This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/5r48GUKh84ROTbw9-gcbQDQKFBI.roa File: 5r48GUKh84ROTbw9-gcbQDQKFBI.roa (raw, json) Hash identifier: kZhIGOWN74m811rpgOu6MCBVwQ1U5x239x2EZ4sKGT4= Subject key identifier: E6:BE:3C:19:42:A1:F3:84:4E:4D:BC:3D:FA:07:1B:40:34:0A:14:12 Certificate issuer: /CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47 Certificate serial: 019B76EAEB9DF39BD90BEA644CCF2A36980A Authority key identifier: 23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/5r48GUKh84ROTbw9-gcbQDQKFBI.roa Signing time: Thu 01 Jan 2026 00:17:45 +0000 ROA not before: Thu 01 Jan 2026 00:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214152 IP address blocks: 81.95.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.mft rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:eb:9d:f3:9b:d9:0b:ea:64:4c:cf:2a:36:98:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47 Validity Not Before: Jan 1 00:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e6be3c1942a1f3844e4dbc3dfa071b40340a1412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3e:a8:94:ea:d9:cf:4f:db:19:0c:7c:53:26: d4:45:1d:78:f8:cb:01:57:f7:6a:cf:29:08:55:8f: ad:ad:26:93:15:84:f2:68:b4:ab:0d:3f:23:fc:e0: 73:98:44:fe:2c:ee:50:b8:90:c2:8b:fb:c5:3d:2f: 5f:fb:90:d8:38:c8:bf:91:d6:b2:01:19:c5:16:56: 73:74:90:86:bb:6d:d5:4a:05:d3:2f:30:b0:68:40: 8d:c5:c6:a9:23:68:ad:df:6b:a8:34:2c:32:41:a6: 15:be:ca:9b:e7:77:cc:0c:ea:af:8c:e5:5c:86:3e: 7f:59:98:07:3d:f1:ee:55:d6:e6:6d:5f:66:0e:de: 9e:0d:77:6d:00:22:bc:73:b8:78:ae:7e:bf:bb:09: 0c:ea:79:91:a6:3d:cb:45:c9:c7:53:3e:2c:76:d8: 45:62:4d:ba:f9:5b:4d:ba:2d:8f:d3:b5:a5:65:37: 2e:25:33:6c:e7:42:15:43:61:39:1e:b6:9c:aa:e0: fd:08:b8:57:81:b6:b9:27:96:92:7a:e8:4c:8c:ac: 33:e2:f0:c3:bf:99:07:cb:01:cf:12:e7:c9:2d:db: cc:c7:c5:58:f1:d2:99:d3:9a:15:a4:a7:51:0b:ac: e3:b9:a6:5f:94:5e:d9:eb:97:69:a4:11:a5:61:3f: a8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BE:3C:19:42:A1:F3:84:4E:4D:BC:3D:FA:07:1B:40:34:0A:14:12 X509v3 Authority Key Identifier: keyid:23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/5r48GUKh84ROTbw9-gcbQDQKFBI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.95.41.0/24 Signature Algorithm: sha256WithRSAEncryption 44:9b:d3:80:ad:d1:4e:52:06:75:77:43:3a:a4:cb:8d:46:22: 12:4a:10:9d:26:d8:07:32:a3:ed:8b:10:c9:ab:34:c0:c7:cf: 49:eb:e9:7a:38:a9:e0:93:33:4c:6f:b0:16:b2:f7:33:81:da: ae:24:7a:c6:5e:55:ad:81:5a:a3:8c:f0:9f:8a:91:82:c1:dc: 67:a8:2b:1e:76:e1:4f:1e:19:8d:d7:57:f7:8d:20:1e:37:31: e9:52:e9:b4:00:b0:12:89:b9:29:31:3c:ae:62:5a:8f:64:14: fb:a1:e9:71:2d:ef:4d:1a:d4:98:81:9c:2d:25:4d:a7:5b:ad: 95:47:6d:4b:7f:15:4d:e3:87:d0:ef:89:a9:79:90:79:8f:00: c7:83:fd:b7:d6:ca:a1:f8:6a:0f:8a:bf:5d:da:c8:ee:24:20: 06:0a:ee:b2:1d:f4:f9:ff:33:c5:8c:f7:b2:49:93:cb:4a:0c: b4:12:03:c3:2f:86:6a:01:f4:4c:96:09:3e:71:5c:de:fb:df: ee:0f:4c:53:ce:0b:0e:98:50:d7:ef:b8:b8:6e:81:6a:3e:2a: 40:e2:a9:6d:70:43:d9:e1:68:fd:5d:44:5b:db:88:13:4b:dd: 25:04:f5:6e:7d:67:55:d3:81:4b:ab:5a:78:71:44:09:dc:2e: 9e:c4:d9:12 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26uud85vZC+pkTM8qNpgKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZTNkOTJiZmUxNjYxOWNhNTAwYzAzMjY3ZWZmYTlhYTdj YTBjNDcwHhcNMjYwMTAxMDAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNmJlM2MxOTQyYTFmMzg0NGU0ZGJjM2RmYTA3MWI0MDM0MGExNDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtj6olOrZz0/bGQx8UybURR14+MsB V/dqzykIVY+trSaTFYTyaLSrDT8j/OBzmET+LO5QuJDCi/vFPS9f+5DYOMi/kday ARnFFlZzdJCGu23VSgXTLzCwaECNxcapI2it32uoNCwyQaYVvsqb53fMDOqvjOVc hj5/WZgHPfHuVdbmbV9mDt6eDXdtACK8c7h4rn6/uwkM6nmRpj3LRcnHUz4sdthF Yk26+VtNui2P07WlZTcuJTNs50IVQ2E5HracquD9CLhXgba5J5aSeuhMjKwz4vDD v5kHywHPEufJLdvMx8VY8dKZ05oVpKdRC6zjuaZflF7Z65dppBGlYT+o5wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOa+PBlCofOETk28PfoHG0A0ChQSMB8GA1UdIwQY MBaAFCPj2Sv+FmGcpQDAMmfv+pqnygxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSS1QWktfNFdZWnlsQU1BeVotXzZtcWZLREVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85YzJjOTAtYzdkNC00OGI3LTliYWYt ZjFiZjBjMzNhOTA4LzEvNXI0OEdVS2g4NFJPVGJ3OS1nY2JRRFFLRkJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC85YzJjOTAtYzdkNC00OGI3LTliYWYtZjFiZjBjMzNhOTA4 LzEvSS1QWktfNFdZWnlsQU1BeVotXzZtcWZLREVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUV8pMA0G CSqGSIb3DQEBCwUAA4IBAQBEm9OArdFOUgZ1d0M6pMuNRiISShCdJtgHMqPtixDJ qzTAx89J6+l6OKngkzNMb7AWsvczgdquJHrGXlWtgVqjjPCfipGCwdxnqCseduFP HhmN11f3jSAeNzHpUum0ALASibkpMTyuYlqPZBT7oelxLe9NGtSYgZwtJU2nW62V R21LfxVN44fQ74mpeZB5jwDHg/231sqh+GoPir9d2sjuJCAGCu6yHfT5/zPFjPey SZPLSgy0EgPDL4ZqAfRMlgk+cVze+9/uD0xTzgsOmFDX77i4boFqPipA4qltcEPZ 4Wj9XURb24gTS90lBPVufWdV04FLq1p4cUQJ3C6exNkS -----END CERTIFICATE-----Generated at Mon Jan 26 05:39:25 2026 by rpki-client