This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/K-tMS1zQwnOTjMpzMQDfaaGRH2k.roa File: K-tMS1zQwnOTjMpzMQDfaaGRH2k.roa (raw, json) Hash identifier: 8qTTGKDucm6vL5LQ0xopWBdoOTXFYRxvenpvnD5qv3w= Subject key identifier: 2B:EB:4C:4B:5C:D0:C2:73:93:8C:CA:73:31:00:DF:69:A1:91:1F:69 Certificate issuer: /CN=16d96cf4109a4a85d1863bf54aa4fa3e81e0c0e6 Certificate serial: 019B7E3858024A93F000F6A50063E547EDAE Authority key identifier: 16:D9:6C:F4:10:9A:4A:85:D1:86:3B:F5:4A:A4:FA:3E:81:E0:C0:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/K-tMS1zQwnOTjMpzMQDfaaGRH2k.roa Signing time: Fri 02 Jan 2026 10:19:40 +0000 ROA not before: Fri 02 Jan 2026 10:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44549 IP address blocks: 5.32.136.0/21 maxlen: 21 91.199.161.0/24 maxlen: 24 185.205.116.0/22 maxlen: 22 185.205.116.0/24 maxlen: 24 194.247.162.0/23 maxlen: 23 2a06:c180::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/Ftls9BCaSoXRhjv1SqT6PoHgwOY.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/Ftls9BCaSoXRhjv1SqT6PoHgwOY.mft rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:58:02:4a:93:f0:00:f6:a5:00:63:e5:47:ed:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16d96cf4109a4a85d1863bf54aa4fa3e81e0c0e6 Validity Not Before: Jan 2 10:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2beb4c4b5cd0c273938cca733100df69a1911f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e2:ce:5f:db:74:af:f0:4f:d1:2f:1a:be:6c: 40:bf:44:8a:94:14:8b:c2:86:79:02:ae:1b:d6:df: 89:5e:1c:f4:2c:c8:a1:b4:4b:d5:da:32:fe:49:9b: 83:c3:a0:6a:c9:5d:1f:ac:09:55:56:89:0a:75:7d: 38:8d:7b:f9:3c:ce:e6:5f:68:50:fd:22:6f:41:16: 42:61:00:cb:66:96:1a:79:87:6d:2b:2f:a1:c0:b0: 46:e9:3f:15:2d:5e:e9:8a:b5:41:15:ad:7e:57:a7: 59:9e:4b:85:4f:91:9e:59:42:51:d5:27:9c:42:68: c9:8d:c0:af:b4:bc:e0:cf:67:ee:68:9b:cc:32:ff: fe:ad:a3:6b:4b:4d:6d:94:40:d1:4b:60:98:c5:d1: 25:1a:46:b9:56:e3:21:45:26:6e:d1:8d:c0:18:e3: a7:10:0f:9a:eb:2e:36:5a:eb:f0:15:cb:6c:94:5d: d7:a0:52:8e:18:e8:5a:3f:4b:3f:cf:23:d8:5d:c9: 8d:1c:e0:f9:8c:52:11:bf:eb:f9:3d:f4:2c:03:82: 11:68:54:40:56:fc:b1:69:49:7d:5c:14:96:1b:83: 97:b0:6c:f5:bb:61:c6:35:4f:35:e8:64:c1:a7:65: d5:85:92:a8:2c:36:6b:f7:a3:4f:35:2a:57:95:56: cd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EB:4C:4B:5C:D0:C2:73:93:8C:CA:73:31:00:DF:69:A1:91:1F:69 X509v3 Authority Key Identifier: keyid:16:D9:6C:F4:10:9A:4A:85:D1:86:3B:F5:4A:A4:FA:3E:81:E0:C0:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/K-tMS1zQwnOTjMpzMQDfaaGRH2k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/Ftls9BCaSoXRhjv1SqT6PoHgwOY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.32.136.0/21 91.199.161.0/24 185.205.116.0/22 194.247.162.0/23 IPv6: 2a06:c180::/29 Signature Algorithm: sha256WithRSAEncryption 6f:ff:b0:8d:e6:9d:f6:5f:ed:eb:c2:61:05:94:f9:3a:ad:af: e0:22:0b:15:bd:de:58:c9:e9:fe:63:41:96:16:4a:2f:78:5a: a0:a3:7b:ae:52:de:20:bb:e8:23:4c:48:79:35:ba:90:48:72: 72:c9:36:21:c5:1c:b8:d2:45:72:8a:9f:f3:5c:39:ba:a6:2f: 55:c4:cf:4f:31:95:c5:f9:0c:50:06:b2:37:b5:54:1b:06:f0: 9b:24:77:23:ad:9e:bc:d0:cd:42:c3:71:1b:53:08:c8:88:c0: ca:2f:fc:e1:35:4a:9b:6b:9e:c6:a0:20:45:08:76:a8:65:8c: ca:0a:41:22:c8:a2:c7:bf:0d:fd:bd:13:79:15:7c:a1:02:2a: 2c:bf:17:b5:80:16:41:75:78:7f:d5:62:9c:83:98:16:c2:6e: be:dd:2f:37:b6:2b:fe:9c:fc:38:d5:82:07:d2:74:7b:dc:8e: 9e:24:10:da:2f:9a:f9:37:f3:f2:6f:2c:dc:35:8c:80:8a:cb: 2e:56:d4:77:57:90:77:77:8e:e8:8b:07:d7:9f:f8:e3:d0:66: 18:e4:15:a1:ac:01:4d:b6:c9:00:b8:a9:e1:82:fe:31:44:90: cd:63:64:93:35:71:ea:51:18:6d:64:f7:82:51:b6:9c:1b:2f: 27:d4:16:d9 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt+OFgCSpPwAPalAGPlR+2uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2ZDk2Y2Y0MTA5YTRhODVkMTg2M2JmNTRhYTRmYTNlODFl MGMwZTYwHhcNMjYwMTAyMTAxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYmViNGM0YjVjZDBjMjczOTM4Y2NhNzMzMTAwZGY2OWExOTExZjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuLOX9t0r/BP0S8avmxAv0SKlBSL woZ5Aq4b1t+JXhz0LMihtEvV2jL+SZuDw6BqyV0frAlVVokKdX04jXv5PM7mX2hQ /SJvQRZCYQDLZpYaeYdtKy+hwLBG6T8VLV7pirVBFa1+V6dZnkuFT5GeWUJR1Sec QmjJjcCvtLzgz2fuaJvMMv/+raNrS01tlEDRS2CYxdElGka5VuMhRSZu0Y3AGOOn EA+a6y42WuvwFctslF3XoFKOGOhaP0s/zyPYXcmNHOD5jFIRv+v5PfQsA4IRaFRA VvyxaUl9XBSWG4OXsGz1u2HGNU816GTBp2XVhZKoLDZr96NPNSpXlVbN4QIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFCvrTEtc0MJzk4zKczEA32mhkR9pMB8GA1UdIwQY MBaAFBbZbPQQmkqF0YY79Uqk+j6B4MDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRnRsczlCQ2FTb1hSaGp2MVNxVDZQb0hnd09ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8xMzYxNTYtMDc1My00MDcyLTkyYjAt MTQwN2MwOGRiNTgyLzEvSy10TVMxelF3bk9Uak1wek1RRGZhYUdSSDJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8xMzYxNTYtMDc1My00MDcyLTkyYjAtMTQwN2MwOGRiNTgy LzEvRnRsczlCQ2FTb1hSaGp2MVNxVDZQb0hnd09ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDBSCIAwQA W8ehAwQCuc10AwQBwveiMA0EAgACMAcDBQMqBsGAMA0GCSqGSIb3DQEBCwUAA4IB AQBv/7CN5p32X+3rwmEFlPk6ra/gIgsVvd5Yyen+Y0GWFkoveFqgo3uuUt4gu+gj TEh5NbqQSHJyyTYhxRy40kVyip/zXDm6pi9VxM9PMZXF+QxQBrI3tVQbBvCbJHcj rZ680M1Cw3EbUwjIiMDKL/zhNUqba57GoCBFCHaoZYzKCkEiyKLHvw39vRN5FXyh Aiosvxe1gBZBdXh/1WKcg5gWwm6+3S83tiv+nPw41YIH0nR73I6eJBDaL5r5N/Py byzcNYyAissuVtR3V5B3d47oiwfXn/jj0GYY5BWhrAFNtskAuKnhgv4xRJDNY2ST NXHqURhtZPeCUbacGy8n1BbZ -----END CERTIFICATE-----Generated at Tue Feb 10 02:47:06 2026 by rpki-client