This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5cE4cXv9NfAhTzlsvseSXv-Va78.roa File: 5cE4cXv9NfAhTzlsvseSXv-Va78.roa (raw, json) Hash identifier: imOu3NBS+5L3w9gmNSjFTt0fMM+20Ow725s46hfVaoM= Subject key identifier: E5:C1:38:71:7B:FD:35:F0:21:4F:39:6C:BE:C7:92:5E:FF:95:6B:BF Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Certificate serial: 019B7F841AFF55FD813067A86D059F1FDCD1 Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5cE4cXv9NfAhTzlsvseSXv-Va78.roa Signing time: Fri 02 Jan 2026 16:22:02 +0000 ROA not before: Fri 02 Jan 2026 16:22:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397522 IP address blocks: 2a01:488:bb1d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.mft rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:1a:ff:55:fd:81:30:67:a8:6d:05:9f:1f:dc:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Validity Not Before: Jan 2 16:22:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e5c138717bfd35f0214f396cbec7925eff956bbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9d:e7:89:c9:3b:70:bd:78:84:be:6d:ee:01: 80:af:a3:04:e3:23:e3:9e:7c:a0:f2:ea:24:00:07: 52:95:75:90:e1:e5:e4:2e:70:64:15:36:d8:b0:b9: 03:a5:f9:5d:6b:59:af:d8:d8:69:06:55:d0:e8:ef: 8f:9f:aa:e6:5c:2f:71:82:fa:8a:5b:eb:bb:2b:44: 52:c6:94:d2:10:46:bb:a2:fe:22:77:0a:eb:10:c0: f9:0e:5b:23:c0:fc:fd:7d:c3:94:44:b7:eb:cc:d1: 8e:64:81:70:15:c5:74:9a:6e:fd:4b:0a:e3:44:70: 03:d8:9e:60:5d:c6:61:ed:bf:49:61:75:d9:70:11: 8a:01:34:2a:fb:d4:26:9e:60:b2:aa:3f:96:d0:b6: 84:d0:b6:f8:85:49:27:42:2b:d4:23:46:b3:50:17: 3c:8c:3a:e9:ad:99:e3:ee:db:6d:19:c9:4f:cc:0e: 25:d9:2a:19:c8:c9:29:3d:98:a1:fc:c7:ea:d5:32: 7d:48:f3:63:b8:c8:1b:53:78:12:e7:d2:fb:76:e9: 05:15:51:35:14:ea:2f:14:9a:97:16:09:b7:95:50: fd:06:a3:90:78:25:de:fb:f6:f4:56:64:2e:dc:6c: 2d:c3:f0:a8:a6:62:5a:d7:93:77:01:89:20:7d:e1: 2e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C1:38:71:7B:FD:35:F0:21:4F:39:6C:BE:C7:92:5E:FF:95:6B:BF X509v3 Authority Key Identifier: keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5cE4cXv9NfAhTzlsvseSXv-Va78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:488:bb1d::/48 Signature Algorithm: sha256WithRSAEncryption 5c:68:bc:82:97:cf:7b:48:88:39:d2:10:7e:cb:dc:3c:d9:ba: 3e:bb:98:9c:c7:8d:ea:ee:0a:26:21:59:47:c9:fe:53:2f:cc: 97:31:e1:11:1d:6a:47:d0:9c:63:f0:53:fe:56:cd:eb:7a:ca: 3a:2b:7e:29:fe:32:d8:0c:d1:8b:fe:73:47:0d:5d:7c:45:54: de:c9:ce:9d:11:4a:e8:ee:0e:5d:f0:07:77:7d:21:12:65:71: ae:23:ef:f5:cb:77:54:5e:32:73:87:48:3a:6c:79:3a:c1:d7: 0b:47:ff:27:ba:63:5c:9f:4d:8b:64:7c:58:4a:ff:53:9b:7a: 94:1e:6b:23:7f:4e:43:46:a1:e6:5c:23:31:77:12:69:6e:4c: 2e:de:43:7b:6a:5e:5b:a4:3b:0c:18:bc:98:15:3a:54:f9:a4: b6:c2:fe:5e:17:3d:bc:2e:0d:c4:8b:16:7f:e1:9a:f3:bf:c2: b6:f7:a5:de:52:fe:4a:95:08:da:f3:dc:a2:ba:f4:95:6f:b0: 1f:3b:fc:2e:cb:37:93:7c:c6:81:81:86:c3:78:b8:97:10:da: 1c:57:03:fb:ba:6e:87:d1:e9:84:ce:a2:16:09:f0:b6:93:14: ed:d4:fd:ab:26:57:2b:9f:a6:11:dd:67:00:45:ee:41:3b:3a: 65:f4:97:38 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hBr/Vf2BMGeobQWfH9zRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0 ZTk4MWIwHhcNMjYwMTAyMTYyMjAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNWMxMzg3MTdiZmQzNWYwMjE0ZjM5NmNiZWM3OTI1ZWZmOTU2YmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ3nick7cL14hL5t7gGAr6ME4yPj nnyg8uokAAdSlXWQ4eXkLnBkFTbYsLkDpflda1mv2NhpBlXQ6O+Pn6rmXC9xgvqK W+u7K0RSxpTSEEa7ov4idwrrEMD5DlsjwPz9fcOURLfrzNGOZIFwFcV0mm79Swrj RHAD2J5gXcZh7b9JYXXZcBGKATQq+9QmnmCyqj+W0LaE0Lb4hUknQivUI0azUBc8 jDrprZnj7tttGclPzA4l2SoZyMkpPZih/Mfq1TJ9SPNjuMgbU3gS59L7dukFFVE1 FOovFJqXFgm3lVD9BqOQeCXe+/b0VmQu3Gwtw/CopmJa15N3AYkgfeEurwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOXBOHF7/TXwIU85bL7Hkl7/lWu/MB8GA1UdIwQY MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt MTYxZjM0MjM4N2QxLzEvNWNFNGNYdjlOZkFoVHpsc3ZzZVNYdi1WYTc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsd MA0GCSqGSIb3DQEBCwUAA4IBAQBcaLyCl897SIg50hB+y9w82bo+u5icx43q7gom IVlHyf5TL8yXMeERHWpH0Jxj8FP+Vs3reso6K34p/jLYDNGL/nNHDV18RVTeyc6d EUro7g5d8Ad3fSESZXGuI+/1y3dUXjJzh0g6bHk6wdcLR/8numNcn02LZHxYSv9T m3qUHmsjf05DRqHmXCMxdxJpbkwu3kN7al5bpDsMGLyYFTpU+aS2wv5eFz28Lg3E ixZ/4Zrzv8K296XeUv5KlQja89yiuvSVb7AfO/wuyzeTfMaBgYbDeLiXENocVwP7 um6H0emEzqIWCfC2kxTt1P2rJlcrn6YR3WcARe5BOzpl9Jc4 -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:02 2026 by rpki-client