This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/D0gnpWfBBKSRYWj8s3v4J_aCJMI.roa File: D0gnpWfBBKSRYWj8s3v4J_aCJMI.roa (raw, json) Hash identifier: 45JN/2vbVLlDusn7s9SwK/NY3HUP/bKxrVAXGIGtMdk= Subject key identifier: 0F:48:27:A5:67:C1:04:A4:91:61:68:FC:B3:7B:F8:27:F6:82:24:C2 Certificate issuer: /CN=996721831afb8b38307b49f5b9ee6292ad1e5850 Certificate serial: 019B7F15D3FABD134AAF878F648E3969C25F Authority key identifier: 99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/D0gnpWfBBKSRYWj8s3v4J_aCJMI.roa Signing time: Fri 02 Jan 2026 14:21:35 +0000 ROA not before: Fri 02 Jan 2026 14:21:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1299 IP address blocks: 45.132.248.0/22 maxlen: 24 46.247.244.0/23 maxlen: 24 46.247.246.0/23 maxlen: 24 79.132.144.0/23 maxlen: 24 79.132.150.0/23 maxlen: 24 79.132.152.0/23 maxlen: 24 79.132.154.0/23 maxlen: 24 85.112.210.0/23 maxlen: 24 86.105.90.0/23 maxlen: 24 86.107.248.0/21 maxlen: 24 86.107.254.0/23 maxlen: 24 89.43.156.0/22 maxlen: 24 185.183.63.0/24 maxlen: 24 185.223.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/mWchgxr7izgwe0n1ue5ikq0eWFA.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/mWchgxr7izgwe0n1ue5ikq0eWFA.mft rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d3:fa:bd:13:4a:af:87:8f:64:8e:39:69:c2:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996721831afb8b38307b49f5b9ee6292ad1e5850 Validity Not Before: Jan 2 14:21:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f4827a567c104a4916168fcb37bf827f68224c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2d:ed:d8:98:5d:1e:02:53:ad:59:fb:4f:de: e7:5d:be:56:e0:eb:5f:80:9b:85:0b:f9:ef:fe:5a: a9:57:bd:84:a9:fa:1f:47:f3:8a:54:69:63:f9:d8: 7d:73:7f:51:1d:1c:07:dc:1a:26:fa:bf:dc:92:25: 9c:92:b2:bc:79:30:66:51:22:1b:72:f4:71:1f:05: e4:5e:9e:65:c7:5f:df:4d:21:1a:18:86:18:52:fd: 2f:ec:d4:5b:c5:27:f2:ed:f7:7e:6e:e9:67:d1:82: 16:31:bc:39:5f:fa:14:e0:24:7c:c2:e4:78:b2:52: f3:aa:83:18:9b:0f:72:ca:04:58:b9:c9:3f:5c:f3: 23:bb:63:bd:f8:2c:80:c1:29:cf:d9:97:1a:25:e4: b5:f9:ae:2b:3c:27:29:7d:c8:03:07:f1:45:bf:87: 9b:4c:be:3c:c3:5c:a2:10:db:40:6e:b6:86:b8:79: bf:70:8e:bd:d2:1b:f2:87:f5:30:92:16:90:6b:39: 42:de:bb:1f:27:75:63:b8:ff:34:da:b8:6d:72:fd: 3c:e4:f9:e9:35:75:67:84:fb:28:46:e2:db:ba:19: dc:c6:ae:7b:e8:56:e3:a3:40:7e:5c:a6:8d:95:c2: 33:30:bb:1f:bc:c8:99:9b:20:f3:a4:1b:da:d8:60: 76:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:48:27:A5:67:C1:04:A4:91:61:68:FC:B3:7B:F8:27:F6:82:24:C2 X509v3 Authority Key Identifier: keyid:99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/D0gnpWfBBKSRYWj8s3v4J_aCJMI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/mWchgxr7izgwe0n1ue5ikq0eWFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.248.0/22 46.247.244.0/22 79.132.144.0/23 79.132.150.0-79.132.155.255 85.112.210.0/23 86.105.90.0/23 86.107.248.0/21 89.43.156.0/22 185.183.63.0/24 185.223.148.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:18:5f:de:f1:56:c4:52:8e:d7:15:53:b9:d1:1e:9c:2e:09: 88:26:24:cc:15:04:24:05:bb:e6:36:d7:de:6e:dc:1b:39:25: 47:11:29:38:29:17:4a:64:7b:34:d4:10:a8:ab:65:17:2a:71: d7:0f:f8:43:72:4d:f2:3f:0e:e5:83:14:f9:fa:0b:0d:65:9d: ee:ba:2b:fd:fd:50:be:57:d8:9a:3c:9c:dc:a4:5a:ad:4c:37: 23:5d:eb:68:3f:cd:dc:fc:b9:a5:de:5d:cd:cb:36:22:21:df: 30:28:c9:e1:55:43:d1:61:ce:4c:64:97:74:6c:23:0e:e3:fa: 73:8b:6e:ca:bc:c5:5a:26:b8:4e:41:50:ad:b7:cf:cc:71:d3: 2d:b2:0e:80:63:d3:40:5a:25:1e:36:e8:94:88:86:dd:cb:d1: af:17:4a:e4:a1:e7:99:08:e8:4e:20:79:7c:e4:3d:ce:8c:24: 74:e3:38:db:38:ce:0e:d6:7c:c4:d0:ab:c7:59:de:7c:72:40: 2f:09:1b:74:bb:14:36:3b:b9:c5:47:1f:26:11:06:4e:8a:08: cd:0c:c5:19:3e:e6:55:6b:36:57:af:5e:7d:fb:ca:7a:cd:30: 5a:36:7d:fe:d8:9f:42:f2:24:8e:ae:22:9d:58:84:f4:84:67: f3:0f:dc:85 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZt/FdP6vRNKr4ePZI45acJfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5NjcyMTgzMWFmYjhiMzgzMDdiNDlmNWI5ZWU2MjkyYWQx ZTU4NTAwHhcNMjYwMTAyMTQyMTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjQ4MjdhNTY3YzEwNGE0OTE2MTY4ZmNiMzdiZjgyN2Y2ODIyNGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsS3t2JhdHgJTrVn7T97nXb5W4Otf gJuFC/nv/lqpV72EqfofR/OKVGlj+dh9c39RHRwH3Bom+r/ckiWckrK8eTBmUSIb cvRxHwXkXp5lx1/fTSEaGIYYUv0v7NRbxSfy7fd+buln0YIWMbw5X/oU4CR8wuR4 slLzqoMYmw9yygRYuck/XPMju2O9+CyAwSnP2ZcaJeS1+a4rPCcpfcgDB/FFv4eb TL48w1yiENtAbraGuHm/cI690hvyh/UwkhaQazlC3rsfJ3VjuP802rhtcv085Pnp NXVnhPsoRuLbuhncxq576Fbjo0B+XKaNlcIzMLsfvMiZmyDzpBva2GB2IwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFA9IJ6VnwQSkkWFo/LN7+Cf2giTCMB8GA1UdIwQY MBaAFJlnIYMa+4s4MHtJ9bnuYpKtHlhQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVdjaGd4cjdpemd3ZTBuMXVlNWlrcTBlV0ZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8xYzFlYjItMWY2NS00ZjcxLThiMzIt YjRiZmU0NTZkZGUwLzEvRDBnbnBXZkJCS1NSWVdqOHMzdjRKX2FDSk1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8xYzFlYjItMWY2NS00ZjcxLThiMzItYjRiZmU0NTZkZGUw LzEvbVdjaGd4cjdpemd3ZTBuMXVlNWlrcTBlV0ZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQCLYT4AwQC Lvf0AwQBT4SQMAwDBAFPhJYDBAJPhJgDBAFVcNIDBAFWaVoDBANWa/gDBAJZK5wD BAC5tz8DBAC535QwDQYJKoZIhvcNAQELBQADggEBAFsYX97xVsRSjtcVU7nRHpwu CYgmJMwVBCQFu+Y2195u3Bs5JUcRKTgpF0pkezTUEKirZRcqcdcP+ENyTfI/DuWD FPn6Cw1lne66K/39UL5X2Jo8nNykWq1MNyNd62g/zdz8uaXeXc3LNiIh3zAoyeFV Q9Fhzkxkl3RsIw7j+nOLbsq8xVomuE5BUK23z8xx0y2yDoBj00BaJR426JSIht3L 0a8XSuSh55kI6E4geXzkPc6MJHTjONs4zg7WfMTQq8dZ3nxyQC8JG3S7FDY7ucVH HyYRBk6KCM0MxRk+5lVrNlevXn37ynrNMFo2ff7Yn0LyJI6uIp1YhPSEZ/MP3IU= -----END CERTIFICATE-----Generated at Wed Jan 21 07:23:24 2026 by rpki-client