This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/17C_vnF79Z0SjoScCQYs0Qbx30M.roa File: 17C_vnF79Z0SjoScCQYs0Qbx30M.roa (raw, json) Hash identifier: 8O33ZZG4CQkBtT5Vng3e75/g1VOrRLzBwAenPZwIQiA= Subject key identifier: D7:B0:BF:BE:71:7B:F5:9D:12:8E:84:9C:09:06:2C:D1:06:F1:DF:43 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B7F84E4E441DE92B2D1F488E280BA2DA4 Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/17C_vnF79Z0SjoScCQYs0Qbx30M.roa Signing time: Fri 02 Jan 2026 16:22:54 +0000 ROA not before: Fri 02 Jan 2026 16:22:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57747 IP address blocks: 5.180.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:e4:e4:41:de:92:b2:d1:f4:88:e2:80:ba:2d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Jan 2 16:22:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7b0bfbe717bf59d128e849c09062cd106f1df43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:58:37:73:86:cf:07:83:cd:c1:af:85:f6:79: ca:7d:67:e8:8a:ff:99:e3:6e:e6:2b:04:66:61:0b: e1:e0:89:fc:5b:ff:87:16:ff:4b:6c:cd:32:38:42: 8d:9e:4e:f6:79:5c:41:48:54:74:70:4e:05:1c:3c: 7e:b7:6d:c2:d3:16:9f:68:1b:27:fe:d4:76:47:14: d3:69:ab:73:38:82:13:73:3c:ba:54:12:f7:23:31: aa:b4:1b:4d:b0:4f:96:ed:09:93:a5:99:2e:1e:41: cd:a2:c6:75:0d:21:ae:3e:b2:0f:2b:44:b4:bb:99: 09:41:0f:f6:8a:5e:22:60:a2:ba:71:0c:44:7b:9e: f8:99:38:77:f2:3d:b6:1c:c3:97:23:e4:f9:4e:47: f3:db:43:ab:10:0f:1e:bd:29:7b:57:26:a0:fd:ae: 54:52:b8:b9:05:52:e9:78:50:59:bf:e6:37:db:24: 2c:e7:5c:85:1c:33:30:6a:84:26:81:4d:fa:c1:98: 8e:0d:4f:98:ee:85:30:91:ba:73:db:60:80:79:53: af:9d:64:e2:f5:c0:66:28:e5:f7:87:4d:2d:e1:3e: 0e:32:ae:9e:5d:31:6e:2b:e5:1e:d1:f9:04:01:00: 40:9c:a1:8a:99:5e:78:97:4e:85:51:2b:ed:12:b8: 11:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B0:BF:BE:71:7B:F5:9D:12:8E:84:9C:09:06:2C:D1:06:F1:DF:43 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/17C_vnF79Z0SjoScCQYs0Qbx30M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.120.0/23 Signature Algorithm: sha256WithRSAEncryption 74:f6:91:43:8c:27:54:a5:12:67:35:f8:69:4e:2e:ca:1e:0a: 5e:b0:67:b5:58:97:37:27:82:46:4d:ff:e6:47:59:cb:52:38: 92:9c:91:37:65:99:de:3a:73:6a:69:d5:6c:16:7a:48:9e:de: 1a:4c:4a:92:be:76:47:a2:36:92:d5:26:5e:e2:e0:b8:e0:7e: 59:9c:c5:0c:ed:3d:b4:38:27:a9:2b:1a:dc:11:56:b8:09:dc: 93:a6:1a:f4:a9:47:6f:34:61:7c:18:c4:7f:2c:bf:f1:88:c0: c7:14:af:76:8c:b9:15:7b:b1:9f:29:71:34:10:f9:4f:eb:8a: 79:1e:01:36:c1:73:17:1c:3d:0c:63:7c:e5:de:91:c9:0a:16: f9:3a:af:c2:3c:1f:0d:e1:c1:bc:ab:06:65:d8:15:e6:e1:95: 9c:fa:98:27:4d:d8:92:0c:ab:87:d7:30:0b:27:d6:31:c0:2e: f4:cf:9d:c6:eb:23:cc:a6:69:98:89:5d:48:75:61:3e:24:58: b9:13:c1:af:80:e9:19:14:78:f4:2e:63:82:6c:eb:c1:16:7d: 07:87:fb:71:c0:47:07:94:dd:2f:ce:12:d7:b4:9e:d2:bf:53: 28:79:dd:f0:86:12:e6:93:0a:74:03:b0:c9:4f:4e:80:3e:64: 70:a2:db:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hOTkQd6SstH0iOKAui2kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjYwMTAyMTYyMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2IwYmZiZTcxN2JmNTlkMTI4ZTg0OWMwOTA2MmNkMTA2ZjFkZjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1g3c4bPB4PNwa+F9nnKfWfoiv+Z 427mKwRmYQvh4In8W/+HFv9LbM0yOEKNnk72eVxBSFR0cE4FHDx+t23C0xafaBsn /tR2RxTTaatzOIITczy6VBL3IzGqtBtNsE+W7QmTpZkuHkHNosZ1DSGuPrIPK0S0 u5kJQQ/2il4iYKK6cQxEe574mTh38j22HMOXI+T5Tkfz20OrEA8evSl7Vyag/a5U Uri5BVLpeFBZv+Y32yQs51yFHDMwaoQmgU36wZiODU+Y7oUwkbpz22CAeVOvnWTi 9cBmKOX3h00t4T4OMq6eXTFuK+Ue0fkEAQBAnKGKmV54l06FUSvtErgRqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNewv75xe/WdEo6EnAkGLNEG8d9DMB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvMTdDX3ZuRjc5WjBTam9TY0NRWXMwUWJ4MzBNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBbR4MA0G CSqGSIb3DQEBCwUAA4IBAQB09pFDjCdUpRJnNfhpTi7KHgpesGe1WJc3J4JGTf/m R1nLUjiSnJE3ZZneOnNqadVsFnpInt4aTEqSvnZHojaS1SZe4uC44H5ZnMUM7T20 OCepKxrcEVa4CdyTphr0qUdvNGF8GMR/LL/xiMDHFK92jLkVe7GfKXE0EPlP64p5 HgE2wXMXHD0MY3zl3pHJChb5Oq/CPB8N4cG8qwZl2BXm4ZWc+pgnTdiSDKuH1zAL J9YxwC70z53G6yPMpmmYiV1IdWE+JFi5E8GvgOkZFHj0LmOCbOvBFn0Hh/txwEcH lN0vzhLXtJ7Sv1Moed3whhLmkwp0A7DJT06APmRwott+ -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:48 2026 by rpki-client