This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/cG9BC3mPASM_CkvRXof0sXUINJw.roa File: cG9BC3mPASM_CkvRXof0sXUINJw.roa (raw, json) Hash identifier: sgg0z5UHn6yQVPp/qpMZihkOU41GW4END6RL7Ox6z0o= Subject key identifier: 70:6F:41:0B:79:8F:01:23:3F:0A:4B:D1:5E:87:F4:B1:75:08:34:9C Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1 Certificate serial: 019B7F8395A9258FBA68E0A0B2A90D0BB60A Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/cG9BC3mPASM_CkvRXof0sXUINJw.roa Signing time: Fri 02 Jan 2026 16:21:28 +0000 ROA not before: Fri 02 Jan 2026 16:21:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45102 IP address blocks: 5.181.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.mft rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:95:a9:25:8f:ba:68:e0:a0:b2:a9:0d:0b:b6:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1 Validity Not Before: Jan 2 16:21:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=706f410b798f01233f0a4bd15e87f4b17508349c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:0a:53:5c:7f:e0:b8:eb:35:db:1a:6b:5c: 3b:55:96:e6:8d:5e:ba:13:7b:9f:64:f3:26:c7:83: 82:3e:39:5c:31:2f:6c:bb:b7:e1:5a:04:ff:d7:2c: 73:dc:87:9a:b8:36:e4:34:1f:6d:b2:d7:a9:12:75: d7:1b:a0:93:71:e9:b9:c7:cc:08:7f:bb:08:eb:23: e2:45:64:83:15:c1:d1:cc:22:60:db:78:05:74:a1: 37:28:27:ed:43:4c:58:e4:10:6a:80:d4:e8:4c:f9: 4d:74:3a:ee:cb:2b:b3:17:c6:f0:d9:dc:01:8a:92: 12:04:e4:01:af:d9:f7:66:7b:8e:db:de:28:0e:35: 49:a1:9f:aa:9e:d1:74:82:97:d1:93:0c:52:56:48: aa:cc:4c:90:39:d0:9e:10:ce:6a:72:06:c0:e8:05: 8d:bd:9e:a6:f2:ec:98:e2:03:5f:52:a9:22:d9:e2: 2d:15:7d:50:27:9f:f9:55:c7:0e:dd:c8:6c:13:f1: a0:a4:f4:bd:f8:80:ca:b2:78:3b:e2:b1:78:40:70: fc:78:6b:bb:ba:71:e5:50:13:f5:b4:bd:fb:17:5f: 33:06:90:a3:72:22:6e:e2:df:20:cf:ef:f4:82:c9: 34:11:d0:13:7a:71:6d:4a:46:70:05:5e:05:b8:f0: 6e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6F:41:0B:79:8F:01:23:3F:0A:4B:D1:5E:87:F4:B1:75:08:34:9C X509v3 Authority Key Identifier: keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/cG9BC3mPASM_CkvRXof0sXUINJw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.181.224.0/23 Signature Algorithm: sha256WithRSAEncryption 24:12:18:c5:f7:ff:5e:90:53:e9:ee:19:2b:55:aa:49:8d:a1: b0:88:d8:e0:b5:13:a9:4c:15:ab:ad:eb:89:c2:00:3b:24:23: ea:76:21:78:92:5a:7c:7a:0d:42:99:da:e1:65:bf:e4:6a:e4: 56:b2:23:2f:c7:0a:28:c0:be:c7:96:d5:a2:8e:94:6c:0f:58: 5d:70:3f:73:9e:00:c7:e2:df:16:f9:f4:a4:7b:a4:f0:cb:20: 9e:55:c4:17:f8:7d:f4:33:0c:72:d1:08:6c:85:63:e4:aa:9e: 3d:9b:cb:ab:b7:1c:bc:e1:25:74:0f:66:44:03:11:cc:26:b6: d8:1f:21:96:31:c9:a6:20:99:ab:79:cc:b4:ca:73:99:20:aa: 0d:68:a9:4f:e1:d4:36:d2:16:99:0d:e1:16:76:92:03:bc:cd: 8f:3d:29:d0:bc:5e:35:0d:6d:d8:4d:94:fc:fe:4a:b6:f2:ff: 5e:9c:fd:85:05:e7:cf:67:ef:23:e8:8c:82:57:fb:92:f2:7f: 51:5b:87:63:ae:5a:a5:fe:c5:14:37:83:88:fc:18:00:44:c4: 56:a6:d2:eb:55:29:f5:48:5b:a6:92:4a:e8:1c:ba:66:71:5f: 4e:17:a4:ca:b1:7a:7e:9d:d1:72:42:d8:76:00:1d:42:b5:4d: 3f:ea:db:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g5WpJY+6aOCgsqkNC7YKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyY2U3NTkzMjAxOTViOWNjMThjY2ZjYjFiNTMyYWVhOTQ5 MjU4ZjEwHhcNMjYwMTAyMTYyMTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDZmNDEwYjc5OGYwMTIzM2YwYTRiZDE1ZTg3ZjRiMTc1MDgzNDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRAKU1x/4LjrNdsaa1w7VZbmjV66 E3ufZPMmx4OCPjlcMS9su7fhWgT/1yxz3IeauDbkNB9tstepEnXXG6CTcem5x8wI f7sI6yPiRWSDFcHRzCJg23gFdKE3KCftQ0xY5BBqgNToTPlNdDruyyuzF8bw2dwB ipISBOQBr9n3ZnuO294oDjVJoZ+qntF0gpfRkwxSVkiqzEyQOdCeEM5qcgbA6AWN vZ6m8uyY4gNfUqki2eItFX1QJ5/5VccO3chsE/GgpPS9+IDKsng74rF4QHD8eGu7 unHlUBP1tL37F18zBpCjciJu4t8gz+/0gsk0EdATenFtSkZwBV4FuPBuXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHBvQQt5jwEjPwpL0V6H9LF1CDScMB8GA1UdIwQY MBaAFELOdZMgGVucwYzPyxtTKuqUkljxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXM1MWt5QVpXNXpCak1fTEcxTXE2cFNTV1BFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hNTIwNDgtMTJjYS00YTAzLTk1YmUt Njk3OTQ4ZWE3MWY1LzEvY0c5QkMzbVBBU01fQ2t2UlhvZjBzWFVJTkp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9hNTIwNDgtMTJjYS00YTAzLTk1YmUtNjk3OTQ4ZWE3MWY1 LzEvUXM1MWt5QVpXNXpCak1fTEcxTXE2cFNTV1BFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBbXgMA0G CSqGSIb3DQEBCwUAA4IBAQAkEhjF9/9ekFPp7hkrVapJjaGwiNjgtROpTBWrreuJ wgA7JCPqdiF4klp8eg1CmdrhZb/kauRWsiMvxwoowL7HltWijpRsD1hdcD9zngDH 4t8W+fSke6TwyyCeVcQX+H30Mwxy0QhshWPkqp49m8urtxy84SV0D2ZEAxHMJrbY HyGWMcmmIJmrecy0ynOZIKoNaKlP4dQ20haZDeEWdpIDvM2PPSnQvF41DW3YTZT8 /kq28v9enP2FBefPZ+8j6IyCV/uS8n9RW4djrlql/sUUN4OI/BgARMRWptLrVSn1 SFumkkroHLpmcV9OF6TKsXp+ndFyQth2AB1CtU0/6tuF -----END CERTIFICATE-----Generated at Sun Jan 25 15:01:43 2026 by rpki-client