This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/5VA96XxOdurSo7WQjAVzmluh-RE.roa File: 5VA96XxOdurSo7WQjAVzmluh-RE.roa (raw, json) Hash identifier: ENjWRws9JScAxQKlvyNZ2q/dH7OpFkNw9JoXC6WNRGE= Subject key identifier: E5:50:3D:E9:7C:4E:76:EA:D2:A3:B5:90:8C:05:73:9A:5B:A1:F9:11 Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20 Certificate serial: 019B2DDD32671653A93F8851189A36EDAE37 Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/5VA96XxOdurSo7WQjAVzmluh-RE.roa Signing time: Wed 17 Dec 2025 19:50:29 +0000 ROA not before: Wed 17 Dec 2025 19:50:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 22616 IP address blocks: 147.161.128.0/23 maxlen: 24 159.254.60.0/23 maxlen: 24 159.254.62.0/23 maxlen: 24 159.254.64.0/23 maxlen: 24 159.254.66.0/23 maxlen: 24 159.254.69.0/24 maxlen: 24 159.254.84.0/24 maxlen: 24 159.254.85.0/24 maxlen: 24 159.254.86.0/24 maxlen: 24 159.254.92.0/24 maxlen: 24 159.254.93.0/24 maxlen: 24 159.254.94.0/24 maxlen: 24 159.254.95.0/24 maxlen: 24 159.254.96.0/24 maxlen: 24 159.254.97.0/24 maxlen: 24 159.254.99.0/24 maxlen: 24 159.254.100.0/24 maxlen: 24 159.254.182.0/23 maxlen: 24 159.254.184.0/23 maxlen: 24 159.254.202.0/24 maxlen: 24 164.137.4.0/24 maxlen: 24 164.137.5.0/24 maxlen: 24 164.137.6.0/24 maxlen: 24 164.137.7.0/24 maxlen: 24 164.137.8.0/24 maxlen: 24 164.137.9.0/24 maxlen: 24 164.137.10.0/24 maxlen: 24 164.137.11.0/24 maxlen: 24 164.137.12.0/24 maxlen: 24 164.137.13.0/24 maxlen: 24 164.137.14.0/24 maxlen: 24 164.137.15.0/24 maxlen: 24 164.137.16.0/24 maxlen: 24 164.137.17.0/24 maxlen: 24 164.137.18.0/24 maxlen: 24 164.137.19.0/24 maxlen: 24 164.137.20.0/24 maxlen: 24 164.137.21.0/24 maxlen: 24 164.137.22.0/24 maxlen: 24 164.137.23.0/24 maxlen: 24 164.137.24.0/24 maxlen: 24 164.137.25.0/24 maxlen: 24 164.137.26.0/24 maxlen: 24 164.137.27.0/24 maxlen: 24 164.137.28.0/24 maxlen: 24 164.137.29.0/24 maxlen: 24 164.137.30.0/24 maxlen: 24 164.137.31.0/24 maxlen: 24 164.137.32.0/24 maxlen: 24 164.137.33.0/24 maxlen: 24 164.137.34.0/24 maxlen: 24 164.137.35.0/24 maxlen: 24 164.137.36.0/24 maxlen: 24 164.137.37.0/24 maxlen: 24 164.137.38.0/24 maxlen: 24 164.137.39.0/24 maxlen: 24 164.137.40.0/24 maxlen: 24 164.137.41.0/24 maxlen: 24 164.137.42.0/24 maxlen: 24 164.137.43.0/24 maxlen: 24 164.137.44.0/24 maxlen: 24 164.137.45.0/24 maxlen: 24 164.137.46.0/24 maxlen: 24 164.137.47.0/24 maxlen: 24 164.137.48.0/24 maxlen: 24 164.137.49.0/24 maxlen: 24 164.137.50.0/24 maxlen: 24 164.137.51.0/24 maxlen: 24 164.137.52.0/24 maxlen: 24 164.137.53.0/24 maxlen: 24 2a03:eec0:3212::/48 maxlen: 48 2a03:eec0:321b::/48 maxlen: 48 2a03:eec0:322b::/48 maxlen: 48 2a03:eec0:322c::/48 maxlen: 48 2a03:eec0:322d::/48 maxlen: 48 2a03:eec0:322e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 00:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:dd:32:67:16:53:a9:3f:88:51:18:9a:36:ed:ae:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20 Validity Not Before: Dec 17 19:50:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e5503de97c4e76ead2a3b5908c05739a5ba1f911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fb:10:b5:97:c5:b5:8f:8f:dd:8a:86:cd:56: 39:63:0e:79:93:30:9a:d9:de:b0:b4:4d:a5:c1:25: f7:e3:10:d2:0b:db:86:c9:82:6e:cd:ca:68:54:bb: 25:c6:9d:96:67:8e:56:86:ad:74:e1:b9:ea:15:56: 7b:45:65:15:b8:73:6a:a2:30:24:ba:ec:2f:29:69: 0f:2d:c8:86:9e:cc:5a:3a:4c:79:0a:66:6c:f6:5b: b8:3f:db:ca:13:9f:45:07:92:59:53:39:3e:5d:8b: 5d:8a:27:34:9d:02:a9:05:8f:97:d0:1a:c3:6c:3f: 4a:a0:c9:0d:17:d5:96:f3:3e:8b:5c:98:41:a2:c4: 8a:54:41:fa:92:17:5b:0d:62:e2:5d:cc:ae:37:a6: bb:d8:0a:fb:8f:25:0d:93:51:b6:82:35:1a:1a:8f: b4:77:62:de:94:2f:f5:52:b3:3d:3e:ad:1a:d2:0c: 89:8e:35:a8:3e:df:92:77:48:30:07:fd:14:a6:39: bd:4d:ff:5f:a0:58:82:1a:31:b7:fc:56:17:f7:b2: e5:86:c0:b7:b4:4e:34:cf:95:ef:2e:73:fb:7b:86: 9f:29:bc:99:64:19:82:3c:21:03:ab:c6:6f:c7:eb: b8:9e:4c:8d:7d:29:40:03:24:cc:6b:17:6b:27:08: ca:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:50:3D:E9:7C:4E:76:EA:D2:A3:B5:90:8C:05:73:9A:5B:A1:F9:11 X509v3 Authority Key Identifier: keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/5VA96XxOdurSo7WQjAVzmluh-RE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.161.128.0/23 159.254.60.0-159.254.67.255 159.254.69.0/24 159.254.84.0-159.254.86.255 159.254.92.0-159.254.97.255 159.254.99.0-159.254.100.255 159.254.182.0-159.254.185.255 159.254.202.0/24 164.137.4.0-164.137.53.255 IPv6: 2a03:eec0:3212::/48 2a03:eec0:321b::/48 2a03:eec0:322b::-2a03:eec0:322e:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 37:e7:ea:5b:13:b0:89:56:f5:5d:58:4d:9e:a8:59:f3:1e:9c: b8:34:4f:3f:c8:76:20:48:8b:ea:2f:7a:ba:2f:d8:eb:f4:af: c3:09:65:8f:f4:ee:0c:d7:ae:a3:49:79:69:5f:d6:54:dd:e6: 4c:70:08:2d:3f:55:9a:cd:19:a2:b2:17:61:71:90:ed:09:9b: 66:b9:09:a5:6d:8f:60:19:7a:d0:c0:d5:79:ea:8e:18:fc:16: 7b:54:b4:63:51:cc:f2:6c:f3:b0:59:51:ad:9d:33:b1:53:4b: 29:a0:1f:0a:9f:7e:a6:a9:1a:83:f4:bf:eb:c9:4e:55:51:53: 87:45:aa:02:62:b4:a4:2e:b3:1e:a5:e5:2c:b3:38:92:28:c1: d8:cf:26:14:41:45:d5:ba:37:42:31:cd:8a:99:9f:d9:e5:b4: f4:1f:6e:28:b7:03:54:49:bd:bd:bb:3c:ae:df:c7:b3:57:47: 5d:e6:18:33:e9:b3:a0:a6:c8:48:8a:ca:34:b0:d7:29:00:c0: d7:a5:63:95:23:89:1a:f4:b6:5e:64:49:4a:82:45:c7:7b:73: 8b:ee:a5:f3:80:26:6b:50:54:f8:e4:c2:a8:4e:fd:d6:8e:ae: 15:c7:b5:97:e4:a4:4d:7d:a7:54:a4:ea:28:5d:a6:a2:75:a7: 77:0b:2c:89 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgISAZst3TJnFlOpP4hRGJo27a43MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTY2YTU5MzhhZjU2N2E5ZTI5YjRmNzZmMTE1NjA3YzJi OGFhMjAwHhcNMjUxMjE3MTk1MDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTUwM2RlOTdjNGU3NmVhZDJhM2I1OTA4YzA1NzM5YTViYTFmOTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPsQtZfFtY+P3YqGzVY5Yw55kzCa 2d6wtE2lwSX34xDSC9uGyYJuzcpoVLslxp2WZ45Whq104bnqFVZ7RWUVuHNqojAk uuwvKWkPLciGnsxaOkx5CmZs9lu4P9vKE59FB5JZUzk+XYtdiic0nQKpBY+X0BrD bD9KoMkNF9WW8z6LXJhBosSKVEH6khdbDWLiXcyuN6a72Ar7jyUNk1G2gjUaGo+0 d2LelC/1UrM9Pq0a0gyJjjWoPt+Sd0gwB/0Upjm9Tf9foFiCGjG3/FYX97LlhsC3 tE40z5XvLnP7e4afKbyZZBmCPCEDq8Zvx+u4nkyNfSlAAyTMaxdrJwjKYQIDAQAB o4ICmjCCApYwHQYDVR0OBBYEFOVQPel8Tnbq0qO1kIwFc5pbofkRMB8GA1UdIwQY MBaAFKymalk4r1Z6nim0928RVgfCuKogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgt YjliNjU0MDJiOTI4LzEvNVZBOTZYeE9kdXJTbzdXUWpBVnptbHVoLVJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgtYjliNjU0MDJiOTI4 LzEvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGvBggrBgEFBQcBBwEB/wSBnzCBnDBsBAIAATBmAwQBk6GA MAwDBAKf/jwDBAKf/kADBACf/kUwDAMEAp/+VAMEAJ/+VjAMAwQCn/5cAwQBn/5g MAwDBACf/mMDBACf/mQwDAMEAZ/+tgMEAZ/+uAMEAJ/+yjAMAwQCpIkEAwQBpIk0 MCwEAgACMCYDBwAqA+7AMhIDBwAqA+7AMhswEgMHACoD7sAyKwMHACoD7sAyLjAN BgkqhkiG9w0BAQsFAAOCAQEAN+fqWxOwiVb1XVhNnqhZ8x6cuDRPP8h2IEiL6i96 ui/Y6/Svwwllj/TuDNeuo0l5aV/WVN3mTHAILT9Vms0ZorIXYXGQ7QmbZrkJpW2P YBl60MDVeeqOGPwWe1S0Y1HM8mzzsFlRrZ0zsVNLKaAfCp9+pqkag/S/68lOVVFT h0WqAmK0pC6zHqXlLLM4kijB2M8mFEFF1bo3QjHNipmf2eW09B9uKLcDVEm9vbs8 rt/Hs1dHXeYYM+mzoKbISIrKNLDXKQDA16VjlSOJGvS2XmRJSoJFx3tzi+6l84Am a1BU+OTCqE791o6uFce1l+SkTX2nVKTqKF2monWndwssiQ== -----END CERTIFICATE-----Generated at Sat Dec 20 05:59:56 2025 by rpki-client