This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b7fea2-a32d-4a5e-9982-54b4ca50d248/1/5kdfSFfIXpTRDKj7nU9dTnk_a7Q.roa File: 5kdfSFfIXpTRDKj7nU9dTnk_a7Q.roa (raw, json) Hash identifier: Qud0EaTIzAf2oGbBUwUkaVwSjph89PDDdo19BAvVZGk= Subject key identifier: E6:47:5F:48:57:C8:5E:94:D1:0C:A8:FB:9D:4F:5D:4E:79:3F:6B:B4 Certificate issuer: /CN=380dd9e7355c72c751fff4f175dace7daa7b9cbf Certificate serial: 019B7F84316FE0A7B89AA5A4B5ABF1AD6FB3 Authority key identifier: 38:0D:D9:E7:35:5C:72:C7:51:FF:F4:F1:75:DA:CE:7D:AA:7B:9C:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA3Z5zVccsdR__TxddrOfap7nL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b7fea2-a32d-4a5e-9982-54b4ca50d248/1/5kdfSFfIXpTRDKj7nU9dTnk_a7Q.roa Signing time: Fri 02 Jan 2026 16:22:08 +0000 ROA not before: Fri 02 Jan 2026 16:22:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40966 IP address blocks: 185.67.164.0/22 maxlen: 22 185.67.164.0/24 maxlen: 24 185.67.165.0/24 maxlen: 24 185.67.166.0/24 maxlen: 24 185.67.167.0/24 maxlen: 24 217.112.32.0/20 maxlen: 20 217.112.36.0/23 maxlen: 23 217.112.36.0/24 maxlen: 24 217.112.42.0/23 maxlen: 23 217.112.44.0/24 maxlen: 24 217.112.45.0/24 maxlen: 24 217.112.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/b7fea2-a32d-4a5e-9982-54b4ca50d248/1/OA3Z5zVccsdR__TxddrOfap7nL8.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/b7fea2-a32d-4a5e-9982-54b4ca50d248/1/OA3Z5zVccsdR__TxddrOfap7nL8.mft rsync://rpki.ripe.net/repository/DEFAULT/OA3Z5zVccsdR__TxddrOfap7nL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 09:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:31:6f:e0:a7:b8:9a:a5:a4:b5:ab:f1:ad:6f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=380dd9e7355c72c751fff4f175dace7daa7b9cbf Validity Not Before: Jan 2 16:22:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e6475f4857c85e94d10ca8fb9d4f5d4e793f6bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:14:4d:c5:54:b1:9d:11:93:d6:93:a1:b0:92: e3:e6:b1:1f:af:a1:35:d6:f6:e1:bd:b6:48:a6:67: 24:ed:18:89:2b:6d:16:97:43:ae:56:0e:ca:c1:03: ae:93:88:3d:e7:8d:45:1b:ca:43:95:8d:8a:4a:18: 75:12:89:64:1d:fb:fe:6d:77:08:ac:01:22:2f:b8: 1f:aa:cf:81:11:8d:86:08:21:e0:53:41:23:9e:ff: 4e:4c:4b:91:61:4c:0d:b0:93:44:f4:ea:f6:1f:5c: 69:0e:63:af:30:64:dc:bc:b8:bd:a0:3f:da:ef:1f: 93:de:bb:77:5f:e8:89:05:66:2e:7b:12:65:83:8c: 5c:59:55:2a:84:48:ec:49:94:33:95:71:86:e4:3c: 88:37:c0:0d:29:8b:d9:07:be:96:c6:12:f8:5a:e1: 10:63:ef:13:70:cf:3e:ee:99:d8:f2:38:cb:4b:bf: 2e:61:56:b3:10:1d:07:8e:11:37:b9:23:8e:3e:ad: c5:4e:ce:7a:76:fc:41:06:f0:fc:7a:3e:f2:3b:43: 18:5c:5e:26:5d:14:8c:e8:ee:11:9a:eb:f9:0f:37: 6d:1f:cc:83:9c:87:5f:cf:9c:e0:d8:e8:d9:e9:2a: 2d:2a:69:3a:0a:bf:82:f8:d8:73:46:e9:24:a9:fe: 34:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:47:5F:48:57:C8:5E:94:D1:0C:A8:FB:9D:4F:5D:4E:79:3F:6B:B4 X509v3 Authority Key Identifier: keyid:38:0D:D9:E7:35:5C:72:C7:51:FF:F4:F1:75:DA:CE:7D:AA:7B:9C:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA3Z5zVccsdR__TxddrOfap7nL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b7fea2-a32d-4a5e-9982-54b4ca50d248/1/5kdfSFfIXpTRDKj7nU9dTnk_a7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b7fea2-a32d-4a5e-9982-54b4ca50d248/1/OA3Z5zVccsdR__TxddrOfap7nL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.67.164.0/22 217.112.32.0/20 Signature Algorithm: sha256WithRSAEncryption 9d:a8:f4:54:59:44:31:29:18:7c:98:16:dc:98:b5:8f:07:f9: 96:b5:76:d1:73:df:5f:d4:1b:93:5a:a7:57:4d:2f:d7:34:fa: a4:62:4f:4d:e7:80:8d:21:a5:e1:5e:56:ab:42:d5:8c:30:fe: 86:37:5d:90:22:fc:87:7d:00:69:75:37:e4:e4:e4:73:a2:c6: c3:ed:52:30:7c:30:cd:e6:8c:ce:e3:1e:30:83:13:c3:f3:33: 61:83:62:f3:32:41:c6:07:a1:f4:79:86:a0:38:69:e2:a4:b4: bf:84:4c:8a:9f:dc:78:f7:7c:41:3f:84:55:49:c5:a5:8d:43: 02:9b:0f:dd:c3:23:4d:01:c5:5b:e6:f9:90:5e:64:9d:09:84: e7:83:7b:b2:5c:3d:ba:a9:57:35:51:31:e1:b3:1a:76:ef:ea: 3a:8a:5b:7b:74:2f:d9:6f:31:0f:06:57:39:8c:8e:05:88:c4: 30:b3:20:59:f1:d3:33:4f:67:d8:85:bb:93:ac:9c:ac:c7:ab: 78:d9:e9:65:c0:24:53:98:95:88:dd:f6:12:96:06:d9:2e:9d: ca:51:9f:21:68:ee:c2:bc:f9:86:1e:6e:01:08:f9:68:32:31: c4:0c:52:9b:17:ae:f7:2c:a2:c3:7e:67:0d:1a:93:e4:33:eb: f8:ef:59:b9 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hDFv4Ke4mqWktavxrW+zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MGRkOWU3MzU1YzcyYzc1MWZmZjRmMTc1ZGFjZTdkYWE3 YjljYmYwHhcNMjYwMTAyMTYyMjA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjQ3NWY0ODU3Yzg1ZTk0ZDEwY2E4ZmI5ZDRmNWQ0ZTc5M2Y2YmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBRNxVSxnRGT1pOhsJLj5rEfr6E1 1vbhvbZIpmck7RiJK20Wl0OuVg7KwQOuk4g9541FG8pDlY2KShh1EolkHfv+bXcI rAEiL7gfqs+BEY2GCCHgU0Ejnv9OTEuRYUwNsJNE9Or2H1xpDmOvMGTcvLi9oD/a 7x+T3rt3X+iJBWYuexJlg4xcWVUqhEjsSZQzlXGG5DyIN8ANKYvZB76WxhL4WuEQ Y+8TcM8+7pnY8jjLS78uYVazEB0HjhE3uSOOPq3FTs56dvxBBvD8ej7yO0MYXF4m XRSM6O4Rmuv5DzdtH8yDnIdfz5zg2OjZ6SotKmk6Cr+C+NhzRukkqf40MQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOZHX0hXyF6U0Qyo+51PXU55P2u0MB8GA1UdIwQY MBaAFDgN2ec1XHLHUf/08XXazn2qe5y/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0EzWjV6VmNjc2RSX19UeGRkck9mYXA3bkw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9iN2ZlYTItYTMyZC00YTVlLTk5ODIt NTRiNGNhNTBkMjQ4LzEvNWtkZlNGZklYcFRSREtqN25VOWRUbmtfYTdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9iN2ZlYTItYTMyZC00YTVlLTk5ODItNTRiNGNhNTBkMjQ4 LzEvT0EzWjV6VmNjc2RSX19UeGRkck9mYXA3bkw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuUOkAwQE 2XAgMA0GCSqGSIb3DQEBCwUAA4IBAQCdqPRUWUQxKRh8mBbcmLWPB/mWtXbRc99f 1BuTWqdXTS/XNPqkYk9N54CNIaXhXlarQtWMMP6GN12QIvyHfQBpdTfk5ORzosbD 7VIwfDDN5ozO4x4wgxPD8zNhg2LzMkHGB6H0eYagOGnipLS/hEyKn9x493xBP4RV ScWljUMCmw/dwyNNAcVb5vmQXmSdCYTng3uyXD26qVc1UTHhsxp27+o6ilt7dC/Z bzEPBlc5jI4FiMQwsyBZ8dMzT2fYhbuTrJysx6t42ellwCRTmJWI3fYSlgbZLp3K UZ8haO7CvPmGHm4BCPloMjHEDFKbF673LKLDfmcNGpPkM+v471m5 -----END CERTIFICATE-----Generated at Sat Feb 7 17:36:52 2026 by rpki-client