This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/E53qT5QxSJHNKi0AK68sy7lpGTQ.roa File: E53qT5QxSJHNKi0AK68sy7lpGTQ.roa (raw, json) Hash identifier: XnT9sSAdo60JRzHh8Z9DDjJm/yisalf08RCc9VvoJS8= Subject key identifier: 13:9D:EA:4F:94:31:48:91:CD:2A:2D:00:2B:AF:2C:CB:B9:69:19:34 Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56 Certificate serial: 019B7C8074AA563FD12869FBCD670BD164C1 Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/E53qT5QxSJHNKi0AK68sy7lpGTQ.roa Signing time: Fri 02 Jan 2026 02:19:11 +0000 ROA not before: Fri 02 Jan 2026 02:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 395092 IP address blocks: 2.57.151.0/24 maxlen: 24 45.158.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:74:aa:56:3f:d1:28:69:fb:cd:67:0b:d1:64:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56 Validity Not Before: Jan 2 02:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=139dea4f94314891cd2a2d002baf2ccbb9691934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:44:fc:f8:53:10:49:16:0c:06:17:1d:af:22: 39:dc:20:ce:f5:a1:88:f2:8d:22:fa:b9:0c:11:50: 6a:49:ff:44:a7:eb:d1:bd:4e:9d:86:4c:bf:a6:8b: f4:17:31:40:01:e9:ab:4d:ad:24:48:be:d2:b7:83: eb:b8:d7:1f:07:21:e7:bc:cb:9d:01:d7:4b:c7:9d: 8f:4d:ea:4c:77:b7:80:c1:3e:26:df:c4:ee:b0:bf: 3c:7e:5f:bd:4a:4c:4d:b5:bf:ce:de:0d:3e:b0:b9: 08:b9:b4:9b:de:89:9e:87:74:ae:ba:40:39:0f:14: 7c:5b:a2:59:6a:fd:ed:0c:8d:a5:64:e4:d2:28:e2: bf:2d:ab:aa:b0:ad:0e:a7:38:7d:2f:2d:b9:2e:8f: 84:72:06:7f:3f:19:c9:5b:e8:66:e6:06:6b:68:fb: de:d4:a8:dd:e8:85:74:a7:6b:81:c4:f2:d1:57:a5: 09:b6:7a:36:cc:d2:a8:7e:cb:30:02:03:ba:da:f1: 5f:76:04:84:ab:74:c3:0c:8e:12:30:e4:d0:0b:9e: 98:d3:ac:29:5b:23:d3:59:ef:e9:49:99:30:4c:d0: 1c:97:26:82:7f:38:6f:0b:7c:5f:6b:5c:49:b8:65: 1c:90:79:9f:d4:33:43:8e:b2:ac:9c:6f:dd:65:74: ec:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9D:EA:4F:94:31:48:91:CD:2A:2D:00:2B:AF:2C:CB:B9:69:19:34 X509v3 Authority Key Identifier: keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/E53qT5QxSJHNKi0AK68sy7lpGTQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.151.0/24 45.158.44.0/24 Signature Algorithm: sha256WithRSAEncryption b3:44:ed:99:0c:29:ee:04:2a:ef:6f:a1:39:1c:4f:6d:30:d0: 29:86:c4:23:27:c7:e5:bf:04:bd:0a:a7:ed:30:1a:b5:e5:72: 3f:d2:9c:a1:93:1a:00:88:1a:8e:2e:42:6e:00:f2:00:5c:8f: e5:69:14:aa:fa:4c:c5:45:02:a1:9e:00:bc:5d:10:c1:35:9c: f8:77:30:2d:3e:e0:0f:0a:88:b5:12:a4:a4:11:59:18:cb:e8: fa:b4:aa:94:90:08:01:3a:49:90:69:2c:c9:9d:a9:12:bb:f3: 2c:a4:57:26:f5:a3:35:8d:12:a4:3b:c9:12:3e:de:85:46:6b: b8:34:55:85:df:94:1e:93:b7:ad:70:5c:ae:25:4c:6c:0e:c6: 85:c1:2d:40:d3:c9:bb:e5:78:c7:45:f7:29:ff:13:e0:3b:4b: fb:88:9f:b7:2d:81:0a:fb:61:a4:67:2d:20:6c:f2:be:f0:b5: c7:8a:86:1d:e4:5b:59:ff:b1:45:d5:1d:2e:b7:d5:e9:a0:6f: a9:33:93:bf:ca:65:1c:ff:b3:29:30:8e:92:0d:6b:05:21:ba: 35:b0:27:d1:13:0f:a6:cc:c0:dc:46:65:53:8e:83:91:83:92: 7b:3e:90:34:4d:6e:c7:a7:63:36:67:92:2b:0b:4b:b3:c8:1b: c4:33:38:58 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gHSqVj/RKGn7zWcL0WTBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0 ZjVlNTYwHhcNMjYwMTAyMDIxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzlkZWE0Zjk0MzE0ODkxY2QyYTJkMDAyYmFmMmNjYmI5NjkxOTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUT8+FMQSRYMBhcdryI53CDO9aGI 8o0i+rkMEVBqSf9Ep+vRvU6dhky/pov0FzFAAemrTa0kSL7St4PruNcfByHnvMud AddLx52PTepMd7eAwT4m38TusL88fl+9SkxNtb/O3g0+sLkIubSb3omeh3SuukA5 DxR8W6JZav3tDI2lZOTSKOK/LauqsK0Opzh9Ly25Lo+EcgZ/PxnJW+hm5gZraPve 1Kjd6IV0p2uBxPLRV6UJtno2zNKofsswAgO62vFfdgSEq3TDDI4SMOTQC56Y06wp WyPTWe/pSZkwTNAclyaCfzhvC3xfa1xJuGUckHmf1DNDjrKsnG/dZXTsEQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBOd6k+UMUiRzSotACuvLMu5aRk0MB8GA1UdIwQY MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt YmE5OGYxMTIyMTIxLzEvRTUzcVQ1UXhTSkhOS2kwQUs2OHN5N2xwR1RRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAAjmXAwQA LZ4sMA0GCSqGSIb3DQEBCwUAA4IBAQCzRO2ZDCnuBCrvb6E5HE9tMNAphsQjJ8fl vwS9CqftMBq15XI/0pyhkxoAiBqOLkJuAPIAXI/laRSq+kzFRQKhngC8XRDBNZz4 dzAtPuAPCoi1EqSkEVkYy+j6tKqUkAgBOkmQaSzJnakSu/MspFcm9aM1jRKkO8kS Pt6FRmu4NFWF35Qek7etcFyuJUxsDsaFwS1A08m75XjHRfcp/xPgO0v7iJ+3LYEK +2GkZy0gbPK+8LXHioYd5FtZ/7FF1R0ut9XpoG+pM5O/ymUc/7MpMI6SDWsFIbo1 sCfREw+mzMDcRmVTjoORg5J7PpA0TW7Hp2M2Z5IrC0uzyBvEMzhY -----END CERTIFICATE-----Generated at Sat Jan 10 03:56:08 2026 by rpki-client