This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/stlziWxLYNCEQsNpe3-_IYmseYU.roa File: stlziWxLYNCEQsNpe3-_IYmseYU.roa (raw, json) Hash identifier: 5ts4qAFhhFZ3bDpqFGhmwqrpFkC7LGxGEgA0C9oCVoQ= Subject key identifier: B2:D9:73:89:6C:4B:60:D0:84:42:C3:69:7B:7F:BF:21:89:AC:79:85 Certificate issuer: /CN=01bfe882d13e803fc194373ea40d8a5a9e69f304 Certificate serial: 019B79ECC13DD75DC29D7646999CDEFD59EF Authority key identifier: 01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/stlziWxLYNCEQsNpe3-_IYmseYU.roa Signing time: Thu 01 Jan 2026 14:18:37 +0000 ROA not before: Thu 01 Jan 2026 14:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50785 IP address blocks: 5.144.40.0/21 maxlen: 21 81.18.16.0/20 maxlen: 21 185.128.172.0/22 maxlen: 22 185.152.224.0/22 maxlen: 22 2a02:d38::/29 maxlen: 29 2a06:d040::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c1:3d:d7:5d:c2:9d:76:46:99:9c:de:fd:59:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01bfe882d13e803fc194373ea40d8a5a9e69f304 Validity Not Before: Jan 1 14:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2d973896c4b60d08442c3697b7fbf2189ac7985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bd:16:f8:fc:78:a2:b1:02:33:2e:92:7b:c3: f9:59:45:6b:3c:0c:a1:29:c2:79:94:d9:aa:c6:57: 91:4c:a0:05:93:55:42:c8:95:54:bb:63:f2:2a:48: 78:d0:9c:02:3a:9a:5c:22:bd:c3:59:1e:89:ff:17: 91:ac:d9:64:f2:d4:a5:e0:80:5a:83:b5:fe:d8:3d: b8:f9:d4:3a:a8:ee:a0:2e:9a:46:01:74:ab:00:b9: a1:4f:f3:f5:81:3d:fb:a6:7e:01:f1:63:5e:63:6e: 4f:a7:60:ff:09:08:e2:f8:94:b2:30:5e:b9:22:40: ad:b8:d2:f8:ee:a6:c3:44:c4:d1:98:70:41:ce:11: ef:6b:9d:a4:b2:48:6f:a4:b7:46:8f:9d:f6:a0:94: 7e:3e:a3:53:86:9a:ec:49:c7:be:e0:a3:a0:ad:bb: c5:ea:55:d5:93:04:c0:77:08:15:dd:82:ff:a8:ca: da:46:d4:c7:d7:20:43:c0:10:c4:3b:36:77:22:e4: 62:c9:c2:14:76:b2:94:4e:3a:b6:d9:15:0f:29:ed: b7:e2:44:76:53:10:3a:c8:e5:d9:c1:77:65:1f:fa: 05:53:86:18:d0:25:3a:ec:81:aa:ae:69:43:77:3b: 94:02:56:ed:b3:74:45:ba:0b:54:ad:da:61:cc:fd: ff:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D9:73:89:6C:4B:60:D0:84:42:C3:69:7B:7F:BF:21:89:AC:79:85 X509v3 Authority Key Identifier: keyid:01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/stlziWxLYNCEQsNpe3-_IYmseYU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.144.40.0/21 81.18.16.0/20 185.128.172.0/22 185.152.224.0/22 IPv6: 2a02:d38::/29 2a06:d040::/29 Signature Algorithm: sha256WithRSAEncryption 40:4f:d8:b7:7e:d2:43:d6:f2:f3:2f:80:0a:3c:ee:c9:8c:d3: 71:27:43:71:70:57:ec:36:cb:04:0f:e9:70:7d:ac:eb:1c:a4: 09:22:88:ac:25:ee:e3:a5:1d:0e:a1:a0:85:b4:bc:b8:cb:88: 71:db:06:78:f8:8f:e2:83:53:cf:ca:b8:c7:1f:5c:10:db:8e: c8:4e:eb:16:d7:2d:35:05:72:03:3c:8c:c7:31:d2:55:03:cb: a1:2f:cf:d5:00:67:ce:9e:c4:4f:26:c2:37:48:c8:ae:cb:18: de:ae:32:e2:ea:dc:0b:a6:ce:0e:a2:33:8f:81:43:57:b3:4a: 43:6e:98:82:71:9e:51:36:30:17:73:02:36:1b:f4:b2:a5:cc: 56:3a:03:cc:e0:4f:8c:a7:44:f4:35:66:f3:eb:74:b7:19:4b: 19:d8:5b:55:1c:1b:e2:3e:96:53:4c:5d:c3:46:d6:77:1a:32: 6c:40:a5:1a:34:62:79:31:1f:e3:fb:04:f3:c9:f3:95:45:ee: 00:1a:ba:be:02:d7:7d:7f:09:ed:46:2d:72:a6:84:63:10:e3: 0b:d6:2f:07:f9:e6:0b:28:9c:85:ec:fb:1e:06:2a:b3:9c:39: 52:a1:52:50:2a:5e:2c:4f:5c:47:44:73:4d:59:78:43:bd:3c: 27:3e:e8:70 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt57ME9113CnXZGmZze/VnvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxYmZlODgyZDEzZTgwM2ZjMTk0MzczZWE0MGQ4YTVhOWU2 OWYzMDQwHhcNMjYwMTAxMTQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMmQ5NzM4OTZjNGI2MGQwODQ0MmMzNjk3YjdmYmYyMTg5YWM3OTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAob0W+Px4orECMy6Se8P5WUVrPAyh KcJ5lNmqxleRTKAFk1VCyJVUu2PyKkh40JwCOppcIr3DWR6J/xeRrNlk8tSl4IBa g7X+2D24+dQ6qO6gLppGAXSrALmhT/P1gT37pn4B8WNeY25Pp2D/CQji+JSyMF65 IkCtuNL47qbDRMTRmHBBzhHva52kskhvpLdGj532oJR+PqNThprsSce+4KOgrbvF 6lXVkwTAdwgV3YL/qMraRtTH1yBDwBDEOzZ3IuRiycIUdrKUTjq22RUPKe234kR2 UxA6yOXZwXdlH/oFU4YY0CU67IGqrmlDdzuUAlbts3RFugtUrdphzP3/mwIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFLLZc4lsS2DQhELDaXt/vyGJrHmFMB8GA1UdIwQY MBaAFAG/6ILRPoA/wZQ3PqQNilqeafMEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWJfb2d0RS1nRF9CbERjLXBBMktXcDVwOHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy82NmMwOGEtZWU1OS00NzcxLWE4ZjIt MmE1NTM5OWE4MGIwLzEvc3RsemlXeExZTkNFUXNOcGUzLV9JWW1zZVlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy82NmMwOGEtZWU1OS00NzcxLWE4ZjItMmE1NTM5OWE4MGIw LzEvQWJfb2d0RS1nRF9CbERjLXBBMktXcDVwOHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAeBAIAATAYAwQDBZAoAwQE URIQAwQCuYCsAwQCuZjgMBQEAgACMA4DBQMqAg04AwUDKgbQQDANBgkqhkiG9w0B AQsFAAOCAQEAQE/Yt37SQ9by8y+ACjzuyYzTcSdDcXBX7DbLBA/pcH2s6xykCSKI rCXu46UdDqGghbS8uMuIcdsGePiP4oNTz8q4xx9cENuOyE7rFtctNQVyAzyMxzHS VQPLoS/P1QBnzp7ETybCN0jIrssY3q4y4urcC6bODqIzj4FDV7NKQ26YgnGeUTYw F3MCNhv0sqXMVjoDzOBPjKdE9DVm8+t0txlLGdhbVRwb4j6WU0xdw0bWdxoybECl GjRieTEf4/sE88nzlUXuABq6vgLXfX8J7UYtcqaEYxDjC9YvB/nmCyichez7HgYq s5w5UqFSUCpeLE9cR0RzTVl4Q708Jz7ocA== -----END CERTIFICATE-----Generated at Mon Jan 26 15:59:31 2026 by rpki-client