This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/5OB1UcqyVZM-SrWEC8A3gjlh_YQ.roa File: 5OB1UcqyVZM-SrWEC8A3gjlh_YQ.roa (raw, json) Hash identifier: BLIcqazNeljBCBzBygXaw9T3xQswqWM9AO1hYAdUdKc= Subject key identifier: E4:E0:75:51:CA:B2:55:93:3E:4A:B5:84:0B:C0:37:82:39:61:FD:84 Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Certificate serial: 019A2C0E41542079E8B50481DF256528FA4D Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/5OB1UcqyVZM-SrWEC8A3gjlh_YQ.roa Signing time: Tue 28 Oct 2025 18:22:03 +0000 ROA not before: Tue 28 Oct 2025 18:22:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 209747 IP address blocks: 31.40.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.mft rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:2c:0e:41:54:20:79:e8:b5:04:81:df:25:65:28:fa:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Validity Not Before: Oct 28 18:22:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e4e07551cab255933e4ab5840bc037823961fd84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:45:16:fb:b9:ad:9d:23:76:1e:55:25:e4:8b: 00:c4:e6:b6:2f:06:0a:a9:9c:29:ff:25:8d:fc:c9: 88:b6:c6:b0:f3:5f:d7:92:c6:f8:d5:be:c9:63:4c: 62:8b:34:fc:de:ae:31:68:83:76:bd:f0:f9:69:ea: dd:ae:09:1d:10:11:e7:82:f1:6d:6d:3f:1d:26:6a: 28:c6:b9:c1:9d:d1:da:ce:09:fa:58:64:18:60:de: 3f:3b:5c:e1:ea:a5:6a:cb:02:6b:18:04:19:70:40: ca:9b:cb:2c:26:d2:56:50:ab:31:32:e4:74:a6:ae: 44:21:10:61:ab:50:34:7c:05:8a:cd:5f:02:3e:24: 1e:90:6f:fe:a9:0a:05:90:b6:6e:59:ec:90:df:47: 89:5a:ab:2c:04:a1:e7:30:75:bc:da:30:b0:5c:1e: 8e:51:38:ea:e7:fd:38:77:6d:b1:74:3d:a9:82:6c: 72:3c:d9:4d:de:e8:03:42:4a:01:83:76:20:71:e3: fc:6e:4e:29:0c:19:cc:b9:42:67:a5:4f:d5:cc:3a: 4a:46:77:42:3a:16:68:a9:d0:86:13:a2:af:d5:d0: f0:d5:4d:1d:60:f9:ae:e3:94:26:fe:a5:b1:4b:44: d6:4f:22:e1:26:48:f0:71:17:0a:b9:04:51:6d:e9: e5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E0:75:51:CA:B2:55:93:3E:4A:B5:84:0B:C0:37:82:39:61:FD:84 X509v3 Authority Key Identifier: keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/5OB1UcqyVZM-SrWEC8A3gjlh_YQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.134.0/24 Signature Algorithm: sha256WithRSAEncryption 01:45:12:ed:c0:1e:a0:1e:a5:69:c4:0c:c6:af:23:cc:f7:fb: 93:51:c9:93:e0:b8:18:a5:dc:48:8a:39:e1:62:df:60:9c:49: 67:8c:28:ac:71:3b:15:7f:2a:d0:9e:d8:92:13:b7:5f:41:8f: 84:19:5b:15:60:c4:21:ad:35:68:c0:5d:cb:4a:04:66:4d:5a: 5d:6a:38:95:d4:f3:ac:4d:37:e3:53:dd:5b:a0:44:78:3e:b3: a7:27:1c:ad:0a:fa:ae:2f:2c:6c:fb:c3:b1:ef:08:3e:59:e6: 68:72:5f:53:7c:82:dd:bc:10:03:32:60:5c:ee:d4:ee:64:80: b8:f2:9d:de:ef:56:73:1a:10:56:09:6b:39:1e:07:35:c4:98: e4:36:7c:a7:e7:71:18:11:97:f7:05:53:08:a5:33:1d:70:ba: 20:ed:a9:b6:8b:9d:4d:17:56:d9:9f:c4:1f:52:b5:ca:b4:23: e2:3c:fd:4d:43:a9:d1:98:f0:f7:0a:98:74:28:32:b2:ad:c1: 40:7f:66:4d:36:3f:57:1a:b1:09:e9:42:83:6f:6a:89:e7:97: 15:70:3e:11:0f:b1:e7:74:0c:b2:a5:0d:d6:96:12:79:36:ea: 56:ba:49:88:51:13:de:4c:e5:00:dd:ba:ef:21:69:83:02:eb: 3c:b1:c8:24 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZosDkFUIHnotQSB3yVlKPpNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWY1YzJlNWVkYzE5NzgzNGQwN2YzNDU5NjJiMDc0NWJl ZTY2ZDcwHhcNMjUxMDI4MTgyMjAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNGUwNzU1MWNhYjI1NTkzM2U0YWI1ODQwYmMwMzc4MjM5NjFmZDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEUW+7mtnSN2HlUl5IsAxOa2LwYK qZwp/yWN/MmItsaw81/Xksb41b7JY0xiizT83q4xaIN2vfD5aerdrgkdEBHngvFt bT8dJmooxrnBndHazgn6WGQYYN4/O1zh6qVqywJrGAQZcEDKm8ssJtJWUKsxMuR0 pq5EIRBhq1A0fAWKzV8CPiQekG/+qQoFkLZuWeyQ30eJWqssBKHnMHW82jCwXB6O UTjq5/04d22xdD2pgmxyPNlN3ugDQkoBg3YgceP8bk4pDBnMuUJnpU/VzDpKRndC OhZoqdCGE6Kv1dDw1U0dYPmu45Qm/qWxS0TWTyLhJkjwcRcKuQRRbenl1wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOTgdVHKslWTPkq1hAvAN4I5Yf2EMB8GA1UdIwQY MBaAFB6vXC5e3Bl4NNB/NFlisHRb7mbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODIt NGEzNGMxYmJhYjJiLzEvNU9CMVVjcXlWWk0tU3JXRUM4QTNnamxoX1lRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODItNGEzNGMxYmJhYjJi LzEvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyiGMA0G CSqGSIb3DQEBCwUAA4IBAQABRRLtwB6gHqVpxAzGryPM9/uTUcmT4LgYpdxIijnh Yt9gnElnjCiscTsVfyrQntiSE7dfQY+EGVsVYMQhrTVowF3LSgRmTVpdajiV1POs TTfjU91boER4PrOnJxytCvquLyxs+8Ox7wg+WeZocl9TfILdvBADMmBc7tTuZIC4 8p3e71ZzGhBWCWs5Hgc1xJjkNnyn53EYEZf3BVMIpTMdcLog7am2i51NF1bZn8Qf UrXKtCPiPP1NQ6nRmPD3Cph0KDKyrcFAf2ZNNj9XGrEJ6UKDb2qJ55cVcD4RD7Hn dAyypQ3WlhJ5NupWukmIURPeTOUA3brvIWmDAus8scgk -----END CERTIFICATE-----Generated at Sat Dec 6 15:05:03 2025 by rpki-client