This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/5eKnFrezKqp3RFybwrKD6RzHZeY.roa File: 5eKnFrezKqp3RFybwrKD6RzHZeY.roa (raw, json) Hash identifier: Y43namxpY84cm0E5KqxDyJ0xhF6ivsfdIzgc9v2etVc= Subject key identifier: E5:E2:A7:16:B7:B3:2A:AA:77:44:5C:9B:C2:B2:83:E9:1C:C7:65:E6 Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2 Certificate serial: 019B7F139BF5EB8624AB3E95BCC705C9CF66 Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/5eKnFrezKqp3RFybwrKD6RzHZeY.roa Signing time: Fri 02 Jan 2026 14:19:10 +0000 ROA not before: Fri 02 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 91.219.17.0/24 maxlen: 24 91.219.18.0/23 maxlen: 23 91.232.182.0/24 maxlen: 24 91.232.184.0/24 maxlen: 24 91.232.185.0/24 maxlen: 24 91.233.192.0/24 maxlen: 24 109.166.36.0/22 maxlen: 24 151.248.68.0/23 maxlen: 24 176.118.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.mft rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 23:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:9b:f5:eb:86:24:ab:3e:95:bc:c7:05:c9:cf:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2 Validity Not Before: Jan 2 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e5e2a716b7b32aaa77445c9bc2b283e91cc765e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:86:79:8b:48:7f:35:d4:20:e2:ad:da:ca:f2: 88:a4:f8:b8:b6:ce:d7:0a:89:9f:91:72:bc:87:81: fd:6f:12:26:60:e9:ed:0d:93:b8:f5:fe:32:8d:69: b5:08:20:6c:fe:8a:8d:b4:e8:7b:78:06:f0:d2:81: 90:86:24:99:49:6d:54:f9:ec:35:35:a3:86:2a:9f: da:33:ef:ea:41:9e:da:a7:52:e5:0c:32:ac:80:dd: a6:5f:b9:5b:e2:10:24:16:48:98:9a:04:8a:e4:7a: ca:5a:76:16:61:0a:d1:a6:9e:b8:84:70:28:76:24: 4a:75:b5:ba:54:9c:bf:d2:34:f8:39:47:cc:69:b7: 77:f9:72:b4:b3:95:e3:87:ae:d0:cf:f1:53:84:98: 1c:f5:d6:bd:70:c5:da:9d:2e:fc:7e:bf:09:76:1c: a5:f7:8e:1e:25:fc:6c:ca:89:1f:30:ee:c4:e8:16: 22:fe:b9:67:05:26:ab:18:f7:25:f4:88:83:91:c2: 4e:34:d2:2c:b5:11:12:4c:f5:ca:a2:f6:24:fa:53: 5e:29:fe:a8:24:d4:ab:9b:b8:d9:ee:01:48:ee:0b: e6:e4:2d:1d:d3:9a:43:9e:ec:52:81:96:09:e6:45: 46:45:69:64:04:ba:fe:4d:a1:2f:8a:3e:57:db:e0: af:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E2:A7:16:B7:B3:2A:AA:77:44:5C:9B:C2:B2:83:E9:1C:C7:65:E6 X509v3 Authority Key Identifier: keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/5eKnFrezKqp3RFybwrKD6RzHZeY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.219.17.0-91.219.19.255 91.232.182.0/24 91.232.184.0/23 91.233.192.0/24 109.166.36.0/22 151.248.68.0/23 176.118.80.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:fc:aa:10:66:54:62:99:db:59:58:4f:f4:d2:35:42:13:43: 25:44:54:d4:24:ba:34:2b:f7:02:e9:82:55:8c:bb:9b:2e:35: 93:73:af:77:29:05:a4:9e:13:e1:ca:d8:8b:b7:f4:d3:df:aa: 5c:88:84:83:9a:dc:64:57:04:48:94:f3:15:f2:5e:6b:86:b3: 04:cf:c9:d4:83:c4:ae:8f:94:74:d0:7a:52:77:af:bb:3a:69: 4a:fb:df:ca:02:47:41:13:bd:65:22:9a:6a:83:65:1a:a3:38: 31:8a:87:f1:7d:16:0b:a4:ba:b6:87:50:db:36:d1:ad:40:6e: ab:4c:a8:25:0b:f3:3a:73:20:1f:6d:d1:33:f0:de:27:6d:50: de:56:d4:09:bb:95:68:97:f0:8f:bf:54:62:7d:cc:b5:f3:54: 94:10:5a:14:05:0a:6c:ba:50:f8:f4:a7:4f:71:3c:15:82:7e: 51:5d:78:36:d7:a6:d7:9c:a5:22:58:2f:b5:34:2c:e4:d7:93: 3e:fa:23:6e:69:40:82:9d:dd:65:3c:d9:3e:9d:c7:da:41:28: 65:99:8a:da:a3:06:7d:b3:a2:5f:9d:f7:a6:89:88:f3:72:d7: 0d:1c:f9:5e:d8:f5:f2:c7:9a:af:f5:d7:d5:af:db:ae:4d:a1: 45:87:ae:03 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt/E5v164Ykqz6VvMcFyc9mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZjJjMmU3YmMxZGE1NGQ5MTljYTViNTk0MWQzNzg4OTJi MmNjYjIwHhcNMjYwMTAyMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNWUyYTcxNmI3YjMyYWFhNzc0NDVjOWJjMmIyODNlOTFjYzc2NWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYZ5i0h/NdQg4q3ayvKIpPi4ts7X ComfkXK8h4H9bxImYOntDZO49f4yjWm1CCBs/oqNtOh7eAbw0oGQhiSZSW1U+ew1 NaOGKp/aM+/qQZ7ap1LlDDKsgN2mX7lb4hAkFkiYmgSK5HrKWnYWYQrRpp64hHAo diRKdbW6VJy/0jT4OUfMabd3+XK0s5Xjh67Qz/FThJgc9da9cMXanS78fr8Jdhyl 944eJfxsyokfMO7E6BYi/rlnBSarGPcl9IiDkcJONNIstRESTPXKovYk+lNeKf6o JNSrm7jZ7gFI7gvm5C0d05pDnuxSgZYJ5kVGRWlkBLr+TaEvij5X2+Cv+wIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFOXipxa3syqqd0Rcm8Kyg+kcx2XmMB8GA1UdIwQY MBaAFCLywue8HaVNkZyltZQdN4iSssyyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXZMQzU3d2RwVTJSbktXMWxCMDNpSkt5ekxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi82MDI1MzAtNmQyMi00NmYxLThlMDUt MDJkZWY2ZTg0YzkxLzEvNWVLbkZyZXpLcXAzUkZ5YndyS0Q2UnpIWmVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi82MDI1MzAtNmQyMi00NmYxLThlMDUtMDJkZWY2ZTg0Yzkx LzEvSXZMQzU3d2RwVTJSbktXMWxCMDNpSkt5ekxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyMAwDBABb2xED BAJb2xADBABb6LYDBAFb6LgDBABb6cADBAJtpiQDBAGX+EQDBAOwdlAwDQYJKoZI hvcNAQELBQADggEBAD78qhBmVGKZ21lYT/TSNUITQyVEVNQkujQr9wLpglWMu5su NZNzr3cpBaSeE+HK2Iu39NPfqlyIhIOa3GRXBEiU8xXyXmuGswTPydSDxK6PlHTQ elJ3r7s6aUr738oCR0ETvWUimmqDZRqjODGKh/F9FgukuraHUNs20a1AbqtMqCUL 8zpzIB9t0TPw3idtUN5W1Am7lWiX8I+/VGJ9zLXzVJQQWhQFCmy6UPj0p09xPBWC flFdeDbXptecpSJYL7U0LOTXkz76I25pQIKd3WU82T6dx9pBKGWZitqjBn2zol+d 96aJiPNy1w0c+V7Y9fLHmq/119Wv265NoUWHrgM= -----END CERTIFICATE-----Generated at Sun Jan 18 08:54:49 2026 by rpki-client