This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/AC29mqSFNXvPPi9m9iF3Fl29J4s.roa File: AC29mqSFNXvPPi9m9iF3Fl29J4s.roa (raw, json) Hash identifier: W1ZVYXnwAscCXdHs6g0kVfQ6FtPNyBfh/vBTclJJbzQ= Subject key identifier: 00:2D:BD:9A:A4:85:35:7B:CF:3E:2F:66:F6:21:77:16:5D:BD:27:8B Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019B76EB00A131935877461769CC334FF8E1 Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/AC29mqSFNXvPPi9m9iF3Fl29J4s.roa Signing time: Thu 01 Jan 2026 00:17:50 +0000 ROA not before: Thu 01 Jan 2026 00:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213122 IP address blocks: 5.226.52.0/22 maxlen: 24 43.225.88.0/23 maxlen: 24 45.139.6.0/23 maxlen: 24 46.249.97.0/24 maxlen: 24 155.254.96.0/22 maxlen: 24 178.173.232.0/22 maxlen: 24 178.173.236.0/22 maxlen: 24 178.173.242.0/23 maxlen: 24 178.173.244.0/22 maxlen: 24 185.215.246.0/24 maxlen: 24 188.209.156.0/22 maxlen: 24 188.253.28.0/22 maxlen: 24 188.253.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:00:a1:31:93:58:77:46:17:69:cc:33:4f:f8:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Jan 1 00:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=002dbd9aa485357bcf3e2f66f62177165dbd278b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fa:27:eb:9e:b2:dd:73:85:a4:64:3d:bb:b7: 24:d8:67:72:34:1a:8b:2d:49:5c:c6:2a:db:c3:78: dd:db:51:c1:ce:5d:f7:5d:b1:c0:31:6f:f4:b8:d2: 98:4d:57:37:59:85:05:b0:b6:fc:4f:54:de:65:eb: 7a:1b:06:2d:d8:68:8c:1b:d5:39:d2:d9:0a:c4:bc: a8:e3:92:fe:53:e8:b0:a3:6b:56:3a:07:b7:cf:ed: 50:f4:64:89:ab:6a:b3:86:50:12:11:78:cc:67:01: 9b:44:0f:e6:48:a4:c4:e7:df:f7:34:40:b2:55:89: f9:fb:f8:b3:d6:a9:75:df:76:20:0b:9f:41:21:ad: e1:19:18:d5:10:6f:01:ea:86:cd:9b:b3:29:34:ea: a0:e7:fb:11:a3:aa:cd:55:a4:49:5e:cd:9a:bb:87: 6a:e5:46:d0:25:da:2f:1f:b4:1a:73:32:4f:59:ca: dc:ac:9b:ac:d1:41:a6:bb:ef:f5:48:a9:2b:92:0e: 8b:5b:8b:ad:14:f2:8c:57:3c:6e:0d:35:68:b3:7e: 1f:c4:3a:84:91:bc:12:33:fa:ef:ef:da:8c:d4:09: fc:50:03:4c:62:72:89:51:87:2b:4c:0c:9e:4f:aa: 5f:5f:81:90:de:3a:68:bc:e9:62:79:8c:b3:ca:2d: 88:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2D:BD:9A:A4:85:35:7B:CF:3E:2F:66:F6:21:77:16:5D:BD:27:8B X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/AC29mqSFNXvPPi9m9iF3Fl29J4s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.226.52.0/22 43.225.88.0/23 45.139.6.0/23 46.249.97.0/24 155.254.96.0/22 178.173.232.0/21 178.173.242.0-178.173.247.255 185.215.246.0/24 188.209.156.0/22 188.253.28.0/22 188.253.104.0/21 Signature Algorithm: sha256WithRSAEncryption a5:2b:15:f6:91:cd:a7:8a:75:d0:60:85:11:02:d5:4d:5c:76: c7:4f:c1:ec:03:87:fc:6d:f9:52:66:99:dd:03:a5:3e:ac:37: 86:31:1e:67:18:5a:74:5b:84:ab:d6:ba:1d:db:39:0f:4d:3c: 7a:2f:24:e8:61:cd:95:79:6f:2f:36:27:36:1a:71:a8:83:7d: 06:7c:6b:dc:c8:de:cd:cf:f6:e7:e1:a4:39:34:f1:84:37:8d: 07:cc:89:28:23:83:f2:54:36:f0:e3:92:c6:de:51:52:9c:40: 16:f0:f0:f8:28:60:f5:d1:f2:90:52:74:ec:79:45:37:50:f0: f4:33:ce:df:b9:42:9c:53:da:44:aa:21:db:0a:b5:82:6a:0d: 22:fe:cd:28:d8:9f:94:37:36:55:64:1b:81:e3:9e:24:df:c3: 82:4b:f2:8b:44:18:43:ee:a7:cf:03:27:ce:75:21:a6:1a:c2: 46:20:e8:10:de:fd:0d:6a:34:7c:84:fa:bd:d9:01:ac:7b:d2: 8e:9f:be:7b:f1:b1:12:0e:f2:63:31:4d:b1:91:ff:35:93:c4: 89:a2:2a:c6:0b:61:f7:39:bd:31:9f:e0:23:28:6c:48:c5:c7: f2:7c:7d:69:39:e3:83:89:da:56:9b:3d:f6:99:45:56:86:f9: 39:2c:9d:da -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgISAZt26wChMZNYd0YXacwzT/jhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjYwMTAxMDAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDJkYmQ5YWE0ODUzNTdiY2YzZTJmNjZmNjIxNzcxNjVkYmQyNzhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/on656y3XOFpGQ9u7ck2GdyNBqL LUlcxirbw3jd21HBzl33XbHAMW/0uNKYTVc3WYUFsLb8T1TeZet6GwYt2GiMG9U5 0tkKxLyo45L+U+iwo2tWOge3z+1Q9GSJq2qzhlASEXjMZwGbRA/mSKTE59/3NECy VYn5+/iz1ql133YgC59BIa3hGRjVEG8B6obNm7MpNOqg5/sRo6rNVaRJXs2au4dq 5UbQJdovH7QaczJPWcrcrJus0UGmu+/1SKkrkg6LW4utFPKMVzxuDTVos34fxDqE kbwSM/rv79qM1An8UANMYnKJUYcrTAyeT6pfX4GQ3jpovOlieYyzyi2IDwIDAQAB o4ICTTCCAkkwHQYDVR0OBBYEFAAtvZqkhTV7zz4vZvYhdxZdvSeLMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvQUMyOW1xU0ZOWHZQUGk5bTlpRjNGbDI5SjRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKAwQCBeI0AwQB K+FYAwQBLYsGAwQALvlhAwQCm/5gAwQDsq3oMAwDBAGyrfIDBAOyrfADBAC51/YD BAK80ZwDBAK8/RwDBAO8/WgwDQYJKoZIhvcNAQELBQADggEBAKUrFfaRzaeKddBg hREC1U1cdsdPwewDh/xt+VJmmd0DpT6sN4YxHmcYWnRbhKvWuh3bOQ9NPHovJOhh zZV5by82JzYacaiDfQZ8a9zI3s3P9ufhpDk08YQ3jQfMiSgjg/JUNvDjksbeUVKc QBbw8PgoYPXR8pBSdOx5RTdQ8PQzzt+5QpxT2kSqIdsKtYJqDSL+zSjYn5Q3NlVk G4HjniTfw4JL8otEGEPup88DJ851IaYawkYg6BDe/Q1qNHyE+r3ZAax70o6fvnvx sRIO8mMxTbGR/zWTxImiKsYLYfc5vTGf4CMobEjFx/J8fWk544OJ2labPfaZRVaG +Tksndo= -----END CERTIFICATE-----Generated at Mon Jan 19 17:47:28 2026 by rpki-client