This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/5MHTLD_xn5rxwuHbtxThUKNrwes.roa File: 5MHTLD_xn5rxwuHbtxThUKNrwes.roa (raw, json) Hash identifier: Q7Ybb5ODGpG1VnNbfu2zHj1zMlcydwpS0h2UFnjZ+QY= Subject key identifier: E4:C1:D3:2C:3F:F1:9F:9A:F1:C2:E1:DB:B7:14:E1:50:A3:6B:C1:EB Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C72C70E8576BEACC67381E6A6B1FF8 Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/5MHTLD_xn5rxwuHbtxThUKNrwes.roa Signing time: Thu 01 Jan 2026 04:18:20 +0000 ROA not before: Thu 01 Jan 2026 04:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13075 IP address blocks: 195.208.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:2c:70:e8:57:6b:ea:cc:67:38:1e:6a:6b:1f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4c1d32c3ff19f9af1c2e1dbb714e150a36bc1eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ce:8f:fc:01:9a:92:4b:d3:03:9d:83:9a:fa: b9:21:94:5b:35:65:09:05:fc:c3:8a:e1:c5:0c:14: c5:9a:cb:37:bc:79:6f:71:45:03:e1:f2:54:47:29: 38:22:9f:72:d4:bf:40:a7:89:4e:38:d8:00:f6:93: 60:e7:fc:f5:d7:92:d6:af:1e:68:ca:cc:51:1e:28: 93:a0:7d:cd:b2:0b:ba:86:c9:54:ce:42:87:8c:7c: 31:38:72:46:b3:5b:9a:d4:92:ee:1d:1d:26:41:02: 0f:c2:aa:43:16:e0:d3:bf:b8:fd:85:e4:ce:67:19: ca:15:13:eb:cb:80:5e:b9:4f:4d:c7:e0:74:bd:71: be:06:77:e9:71:6f:fc:42:99:e1:b7:6d:1e:c2:02: a6:f8:ae:f3:8c:52:4e:27:99:8f:b4:08:ef:95:59: b8:a5:f4:32:af:29:ab:e0:f0:94:6c:13:37:d5:88: c4:75:79:ce:a2:7d:dc:84:c1:ae:0c:12:73:f8:c3: e2:ec:83:32:a4:10:4a:57:b8:57:82:68:c6:9f:a6: 42:d6:14:35:49:a4:64:1a:16:73:4a:1c:14:aa:a1: 0a:40:33:a0:26:d6:4a:76:e1:81:34:b7:da:90:eb: 37:19:ae:76:7f:9a:61:c5:92:10:c9:ad:26:c7:84: 94:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C1:D3:2C:3F:F1:9F:9A:F1:C2:E1:DB:B7:14:E1:50:A3:6B:C1:EB X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/5MHTLD_xn5rxwuHbtxThUKNrwes.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.208.38.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:9a:4a:cc:95:49:c2:ab:60:4a:bf:06:b6:5c:2f:7c:60:55: 2c:84:55:a7:5f:6e:83:e2:2a:de:ac:71:05:bd:3a:29:29:e6: 94:49:6e:6c:7f:4f:a8:4d:93:f7:54:60:2c:d3:d2:44:37:e9: fb:2d:16:e6:6e:47:c9:c9:0c:58:7b:03:96:7a:63:30:e6:d5: 22:6f:af:d7:20:e0:ba:a2:b8:2e:ab:d1:04:e6:39:a4:d6:bb: 53:77:f2:21:0e:b8:99:a9:ca:7a:c6:16:74:aa:76:ca:ad:f2: e2:a7:55:42:b5:7a:1c:77:6b:34:89:c8:0a:ff:6d:e6:c7:db: 5a:bb:f1:74:f7:c6:e6:09:7b:dc:d9:c0:6d:38:1c:be:b7:e1: c8:c3:0e:1f:99:cf:7c:f4:bf:33:8f:18:83:c8:c1:f8:35:76: 62:10:be:4e:b3:1b:bc:0e:f3:25:e6:f5:9a:66:82:7a:67:f6: f9:f7:7d:ec:c8:58:ce:da:52:9b:7e:fe:76:ef:ab:bf:1b:33: 77:aa:28:57:bf:c6:36:05:db:d4:ba:c3:13:9e:1a:2c:3e:89: 8d:d6:d7:56:26:19:0e:a8:8b:7c:cc:e6:4a:86:c9:f7:96:0d: 87:ff:67:ee:ce:96:1a:a4:59:06:03:88:0f:d7:3e:a5:03:92: e7:3c:45:82 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xyxw6Fdr6sxnOB5qax/4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNGMxZDMyYzNmZjE5ZjlhZjFjMmUxZGJiNzE0ZTE1MGEzNmJjMWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1c6P/AGakkvTA52Dmvq5IZRbNWUJ BfzDiuHFDBTFmss3vHlvcUUD4fJURyk4Ip9y1L9Ap4lOONgA9pNg5/z115LWrx5o ysxRHiiToH3Nsgu6hslUzkKHjHwxOHJGs1ua1JLuHR0mQQIPwqpDFuDTv7j9heTO ZxnKFRPry4BeuU9Nx+B0vXG+BnfpcW/8Qpnht20ewgKm+K7zjFJOJ5mPtAjvlVm4 pfQyrymr4PCUbBM31YjEdXnOon3chMGuDBJz+MPi7IMypBBKV7hXgmjGn6ZC1hQ1 SaRkGhZzShwUqqEKQDOgJtZKduGBNLfakOs3Ga52f5phxZIQya0mx4SULwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOTB0yw/8Z+a8cLh27cU4VCja8HrMB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEvNU1IVExEX3huNXJ4d3VIYnR4VGhVS05yd2VzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9AmMA0G CSqGSIb3DQEBCwUAA4IBAQBKmkrMlUnCq2BKvwa2XC98YFUshFWnX26D4irerHEF vTopKeaUSW5sf0+oTZP3VGAs09JEN+n7LRbmbkfJyQxYewOWemMw5tUib6/XIOC6 orguq9EE5jmk1rtTd/IhDriZqcp6xhZ0qnbKrfLip1VCtXocd2s0icgK/23mx9ta u/F098bmCXvc2cBtOBy+t+HIww4fmc989L8zjxiDyMH4NXZiEL5Osxu8DvMl5vWa ZoJ6Z/b5933syFjO2lKbfv5276u/GzN3qihXv8Y2BdvUusMTnhosPomN1tdWJhkO qIt8zOZKhsn3lg2H/2fuzpYapFkGA4gP1z6lA5LnPEWC -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:29 2026 by rpki-client