This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b31392-2d1c-4934-a59e-ed433aac7828/1/PhyesmBVcW6OXHhhntDd26_eDJc.roa File: PhyesmBVcW6OXHhhntDd26_eDJc.roa (raw, json) Hash identifier: WqkBKUFXh2zVC16Y0B/vbmMcgw+hs4Rin4XGqRQlr64= Subject key identifier: 3E:1C:9E:B2:60:55:71:6E:8E:5C:78:61:9E:D0:DD:DB:AF:DE:0C:97 Certificate issuer: /CN=29390ec0adca5f0743d181145c7899f991fb65e0 Certificate serial: 019B7EA65CE4D41B896A42C18EE2773DBD42 Authority key identifier: 29:39:0E:C0:AD:CA:5F:07:43:D1:81:14:5C:78:99:F9:91:FB:65:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTkOwK3KXwdD0YEUXHiZ-ZH7ZeA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b31392-2d1c-4934-a59e-ed433aac7828/1/PhyesmBVcW6OXHhhntDd26_eDJc.roa Signing time: Fri 02 Jan 2026 12:19:50 +0000 ROA not before: Fri 02 Jan 2026 12:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213630 IP address blocks: 195.151.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b31392-2d1c-4934-a59e-ed433aac7828/1/KTkOwK3KXwdD0YEUXHiZ-ZH7ZeA.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/b31392-2d1c-4934-a59e-ed433aac7828/1/KTkOwK3KXwdD0YEUXHiZ-ZH7ZeA.mft rsync://rpki.ripe.net/repository/DEFAULT/KTkOwK3KXwdD0YEUXHiZ-ZH7ZeA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:5c:e4:d4:1b:89:6a:42:c1:8e:e2:77:3d:bd:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29390ec0adca5f0743d181145c7899f991fb65e0 Validity Not Before: Jan 2 12:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3e1c9eb26055716e8e5c78619ed0dddbafde0c97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fa:ad:aa:1e:dc:9c:a8:91:57:5e:6c:22:a1: fe:48:d9:b8:a0:c9:52:a6:1b:c4:be:d7:97:03:a9: ca:c4:ea:91:03:13:01:65:2c:6f:bf:5f:32:d5:cc: 82:42:6b:78:7a:f4:d9:a0:21:1b:ba:74:6f:30:e2: 13:74:a0:d9:ae:db:e2:a2:24:c0:e9:b6:c5:aa:3b: 3d:2a:24:6d:17:e8:1f:9e:eb:cb:d1:8e:ec:08:42: 52:22:97:d0:15:94:d2:bb:98:02:cb:71:d4:b4:bb: 12:d5:46:56:2b:63:b7:16:41:8e:0f:5b:db:4c:a6: 9c:dd:a0:33:72:4c:46:8e:dc:3b:65:0f:c7:34:c3: b1:de:69:a5:f9:cd:23:ee:7a:0c:b1:24:2a:4a:6b: da:23:84:d4:4e:03:e7:9a:88:b0:a1:7a:45:3e:1c: 34:38:22:2d:09:d9:76:9f:38:8a:2a:05:f3:8b:f1: 1b:5c:a7:59:45:a4:e6:e4:29:66:24:b4:10:41:0f: bb:30:ba:d7:a4:86:64:08:91:76:d2:b7:b7:7a:0d: 5c:12:48:13:6a:68:15:36:35:f9:c3:db:73:39:43: 67:61:40:a0:ad:5e:0b:99:31:46:14:6a:b7:ce:0d: b3:7c:f1:25:3d:9a:d6:48:cf:30:0d:a5:a1:55:e4: be:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1C:9E:B2:60:55:71:6E:8E:5C:78:61:9E:D0:DD:DB:AF:DE:0C:97 X509v3 Authority Key Identifier: keyid:29:39:0E:C0:AD:CA:5F:07:43:D1:81:14:5C:78:99:F9:91:FB:65:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTkOwK3KXwdD0YEUXHiZ-ZH7ZeA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b31392-2d1c-4934-a59e-ed433aac7828/1/PhyesmBVcW6OXHhhntDd26_eDJc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b31392-2d1c-4934-a59e-ed433aac7828/1/KTkOwK3KXwdD0YEUXHiZ-ZH7ZeA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.151.14.0/24 Signature Algorithm: sha256WithRSAEncryption 76:64:c8:6f:e0:8a:2f:94:8a:9c:4f:70:e4:21:06:6d:5d:25: 13:e1:00:b7:52:20:ad:0d:ed:07:e9:8d:55:bb:08:98:f0:18: 9b:3b:f7:8d:37:80:8c:4c:c9:47:cc:a7:63:7a:b0:6c:ed:19: 73:4f:26:73:64:8a:ed:74:34:23:95:2a:8c:19:c8:d2:a5:c9: a7:76:05:dd:4b:1a:cd:c4:5c:ea:a5:7d:ca:4c:3e:fb:7f:85: 3d:45:5f:7f:c0:58:7c:97:cf:66:5b:91:1c:7f:b5:80:60:17: 35:7b:0e:ee:0b:4f:9a:7e:8d:63:1a:63:c6:53:37:35:64:96: 34:f7:27:7d:5f:ff:50:5a:21:42:0e:e2:ab:f9:44:5c:cf:c5: 3e:ba:7c:f1:e2:8a:7c:50:4e:88:1e:45:e1:71:81:99:ff:93: c3:39:b5:74:9a:37:cc:2e:be:cb:8a:7f:a2:24:4b:1e:93:61: 23:75:85:25:b4:93:78:45:25:37:98:05:f7:46:31:ab:49:f4: 1d:2a:61:bb:4e:82:e6:6a:9d:be:8f:fb:16:b2:a8:76:c5:6e: 68:0d:1a:ba:28:7d:15:2f:49:05:3f:df:f4:de:2c:5e:9a:a4: a9:01:4f:cb:ac:be:86:d4:f8:39:32:95:91:f7:75:44:1d:7d: 98:ed:59:11 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+plzk1BuJakLBjuJ3Pb1CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MzkwZWMwYWRjYTVmMDc0M2QxODExNDVjNzg5OWY5OTFm YjY1ZTAwHhcNMjYwMTAyMTIxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZTFjOWViMjYwNTU3MTZlOGU1Yzc4NjE5ZWQwZGRkYmFmZGUwYzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/qtqh7cnKiRV15sIqH+SNm4oMlS phvEvteXA6nKxOqRAxMBZSxvv18y1cyCQmt4evTZoCEbunRvMOITdKDZrtvioiTA 6bbFqjs9KiRtF+gfnuvL0Y7sCEJSIpfQFZTSu5gCy3HUtLsS1UZWK2O3FkGOD1vb TKac3aAzckxGjtw7ZQ/HNMOx3mml+c0j7noMsSQqSmvaI4TUTgPnmoiwoXpFPhw0 OCItCdl2nziKKgXzi/EbXKdZRaTm5ClmJLQQQQ+7MLrXpIZkCJF20re3eg1cEkgT amgVNjX5w9tzOUNnYUCgrV4LmTFGFGq3zg2zfPElPZrWSM8wDaWhVeS+RwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD4cnrJgVXFujlx4YZ7Q3duv3gyXMB8GA1UdIwQY MBaAFCk5DsCtyl8HQ9GBFFx4mfmR+2XgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1RrT3dLM0tYd2REMFlFVVhIaVotWkg3WmVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9iMzEzOTItMmQxYy00OTM0LWE1OWUt ZWQ0MzNhYWM3ODI4LzEvUGh5ZXNtQlZjVzZPWEhoaG50RGQyNl9lREpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9iMzEzOTItMmQxYy00OTM0LWE1OWUtZWQ0MzNhYWM3ODI4 LzEvS1RrT3dLM0tYd2REMFlFVVhIaVotWkg3WmVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw5cOMA0G CSqGSIb3DQEBCwUAA4IBAQB2ZMhv4IovlIqcT3DkIQZtXSUT4QC3UiCtDe0H6Y1V uwiY8BibO/eNN4CMTMlHzKdjerBs7RlzTyZzZIrtdDQjlSqMGcjSpcmndgXdSxrN xFzqpX3KTD77f4U9RV9/wFh8l89mW5Ecf7WAYBc1ew7uC0+afo1jGmPGUzc1ZJY0 9yd9X/9QWiFCDuKr+URcz8U+unzx4op8UE6IHkXhcYGZ/5PDObV0mjfMLr7Lin+i JEsek2EjdYUltJN4RSU3mAX3RjGrSfQdKmG7ToLmap2+j/sWsqh2xW5oDRq6KH0V L0kFP9/03ixemqSpAU/LrL6G1Pg5MpWR93VEHX2Y7VkR -----END CERTIFICATE-----Generated at Mon Jan 26 06:32:28 2026 by rpki-client