This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/z9xaJu4-grqg2GhotcVjg60Bphs.roa File: z9xaJu4-grqg2GhotcVjg60Bphs.roa (raw, json) Hash identifier: X87I15rWlYwJRZh2iXyNZTDnLknqtSiwvXkNxh+oeds= Subject key identifier: CF:DC:5A:26:EE:3E:82:BA:A0:D8:68:68:B5:C5:63:83:AD:01:A6:1B Certificate issuer: /CN=015b6d1596ac0501a71a393447051a62ff1dda16 Certificate serial: 019B7BA36E6694E27D9BCFEC2053E4016744 Authority key identifier: 01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/z9xaJu4-grqg2GhotcVjg60Bphs.roa Signing time: Thu 01 Jan 2026 22:17:46 +0000 ROA not before: Thu 01 Jan 2026 22:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209595 IP address blocks: 5.153.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.mft rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:6e:66:94:e2:7d:9b:cf:ec:20:53:e4:01:67:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015b6d1596ac0501a71a393447051a62ff1dda16 Validity Not Before: Jan 1 22:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cfdc5a26ee3e82baa0d86868b5c56383ad01a61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:eb:c3:fb:7d:25:14:4c:44:2f:14:d9:1f:fb: a1:14:3f:fe:d5:d8:2b:91:94:19:49:f7:60:76:08: 38:bf:1f:7f:f5:ca:af:27:b7:c6:49:57:bd:6e:e3: 8a:73:dd:6d:a0:7f:76:11:89:82:71:86:11:88:b4: ff:d6:ae:45:1a:46:cb:86:6c:0d:82:b7:e7:d7:4b: f6:74:a3:a0:3e:42:14:ba:6d:69:85:e8:be:64:6e: 8a:84:3f:87:97:e3:ea:3c:7b:c9:69:8a:34:f7:c7: e3:38:ab:36:2b:b6:b2:ab:7b:da:49:b8:85:f2:a2: 31:bb:eb:e4:4d:50:19:cb:04:d0:f9:58:01:6c:47: 92:54:c9:55:3d:11:ac:4b:12:1f:79:df:fc:f9:f8: 8c:1c:8f:f3:4c:36:a4:bb:60:eb:81:09:79:e1:94: 21:99:f8:e2:e9:0b:42:6c:dc:26:9a:a7:ea:cf:47: 17:f3:fa:e6:0e:5a:fd:de:1c:58:bb:13:26:e0:ca: c2:5c:dc:55:a3:d2:76:00:fa:d0:af:59:62:30:b4: 4f:e0:57:80:a3:22:98:1d:5e:37:3b:38:a0:34:fb: 68:b5:53:9d:0a:f9:5b:32:1e:65:4f:8c:c9:3f:1f: c3:38:27:6c:f4:ed:77:ab:fe:28:1d:4f:97:fd:08: 4e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DC:5A:26:EE:3E:82:BA:A0:D8:68:68:B5:C5:63:83:AD:01:A6:1B X509v3 Authority Key Identifier: keyid:01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/z9xaJu4-grqg2GhotcVjg60Bphs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.153.172.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:62:e4:72:ae:dd:cd:89:a9:c2:ae:bf:82:37:2d:3d:76:2d: 10:7c:c9:26:63:64:7a:86:f6:3f:26:24:96:ad:2a:5a:5e:ae: a4:2a:f2:4b:fd:7a:6b:0f:7f:ff:55:e5:6e:e3:4b:65:8a:e7: 67:fb:92:68:58:17:6a:29:b5:d5:03:33:19:da:de:3a:79:1d: ac:96:72:53:1c:7e:24:f1:5a:00:54:85:65:ed:70:3f:7e:c1: 17:0a:02:2c:64:cd:09:9f:ef:54:ca:ae:8a:b8:67:ab:f6:ff: 1d:fa:4f:2c:d4:d7:bd:56:d6:1d:83:16:15:74:56:2b:6c:30: 05:17:8b:fa:a1:e2:19:54:bc:d6:08:58:ec:f3:a9:36:d4:09: ec:b1:74:d4:e3:44:b9:39:7e:47:cf:9b:77:5f:c0:4e:22:23: 09:d1:63:49:a7:63:ca:c3:42:81:20:b2:d6:d1:bb:39:8a:3e: ef:b9:1d:70:01:21:2d:fc:41:71:63:c0:7c:9a:38:c1:8a:f8: 5b:bf:a5:4a:16:45:35:8e:ec:8a:bc:81:aa:0d:f1:4e:54:19: e7:3c:a8:41:8a:b3:3d:37:80:98:3c:e7:06:14:05:58:06:1e: fb:ef:94:6c:92:6e:25:27:50:32:5f:ec:aa:8d:4e:26:3b:f8: 54:43:32:21 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o25mlOJ9m8/sIFPkAWdEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNWI2ZDE1OTZhYzA1MDFhNzFhMzkzNDQ3MDUxYTYyZmYx ZGRhMTYwHhcNMjYwMTAxMjIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZmRjNWEyNmVlM2U4MmJhYTBkODY4NjhiNWM1NjM4M2FkMDFhNjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOvD+30lFExELxTZH/uhFD/+1dgr kZQZSfdgdgg4vx9/9cqvJ7fGSVe9buOKc91toH92EYmCcYYRiLT/1q5FGkbLhmwN grfn10v2dKOgPkIUum1phei+ZG6KhD+Hl+PqPHvJaYo098fjOKs2K7ayq3vaSbiF 8qIxu+vkTVAZywTQ+VgBbEeSVMlVPRGsSxIfed/8+fiMHI/zTDaku2DrgQl54ZQh mfji6QtCbNwmmqfqz0cX8/rmDlr93hxYuxMm4MrCXNxVo9J2APrQr1liMLRP4FeA oyKYHV43OzigNPtotVOdCvlbMh5lT4zJPx/DOCds9O13q/4oHU+X/QhO3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM/cWibuPoK6oNhoaLXFY4OtAaYbMB8GA1UdIwQY MBaAFAFbbRWWrAUBpxo5NEcFGmL/HdoWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgt ZmVlOGYzNzkwNTY3LzEvejl4YUp1NC1ncnFnMkdob3RjVmpnNjBCcGhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgtZmVlOGYzNzkwNTY3 LzEvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABZmsMA0G CSqGSIb3DQEBCwUAA4IBAQA7YuRyrt3NianCrr+CNy09di0QfMkmY2R6hvY/JiSW rSpaXq6kKvJL/XprD3//VeVu40tliudn+5JoWBdqKbXVAzMZ2t46eR2slnJTHH4k 8VoAVIVl7XA/fsEXCgIsZM0Jn+9Uyq6KuGer9v8d+k8s1Ne9VtYdgxYVdFYrbDAF F4v6oeIZVLzWCFjs86k21AnssXTU40S5OX5Hz5t3X8BOIiMJ0WNJp2PKw0KBILLW 0bs5ij7vuR1wASEt/EFxY8B8mjjBivhbv6VKFkU1juyKvIGqDfFOVBnnPKhBirM9 N4CYPOcGFAVYBh7775Rskm4lJ1AyX+yqjU4mO/hUQzIh -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:09 2026 by rpki-client