This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/SO-ZlxF5JSLdcgh6IpSE_Coqf6I.roa File: SO-ZlxF5JSLdcgh6IpSE_Coqf6I.roa (raw, json) Hash identifier: KN1ym2itJeF18CA8fxX+sWeNK2g5ypUseoxu2uRSaZo= Subject key identifier: 48:EF:99:97:11:79:25:22:DD:72:08:7A:22:94:84:FC:2A:2A:7F:A2 Certificate issuer: /CN=16d96cf4109a4a85d1863bf54aa4fa3e81e0c0e6 Certificate serial: 019B7E3857C08CA429AC74157880719CC772 Authority key identifier: 16:D9:6C:F4:10:9A:4A:85:D1:86:3B:F5:4A:A4:FA:3E:81:E0:C0:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/SO-ZlxF5JSLdcgh6IpSE_Coqf6I.roa Signing time: Fri 02 Jan 2026 10:19:40 +0000 ROA not before: Fri 02 Jan 2026 10:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12778 IP address blocks: 5.32.136.0/21 maxlen: 24 77.234.128.0/19 maxlen: 19 91.199.161.0/24 maxlen: 24 185.205.116.0/22 maxlen: 24 194.247.162.0/23 maxlen: 24 212.72.96.0/19 maxlen: 19 2a02:d68::/32 maxlen: 32 2a06:c180::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/Ftls9BCaSoXRhjv1SqT6PoHgwOY.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/Ftls9BCaSoXRhjv1SqT6PoHgwOY.mft rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:57:c0:8c:a4:29:ac:74:15:78:80:71:9c:c7:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16d96cf4109a4a85d1863bf54aa4fa3e81e0c0e6 Validity Not Before: Jan 2 10:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48ef999711792522dd72087a229484fc2a2a7fa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2f:24:8c:c9:05:72:4c:2b:42:b5:6b:e3:56: 55:2d:5f:96:24:e5:14:48:5b:af:6c:f3:cb:25:41: d1:5f:09:73:e0:7a:e2:1f:b3:8b:6b:6a:e5:c1:e9: 33:69:d0:aa:b1:dc:a0:81:8d:fa:92:6b:94:66:f9: 2d:65:45:7e:c5:4b:e9:49:2f:4e:54:b7:b2:ef:7a: 26:79:85:7a:99:fe:20:1e:ac:81:db:9d:0a:fb:94: 6f:ef:4c:4e:cc:08:c4:fa:77:0a:3a:77:4d:47:3d: 9b:50:43:31:28:a3:30:cc:13:6e:09:f6:1e:b0:41: e0:f4:fa:c7:9a:06:e8:85:ba:17:14:2a:72:43:c1: f8:b7:e8:17:28:01:81:fe:9c:45:59:84:99:b7:ac: 18:ea:7d:70:d4:7e:5f:2d:ea:80:38:60:99:5a:66: eb:6b:e1:45:24:54:93:af:c4:bd:27:1a:2e:67:2d: 85:77:bf:be:f2:94:ad:90:34:05:17:88:7b:85:3b: 53:63:45:ad:00:a9:08:31:10:f5:8b:42:f4:14:b4: 24:44:a5:99:b4:1e:21:7b:18:c2:e3:a2:c7:26:03: 45:dc:d1:02:b9:48:9d:4d:45:f6:f3:33:a6:0f:77: 03:d3:3f:e6:a5:72:5a:4c:99:5c:7f:39:4c:62:22: 3a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:EF:99:97:11:79:25:22:DD:72:08:7A:22:94:84:FC:2A:2A:7F:A2 X509v3 Authority Key Identifier: keyid:16:D9:6C:F4:10:9A:4A:85:D1:86:3B:F5:4A:A4:FA:3E:81:E0:C0:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/SO-ZlxF5JSLdcgh6IpSE_Coqf6I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/Ftls9BCaSoXRhjv1SqT6PoHgwOY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.32.136.0/21 77.234.128.0/19 91.199.161.0/24 185.205.116.0/22 194.247.162.0/23 212.72.96.0/19 IPv6: 2a02:d68::/32 2a06:c180::/29 Signature Algorithm: sha256WithRSAEncryption 45:93:ce:8e:f4:05:09:6c:e6:ff:fc:31:44:7f:c2:77:ab:38: 36:b0:77:cd:88:8a:dd:fc:ba:d1:e1:ea:2f:7d:dc:ac:9f:97: be:93:c5:67:1c:17:8a:01:9e:d0:ff:26:a0:70:97:7a:b7:5a: 24:0e:e8:8b:93:37:3b:a0:19:59:59:b6:bf:76:2c:ac:9d:e8: fc:cd:18:9c:0b:d1:16:bb:6c:5c:a5:0a:89:c6:08:b1:29:4e: 6d:ea:85:ef:61:c2:ce:a6:0f:dc:db:5e:b7:30:f9:8b:60:a0: af:8d:99:01:ee:94:89:88:53:69:ec:9e:e8:ac:a3:fc:07:0c: 52:cf:60:95:b5:7b:eb:64:3b:f8:35:3b:93:af:cf:21:46:b8: fc:cf:38:c5:65:a8:bb:71:06:e9:79:75:89:b4:69:d7:df:88: 77:ae:10:aa:91:6a:cd:e7:f5:3d:c8:48:c0:1e:a5:40:33:ef: fe:16:51:47:da:f3:28:c3:54:37:ac:ba:92:22:95:1a:29:8c: 50:bd:a0:45:33:b6:b8:8c:52:f7:c2:9e:05:ff:34:0a:8d:9f: 80:7c:7c:ea:8e:f0:da:0f:6e:87:7a:20:2e:14:df:60:73:45: 82:07:14:04:f0:3d:bc:2a:77:3f:97:0f:62:0a:fe:08:14:76: b9:7a:4b:e4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt+OFfAjKQprHQVeIBxnMdyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2ZDk2Y2Y0MTA5YTRhODVkMTg2M2JmNTRhYTRmYTNlODFl MGMwZTYwHhcNMjYwMTAyMTAxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OGVmOTk5NzExNzkyNTIyZGQ3MjA4N2EyMjk0ODRmYzJhMmE3ZmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAri8kjMkFckwrQrVr41ZVLV+WJOUU SFuvbPPLJUHRXwlz4HriH7OLa2rlwekzadCqsdyggY36kmuUZvktZUV+xUvpSS9O VLey73omeYV6mf4gHqyB250K+5Rv70xOzAjE+ncKOndNRz2bUEMxKKMwzBNuCfYe sEHg9PrHmgbohboXFCpyQ8H4t+gXKAGB/pxFWYSZt6wY6n1w1H5fLeqAOGCZWmbr a+FFJFSTr8S9JxouZy2Fd7++8pStkDQFF4h7hTtTY0WtAKkIMRD1i0L0FLQkRKWZ tB4hexjC46LHJgNF3NECuUidTUX28zOmD3cD0z/mpXJaTJlcfzlMYiI6TwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFEjvmZcReSUi3XIIeiKUhPwqKn+iMB8GA1UdIwQY MBaAFBbZbPQQmkqF0YY79Uqk+j6B4MDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRnRsczlCQ2FTb1hSaGp2MVNxVDZQb0hnd09ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8xMzYxNTYtMDc1My00MDcyLTkyYjAt MTQwN2MwOGRiNTgyLzEvU08tWmx4RjVKU0xkY2doNklwU0VfQ29xZjZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8xMzYxNTYtMDc1My00MDcyLTkyYjAtMTQwN2MwOGRiNTgy LzEvRnRsczlCQ2FTb1hSaGp2MVNxVDZQb0hnd09ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQDBSCIAwQF TeqAAwQAW8ehAwQCuc10AwQBwveiAwQF1EhgMBQEAgACMA4DBQAqAg1oAwUDKgbB gDANBgkqhkiG9w0BAQsFAAOCAQEARZPOjvQFCWzm//wxRH/Cd6s4NrB3zYiK3fy6 0eHqL33crJ+XvpPFZxwXigGe0P8moHCXerdaJA7oi5M3O6AZWVm2v3YsrJ3o/M0Y nAvRFrtsXKUKicYIsSlObeqF72HCzqYP3NtetzD5i2Cgr42ZAe6UiYhTaeye6Kyj /AcMUs9glbV762Q7+DU7k6/PIUa4/M84xWWou3EG6Xl1ibRp19+Id64QqpFqzef1 PchIwB6lQDPv/hZRR9rzKMNUN6y6kiKVGimMUL2gRTO2uIxS98KeBf80Co2fgHx8 6o7w2g9uh3ogLhTfYHNFggcUBPA9vCp3P5cPYgr+CBR2uXpL5A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:23:41 2026 by rpki-client