9e:c1:49:87:26:fb:96: 1c:0d:c0:16:e6:c1:02:d8:77:51:ac:8c:05:5e:9b:1b:39:ca: 07:16:14:d2:01:22:dd:4d:07:af:49:8c:12:87:ac:1e:bc:3a: eb:40:c2:87:33:d9:2d:e9:b9:08:9c:43:cb:06:09:d5:60:83: ac:e4:09:c0:95:a3:c3:77:ee:61:02:40:92:a0:df:05:67:77: 82:51:dc:4c:e0:fe:91:25:8e:f8:b1:33:4d:7d:03:a9:fd:0c: 26:7c:14:c8:de:d8:ab:f0:cc:47:42:44:56:6f:d9:87:ea:d5: f4:0a:02:44:0f:24:15:90:0a:c4:6a:90:af:fb:81:4c:fb:76: c5:a0:9e:47:55:d0:75:f4:65:f5:6a:f7:1d:c7:b0:96:ba:57: 5d:fa:e1:83 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt+OSH0bN5ZTQrXjeB7EDp6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjYwMTAyMTAyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2RkMjNhNDliNmYxZTZlMWFhYmRhNjQzOWM2YWM4ZTMzY2E0NzljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGhwI5wN1Dn2yzYjbuZn/xV5beMD ntZYrj5/ofvkWd613bKioKDp44tH2M7xxNhcZvK+v3UemmVHRCatN1tctM+4zQPX CJObCqS995xYYWYM3H8wYFPJgE+helNNlTSMjR3WF6sLG69tGmN+KYQQVm7JuRKw lSdV/nEgKSAwWYuKUbqa0VJJtQkWpZSklchWdfpoSNPWkFafQG6sgXQ+ziDiQLxA 4YCKWUKKYUyfuXFGv32JsTNu0KrMbsZupS+8RZP3923nOTf3U/pxmg5gULHBCz6Z 4AIGdUy5VqOQJ1l0Z3buaivzkbTcV3zDcV7kRmWIOPpzQ89zOA6xkeKvXQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFOfdI6Sbbx5uGqvaZDnGrI4zykecMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvNTkwanBKdHZIbTRhcTlwa09jYXNqalBLUjV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCSD8AAwQC SD8cAwQCSD88AwQCSD9cAwQCSD98AwQCSD+cAwQCSD+8AwQCSD/cMA0GCSqGSIb3 DQEBCwUAA4IBAQCOWBw+j45TsGNtzLCXaY0msY3C7/xSwzE532EHlu0WJy5ck1DB TQ1WKS1OrxgvzZpu5Ajl48BluK98q7E+f2TH27DiEvTeWo1R6X8IOK18NjIgMPxY n/513COfNMTYHSQNeJ19kJ7BSYcm+5YcDcAW5sEC2HdRrIwFXpsbOcoHFhTSASLd TQevSYwSh6wevDrrQMKHM9kt6bkInEPLBgnVYIOs5AnAlaPDd+5hAkCSoN8FZ3eC UdxM4P6RJY74sTNNfQOp/QwmfBTI3tir8MxHQkRWb9mH6tX0CgJEDyQVkArEapCv +4FM+3bFoJ5HVdB19GX1avcdx7CWuldd+uGD -----END CERTIFICATE-----Generated at Mon Jan 19 16:55:51 2026 by rpki-client