This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/5LJ6vnXtwmGXUx6O538ORYtnGx4.roa File: 5LJ6vnXtwmGXUx6O538ORYtnGx4.roa (raw, json) Hash identifier: QRL2ztwWB50vBpAaqPLzUSu3gw9O5iTRTdatmHW2iME= Subject key identifier: E4:B2:7A:BE:75:ED:C2:61:97:53:1E:8E:E7:7F:0E:45:8B:67:1B:1E Certificate issuer: /CN=4b98127943e7175734964010c89ef821416a31b3 Certificate serial: 019B7AC87C5D854CA57F3314BA1D8F50389B Authority key identifier: 4B:98:12:79:43:E7:17:57:34:96:40:10:C8:9E:F8:21:41:6A:31:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5gSeUPnF1c0lkAQyJ74IUFqMbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/5LJ6vnXtwmGXUx6O538ORYtnGx4.roa Signing time: Thu 01 Jan 2026 18:18:37 +0000 ROA not before: Thu 01 Jan 2026 18:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 31.99.64.0/18 maxlen: 18 31.99.128.0/18 maxlen: 18 31.99.192.0/21 maxlen: 21 31.99.200.0/21 maxlen: 21 31.99.208.0/20 maxlen: 20 31.99.224.0/19 maxlen: 19 178.106.0.0/16 maxlen: 16 178.107.32.0/19 maxlen: 19 178.107.64.0/18 maxlen: 18 185.102.192.0/22 maxlen: 22 185.102.196.0/22 maxlen: 22 185.102.200.0/22 maxlen: 22 194.36.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/S5gSeUPnF1c0lkAQyJ74IUFqMbM.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/S5gSeUPnF1c0lkAQyJ74IUFqMbM.mft rsync://rpki.ripe.net/repository/DEFAULT/S5gSeUPnF1c0lkAQyJ74IUFqMbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:7c:5d:85:4c:a5:7f:33:14:ba:1d:8f:50:38:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b98127943e7175734964010c89ef821416a31b3 Validity Not Before: Jan 1 18:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4b27abe75edc26197531e8ee77f0e458b671b1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7e:21:8c:38:91:c4:5a:c5:51:6a:d2:6f:a1: a9:50:07:ee:54:8a:a2:98:e2:ee:99:9e:97:ea:65: 4c:24:6b:a7:0f:ba:52:4c:82:f5:ba:50:27:c1:84: f7:05:fb:e0:02:5c:f6:d7:80:a5:55:44:57:f4:2c: 60:0b:74:23:0e:7d:b3:ba:32:cc:ff:d8:46:d6:c3: 6e:2e:d3:7b:e2:22:a7:74:cb:8f:99:ac:6c:52:4a: 28:72:fa:32:19:7c:b1:7e:82:38:35:39:6a:44:d8: 06:d3:c5:13:18:cd:06:05:ca:7c:a4:62:6b:56:63: 01:cc:3a:f3:b7:b8:79:cf:b0:c2:a4:ca:aa:1d:e2: 6e:8b:63:21:f9:db:c3:1f:84:c9:98:aa:1c:e7:77: 13:0e:20:5c:f9:91:21:68:9f:0f:31:6f:ea:80:ef: 71:df:3d:99:94:c7:f6:89:d6:eb:9f:58:47:02:8a: 43:4c:4e:a5:ad:39:a0:0e:80:35:09:52:38:8f:a9: a8:04:08:9d:a3:71:6d:1c:d6:51:7e:b6:2c:37:6d: 57:98:f1:1c:37:05:7d:2c:42:84:ae:52:06:1e:ad: 3e:37:b8:88:74:34:aa:0f:3f:b4:ae:f3:d9:4d:db: de:b3:68:07:8b:98:53:bd:4e:e6:82:a6:38:be:b3: a2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B2:7A:BE:75:ED:C2:61:97:53:1E:8E:E7:7F:0E:45:8B:67:1B:1E X509v3 Authority Key Identifier: keyid:4B:98:12:79:43:E7:17:57:34:96:40:10:C8:9E:F8:21:41:6A:31:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5gSeUPnF1c0lkAQyJ74IUFqMbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/5LJ6vnXtwmGXUx6O538ORYtnGx4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/S5gSeUPnF1c0lkAQyJ74IUFqMbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.99.64.0-31.99.255.255 178.106.0.0/16 178.107.32.0-178.107.127.255 185.102.192.0-185.102.203.255 194.36.212.0/22 Signature Algorithm: sha256WithRSAEncryption 48:87:cb:a3:40:d6:fc:0f:bb:ce:77:56:36:a2:9a:d3:38:a4: 46:f0:95:47:f4:6a:71:e6:0b:d0:16:3f:98:76:c3:c5:94:10: e3:24:3f:ac:98:69:e2:83:92:00:ff:8a:ee:59:0d:63:e2:7a: ab:ff:04:85:ad:87:75:82:9f:25:18:18:00:3f:95:65:41:b3: d1:54:73:77:3f:62:2f:1b:62:2f:9b:53:06:be:cb:18:78:f7: 4b:c3:38:9b:6c:0d:0a:75:67:df:5a:e2:e4:63:bc:7e:2c:26: 4c:d2:b6:ba:a1:52:a7:db:f2:17:fa:c2:23:fd:2d:54:01:e4: d6:76:6d:ff:c6:4a:06:64:5b:ee:2c:94:cc:6d:b5:92:39:59: 43:9f:15:8d:75:10:fb:3d:c5:32:37:e2:b4:ab:e9:e9:a8:1c: 82:79:14:1f:80:3b:bb:a0:1a:0e:60:4e:6c:45:5f:4f:2f:7a: ac:96:12:93:e0:fb:8f:79:b8:fb:3c:1e:b1:30:c3:46:67:a4: 16:c3:3f:a3:60:e9:dc:16:a0:72:72:88:b7:06:24:ec:8b:9c: dd:88:9f:d8:cd:8a:49:af:5c:f3:8a:51:2f:ec:df:fd:16:cc: 06:35:84:f2:2c:89:f3:da:4a:18:84:b4:1e:49:0f:08:9f:f7: 15:1c:a6:5f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt6yHxdhUylfzMUuh2PUDibMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiOTgxMjc5NDNlNzE3NTczNDk2NDAxMGM4OWVmODIxNDE2 YTMxYjMwHhcNMjYwMTAxMTgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNGIyN2FiZTc1ZWRjMjYxOTc1MzFlOGVlNzdmMGU0NThiNjcxYjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvn4hjDiRxFrFUWrSb6GpUAfuVIqi mOLumZ6X6mVMJGunD7pSTIL1ulAnwYT3BfvgAlz214ClVURX9CxgC3QjDn2zujLM /9hG1sNuLtN74iKndMuPmaxsUkoocvoyGXyxfoI4NTlqRNgG08UTGM0GBcp8pGJr VmMBzDrzt7h5z7DCpMqqHeJui2Mh+dvDH4TJmKoc53cTDiBc+ZEhaJ8PMW/qgO9x 3z2ZlMf2idbrn1hHAopDTE6lrTmgDoA1CVI4j6moBAido3FtHNZRfrYsN21XmPEc NwV9LEKErlIGHq0+N7iIdDSqDz+0rvPZTdves2gHi5hTvU7mgqY4vrOi0wIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFOSyer517cJhl1Mejud/DkWLZxseMB8GA1UdIwQY MBaAFEuYEnlD5xdXNJZAEMie+CFBajGzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzVnU2VVUG5GMWMwbGtBUXlKNzRJVUZxTWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9mMjBkZjMtMjc1My00MzUzLWE2Njgt NjIxNzkyZjdlNTZhLzEvNUxKNnZuWHR3bUdYVXg2TzUzOE9SWXRuR3g0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9mMjBkZjMtMjc1My00MzUzLWE2NjgtNjIxNzkyZjdlNTZh LzEvUzVnU2VVUG5GMWMwbGtBUXlKNzRJVUZxTWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0MAsDBAYfY0AD AwIfYAMDALJqMAwDBAWyayADBAeyawAwDAMEBrlmwAMEArlmyAMEAsIk1DANBgkq hkiG9w0BAQsFAAOCAQEASIfLo0DW/A+7zndWNqKa0zikRvCVR/RqceYL0BY/mHbD xZQQ4yQ/rJhp4oOSAP+K7lkNY+J6q/8Eha2HdYKfJRgYAD+VZUGz0VRzdz9iLxti L5tTBr7LGHj3S8M4m2wNCnVn31ri5GO8fiwmTNK2uqFSp9vyF/rCI/0tVAHk1nZt /8ZKBmRb7iyUzG21kjlZQ58VjXUQ+z3FMjfitKvp6agcgnkUH4A7u6AaDmBObEVf Ty96rJYSk+D7j3m4+zwesTDDRmekFsM/o2Dp3BagcnKItwYk7Iuc3Yif2M2KSa9c 84pRL+zf/RbMBjWE8iyJ89pKGIS0HkkPCJ/3FRymXw== -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:08 2026 by rpki-client