This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/P5DeZi-NZPhI3zAbu6P2URQXDh0.roa File: P5DeZi-NZPhI3zAbu6P2URQXDh0.roa (raw, json) Hash identifier: 3xwHLPA2O8drb+zjl4yg8vS/CGvVdoGiWmy4gUvfoNs= Subject key identifier: 3F:90:DE:66:2F:8D:64:F8:48:DF:30:1B:BB:A3:F6:51:14:17:0E:1D Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Certificate serial: 019B76EB6388C38C324479D3EF0E303709C6 Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/P5DeZi-NZPhI3zAbu6P2URQXDh0.roa Signing time: Thu 01 Jan 2026 00:18:16 +0000 ROA not before: Thu 01 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200365 IP address blocks: 2a0b:6b86:a00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.mft rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:63:88:c3:8c:32:44:79:d3:ef:0e:30:37:09:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f90de662f8d64f848df301bbba3f65114170e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:34:6e:b0:5b:01:27:6b:2a:87:d9:fe:f9:78: 47:ab:54:87:36:75:89:4e:c3:48:d5:e9:27:95:bd: 28:34:02:08:6d:e3:5d:38:91:71:d2:97:24:ed:01: d4:f2:7b:55:d4:df:01:b9:c1:f2:6a:7b:b6:2d:7c: 38:d0:af:eb:ff:1d:7a:75:1b:26:4e:85:bb:d2:2c: c3:4f:d0:48:9c:2b:3e:71:5b:b1:5a:d8:a3:7d:2a: 78:32:31:3b:1e:e0:48:09:cd:3f:b0:47:54:83:14: 8f:9a:52:d7:09:55:12:19:63:96:f4:b2:1f:04:9b: 47:67:24:03:de:1c:19:65:c2:f7:b8:7e:2e:af:90: 82:12:a1:7b:7d:c9:f6:b3:e5:c4:94:e1:06:00:12: de:74:ec:45:dc:94:bb:bd:b2:c0:c0:07:f8:da:38: 6f:bf:b0:a8:88:29:fc:05:a3:d3:12:6a:e9:39:60: b2:b4:dd:22:ec:e5:92:35:1e:ab:1b:9f:05:b0:6c: 5d:b0:e4:0e:53:4b:8e:f5:6f:88:7c:a4:3b:ce:d4: d1:00:ac:18:80:b1:c3:8d:d3:c4:16:16:11:d2:25: 05:5d:c0:7e:9f:0b:c9:0e:9a:28:81:40:95:52:a5: 1f:79:99:02:5f:5d:90:b7:3a:ec:21:1b:5a:b9:21: 86:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:90:DE:66:2F:8D:64:F8:48:DF:30:1B:BB:A3:F6:51:14:17:0E:1D X509v3 Authority Key Identifier: keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/P5DeZi-NZPhI3zAbu6P2URQXDh0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:6b86:a00::/40 Signature Algorithm: sha256WithRSAEncryption c5:05:fc:43:8b:56:1d:69:83:53:f2:d6:df:08:3e:07:0b:a9: 05:8f:57:6f:38:cd:e4:77:c3:37:c2:7f:59:3a:35:ed:b9:0b: 88:c7:78:4c:60:d0:fb:ab:d9:ff:b5:93:52:8f:b5:91:1d:c6: 72:e2:89:0e:33:1a:a6:e8:12:0b:f8:a3:9c:ee:22:77:e7:a4: e9:77:f2:32:dc:f9:33:d8:fd:6b:ba:4f:8e:cc:32:88:c3:46: ad:9a:dd:8c:ac:80:f5:9d:b3:ba:0c:2e:c3:b4:33:09:d8:6f: 02:ab:f3:46:2a:a9:c1:df:3a:d3:14:d0:4d:2c:e5:bd:88:8d: de:47:49:88:09:b6:2b:71:88:ed:ac:7c:6c:e0:98:6c:17:c9: b6:50:b3:35:12:bf:b2:12:32:55:2d:49:73:2a:a2:e0:62:06: c0:3a:68:20:66:d7:7b:ee:96:47:a8:bb:76:7e:a5:59:21:a4: be:d7:fa:4a:89:46:28:54:3d:f9:16:e6:5e:1c:31:fb:2e:72: a2:6b:c2:33:b0:65:ce:16:d9:b2:d4:24:c5:ff:a4:0d:ba:30: 49:14:12:0f:f2:91:86:75:e0:c9:6f:c8:2b:9b:58:bd:02:2b: 76:5c:ce:53:33:e9:40:a1:7f:6f:22:83:1e:e3:fd:b0:d2:0d: dc:6a:73:f9 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt262OIw4wyRHnT7w4wNwnGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNWJjOWJiNTQ3ZTI3Nzg4ZDIyMWJjOGJiZDVmYjAyZTAy NDQ4MGYwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjkwZGU2NjJmOGQ2NGY4NDhkZjMwMWJiYmEzZjY1MTE0MTcwZTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDRusFsBJ2sqh9n++XhHq1SHNnWJ TsNI1eknlb0oNAIIbeNdOJFx0pck7QHU8ntV1N8BucHyanu2LXw40K/r/x16dRsm ToW70izDT9BInCs+cVuxWtijfSp4MjE7HuBICc0/sEdUgxSPmlLXCVUSGWOW9LIf BJtHZyQD3hwZZcL3uH4ur5CCEqF7fcn2s+XElOEGABLedOxF3JS7vbLAwAf42jhv v7CoiCn8BaPTEmrpOWCytN0i7OWSNR6rG58FsGxdsOQOU0uO9W+IfKQ7ztTRAKwY gLHDjdPEFhYR0iUFXcB+nwvJDpoogUCVUqUfeZkCX12QtzrsIRtauSGGwQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFD+Q3mYvjWT4SN8wG7uj9lEUFw4dMB8GA1UdIwQY MBaAFINbybtUfid4jSIbyLvV+wLgJEgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEt YjM2YTI0ZDM5NDI3LzEvUDVEZVppLU5aUGhJM3pBYnU2UDJVUlFYRGgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEtYjM2YTI0ZDM5NDI3 LzEvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgtrhgow DQYJKoZIhvcNAQELBQADggEBAMUF/EOLVh1pg1Py1t8IPgcLqQWPV284zeR3wzfC f1k6Ne25C4jHeExg0Pur2f+1k1KPtZEdxnLiiQ4zGqboEgv4o5zuInfnpOl38jLc +TPY/Wu6T47MMojDRq2a3YysgPWds7oMLsO0MwnYbwKr80YqqcHfOtMU0E0s5b2I jd5HSYgJtitxiO2sfGzgmGwXybZQszUSv7ISMlUtSXMqouBiBsA6aCBm13vulkeo u3Z+pVkhpL7X+kqJRihUPfkW5l4cMfsucqJrwjOwZc4W2bLUJMX/pA26MEkUEg/y kYZ14MlvyCubWL0CK3ZczlMz6UChf28igx7j/bDSDdxqc/k= -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:42 2026 by rpki-client