This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/SSwmkO4bAa3Cf5CCG9FUvkP7lr0.roa File: SSwmkO4bAa3Cf5CCG9FUvkP7lr0.roa (raw, json) Hash identifier: Ha81Wfoc35Apd2MzoqOASambEnENvmJSJQLlpgCS2Bc= Subject key identifier: 49:2C:26:90:EE:1B:01:AD:C2:7F:90:82:1B:D1:54:BE:43:FB:96:BD Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019B7E392645F8819A56AA680190E7A4A210 Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/SSwmkO4bAa3Cf5CCG9FUvkP7lr0.roa Signing time: Fri 02 Jan 2026 10:20:33 +0000 ROA not before: Fri 02 Jan 2026 10:20:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30633 IP address blocks: 72.63.8.0/22 maxlen: 22 72.63.24.0/22 maxlen: 22 72.63.32.0/22 maxlen: 22 72.63.40.0/22 maxlen: 22 72.63.44.0/22 maxlen: 22 72.63.56.0/22 maxlen: 22 72.63.64.0/22 maxlen: 22 72.63.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:26:45:f8:81:9a:56:aa:68:01:90:e7:a4:a2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Jan 2 10:20:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=492c2690ee1b01adc27f90821bd154be43fb96bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b0:f0:9a:f6:df:a0:1b:78:79:bc:00:05:19: 6f:fa:56:9b:a8:d4:86:a2:3b:13:82:f0:20:47:de: a3:a2:55:26:7c:61:8d:9e:3d:aa:ac:a2:70:71:8d: e5:b9:a0:63:f0:82:fc:6d:29:3c:39:8b:dd:d8:0f: 1a:97:3b:f9:7c:03:14:34:96:49:0a:bb:65:03:b7: 5a:4f:b2:f4:ed:ce:48:9a:9f:19:bb:96:40:9a:ea: 47:f9:dd:40:14:2a:72:01:a2:f6:a8:73:aa:b5:08: ac:51:fb:61:63:7c:7f:65:a1:87:9c:9a:b5:30:35: 27:38:8b:6a:0b:07:f6:35:ac:0c:91:69:63:ee:40: 57:d3:04:5b:0a:8b:64:a3:54:81:de:1e:9a:ef:bd: 34:2b:01:8f:ce:83:7b:b0:92:04:63:06:12:14:6c: 7a:dc:5c:29:9d:d1:57:62:ba:6f:bf:94:3b:f6:83: 44:e2:79:01:66:01:9b:b5:86:44:09:69:ab:a7:b6: 6c:f4:dd:04:a7:7b:d6:99:fd:b7:01:ae:ed:8b:61: 43:f2:6d:5c:2c:76:92:4d:8d:9e:42:41:eb:7c:40: 9f:5f:95:eb:4c:3a:43:4f:d5:1d:f7:06:26:37:52: db:ca:9f:80:e2:e8:ea:e7:be:c2:4e:2a:aa:b5:e6: 1e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2C:26:90:EE:1B:01:AD:C2:7F:90:82:1B:D1:54:BE:43:FB:96:BD X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/SSwmkO4bAa3Cf5CCG9FUvkP7lr0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.63.8.0/22 72.63.24.0/22 72.63.32.0/22 72.63.40.0/21 72.63.56.0/22 72.63.64.0/22 72.63.152.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:d7:2b:0b:3e:80:02:cb:11:f1:c3:f7:ab:fe:98:51:82:5b: b2:62:d4:92:35:df:30:35:9d:f6:4c:2e:19:f4:9f:e7:9e:88: da:e0:c5:5f:4d:ec:96:f7:2f:e9:39:a6:0b:d3:82:81:65:61: a1:1c:17:6c:d9:6d:1a:e0:6b:e1:b2:c6:51:c3:1e:45:47:bb: dd:f8:27:a6:3b:b6:fb:39:2b:85:71:e0:d5:e5:d1:45:5f:a0: 99:eb:5f:9b:64:cf:57:a7:06:2e:b7:16:9a:7b:19:7a:a3:a4: ba:4a:2d:56:59:88:90:7f:4f:dc:a7:5d:74:21:d7:22:ed:0d: 44:de:15:0e:cf:1c:ef:2e:53:69:a1:62:81:cd:54:7c:cd:c9: 3b:40:53:1c:df:da:7f:e1:af:17:d1:96:be:b1:1f:19:86:9b: 09:d8:49:54:a2:38:cf:d0:d7:9d:9d:eb:1b:f1:a6:0d:59:59: 10:9f:d8:2c:4d:64:8b:2f:1c:94:f2:1c:2f:0b:4c:62:c4:bc: 05:96:56:3c:f0:ad:e9:0a:ad:3c:6c:7f:e8:35:42:9e:44:e1: f8:ba:75:fb:c0:6d:31:7b:02:a6:a4:f7:a1:e9:2f:45:7c:ce: ca:bf:bd:d5:71:d0:c6:87:5a:88:29:27:ab:de:0e:68:31:a3: ac:88:1a:e8 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt+OSZF+IGaVqpoAZDnpKIQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjYwMTAyMTAyMDMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTJjMjY5MGVlMWIwMWFkYzI3ZjkwODIxYmQxNTRiZTQzZmI5NmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrDwmvbfoBt4ebwABRlv+labqNSG ojsTgvAgR96jolUmfGGNnj2qrKJwcY3luaBj8IL8bSk8OYvd2A8alzv5fAMUNJZJ CrtlA7daT7L07c5Imp8Zu5ZAmupH+d1AFCpyAaL2qHOqtQisUfthY3x/ZaGHnJq1 MDUnOItqCwf2NawMkWlj7kBX0wRbCotko1SB3h6a7700KwGPzoN7sJIEYwYSFGx6 3FwpndFXYrpvv5Q79oNE4nkBZgGbtYZECWmrp7Zs9N0Ep3vWmf23Aa7ti2FD8m1c LHaSTY2eQkHrfECfX5XrTDpDT9Ud9wYmN1Lbyp+A4ujq577CTiqqteYeMwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFEksJpDuGwGtwn+QghvRVL5D+5a9MB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvU1N3bWtPNGJBYTNDZjVDQ0c5RlV2a1A3bHIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCSD8IAwQC SD8YAwQCSD8gAwQDSD8oAwQCSD84AwQCSD9AAwQCSD+YMA0GCSqGSIb3DQEBCwUA A4IBAQAt1ysLPoACyxHxw/er/phRgluyYtSSNd8wNZ32TC4Z9J/nnoja4MVfTeyW 9y/pOaYL04KBZWGhHBds2W0a4GvhssZRwx5FR7vd+CemO7b7OSuFceDV5dFFX6CZ 61+bZM9XpwYutxaaexl6o6S6Si1WWYiQf0/cp110Idci7Q1E3hUOzxzvLlNpoWKB zVR8zck7QFMc39p/4a8X0Za+sR8ZhpsJ2ElUojjP0Nednesb8aYNWVkQn9gsTWSL LxyU8hwvC0xixLwFllY88K3pCq08bH/oNUKeROH4unX7wG0xewKmpPeh6S9FfM7K v73VcdDGh1qIKSer3g5oMaOsiBro -----END CERTIFICATE-----Generated at Tue Jan 20 12:27:27 2026 by rpki-client