This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/rSchH_WpkAQtklBw4R5ArVw7Etg.roa File: rSchH_WpkAQtklBw4R5ArVw7Etg.roa (raw, json) Hash identifier: FQrYCtK1inx5vQ38kiI4C/z5+zK3xo4th9Fjypdt9nc= Subject key identifier: AD:27:21:1F:F5:A9:90:04:2D:92:50:70:E1:1E:40:AD:5C:3B:12:D8 Certificate issuer: /CN=5cd8583b211741049e6bb19a946d831aabf11ad3 Certificate serial: 019B76EAB124D4AE849A7B3D26D24B6E8738 Authority key identifier: 5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/rSchH_WpkAQtklBw4R5ArVw7Etg.roa Signing time: Thu 01 Jan 2026 00:17:30 +0000 ROA not before: Thu 01 Jan 2026 00:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 144.2.128.0/24 maxlen: 24 144.2.129.0/24 maxlen: 24 144.2.130.0/24 maxlen: 24 144.2.131.0/24 maxlen: 24 144.2.136.0/24 maxlen: 24 144.2.140.0/24 maxlen: 24 144.2.142.0/24 maxlen: 24 144.2.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:b1:24:d4:ae:84:9a:7b:3d:26:d2:4b:6e:87:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cd8583b211741049e6bb19a946d831aabf11ad3 Validity Not Before: Jan 1 00:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ad27211ff5a990042d925070e11e40ad5c3b12d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0c:3f:d4:af:f7:bb:86:49:1a:2a:00:51:3c: 3e:08:84:c3:b1:7c:f9:fb:39:50:b5:f6:7e:7a:3a: c1:ea:a6:33:cf:69:cf:bf:97:c9:5a:b6:45:08:e9: 20:a4:da:7d:12:aa:e3:42:80:4b:e7:cd:51:f6:c0: ff:e3:9a:fb:91:c1:11:ea:ce:0a:36:b2:bc:0f:aa: 54:48:bd:cd:2e:e7:f4:ed:ba:22:06:14:d1:43:79: fa:e0:08:6c:81:86:bc:39:78:1c:aa:b9:9e:61:3a: 05:f7:97:45:3e:08:cd:ce:b5:ff:cb:58:d8:76:f2: 64:4b:a7:03:77:74:c0:1a:7a:f0:14:fb:63:a8:7a: 04:e3:43:1a:74:ab:ec:77:cf:76:cc:d2:52:b4:e2: 4c:ff:99:f9:9f:dc:b4:fe:19:ff:d6:58:eb:a4:70: 45:dc:37:b3:ca:29:3b:ee:85:ea:e3:03:6a:e3:42: 24:3f:ee:1c:74:4b:71:1a:e8:14:00:15:79:65:93: 31:8f:2c:3c:ce:1c:4f:88:1a:ab:ed:a3:58:9b:20: ba:7f:35:26:c7:41:81:a5:10:88:92:40:b2:9c:62: f6:56:5c:04:41:9e:e3:b4:fd:10:24:00:88:b2:3d: b6:58:6c:f8:b7:19:65:36:9f:7b:7a:61:e9:24:0a: 18:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:27:21:1F:F5:A9:90:04:2D:92:50:70:E1:1E:40:AD:5C:3B:12:D8 X509v3 Authority Key Identifier: keyid:5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/rSchH_WpkAQtklBw4R5ArVw7Etg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.2.128.0/22 144.2.136.0/24 144.2.140.0/24 144.2.142.0/23 Signature Algorithm: sha256WithRSAEncryption 75:ff:99:f9:8f:41:98:32:7d:8c:d0:af:c7:56:6b:e3:d0:7a: 88:35:47:29:fa:4d:f0:1e:74:8e:a3:68:35:71:60:a5:1c:ad: b4:5d:05:9a:80:3a:a7:9d:15:11:c3:e4:e3:88:29:a5:2d:44: 94:09:a7:be:09:24:44:6e:fe:75:81:24:90:a7:07:6e:2e:db: 00:5a:5f:de:fe:d9:0b:45:c8:12:57:5d:99:de:35:7b:c2:1a: 9a:2a:c4:19:3e:fc:9e:64:b6:c9:af:ef:2e:22:4c:6c:2a:47: fb:22:e7:a1:15:6f:1f:cc:8b:0f:0c:84:24:c7:59:ec:33:47: 8c:60:c8:76:a7:ef:bb:89:d4:63:0a:86:c0:83:6b:75:19:4a: c5:78:6d:e0:20:9b:78:c5:36:0f:9e:c9:85:bf:3e:b2:15:53: 54:77:75:83:1e:06:86:7b:92:e5:bf:b8:0a:8f:a2:ef:c8:3d: ea:13:06:25:9d:61:df:ea:d6:73:b7:4d:a6:17:88:f2:e5:a2: 36:3e:53:19:c8:85:21:ad:17:a8:9a:62:26:c2:a6:b3:d4:a8: 32:5e:c2:4b:40:b7:3c:17:62:1e:b8:af:a9:c2:42:55:c4:16: f5:94:d8:06:72:13:99:28:2a:00:a3:7e:01:22:13:6e:e4:f4: db:04:af:ad -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt26rEk1K6Emns9JtJLboc4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZDg1ODNiMjExNzQxMDQ5ZTZiYjE5YTk0NmQ4MzFhYWJm MTFhZDMwHhcNMjYwMTAxMDAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDI3MjExZmY1YTk5MDA0MmQ5MjUwNzBlMTFlNDBhZDVjM2IxMmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwww/1K/3u4ZJGioAUTw+CITDsXz5 +zlQtfZ+ejrB6qYzz2nPv5fJWrZFCOkgpNp9EqrjQoBL581R9sD/45r7kcER6s4K NrK8D6pUSL3NLuf07boiBhTRQ3n64AhsgYa8OXgcqrmeYToF95dFPgjNzrX/y1jY dvJkS6cDd3TAGnrwFPtjqHoE40MadKvsd892zNJStOJM/5n5n9y0/hn/1ljrpHBF 3Dezyik77oXq4wNq40IkP+4cdEtxGugUABV5ZZMxjyw8zhxPiBqr7aNYmyC6fzUm x0GBpRCIkkCynGL2VlwEQZ7jtP0QJACIsj22WGz4txllNp97emHpJAoYcwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFK0nIR/1qZAELZJQcOEeQK1cOxLYMB8GA1UdIwQY MBaAFFzYWDshF0EEnmuxmpRtgxqr8RrTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC83Mjk4YWItN2I5Yy00N2FkLTkwODUt NTA5NzRiY2RjMjQ4LzEvclNjaEhfV3BrQVF0a2xCdzRSNUFyVnc3RXRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC83Mjk4YWItN2I5Yy00N2FkLTkwODUtNTA5NzRiY2RjMjQ4 LzEvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCkAKAAwQA kAKIAwQAkAKMAwQBkAKOMA0GCSqGSIb3DQEBCwUAA4IBAQB1/5n5j0GYMn2M0K/H Vmvj0HqINUcp+k3wHnSOo2g1cWClHK20XQWagDqnnRURw+TjiCmlLUSUCae+CSRE bv51gSSQpwduLtsAWl/e/tkLRcgSV12Z3jV7whqaKsQZPvyeZLbJr+8uIkxsKkf7 IuehFW8fzIsPDIQkx1nsM0eMYMh2p++7idRjCobAg2t1GUrFeG3gIJt4xTYPnsmF vz6yFVNUd3WDHgaGe5Llv7gKj6LvyD3qEwYlnWHf6tZzt02mF4jy5aI2PlMZyIUh rReommImwqaz1KgyXsJLQLc8F2IeuK+pwkJVxBb1lNgGchOZKCoAo34BIhNu5PTb BK+t -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:14 2026 by rpki-client