This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/kC0XjTRvVTMNVCz_-oosCISvjVg.roa File: kC0XjTRvVTMNVCz_-oosCISvjVg.roa (raw, json) Hash identifier: J4jOxS7kdGhXEFl4JYTJOpbh2muE4HF0FfSXnK3e23s= Subject key identifier: 90:2D:17:8D:34:6F:55:33:0D:54:2C:FF:FA:8A:2C:08:84:AF:8D:58 Certificate issuer: /CN=ef9d763b49e024a7b6a19eaf7dfb98911a9c94c8 Certificate serial: 019B7E38ADD79F7D2A215EE7D7D6589C9621 Authority key identifier: EF:9D:76:3B:49:E0:24:A7:B6:A1:9E:AF:7D:FB:98:91:1A:9C:94:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7512O0ngJKe2oZ6vffuYkRqclMg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/kC0XjTRvVTMNVCz_-oosCISvjVg.roa Signing time: Fri 02 Jan 2026 10:20:02 +0000 ROA not before: Fri 02 Jan 2026 10:20:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 5.182.22.0/24 maxlen: 24 2a0e:b800:aaaa::/48 maxlen: 48 2a0e:b800:abcd::/48 maxlen: 48 2a0e:b800:baba::/48 maxlen: 48 2a0e:b800:bbaa::/48 maxlen: 48 2a0e:b800:bbbb::/48 maxlen: 48 2a0e:b800:cccc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/7512O0ngJKe2oZ6vffuYkRqclMg.crl rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/7512O0ngJKe2oZ6vffuYkRqclMg.mft rsync://rpki.ripe.net/repository/DEFAULT/7512O0ngJKe2oZ6vffuYkRqclMg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 19:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:ad:d7:9f:7d:2a:21:5e:e7:d7:d6:58:9c:96:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef9d763b49e024a7b6a19eaf7dfb98911a9c94c8 Validity Not Before: Jan 2 10:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=902d178d346f55330d542cfffa8a2c0884af8d58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bb:14:08:f3:3e:93:cc:37:60:75:5a:95:e2: d6:a5:62:2a:8b:6e:6e:6a:85:d4:fe:cb:f7:0b:14: 34:89:8f:1a:aa:7d:73:17:27:6f:f8:32:5b:b3:47: ad:d8:1d:a3:89:0c:55:72:63:99:af:16:00:27:f6: c6:73:72:8a:a7:8b:52:44:c5:71:2d:ee:71:4e:37: ef:0d:4a:e5:dd:a4:39:3c:44:28:fd:3e:ed:89:2c: f8:53:b6:f2:d8:13:df:3d:01:e6:97:83:3b:a5:78: cc:29:9f:35:ae:8e:22:2c:1f:6e:cf:9a:85:49:22: 92:d9:ea:f4:43:35:75:f0:b6:1d:2b:09:df:45:16: b6:df:77:7a:25:04:5d:51:11:75:e9:c9:dc:7b:f3: f6:b7:10:89:dd:01:e2:a7:c1:de:70:f8:24:25:af: e9:b7:7b:92:d4:b9:71:f9:7f:68:18:94:8c:a2:f4: fc:35:00:d8:3c:21:87:39:bd:14:fe:26:00:30:7d: ab:c8:a2:91:56:27:fe:bd:91:ca:4f:3f:ed:b0:64: 82:a9:6b:28:4c:35:70:49:37:7b:42:53:dd:39:21: 6c:51:e3:ba:3e:d6:66:87:61:ce:9a:1c:a7:4d:43: 5b:37:0c:d2:2a:65:f7:16:1a:98:da:a4:4e:e1:a9: 3a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2D:17:8D:34:6F:55:33:0D:54:2C:FF:FA:8A:2C:08:84:AF:8D:58 X509v3 Authority Key Identifier: keyid:EF:9D:76:3B:49:E0:24:A7:B6:A1:9E:AF:7D:FB:98:91:1A:9C:94:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7512O0ngJKe2oZ6vffuYkRqclMg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/kC0XjTRvVTMNVCz_-oosCISvjVg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/7512O0ngJKe2oZ6vffuYkRqclMg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.22.0/24 IPv6: 2a0e:b800:aaaa::/48 2a0e:b800:abcd::/48 2a0e:b800:baba::/48 2a0e:b800:bbaa::/48 2a0e:b800:bbbb::/48 2a0e:b800:cccc::/48 Signature Algorithm: sha256WithRSAEncryption 1a:20:3e:fd:84:10:13:63:d3:1f:f1:43:74:50:4f:ca:5f:69: 8e:d9:ee:49:38:d5:08:f5:cc:2b:b7:17:22:ec:a3:b1:fb:10: d8:cf:51:c8:b0:61:72:f1:75:e5:8d:ab:46:a5:93:d2:14:aa: 3c:e4:5a:32:80:e6:d2:cc:7c:ef:e7:67:dd:38:6a:62:b7:4f: a8:50:5d:36:10:bd:6f:f0:45:37:46:d6:22:57:df:99:33:23: 43:15:a9:e5:9f:2e:3e:26:a8:0d:73:7d:86:db:73:d6:8f:af: ea:8c:ba:76:22:92:95:04:84:87:f4:b6:75:11:65:b6:51:b1: 4d:8d:b5:eb:c5:03:3c:03:a7:c1:fa:f7:52:5e:e5:69:be:d2: ba:b6:5f:4d:28:ff:7a:c7:b3:42:43:f7:42:5a:e9:ea:6f:a2: 59:c4:95:a0:0f:a2:bb:ff:64:13:6e:5c:69:ca:98:72:aa:b2: 98:0b:e7:8a:e1:df:d3:b1:91:6d:4c:fd:87:e0:0b:3f:93:38: 0f:e5:eb:75:92:f1:6a:87:4f:10:0b:0a:c0:95:95:07:36:fb: ff:e9:bb:18:d7:30:58:83:9d:ef:78:81:24:b2:6c:96:b5:d7: 66:5b:64:b4:ef:5f:af:fc:74:8f:f4:c2:8e:11:1a:78:2c:f5: 3b:a4:b9:88 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZt+OK3Xn30qIV7n19ZYnJYhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmOWQ3NjNiNDllMDI0YTdiNmExOWVhZjdkZmI5ODkxMWE5 Yzk0YzgwHhcNMjYwMTAyMTAyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDJkMTc4ZDM0NmY1NTMzMGQ1NDJjZmZmYThhMmMwODg0YWY4ZDU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbsUCPM+k8w3YHValeLWpWIqi25u aoXU/sv3CxQ0iY8aqn1zFydv+DJbs0et2B2jiQxVcmOZrxYAJ/bGc3KKp4tSRMVx Le5xTjfvDUrl3aQ5PEQo/T7tiSz4U7by2BPfPQHml4M7pXjMKZ81ro4iLB9uz5qF SSKS2er0QzV18LYdKwnfRRa233d6JQRdURF16cnce/P2txCJ3QHip8HecPgkJa/p t3uS1Llx+X9oGJSMovT8NQDYPCGHOb0U/iYAMH2ryKKRVif+vZHKTz/tsGSCqWso TDVwSTd7QlPdOSFsUeO6PtZmh2HOmhynTUNbNwzSKmX3FhqY2qRO4ak6yQIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFJAtF400b1UzDVQs//qKLAiEr41YMB8GA1UdIwQY MBaAFO+ddjtJ4CSntqGer337mJEanJTIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzUxMk8wbmdKS2Uyb1o2dmZmdVlrUnFjbE1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS81OWNmOGUtZGM2Ny00M2ZiLWJkMzct MDg3MGU2NTk2NDViLzEva0MwWGpUUnZWVE1OVkN6Xy1vb3NDSVN2alZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS81OWNmOGUtZGM2Ny00M2ZiLWJkMzctMDg3MGU2NTk2NDVi LzEvNzUxMk8wbmdKS2Uyb1o2dmZmdVlrUnFjbE1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDAMBAIAATAGAwQABbYWMDwE AgACMDYDBwAqDrgAqqoDBwAqDrgAq80DBwAqDrgAuroDBwAqDrgAu6oDBwAqDrgA u7sDBwAqDrgAzMwwDQYJKoZIhvcNAQELBQADggEBABogPv2EEBNj0x/xQ3RQT8pf aY7Z7kk41Qj1zCu3FyLso7H7ENjPUciwYXLxdeWNq0alk9IUqjzkWjKA5tLMfO/n Z904amK3T6hQXTYQvW/wRTdG1iJX35kzI0MVqeWfLj4mqA1zfYbbc9aPr+qMunYi kpUEhIf0tnURZbZRsU2NtevFAzwDp8H691Je5Wm+0rq2X00o/3rHs0JD90Ja6epv olnElaAPorv/ZBNuXGnKmHKqspgL54rh39OxkW1M/YfgCz+TOA/l63WS8WqHTxAL CsCVlQc2+//puxjXMFiDne94gSSybJa112ZbZLTvX6/8dI/0wo4RGngs9TukuYg= -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:36 2026 by rpki-client