This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/fYv6u6ZqsaaVuf2RxvvaolhNBjk.roa File: fYv6u6ZqsaaVuf2RxvvaolhNBjk.roa (raw, json) Hash identifier: jVk92j+q/o1dRJaAKw+eFCSe6j9s2E6quPaItwZl0/M= Subject key identifier: 7D:8B:FA:BB:A6:6A:B1:A6:95:B9:FD:91:C6:FB:DA:A2:58:4D:06:39 Certificate issuer: /CN=5ed99d49c4b0e46b2786842731e153485c8ac48b Certificate serial: 019B79110806CBACBE0EAD43590C403F4A4A Authority key identifier: 5E:D9:9D:49:C4:B0:E4:6B:27:86:84:27:31:E1:53:48:5C:8A:C4:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtmdScSw5GsnhoQnMeFTSFyKxIs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/fYv6u6ZqsaaVuf2RxvvaolhNBjk.roa Signing time: Thu 01 Jan 2026 10:18:37 +0000 ROA not before: Thu 01 Jan 2026 10:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1836 IP address blocks: 194.150.160.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/XtmdScSw5GsnhoQnMeFTSFyKxIs.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/XtmdScSw5GsnhoQnMeFTSFyKxIs.mft rsync://rpki.ripe.net/repository/DEFAULT/XtmdScSw5GsnhoQnMeFTSFyKxIs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:08:06:cb:ac:be:0e:ad:43:59:0c:40:3f:4a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ed99d49c4b0e46b2786842731e153485c8ac48b Validity Not Before: Jan 1 10:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d8bfabba66ab1a695b9fd91c6fbdaa2584d0639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f9:88:07:a7:09:f7:32:22:56:e8:6f:bc:c0: 6d:b2:aa:d1:bc:5c:ad:ea:c5:fe:74:bd:01:9a:42: 3b:57:76:c0:b2:ca:c8:db:5e:7c:ed:61:a2:8d:0b: 17:c7:a2:4f:3f:51:92:af:44:4f:06:6c:80:1f:c1: e5:6c:d7:49:71:70:70:66:b2:cf:f9:8f:7e:81:f3: f0:a1:39:1a:27:87:ba:20:71:35:84:91:5e:a3:64: 4a:07:e9:eb:4a:45:86:ec:c1:ae:80:9d:f3:b5:0d: 1e:6d:a7:78:b5:ed:6b:0f:ce:e8:21:5f:07:a3:46: 97:af:9f:07:3e:f7:65:8d:91:3c:93:b1:e6:c3:71: 33:31:03:a6:66:31:1e:93:3d:4a:28:36:cf:ed:24: d7:38:67:7e:b6:ad:05:5c:85:8e:5a:8c:72:f1:8b: be:05:6b:3a:d4:09:35:db:cb:a0:b8:71:77:73:dd: 53:c4:98:99:d0:36:6a:d1:65:e4:c1:fb:f0:66:de: b6:40:36:1d:db:35:33:e2:ef:c6:d3:94:aa:da:c8: 66:a6:f6:aa:d0:e9:1f:f8:aa:cc:aa:c8:41:34:a2: 00:a7:e2:f6:51:d2:24:30:6d:c7:c4:ed:e6:dd:8b: 8b:45:61:cd:2b:43:06:5c:44:5a:df:55:06:9c:35: 53:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8B:FA:BB:A6:6A:B1:A6:95:B9:FD:91:C6:FB:DA:A2:58:4D:06:39 X509v3 Authority Key Identifier: keyid:5E:D9:9D:49:C4:B0:E4:6B:27:86:84:27:31:E1:53:48:5C:8A:C4:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtmdScSw5GsnhoQnMeFTSFyKxIs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/fYv6u6ZqsaaVuf2RxvvaolhNBjk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/XtmdScSw5GsnhoQnMeFTSFyKxIs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.150.160.0/23 Signature Algorithm: sha256WithRSAEncryption 49:25:ea:1d:72:5e:ad:5a:28:45:27:de:97:76:c6:5b:36:d8: 5e:53:98:e6:c6:16:3c:e0:18:dd:2b:8c:65:18:69:6d:4f:05: 10:03:0e:48:6d:d3:f8:b3:16:1e:20:4a:42:1b:9f:98:67:33: 57:9e:64:3a:5b:d9:ab:c6:a7:d5:f9:9d:54:88:38:94:e0:d9: 06:f7:8e:37:72:05:a6:1e:8a:21:df:09:88:20:4a:d4:d8:a7: 8a:f5:9e:37:f3:a0:00:ff:59:8c:1f:88:59:7d:f5:c4:63:2b: 78:af:36:db:0f:30:fd:60:9f:ec:ee:c8:83:77:c8:dc:3a:7d: 64:27:68:07:e5:ea:d3:d6:b1:93:8d:c4:51:d0:45:65:84:f8: e7:fd:9f:f7:58:94:dc:95:19:e4:c3:f2:7c:33:ee:5c:85:08: 72:e1:ee:dd:79:0b:37:d5:87:93:2a:f6:bf:dc:bf:c9:99:b4: 80:c8:cc:76:2c:2b:15:c7:b3:7b:a4:98:31:46:cb:d9:3d:25: 3c:7f:90:d0:8d:bc:de:b1:52:5a:e0:bc:f7:ce:42:38:78:1e: 59:75:c4:f1:f4:49:14:81:b6:8c:3d:51:75:44:82:34:31:32: 8a:b9:69:d0:58:4a:73:0a:38:27:ac:57:6f:e3:06:49:f7:4a: 1e:f9:47:f5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EQgGy6y+Dq1DWQxAP0pKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZDk5ZDQ5YzRiMGU0NmIyNzg2ODQyNzMxZTE1MzQ4NWM4 YWM0OGIwHhcNMjYwMTAxMTAxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDhiZmFiYmE2NmFiMWE2OTViOWZkOTFjNmZiZGFhMjU4NGQwNjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/mIB6cJ9zIiVuhvvMBtsqrRvFyt 6sX+dL0BmkI7V3bAssrI21587WGijQsXx6JPP1GSr0RPBmyAH8HlbNdJcXBwZrLP +Y9+gfPwoTkaJ4e6IHE1hJFeo2RKB+nrSkWG7MGugJ3ztQ0ebad4te1rD87oIV8H o0aXr58HPvdljZE8k7Hmw3EzMQOmZjEekz1KKDbP7STXOGd+tq0FXIWOWoxy8Yu+ BWs61Ak128uguHF3c91TxJiZ0DZq0WXkwfvwZt62QDYd2zUz4u/G05Sq2shmpvaq 0Okf+KrMqshBNKIAp+L2UdIkMG3HxO3m3YuLRWHNK0MGXERa31UGnDVTPQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH2L+rumarGmlbn9kcb72qJYTQY5MB8GA1UdIwQY MBaAFF7ZnUnEsORrJ4aEJzHhU0hcisSLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHRtZFNjU3c1R3NuaG9Rbk1lRlRTRnlLeElzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS85Yjg5M2UtN2IwYy00MWFhLWE5NTEt OTBjM2FmYzdjOTQ3LzEvZll2NnU2WnFzYWFWdWYyUnh2dmFvbGhOQmprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS85Yjg5M2UtN2IwYy00MWFhLWE5NTEtOTBjM2FmYzdjOTQ3 LzEvWHRtZFNjU3c1R3NuaG9Rbk1lRlRTRnlLeElzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwpagMA0G CSqGSIb3DQEBCwUAA4IBAQBJJeodcl6tWihFJ96XdsZbNtheU5jmxhY84BjdK4xl GGltTwUQAw5IbdP4sxYeIEpCG5+YZzNXnmQ6W9mrxqfV+Z1UiDiU4NkG9443cgWm Hooh3wmIIErU2KeK9Z4386AA/1mMH4hZffXEYyt4rzbbDzD9YJ/s7siDd8jcOn1k J2gH5erT1rGTjcRR0EVlhPjn/Z/3WJTclRnkw/J8M+5chQhy4e7deQs31YeTKva/ 3L/JmbSAyMx2LCsVx7N7pJgxRsvZPSU8f5DQjbzesVJa4Lz3zkI4eB5ZdcTx9EkU gbaMPVF1RII0MTKKuWnQWEpzCjgnrFdv4wZJ90oe+Uf1 -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:46 2026 by rpki-client