This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/U5TCPlFFd8SlZ8H7w2nt5FyGV6A.roa File: U5TCPlFFd8SlZ8H7w2nt5FyGV6A.roa (raw, json) Hash identifier: wIYGHrygR8pwdoliOOWillooQN4ianWKPM9GFri8Trg= Subject key identifier: 53:94:C2:3E:51:45:77:C4:A5:67:C1:FB:C3:69:ED:E4:5C:86:57:A0 Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA75DBBFF9711136690E286F6ED124A Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/U5TCPlFFd8SlZ8H7w2nt5FyGV6A.roa Signing time: Fri 02 Jan 2026 12:20:56 +0000 ROA not before: Fri 02 Jan 2026 12:20:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13056 IP address blocks: 37.76.160.0/19 maxlen: 19 78.132.128.0/17 maxlen: 17 91.202.20.0/22 maxlen: 22 91.202.20.0/24 maxlen: 24 91.202.21.0/24 maxlen: 24 178.75.64.0/18 maxlen: 18 193.33.62.0/23 maxlen: 23 213.135.128.0/19 maxlen: 19 213.135.128.0/24 maxlen: 24 213.135.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:5d:bb:ff:97:11:13:66:90:e2:86:f6:ed:12:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:20:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5394c23e514577c4a567c1fbc369ede45c8657a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:60:8c:c4:a0:2a:77:53:d6:df:46:d6:95: ea:28:ed:ea:d9:5e:c8:c3:3d:52:68:1c:e2:54:9f: a4:d1:6f:c5:8c:f0:a6:97:a3:db:41:e5:77:98:39: ec:f2:2a:89:7e:47:42:68:15:e4:9a:e4:df:77:ce: f0:c8:7e:87:a0:c5:1c:cc:ca:f1:e9:0e:2f:35:cb: 9d:57:9e:f5:75:05:e0:73:17:17:b4:2b:b4:85:49: 50:4d:88:93:de:0c:d7:64:e3:e7:22:35:2c:2b:57: 72:4f:71:82:da:a1:0b:68:2f:6c:f4:ae:1c:dd:07: 8c:61:29:4f:8d:b6:9a:e7:46:f0:a7:8e:c8:32:a0: b7:53:c8:3c:e8:7a:fa:23:82:c8:f6:ab:e5:cc:53: c6:95:33:75:14:23:2f:04:0b:a8:f2:63:03:fd:7c: 28:d3:5d:69:77:f7:59:93:95:5c:72:4b:f1:91:f6: ac:83:e6:6f:78:eb:95:76:04:5c:bf:71:ce:7a:a0: 63:2c:f2:a1:82:b5:b6:b6:f1:36:0b:88:3f:77:3e: 7d:77:ed:ec:f3:36:8c:ae:0a:42:04:6e:a8:2e:ef: 57:98:74:0f:df:aa:01:5a:d4:b5:aa:21:f1:f1:12: 2c:4a:f1:fd:73:4f:ec:bb:58:3a:b7:18:2e:d9:8c: e3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:94:C2:3E:51:45:77:C4:A5:67:C1:FB:C3:69:ED:E4:5C:86:57:A0 X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/U5TCPlFFd8SlZ8H7w2nt5FyGV6A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.76.160.0/19 78.132.128.0/17 91.202.20.0/22 178.75.64.0/18 193.33.62.0/23 213.135.128.0/19 Signature Algorithm: sha256WithRSAEncryption 29:9c:b6:ab:a7:76:e3:f6:f4:bb:69:c6:35:2e:83:1e:82:e9: 50:6c:e3:a9:a4:4f:b5:36:0a:58:ff:cf:e9:42:d3:20:50:4e: 7f:41:2a:1b:d8:1c:ae:56:02:00:3a:eb:0e:02:90:0c:46:d6: 77:f4:ba:97:64:f5:07:86:31:19:90:9b:15:f9:52:14:33:59: 5b:1f:f8:e5:38:87:69:97:0d:0a:15:43:c1:12:9b:81:94:8c: 12:c7:b5:21:fb:5b:a9:44:de:31:e0:38:82:c8:ac:83:ff:3b: 78:c8:e8:9c:7b:3b:95:4c:bb:3f:f3:6a:84:cd:63:6f:b0:5c: 8e:34:72:48:57:b6:b2:25:6e:86:d1:32:25:39:84:c3:de:d2: 08:31:56:bd:93:78:b0:d3:bf:41:d1:04:74:c9:28:6b:41:b4: 5a:f8:26:53:f6:55:14:95:2d:c3:25:7b:47:08:54:1a:d5:67: d2:2f:bd:75:e5:59:6d:36:f8:91:db:32:be:c7:15:49:4a:3a: b1:b8:21:02:c6:9e:bc:fc:36:1d:84:86:5e:ec:fd:51:e2:aa: 23:8e:53:96:fb:3d:ed:65:95:7d:3f:4f:de:af:23:3e:ad:5a: dc:7a:10:16:4a:2c:17:b0:d3:94:43:98:a2:68:61:e1:37:ec: 5f:07:6c:25 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt+p127/5cRE2aQ4ob27RJKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMDU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mzk0YzIzZTUxNDU3N2M0YTU2N2MxZmJjMzY5ZWRlNDVjODY1N2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0upgjMSgKndT1t9G1pXqKO3q2V7I wz1SaBziVJ+k0W/FjPCml6PbQeV3mDns8iqJfkdCaBXkmuTfd87wyH6HoMUczMrx 6Q4vNcudV571dQXgcxcXtCu0hUlQTYiT3gzXZOPnIjUsK1dyT3GC2qELaC9s9K4c 3QeMYSlPjbaa50bwp47IMqC3U8g86Hr6I4LI9qvlzFPGlTN1FCMvBAuo8mMD/Xwo 011pd/dZk5Vcckvxkfasg+ZveOuVdgRcv3HOeqBjLPKhgrW2tvE2C4g/dz59d+3s 8zaMrgpCBG6oLu9XmHQP36oBWtS1qiHx8RIsSvH9c0/su1g6txgu2YzjuQIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFFOUwj5RRXfEpWfB+8Np7eRchlegMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvVTVUQ1BsRkZkOFNsWjhIN3cybnQ1RnlHVjZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQFJUygAwQH ToSAAwQCW8oUAwQGsktAAwQBwSE+AwQF1YeAMA0GCSqGSIb3DQEBCwUAA4IBAQAp nLarp3bj9vS7acY1LoMegulQbOOppE+1NgpY/8/pQtMgUE5/QSob2ByuVgIAOusO ApAMRtZ39LqXZPUHhjEZkJsV+VIUM1lbH/jlOIdplw0KFUPBEpuBlIwSx7Uh+1up RN4x4DiCyKyD/zt4yOicezuVTLs/82qEzWNvsFyONHJIV7ayJW6G0TIlOYTD3tII MVa9k3iw079B0QR0yShrQbRa+CZT9lUUlS3DJXtHCFQa1WfSL7115VltNviR2zK+ xxVJSjqxuCECxp68/DYdhIZe7P1R4qojjlOW+z3tZZV9P0/eryM+rVrcehAWSiwX sNOUQ5iiaGHhN+xfB2wl -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:44 2026 by rpki-client