This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/5VJALfhFe7o_AUDjHLN1heHmdsg.roa File: 5VJALfhFe7o_AUDjHLN1heHmdsg.roa (raw, json) Hash identifier: 1gHtL7JZ6Kw9aV9pDDeqj4dLmT+0UP21NwOVssRKidM= Subject key identifier: E5:52:40:2D:F8:45:7B:BA:3F:01:40:E3:1C:B3:75:85:E1:E6:76:C8 Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2 Certificate serial: 019B7F139C214ADAEE39FE80A24DFF7EDBCC Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/5VJALfhFe7o_AUDjHLN1heHmdsg.roa Signing time: Fri 02 Jan 2026 14:19:10 +0000 ROA not before: Fri 02 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 32875 IP address blocks: 109.166.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.mft rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:9c:21:4a:da:ee:39:fe:80:a2:4d:ff:7e:db:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2 Validity Not Before: Jan 2 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e552402df8457bba3f0140e31cb37585e1e676c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5c:3d:78:19:cf:c5:6d:ec:7a:e0:cf:f1:2f: 47:5a:6b:c0:62:9e:28:03:d4:ca:3c:f6:1c:6d:84: 14:30:42:b9:c7:d2:25:34:b4:8e:df:57:91:bd:15: 09:68:be:0c:48:e7:78:64:49:1b:61:4d:d5:8e:12: ff:26:1e:36:d0:d4:42:6f:1f:f8:36:45:d3:88:c0: 0c:3d:34:3b:97:0e:d8:59:46:f2:af:44:57:78:0c: 2c:b0:66:46:ba:e8:f3:2d:6d:ba:77:75:4b:90:13: ed:f2:ee:9d:15:a5:3a:31:6a:f2:cd:60:ba:66:43: c2:e3:b6:8b:6f:5d:de:0e:a6:9b:d9:19:ec:50:99: 5a:ff:f2:34:23:c2:85:80:98:68:dd:e3:e8:01:da: 54:99:b1:32:63:0f:43:31:41:12:90:7a:e7:1f:ff: 21:c9:75:f1:c8:72:42:56:6d:27:47:db:7e:93:f8: 11:8e:fa:97:01:31:f7:93:3d:3a:f5:95:4a:58:61: 51:d3:87:8b:20:08:30:ca:d7:6e:f0:57:11:81:fd: 32:69:61:49:0a:ab:23:81:f8:bd:2d:16:b4:4e:6f: 0e:38:d3:f6:ea:95:e4:1a:6a:1a:ea:7e:92:f4:f2: 25:88:0c:a2:60:b6:bc:d5:fa:1f:5f:6b:55:eb:67: 2b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:52:40:2D:F8:45:7B:BA:3F:01:40:E3:1C:B3:75:85:E1:E6:76:C8 X509v3 Authority Key Identifier: keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/5VJALfhFe7o_AUDjHLN1heHmdsg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.166.39.0/24 Signature Algorithm: sha256WithRSAEncryption 20:7d:07:41:7a:36:fa:3b:67:f2:e8:69:ae:0d:46:9b:f7:69: af:8e:18:88:1d:85:bb:21:8c:98:a3:52:38:1b:c8:c2:ac:d0: d9:0d:0d:8b:e1:d4:2d:a3:48:26:59:05:69:0c:1b:15:50:de: 92:d8:8e:ac:54:0e:45:f6:c8:bd:7b:04:9c:07:65:8d:33:7d: 57:b0:e6:52:09:68:56:75:52:35:ee:ad:1e:04:53:cc:07:77: 4b:c5:dc:cc:0b:86:55:40:75:72:73:b3:ef:7a:66:16:72:e8: 47:7e:f4:db:7f:7d:94:76:71:40:fd:95:75:33:83:68:91:f3: 97:eb:0b:78:1a:35:e4:91:97:09:74:bf:55:57:28:f1:1b:bf: e9:ef:72:e2:43:92:0f:9d:fe:84:68:21:f5:7c:e6:1c:56:65: 91:56:f7:a3:dc:17:cc:aa:e4:6e:b9:70:04:27:c5:42:a5:7c: 05:5c:1d:1e:ee:b5:b5:d8:94:6f:1c:31:2d:88:85:9b:24:52: 33:8f:80:45:0c:e1:ab:6b:64:28:b7:0d:9b:24:f7:7d:1b:78: 90:1d:35:78:1f:5c:e7:1a:be:7f:d5:79:8e:d6:a6:f3:7a:b8: 62:d2:47:d9:90:74:98:06:82:bb:4a:8d:b4:30:b1:1e:fd:82: 16:9f:aa:82 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E5whStruOf6Aok3/ftvMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZjJjMmU3YmMxZGE1NGQ5MTljYTViNTk0MWQzNzg4OTJi MmNjYjIwHhcNMjYwMTAyMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTUyNDAyZGY4NDU3YmJhM2YwMTQwZTMxY2IzNzU4NWUxZTY3NmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFw9eBnPxW3seuDP8S9HWmvAYp4o A9TKPPYcbYQUMEK5x9IlNLSO31eRvRUJaL4MSOd4ZEkbYU3VjhL/Jh420NRCbx/4 NkXTiMAMPTQ7lw7YWUbyr0RXeAwssGZGuujzLW26d3VLkBPt8u6dFaU6MWryzWC6 ZkPC47aLb13eDqab2RnsUJla//I0I8KFgJho3ePoAdpUmbEyYw9DMUESkHrnH/8h yXXxyHJCVm0nR9t+k/gRjvqXATH3kz069ZVKWGFR04eLIAgwytdu8FcRgf0yaWFJ Cqsjgfi9LRa0Tm8OONP26pXkGmoa6n6S9PIliAyiYLa81fofX2tV62crGQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOVSQC34RXu6PwFA4xyzdYXh5nbIMB8GA1UdIwQY MBaAFCLywue8HaVNkZyltZQdN4iSssyyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXZMQzU3d2RwVTJSbktXMWxCMDNpSkt5ekxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi82MDI1MzAtNmQyMi00NmYxLThlMDUt MDJkZWY2ZTg0YzkxLzEvNVZKQUxmaEZlN29fQVVEakhMTjFoZUhtZHNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi82MDI1MzAtNmQyMi00NmYxLThlMDUtMDJkZWY2ZTg0Yzkx LzEvSXZMQzU3d2RwVTJSbktXMWxCMDNpSkt5ekxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbaYnMA0G CSqGSIb3DQEBCwUAA4IBAQAgfQdBejb6O2fy6GmuDUab92mvjhiIHYW7IYyYo1I4 G8jCrNDZDQ2L4dQto0gmWQVpDBsVUN6S2I6sVA5F9si9ewScB2WNM31XsOZSCWhW dVI17q0eBFPMB3dLxdzMC4ZVQHVyc7PvemYWcuhHfvTbf32UdnFA/ZV1M4NokfOX 6wt4GjXkkZcJdL9VVyjxG7/p73LiQ5IPnf6EaCH1fOYcVmWRVvej3BfMquRuuXAE J8VCpXwFXB0e7rW12JRvHDEtiIWbJFIzj4BFDOGra2Qotw2bJPd9G3iQHTV4H1zn Gr5/1XmO1qbzerhi0kfZkHSYBoK7So20MLEe/YIWn6qC -----END CERTIFICATE-----Generated at Sun Jan 25 17:42:32 2026 by rpki-client