This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/_BWqmK6mrfBuguQtqF75TBClGMs.roa File: _BWqmK6mrfBuguQtqF75TBClGMs.roa (raw, json) Hash identifier: uZ7P5xdR1guWm1uC7RQ3bBaQOHT/pKp/etCCjtf5eTs= Subject key identifier: FC:15:AA:98:AE:A6:AD:F0:6E:82:E4:2D:A8:5E:F9:4C:10:A5:18:CB Certificate issuer: /CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Certificate serial: 019B7BA4C3DA6DBDAAA78659DCD8C637D0C9 Authority key identifier: 5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/_BWqmK6mrfBuguQtqF75TBClGMs.roa Signing time: Thu 01 Jan 2026 22:19:14 +0000 ROA not before: Thu 01 Jan 2026 22:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214172 IP address blocks: 5.253.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:c3:da:6d:bd:aa:a7:86:59:dc:d8:c6:37:d0:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Validity Not Before: Jan 1 22:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc15aa98aea6adf06e82e42da85ef94c10a518cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:24:40:11:fe:e7:4f:ba:ed:88:fb:4e:16:e1: 2f:31:97:26:ec:38:c9:33:a7:48:44:46:18:e2:48: 7e:8e:b5:fc:f7:40:ac:9a:64:15:62:0a:fe:c9:0d: d6:cd:c2:36:d0:f8:e5:4e:61:85:26:ef:c3:00:1d: 47:7d:d1:c1:28:26:63:e0:f0:c8:b3:de:8c:b6:48: 6a:a4:fc:1f:b1:1a:a8:ab:06:d6:1e:71:1d:e0:56: fd:91:de:04:f7:25:33:d5:ea:03:8f:ea:2a:5a:57: 25:86:aa:77:e4:fe:d7:11:e0:fd:6c:ca:7b:7d:76: 26:3d:64:c1:51:93:6b:4f:e8:97:27:35:53:b0:0b: 70:ae:c4:ae:67:f2:b6:44:c6:2c:0e:9a:8d:54:99: 99:a9:68:2e:1a:8b:95:b3:ae:88:1d:6c:67:a3:f2: 80:a6:f2:c0:c0:4c:d9:95:87:67:df:c5:f2:2e:33: f9:14:4e:22:73:32:64:b5:8a:b1:3c:84:02:e2:1e: 81:a4:30:93:c1:76:f5:b2:93:d9:33:5f:51:92:28: 77:54:93:7c:01:a5:c4:a5:93:fc:4d:06:7c:0a:7f: 93:fe:31:40:67:5d:26:2c:17:1a:2e:98:8a:ec:d5: 8a:91:e7:cd:1a:b6:7d:0f:40:04:c5:6c:2f:e9:72: 02:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:15:AA:98:AE:A6:AD:F0:6E:82:E4:2D:A8:5E:F9:4C:10:A5:18:CB X509v3 Authority Key Identifier: keyid:5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/_BWqmK6mrfBuguQtqF75TBClGMs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.188.0/24 Signature Algorithm: sha256WithRSAEncryption 51:68:fc:7a:09:df:a9:9a:24:f4:69:48:ca:ab:0c:4c:58:a9: 02:64:e5:7e:b9:33:de:cc:d6:48:22:26:9c:ae:86:39:be:a9: 6b:34:a3:96:56:7e:0c:e2:fe:3e:07:3a:cb:e8:1f:86:10:95: 32:c3:d9:58:d8:b0:cc:fe:a9:22:82:17:ad:0c:c0:a3:d2:99: 75:15:35:c5:99:98:e9:9c:3b:bf:5d:4f:7d:5c:ac:40:8e:fd: 21:96:5a:7d:3b:fc:d7:9c:5e:bb:77:d6:da:43:b9:04:63:d8: 73:13:5e:a3:55:e2:e4:99:a5:13:09:54:e5:9f:fd:8b:41:b4: 30:9c:3a:35:b2:4d:79:58:98:0b:12:99:27:96:7b:a0:f0:0e: a4:35:07:8b:a8:8a:ef:58:61:17:99:7d:4a:f3:ea:b6:96:87: b7:b5:be:bd:07:65:3c:b1:6e:a7:d3:28:2e:22:31:55:5d:26: ac:fa:65:92:a8:a8:f9:ad:a2:3a:d3:6f:db:02:28:c0:bc:d4: d1:2f:70:bf:b3:4e:9c:cf:2a:85:4d:50:b0:a8:1a:0c:77:e3: 9e:c8:ba:22:54:1e:35:50:80:b8:89:bd:8e:30:b2:a0:1e:e8: 36:d1:54:76:96:45:9d:d0:78:94:d0:13:1b:e4:85:b7:94:25: ce:f5:e4:ad -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pMPabb2qp4ZZ3NjGN9DJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkODZjNDdkYTZkOTA3OTM0N2I2MGYwNGVkNWM1NTU3ZmU5 ODNlYjgwHhcNMjYwMTAxMjIxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzE1YWE5OGFlYTZhZGYwNmU4MmU0MmRhODVlZjk0YzEwYTUxOGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7iRAEf7nT7rtiPtOFuEvMZcm7DjJ M6dIREYY4kh+jrX890CsmmQVYgr+yQ3WzcI20PjlTmGFJu/DAB1HfdHBKCZj4PDI s96MtkhqpPwfsRqoqwbWHnEd4Fb9kd4E9yUz1eoDj+oqWlclhqp35P7XEeD9bMp7 fXYmPWTBUZNrT+iXJzVTsAtwrsSuZ/K2RMYsDpqNVJmZqWguGouVs66IHWxno/KA pvLAwEzZlYdn38XyLjP5FE4iczJktYqxPIQC4h6BpDCTwXb1spPZM19Rkih3VJN8 AaXEpZP8TQZ8Cn+T/jFAZ10mLBcaLpiK7NWKkefNGrZ9D0AExWwv6XICvQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPwVqpiupq3wboLkLahe+UwQpRjLMB8GA1UdIwQY MBaAFF2GxH2m2QeTR7YPBO1cVVf+mD64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYt ZmM2MzI4NDFiYTNlLzEvX0JXcW1LNm1yZkJ1Z3VRdHFGNzVUQkNsR01zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYtZmM2MzI4NDFiYTNl LzEvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABf28MA0G CSqGSIb3DQEBCwUAA4IBAQBRaPx6Cd+pmiT0aUjKqwxMWKkCZOV+uTPezNZIIiac roY5vqlrNKOWVn4M4v4+BzrL6B+GEJUyw9lY2LDM/qkighetDMCj0pl1FTXFmZjp nDu/XU99XKxAjv0hllp9O/zXnF67d9baQ7kEY9hzE16jVeLkmaUTCVTln/2LQbQw nDo1sk15WJgLEpknlnug8A6kNQeLqIrvWGEXmX1K8+q2loe3tb69B2U8sW6n0ygu IjFVXSas+mWSqKj5raI602/bAijAvNTRL3C/s06czyqFTVCwqBoMd+OeyLoiVB41 UIC4ib2OMLKgHug20VR2lkWd0HiU0BMb5IW3lCXO9eSt -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:59 2026 by rpki-client