This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/135032-ea24-4a47-8f5c-e0bac4161953/1/p2IMZfuSyzWUQCvrAkoFeLo46oo.roa File: p2IMZfuSyzWUQCvrAkoFeLo46oo.roa (raw, json) Hash identifier: hxar/HLUHEBtlzcjTx3TaCuWIzPYRzZYjjh5egyYeWI= Subject key identifier: A7:62:0C:65:FB:92:CB:35:94:40:2B:EB:02:4A:05:78:BA:38:EA:8A Certificate issuer: /CN=256be176b313e1a8a050f670af576771b655d611 Certificate serial: 019B7EA626CD5CB4D3E503370BE4663F488F Authority key identifier: 25:6B:E1:76:B3:13:E1:A8:A0:50:F6:70:AF:57:67:71:B6:55:D6:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JWvhdrMT4aigUPZwr1dncbZV1hE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/135032-ea24-4a47-8f5c-e0bac4161953/1/p2IMZfuSyzWUQCvrAkoFeLo46oo.roa Signing time: Fri 02 Jan 2026 12:19:36 +0000 ROA not before: Fri 02 Jan 2026 12:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15600 IP address blocks: 5.145.64.0/19 maxlen: 24 5.145.96.0/21 maxlen: 24 185.74.144.0/22 maxlen: 24 2a00:d2a0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/135032-ea24-4a47-8f5c-e0bac4161953/1/JWvhdrMT4aigUPZwr1dncbZV1hE.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/135032-ea24-4a47-8f5c-e0bac4161953/1/JWvhdrMT4aigUPZwr1dncbZV1hE.mft rsync://rpki.ripe.net/repository/DEFAULT/JWvhdrMT4aigUPZwr1dncbZV1hE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:26:cd:5c:b4:d3:e5:03:37:0b:e4:66:3f:48:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=256be176b313e1a8a050f670af576771b655d611 Validity Not Before: Jan 2 12:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7620c65fb92cb3594402beb024a0578ba38ea8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:af:f3:bc:f0:17:6e:22:1a:af:f3:ea:a0: bb:88:4a:c3:f8:74:a6:1e:e6:a1:89:ab:6a:f3:9d: bd:2d:10:29:ec:d2:f0:a7:e1:b6:fd:58:ea:07:97: 2a:db:f6:70:af:e2:f1:b3:14:57:1d:8f:26:5b:ad: 63:70:27:59:f9:d8:38:b0:e4:6c:27:1a:82:25:5e: 68:37:72:c2:4a:58:46:31:8b:d2:99:77:c3:0a:95: 11:2d:6c:36:c9:6c:1c:dd:67:dc:35:30:91:34:e9: a8:da:f6:78:0a:a0:a3:fc:82:95:4a:81:28:29:ea: 62:56:e7:6e:db:de:d3:61:77:ea:0d:dc:3f:50:98: a8:3d:32:e9:61:ac:51:e2:55:02:69:ba:3b:fa:e4: 39:34:e9:97:75:d7:32:ed:8d:a9:f4:f5:63:aa:8b: 7e:f4:a4:01:e8:d3:7a:44:3a:cf:fb:93:1d:59:87: 4f:bf:3c:cd:40:43:bf:83:e6:4a:4f:15:2d:67:ef: 06:d5:ca:b4:13:65:8e:56:63:3a:d8:ff:1c:2e:92: 01:30:c5:44:65:f4:e5:34:b6:b3:98:0b:1d:99:76: d2:57:1e:95:6e:d4:c9:e3:71:c3:74:5b:cc:61:f9: f0:b3:67:60:3c:cc:35:49:28:b3:56:80:09:95:c5: fd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:62:0C:65:FB:92:CB:35:94:40:2B:EB:02:4A:05:78:BA:38:EA:8A X509v3 Authority Key Identifier: keyid:25:6B:E1:76:B3:13:E1:A8:A0:50:F6:70:AF:57:67:71:B6:55:D6:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JWvhdrMT4aigUPZwr1dncbZV1hE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/135032-ea24-4a47-8f5c-e0bac4161953/1/p2IMZfuSyzWUQCvrAkoFeLo46oo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/135032-ea24-4a47-8f5c-e0bac4161953/1/JWvhdrMT4aigUPZwr1dncbZV1hE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.145.64.0-5.145.103.255 185.74.144.0/22 IPv6: 2a00:d2a0::/29 Signature Algorithm: sha256WithRSAEncryption 58:45:6d:99:d0:d1:aa:29:15:4f:e2:53:2b:53:bc:45:ba:cb: 0f:33:08:98:7c:18:43:41:31:a9:2c:86:0c:a1:3a:b0:4f:ec: e5:28:f1:6b:36:24:eb:2a:8f:98:0f:c5:a1:b7:76:8f:08:21: 4a:b1:bf:e1:60:78:53:55:cf:4e:53:0f:00:c1:02:8e:df:cd: 93:c0:9f:c5:ba:55:03:cd:62:d7:86:a7:b2:8e:72:71:75:ce: 07:ed:b9:64:45:8e:51:ac:38:96:23:75:ba:0b:52:43:ed:1a: 65:19:80:24:d5:3e:4b:af:8d:bd:28:60:10:aa:a1:a9:b9:17: d0:9c:0e:4e:44:73:49:0b:8f:28:6d:49:59:75:7c:11:00:3d: 6f:55:93:4a:2b:d9:b3:80:bc:29:bd:61:41:4c:37:e7:62:74: 01:15:19:bb:ea:24:1e:8d:e4:dc:f8:97:77:8e:73:bf:96:2f: 01:74:b7:e2:6d:87:74:53:b9:05:91:3f:65:a2:81:05:b7:44: a5:c2:69:68:91:13:a0:48:fd:cb:61:f1:e6:14:3c:60:af:b7: e2:ec:43:98:60:16:33:c9:bc:60:39:a5:eb:e7:e7:44:94:42: e8:e2:f9:6c:7c:ea:d8:a7:70:f5:ee:00:01:a0:02:67:81:d1: 60:f2:bc:aa -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZt+pibNXLTT5QM3C+RmP0iPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NmJlMTc2YjMxM2UxYThhMDUwZjY3MGFmNTc2NzcxYjY1 NWQ2MTEwHhcNMjYwMTAyMTIxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzYyMGM2NWZiOTJjYjM1OTQ0MDJiZWIwMjRhMDU3OGJhMzhlYThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6Cv87zwF24iGq/z6qC7iErD+HSm Huahiatq8529LRAp7NLwp+G2/VjqB5cq2/Zwr+LxsxRXHY8mW61jcCdZ+dg4sORs JxqCJV5oN3LCSlhGMYvSmXfDCpURLWw2yWwc3WfcNTCRNOmo2vZ4CqCj/IKVSoEo KepiVudu297TYXfqDdw/UJioPTLpYaxR4lUCabo7+uQ5NOmXddcy7Y2p9PVjqot+ 9KQB6NN6RDrP+5MdWYdPvzzNQEO/g+ZKTxUtZ+8G1cq0E2WOVmM62P8cLpIBMMVE ZfTlNLazmAsdmXbSVx6VbtTJ43HDdFvMYfnws2dgPMw1SSizVoAJlcX9xwIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFKdiDGX7kss1lEAr6wJKBXi6OOqKMB8GA1UdIwQY MBaAFCVr4XazE+GooFD2cK9XZ3G2VdYRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSld2aGRyTVQ0YWlnVVBad3IxZG5jYlpWMWhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi8xMzUwMzItZWEyNC00YTQ3LThmNWMt ZTBiYWM0MTYxOTUzLzEvcDJJTVpmdVN5eldVUUN2ckFrb0ZlTG80Nm9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi8xMzUwMzItZWEyNC00YTQ3LThmNWMtZTBiYWM0MTYxOTUz LzEvSld2aGRyTVQ0YWlnVVBad3IxZG5jYlpWMWhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAaBAIAATAUMAwDBAYFkUAD BAMFkWADBAK5SpAwDQQCAAIwBwMFAyoA0qAwDQYJKoZIhvcNAQELBQADggEBAFhF bZnQ0aopFU/iUytTvEW6yw8zCJh8GENBMakshgyhOrBP7OUo8Ws2JOsqj5gPxaG3 do8IIUqxv+FgeFNVz05TDwDBAo7fzZPAn8W6VQPNYteGp7KOcnF1zgftuWRFjlGs OJYjdboLUkPtGmUZgCTVPkuvjb0oYBCqoam5F9CcDk5Ec0kLjyhtSVl1fBEAPW9V k0or2bOAvCm9YUFMN+didAEVGbvqJB6N5Nz4l3eOc7+WLwF0t+Jth3RTuQWRP2Wi gQW3RKXCaWiRE6BI/cth8eYUPGCvt+LsQ5hgFjPJvGA5pevn50SUQuji+Wx86tin cPXuAAGgAmeB0WDyvKo= -----END CERTIFICATE-----Generated at Mon Jan 26 20:41:22 2026 by rpki-client