This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/629f4d-3929-461e-a194-dd1028991ff3/1/CBtJzFMoigMYechG5k_lhWICkAA.roa File: CBtJzFMoigMYechG5k_lhWICkAA.roa (raw, json) Hash identifier: 6qcOp5zAWvjz4mUxBNJFQHjpgjjuwwz7xV3uMQfNfLc= Subject key identifier: 08:1B:49:CC:53:28:8A:03:18:79:C8:46:E6:4F:E5:85:62:02:90:00 Certificate issuer: /CN=e5e69068a8b1fb7fa0795baf9bb3ab86c94e46fc Certificate serial: 019BFC2EC19CA5C371C5382130AFA00C41C8 Authority key identifier: E5:E6:90:68:A8:B1:FB:7F:A0:79:5B:AF:9B:B3:AB:86:C9:4E:46:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5eaQaKix-3-geVuvm7OrhslORvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/629f4d-3929-461e-a194-dd1028991ff3/1/CBtJzFMoigMYechG5k_lhWICkAA.roa Signing time: Mon 26 Jan 2026 21:21:21 +0000 ROA not before: Mon 26 Jan 2026 21:21:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200043 IP address blocks: 31.3.168.0/22 maxlen: 24 31.3.172.0/22 maxlen: 24 31.3.176.0/20 maxlen: 24 45.10.220.0/22 maxlen: 24 62.220.64.0/20 maxlen: 24 62.220.80.0/21 maxlen: 24 62.220.88.0/21 maxlen: 24 109.238.124.0/23 maxlen: 24 109.238.126.0/23 maxlen: 24 185.63.168.0/22 maxlen: 24 185.98.8.0/22 maxlen: 24 185.213.4.0/22 maxlen: 24 194.50.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/629f4d-3929-461e-a194-dd1028991ff3/1/5eaQaKix-3-geVuvm7OrhslORvw.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/629f4d-3929-461e-a194-dd1028991ff3/1/5eaQaKix-3-geVuvm7OrhslORvw.mft rsync://rpki.ripe.net/repository/DEFAULT/5eaQaKix-3-geVuvm7OrhslORvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:2e:c1:9c:a5:c3:71:c5:38:21:30:af:a0:0c:41:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5e69068a8b1fb7fa0795baf9bb3ab86c94e46fc Validity Not Before: Jan 26 21:21:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=081b49cc53288a031879c846e64fe58562029000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:7e:68:d0:6c:69:47:b9:b3:e1:e6:e2:10:70: a0:12:7a:57:8a:6a:21:e6:17:ef:3f:d6:01:43:00: 3c:9d:dc:53:0a:fd:91:d0:14:89:21:37:14:95:37: 9d:d3:d7:e0:c7:88:ef:cc:43:08:21:59:32:6a:3d: 9a:79:40:2e:0b:01:24:45:94:18:c4:f4:2b:de:4e: a3:95:36:57:a5:58:c8:87:f3:3c:cd:a4:3d:52:a6: 66:8d:76:b5:09:db:70:99:7c:93:41:88:65:9f:3d: e9:2e:b8:08:4f:1d:fd:5b:11:c8:d6:5d:8b:78:8c: 58:4d:73:3e:66:27:b0:fa:2a:5a:96:3d:20:d8:22: 52:90:e2:76:d8:01:4f:7a:d6:84:f9:dc:61:b1:ec: ef:ab:32:50:f4:c3:86:a5:11:99:f0:0d:e4:b5:a5: 52:7c:24:d6:da:3a:74:47:b0:19:c9:68:04:cc:95: b4:29:f6:46:53:f3:10:81:6e:ad:d1:de:92:0e:e4: 03:ed:0c:d3:d5:89:a3:15:a4:aa:70:ea:ea:4d:07: 68:e2:06:aa:ed:cd:b8:41:63:43:eb:bc:4c:ee:0b: 0f:48:66:5f:21:77:08:de:de:9e:0f:67:62:98:d3: 58:64:d5:08:f2:c2:e6:e4:18:44:b5:a1:d1:e1:a1: d3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:1B:49:CC:53:28:8A:03:18:79:C8:46:E6:4F:E5:85:62:02:90:00 X509v3 Authority Key Identifier: keyid:E5:E6:90:68:A8:B1:FB:7F:A0:79:5B:AF:9B:B3:AB:86:C9:4E:46:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5eaQaKix-3-geVuvm7OrhslORvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/629f4d-3929-461e-a194-dd1028991ff3/1/CBtJzFMoigMYechG5k_lhWICkAA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/629f4d-3929-461e-a194-dd1028991ff3/1/5eaQaKix-3-geVuvm7OrhslORvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.3.168.0-31.3.191.255 45.10.220.0/22 62.220.64.0/19 109.238.124.0/22 185.63.168.0/22 185.98.8.0/22 185.213.4.0/22 194.50.54.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:b2:6f:d0:12:fc:30:86:b1:63:03:d5:90:5a:38:10:48:86: 86:02:1e:7b:02:87:52:28:12:23:d8:b5:04:6e:93:85:e9:73: cf:94:1b:d5:fd:26:00:21:1f:43:c7:ba:4a:58:ca:f2:d0:71: d9:74:52:48:fc:8e:0a:2e:02:20:c2:37:c2:f9:a0:37:09:2b: 7c:7a:0d:a4:cb:2b:91:20:7b:1d:d6:86:df:12:70:4b:a9:b6: 29:0c:b2:21:e4:39:53:28:2e:81:2d:a3:f7:4b:3d:5a:92:35: c7:69:fc:82:97:14:dd:ff:10:a7:b0:09:fa:d2:98:85:c9:32: 16:fb:3d:57:0c:c9:8c:2b:ff:6d:fc:ba:35:87:2c:c8:e2:cd: 9a:2b:59:69:1f:d6:8f:e3:5e:af:59:7a:43:30:59:36:6a:f2: 7b:66:fb:f0:1e:0c:28:e1:33:62:32:84:59:4b:37:5f:0e:61: 33:5e:e2:0e:02:92:b4:bf:f7:5d:ef:d2:b6:9d:cc:8c:44:2b: 64:00:d1:8c:a0:d9:e1:c6:69:7f:9e:0a:bc:d9:63:77:af:03: 46:dc:00:56:7e:36:5a:74:17:a2:9e:00:24:7b:56:14:da:79: 23:c2:1e:f3:1e:74:01:b4:5b:c5:8e:bc:cd:2c:73:df:26:27: 11:92:8f:14 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZv8LsGcpcNxxTghMK+gDEHIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZTY5MDY4YThiMWZiN2ZhMDc5NWJhZjliYjNhYjg2Yzk0 ZTQ2ZmMwHhcNMjYwMTI2MjEyMTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODFiNDljYzUzMjg4YTAzMTg3OWM4NDZlNjRmZTU4NTYyMDI5MDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiH5o0GxpR7mz4ebiEHCgEnpXimoh 5hfvP9YBQwA8ndxTCv2R0BSJITcUlTed09fgx4jvzEMIIVkyaj2aeUAuCwEkRZQY xPQr3k6jlTZXpVjIh/M8zaQ9UqZmjXa1CdtwmXyTQYhlnz3pLrgITx39WxHI1l2L eIxYTXM+Ziew+ipalj0g2CJSkOJ22AFPetaE+dxhsezvqzJQ9MOGpRGZ8A3ktaVS fCTW2jp0R7AZyWgEzJW0KfZGU/MQgW6t0d6SDuQD7QzT1YmjFaSqcOrqTQdo4gaq 7c24QWND67xM7gsPSGZfIXcI3t6eD2dimNNYZNUI8sLm5BhEtaHR4aHTKQIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFAgbScxTKIoDGHnIRuZP5YViApAAMB8GA1UdIwQY MBaAFOXmkGiosft/oHlbr5uzq4bJTkb8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWVhUWFLaXgtMy1nZVZ1dm03T3Joc2xPUnZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS82MjlmNGQtMzkyOS00NjFlLWExOTQt ZGQxMDI4OTkxZmYzLzEvQ0J0SnpGTW9pZ01ZZWNoRzVrX2xoV0lDa0FBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS82MjlmNGQtMzkyOS00NjFlLWExOTQtZGQxMDI4OTkxZmYz LzEvNWVhUWFLaXgtMy1nZVZ1dm03T3Joc2xPUnZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4MAwDBAMfA6gD BAYfA4ADBAItCtwDBAU+3EADBAJt7nwDBAK5P6gDBAK5YggDBAK51QQDBADCMjYw DQYJKoZIhvcNAQELBQADggEBAG6yb9AS/DCGsWMD1ZBaOBBIhoYCHnsCh1IoEiPY tQRuk4Xpc8+UG9X9JgAhH0PHukpYyvLQcdl0Ukj8jgouAiDCN8L5oDcJK3x6DaTL K5Egex3Wht8ScEuptikMsiHkOVMoLoEto/dLPVqSNcdp/IKXFN3/EKewCfrSmIXJ Mhb7PVcMyYwr/238ujWHLMjizZorWWkf1o/jXq9ZekMwWTZq8ntm+/AeDCjhM2Iy hFlLN18OYTNe4g4CkrS/913v0radzIxEK2QA0Yyg2eHGaX+eCrzZY3evA0bcAFZ+ Nlp0F6KeACR7VhTaeSPCHvMedAG0W8WOvM0sc98mJxGSjxQ= -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:29 2026 by rpki-client