This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/5bPAfHY71g1tz33WhyemzOl8Afo.roa File: 5bPAfHY71g1tz33WhyemzOl8Afo.roa (raw, json) Hash identifier: TP978Gguy7Dyr8s78cghRC57XCgceUKU/R4E1xx5GXM= Subject key identifier: E5:B3:C0:7C:76:3B:D6:0D:6D:CF:7D:D6:87:27:A6:CC:E9:7C:01:FA Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06 Certificate serial: 019B7758FD3A6678E31AD88607A6BAE9254A Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/5bPAfHY71g1tz33WhyemzOl8Afo.roa Signing time: Thu 01 Jan 2026 02:17:59 +0000 ROA not before: Thu 01 Jan 2026 02:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8551 IP address blocks: 128.139.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:fd:3a:66:78:e3:1a:d8:86:07:a6:ba:e9:25:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06 Validity Not Before: Jan 1 02:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e5b3c07c763bd60d6dcf7dd68727a6cce97c01fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ac:53:0e:9a:35:2d:40:95:38:47:d0:74:27: 20:1b:47:01:5a:64:b7:95:50:60:49:13:06:ed:61: b5:73:78:7f:89:e4:19:32:4d:4a:fd:c3:ee:f8:ad: e2:9d:fc:cb:a1:e6:cb:8b:5d:a2:48:98:64:6a:a6: f5:57:b3:9e:5b:dd:71:4d:5d:65:73:b4:fb:2c:89: e0:a1:3d:2c:0b:c5:41:af:2b:3c:49:68:6b:41:41: b2:00:04:83:7b:0b:29:90:b2:d9:84:cd:50:9a:e9: a9:0a:3c:72:ee:3c:7a:2f:34:0a:95:55:a5:cb:c3: b7:27:c9:4c:4e:b9:fb:ce:e2:17:2a:fe:76:44:d7: 79:c6:4d:83:85:a9:29:5f:1e:a7:59:55:34:0b:6b: 53:10:94:8b:2c:0b:72:c4:66:3b:06:1c:53:35:02: 73:6c:c2:ee:c1:ca:d7:72:43:b2:eb:a1:86:dd:54: c7:ee:81:e7:5c:96:cf:62:fc:fc:f8:af:01:bf:08: 19:31:b4:b3:9f:9e:00:23:d9:ab:b7:4e:5e:5e:80: 8f:ea:06:28:ef:23:68:a4:1f:5a:e9:65:83:e4:38: 76:78:be:41:0f:97:b2:b8:64:17:59:e8:83:e2:3e: 5e:fe:e8:91:76:e4:bf:3d:e7:d5:6c:c1:f3:ea:3f: 32:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B3:C0:7C:76:3B:D6:0D:6D:CF:7D:D6:87:27:A6:CC:E9:7C:01:FA X509v3 Authority Key Identifier: keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/5bPAfHY71g1tz33WhyemzOl8Afo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.139.194.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:04:d0:fe:45:35:fc:e3:49:75:c3:8a:13:80:0e:46:52:b0: 5d:99:76:46:d2:99:1c:ac:ab:63:8b:fc:fb:53:79:f8:01:dd: b4:7c:fc:5d:e3:f2:43:1e:24:f5:b6:9c:f8:a0:b4:9b:d7:55: db:d7:4d:ae:a5:12:73:46:0f:99:32:fd:dd:46:79:b6:30:31: 49:7e:a5:99:40:0f:c6:cd:6b:52:44:6e:3f:9a:3d:c0:c1:44: f9:a2:79:91:b4:ef:fb:82:35:ea:4a:2f:d0:40:b5:7e:39:b1: 48:dc:b4:44:ba:73:1f:09:d3:2a:7e:8d:2e:f5:b4:1b:34:ed: 08:73:38:be:e9:19:e9:8b:5e:ac:71:b8:37:46:ee:a5:22:f6: ca:10:0d:ec:78:f1:2a:95:5e:c9:e6:48:80:a6:d3:07:3f:bc: f7:a6:c3:87:18:96:eb:1b:e2:b2:a3:6d:f9:63:f3:ab:08:1d: bc:39:5c:0a:7c:29:08:d9:67:d0:c0:1e:86:05:4e:ce:9a:7a: 04:bd:12:bc:f4:17:b6:33:69:92:ec:bc:a1:95:dd:ee:5a:21: cf:55:22:5f:cb:2a:75:d7:ee:d0:63:f2:c9:26:53:30:2b:a2: e7:43:91:73:d8:28:5d:15:b3:b2:40:39:ad:5b:58:4e:76:b7: 37:ff:bb:63 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WP06ZnjjGtiGB6a66SVKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZmE1OTZhMzEyNmFjZTAyOWM2ZDcwZDUyOTI1N2UwN2Iz OGJhMDYwHhcNMjYwMTAxMDIxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNWIzYzA3Yzc2M2JkNjBkNmRjZjdkZDY4NzI3YTZjY2U5N2MwMWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaxTDpo1LUCVOEfQdCcgG0cBWmS3 lVBgSRMG7WG1c3h/ieQZMk1K/cPu+K3infzLoebLi12iSJhkaqb1V7OeW91xTV1l c7T7LIngoT0sC8VBrys8SWhrQUGyAASDewspkLLZhM1QmumpCjxy7jx6LzQKlVWl y8O3J8lMTrn7zuIXKv52RNd5xk2DhakpXx6nWVU0C2tTEJSLLAtyxGY7BhxTNQJz bMLuwcrXckOy66GG3VTH7oHnXJbPYvz8+K8BvwgZMbSzn54AI9mrt05eXoCP6gYo 7yNopB9a6WWD5Dh2eL5BD5eyuGQXWeiD4j5e/uiRduS/PefVbMHz6j8yjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOWzwHx2O9YNbc991ocnpszpfAH6MB8GA1UdIwQY MBaAFB76WWoxJqzgKcbXDVKSV+B7OLoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODIt OWQwYzYyMDczNWYxLzEvNWJQQWZIWTcxZzF0ejMzV2h5ZW16T2w4QWZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODItOWQwYzYyMDczNWYx LzEvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgIvCMA0G CSqGSIb3DQEBCwUAA4IBAQAdBND+RTX840l1w4oTgA5GUrBdmXZG0pkcrKtji/z7 U3n4Ad20fPxd4/JDHiT1tpz4oLSb11Xb102upRJzRg+ZMv3dRnm2MDFJfqWZQA/G zWtSRG4/mj3AwUT5onmRtO/7gjXqSi/QQLV+ObFI3LREunMfCdMqfo0u9bQbNO0I czi+6Rnpi16scbg3Ru6lIvbKEA3sePEqlV7J5kiAptMHP7z3psOHGJbrG+Kyo235 Y/OrCB28OVwKfCkI2WfQwB6GBU7OmnoEvRK89Be2M2mS7Lyhld3uWiHPVSJfyyp1 1+7QY/LJJlMwK6LnQ5Fz2ChdFbOyQDmtW1hOdrc3/7tj -----END CERTIFICATE-----Generated at Sun Jan 25 16:12:31 2026 by rpki-client