This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e50f54-6fdd-4fe9-9fe9-6aaa6b02160d/1/ImCcU51kmp7ZNuk8BkyjSggDVFA.roa File: ImCcU51kmp7ZNuk8BkyjSggDVFA.roa (raw, json) Hash identifier: n45aVak3x5Ct/6DqnZqytEQSgKOpMfagR6z98qYO7lY= Subject key identifier: 22:60:9C:53:9D:64:9A:9E:D9:36:E9:3C:06:4C:A3:4A:08:03:54:50 Certificate issuer: /CN=cf4a717f8fa1bb0359274223acdae22b70e66bec Certificate serial: 019B7910CB449A07032FC45DC87F1FF6A578 Authority key identifier: CF:4A:71:7F:8F:A1:BB:03:59:27:42:23:AC:DA:E2:2B:70:E6:6B:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0pxf4-huwNZJ0IjrNriK3Dma-w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e50f54-6fdd-4fe9-9fe9-6aaa6b02160d/1/ImCcU51kmp7ZNuk8BkyjSggDVFA.roa Signing time: Thu 01 Jan 2026 10:18:22 +0000 ROA not before: Thu 01 Jan 2026 10:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21127 IP address blocks: 37.49.192.0/19 maxlen: 32 37.205.48.0/21 maxlen: 32 37.205.64.0/19 maxlen: 32 46.50.128.0/17 maxlen: 32 46.241.0.0/17 maxlen: 32 91.105.128.0/18 maxlen: 32 109.171.0.0/17 maxlen: 32 188.44.96.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/e50f54-6fdd-4fe9-9fe9-6aaa6b02160d/1/z0pxf4-huwNZJ0IjrNriK3Dma-w.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/e50f54-6fdd-4fe9-9fe9-6aaa6b02160d/1/z0pxf4-huwNZJ0IjrNriK3Dma-w.mft rsync://rpki.ripe.net/repository/DEFAULT/z0pxf4-huwNZJ0IjrNriK3Dma-w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 01 Feb 2026 08:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:cb:44:9a:07:03:2f:c4:5d:c8:7f:1f:f6:a5:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf4a717f8fa1bb0359274223acdae22b70e66bec Validity Not Before: Jan 1 10:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22609c539d649a9ed936e93c064ca34a08035450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:38:d1:31:9f:5a:2a:9a:7f:63:9c:81:85:e3: 30:6a:37:92:b6:03:53:d2:fd:40:3e:96:d2:ac:f5: 38:9c:55:a1:ee:18:d1:08:a0:77:cb:38:44:f0:3e: 02:01:be:80:5f:a4:bb:b7:c9:36:3e:23:80:37:53: 48:15:a0:c0:be:e3:ed:77:4f:4e:4e:97:46:b3:70: 7b:bd:13:05:1f:61:8c:45:d4:5e:6d:64:dd:0d:22: 15:5d:c8:53:e7:67:48:c8:8f:83:54:8a:46:86:10: a8:df:d8:5c:c5:3f:82:0a:4a:11:30:5a:79:e0:fb: d4:d2:2c:f3:9c:94:3f:c6:f4:b9:73:41:f4:7a:94: 6a:34:82:ba:82:d7:5b:35:9b:aa:21:b8:b2:98:84: 94:2a:73:7c:1c:a5:5b:e7:88:99:d2:48:19:21:5c: 41:2b:1e:8e:30:54:9b:e8:08:39:b8:05:b1:e2:7c: d7:e2:81:b3:cc:53:f6:68:2f:11:2f:15:bc:e1:2b: 37:e1:d9:58:60:4b:03:8c:f8:e9:a5:2b:8f:00:1c: a3:57:f0:f6:d1:ca:16:17:7e:1e:31:cd:47:ff:00: 35:f9:ab:83:71:12:67:20:92:06:71:bd:9f:3b:59: c3:9e:9b:cf:00:67:bf:22:fb:4d:45:ac:1b:56:92: 88:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:60:9C:53:9D:64:9A:9E:D9:36:E9:3C:06:4C:A3:4A:08:03:54:50 X509v3 Authority Key Identifier: keyid:CF:4A:71:7F:8F:A1:BB:03:59:27:42:23:AC:DA:E2:2B:70:E6:6B:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0pxf4-huwNZJ0IjrNriK3Dma-w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e50f54-6fdd-4fe9-9fe9-6aaa6b02160d/1/ImCcU51kmp7ZNuk8BkyjSggDVFA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e50f54-6fdd-4fe9-9fe9-6aaa6b02160d/1/z0pxf4-huwNZJ0IjrNriK3Dma-w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.49.192.0/19 37.205.48.0/21 37.205.64.0/19 46.50.128.0/17 46.241.0.0/17 91.105.128.0/18 109.171.0.0/17 188.44.96.0/19 Signature Algorithm: sha256WithRSAEncryption 7e:ad:2a:a5:bd:0b:5b:ec:04:c5:a2:0b:41:ff:0b:34:31:91: 17:86:12:25:b5:05:76:81:8a:15:db:1c:a4:a8:a9:b6:fd:db: cf:5e:2c:48:ec:df:db:87:cb:af:bc:c0:9c:04:7c:4a:33:59: 27:38:ad:05:16:69:60:cd:ea:89:b0:3f:1e:ff:92:46:19:9f: 0c:06:c3:70:7d:6d:6d:30:3e:76:54:da:8b:8d:8f:6f:dd:05: b7:dd:ad:ed:8c:61:79:56:ed:79:5e:23:c4:fe:3b:04:0d:20: 52:06:c2:a8:21:54:15:97:34:c0:e4:dd:d4:19:ec:a5:37:6b: 3d:1b:c6:b5:ca:6e:f2:7b:87:30:6b:36:2e:6b:7e:b3:69:31: d5:3a:e0:8e:28:02:80:39:ef:2d:6a:57:8a:0c:24:e3:be:b6: 7d:f3:70:c7:1b:ab:eb:9b:ff:ad:84:f3:71:0a:4c:6d:39:cb: 65:65:50:de:7c:80:49:81:55:9e:1f:26:fc:e8:cf:40:b4:21: 71:87:b7:c6:8e:84:30:0c:1a:52:ac:5d:fb:90:75:46:a4:b5: 1c:45:c4:4d:97:ad:0c:ee:3d:d1:e8:34:ec:8e:47:20:2c:c9: 73:dd:b8:5e:1b:d2:41:b6:25:aa:20:d3:56:cd:bd:40:c3:26: e6:58:de:f3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt5EMtEmgcDL8RdyH8f9qV4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNGE3MTdmOGZhMWJiMDM1OTI3NDIyM2FjZGFlMjJiNzBl NjZiZWMwHhcNMjYwMTAxMTAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjYwOWM1MzlkNjQ5YTllZDkzNmU5M2MwNjRjYTM0YTA4MDM1NDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjjRMZ9aKpp/Y5yBheMwajeStgNT 0v1APpbSrPU4nFWh7hjRCKB3yzhE8D4CAb6AX6S7t8k2PiOAN1NIFaDAvuPtd09O TpdGs3B7vRMFH2GMRdRebWTdDSIVXchT52dIyI+DVIpGhhCo39hcxT+CCkoRMFp5 4PvU0izznJQ/xvS5c0H0epRqNIK6gtdbNZuqIbiymISUKnN8HKVb54iZ0kgZIVxB Kx6OMFSb6Ag5uAWx4nzX4oGzzFP2aC8RLxW84Ss34dlYYEsDjPjppSuPAByjV/D2 0coWF34eMc1H/wA1+auDcRJnIJIGcb2fO1nDnpvPAGe/IvtNRawbVpKIXwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFCJgnFOdZJqe2TbpPAZMo0oIA1RQMB8GA1UdIwQY MBaAFM9KcX+PobsDWSdCI6za4itw5mvsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejBweGY0LWh1d05aSjBJanJOcmlLM0RtYS13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9lNTBmNTQtNmZkZC00ZmU5LTlmZTkt NmFhYTZiMDIxNjBkLzEvSW1DY1U1MWttcDdaTnVrOEJreWpTZ2dEVkZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC9lNTBmNTQtNmZkZC00ZmU5LTlmZTktNmFhYTZiMDIxNjBk LzEvejBweGY0LWh1d05aSjBJanJOcmlLM0RtYS13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQFJTHAAwQD Jc0wAwQFJc1AAwQHLjKAAwQHLvEAAwQGW2mAAwQHbasAAwQFvCxgMA0GCSqGSIb3 DQEBCwUAA4IBAQB+rSqlvQtb7ATFogtB/ws0MZEXhhIltQV2gYoV2xykqKm2/dvP XixI7N/bh8uvvMCcBHxKM1knOK0FFmlgzeqJsD8e/5JGGZ8MBsNwfW1tMD52VNqL jY9v3QW33a3tjGF5Vu15XiPE/jsEDSBSBsKoIVQVlzTA5N3UGeylN2s9G8a1ym7y e4cwazYua36zaTHVOuCOKAKAOe8taleKDCTjvrZ983DHG6vrm/+thPNxCkxtOctl ZVDefIBJgVWeHyb86M9AtCFxh7fGjoQwDBpSrF37kHVGpLUcRcRNl60M7j3R6DTs jkcgLMlz3bheG9JBtiWqINNWzb1AwybmWN7z -----END CERTIFICATE-----Generated at Sat Jan 31 14:00:39 2026 by rpki-client