This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/5hEpXm6JhvNCBMohzU0WFPWcKWc.roa File: 5hEpXm6JhvNCBMohzU0WFPWcKWc.roa (raw, json) Hash identifier: 5apiiJXUanfecSLX+wSn16e0ImKfrAKnCBH8X2xdMts= Subject key identifier: E6:11:29:5E:6E:89:86:F3:42:04:CA:21:CD:4D:16:14:F5:9C:29:67 Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86 Certificate serial: 019B79ED24A3F12468E6DD9F4F157B044345 Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/5hEpXm6JhvNCBMohzU0WFPWcKWc.roa Signing time: Thu 01 Jan 2026 14:19:02 +0000 ROA not before: Thu 01 Jan 2026 14:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212719 IP address blocks: 94.188.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.mft rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:24:a3:f1:24:68:e6:dd:9f:4f:15:7b:04:43:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86 Validity Not Before: Jan 1 14:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e611295e6e8986f34204ca21cd4d1614f59c2967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:60:b2:a6:26:97:31:5a:cb:11:e6:42:7f: 88:e0:fe:75:fc:64:7b:b2:6a:12:70:b0:04:fc:13: 77:02:17:8a:6d:86:1c:3d:a0:2d:e6:86:42:cc:be: c3:fc:51:9b:4f:3c:5c:c0:74:bf:b4:0e:a0:2f:9f: 87:bb:df:a4:0e:a6:85:62:cf:94:cc:b4:e5:23:05: a5:45:03:2d:4f:04:f1:9e:0c:55:eb:52:a4:c2:58: a8:f5:16:d0:e5:1f:06:37:43:9e:e9:47:08:0b:ec: 5d:38:99:9d:a2:9f:e6:b1:cb:96:a8:6e:4c:a9:98: 55:64:26:18:a3:c2:7e:92:f5:77:18:6e:fa:d6:89: 31:d9:ec:62:7b:fc:f8:1f:f7:5b:14:a7:cc:aa:bb: a8:97:7c:73:e6:1b:c6:db:c0:cc:46:7c:f3:c7:17: b0:53:42:9d:3f:74:37:2c:42:e6:ab:05:8d:cc:12: 1d:8c:ad:40:1a:e1:b6:a5:eb:93:96:41:6c:c7:71: 1a:81:e1:18:9e:01:ea:e1:e6:7b:7e:97:85:6c:37: 5c:66:be:f5:e0:56:7a:cf:46:d2:84:b5:d0:e0:9c: 39:60:74:a0:2e:b2:ce:67:c0:55:99:e5:cb:f5:10: 7e:97:41:7f:4f:12:d5:5d:cf:c7:46:9c:1c:04:fd: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:11:29:5E:6E:89:86:F3:42:04:CA:21:CD:4D:16:14:F5:9C:29:67 X509v3 Authority Key Identifier: keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/5hEpXm6JhvNCBMohzU0WFPWcKWc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.188.250.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:a3:a2:18:50:d4:ae:9f:f0:a7:3b:fb:5d:48:f3:66:49:3e: 71:e9:c6:33:af:d5:95:dc:a7:de:69:08:f8:bb:3c:53:66:4f: 68:e4:c1:e4:38:1b:12:1f:44:1c:ed:2a:06:b0:e5:96:40:87: a6:90:e5:5a:8c:da:ec:3b:63:64:dd:23:f1:44:9b:08:ca:8b: 11:87:ea:bd:97:a5:7d:30:50:df:30:7d:af:2b:4a:6e:47:9f: 78:64:94:ea:92:d8:13:eb:6d:93:e3:e2:05:bf:96:42:b6:1f: 92:e3:22:f7:b7:07:20:27:5e:b1:ed:76:c1:b4:0d:2e:b2:c8: 2b:74:74:25:4d:c4:b2:4b:6c:8f:f1:e8:1f:7c:73:f6:b5:75: 3a:49:b1:7e:70:a4:fc:5d:e9:f0:e3:01:7f:e4:56:6a:1c:93: 94:56:21:6b:f5:18:ec:f8:5c:05:54:05:58:fa:8e:59:38:13: 8a:9e:67:e5:2e:36:5d:71:ca:c5:1b:4d:fd:48:48:b3:38:32: de:88:6c:6f:96:a0:06:58:85:d2:e7:55:e3:da:3b:8e:a6:b3: 76:f8:91:4c:cf:4e:f1:eb:84:3b:94:3f:8d:83:ce:3b:b1:f5: a0:45:53:4a:59:48:45:07:b6:1e:3f:9d:aa:de:3c:98:78:69: 84:94:82:8d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57SSj8SRo5t2fTxV7BENFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZDViYjQwMTE4MGU1NWY1YzE2NWQ0NzkwOGRmZjRmZTI5 YTBkODYwHhcNMjYwMTAxMTQxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjExMjk1ZTZlODk4NmYzNDIwNGNhMjFjZDRkMTYxNGY1OWMyOTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2JgsqYmlzFayxHmQn+I4P51/GR7 smoScLAE/BN3AheKbYYcPaAt5oZCzL7D/FGbTzxcwHS/tA6gL5+Hu9+kDqaFYs+U zLTlIwWlRQMtTwTxngxV61Kkwlio9RbQ5R8GN0Oe6UcIC+xdOJmdop/mscuWqG5M qZhVZCYYo8J+kvV3GG761okx2exie/z4H/dbFKfMqruol3xz5hvG28DMRnzzxxew U0KdP3Q3LELmqwWNzBIdjK1AGuG2peuTlkFsx3EageEYngHq4eZ7fpeFbDdcZr71 4FZ6z0bShLXQ4Jw5YHSgLrLOZ8BVmeXL9RB+l0F/TxLVXc/HRpwcBP0hXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOYRKV5uiYbzQgTKIc1NFhT1nClnMB8GA1UdIwQY MBaAFOLVu0ARgOVfXBZdR5CN/0/img2GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEt NDIxZTZiYzdlMmU4LzEvNWhFcFhtNkpodk5DQk1vaHpVMFdGUFdjS1djLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEtNDIxZTZiYzdlMmU4 LzEvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXrz6MA0G CSqGSIb3DQEBCwUAA4IBAQAKo6IYUNSun/CnO/tdSPNmST5x6cYzr9WV3KfeaQj4 uzxTZk9o5MHkOBsSH0Qc7SoGsOWWQIemkOVajNrsO2Nk3SPxRJsIyosRh+q9l6V9 MFDfMH2vK0puR594ZJTqktgT622T4+IFv5ZCth+S4yL3twcgJ16x7XbBtA0ussgr dHQlTcSyS2yP8egffHP2tXU6SbF+cKT8Xenw4wF/5FZqHJOUViFr9Rjs+FwFVAVY +o5ZOBOKnmflLjZdccrFG039SEizODLeiGxvlqAGWIXS51Xj2juOprN2+JFMz07x 64Q7lD+Ng847sfWgRVNKWUhFB7YeP52q3jyYeGmElIKN -----END CERTIFICATE-----Generated at Mon Jan 26 01:16:20 2026 by rpki-client