This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/XB9k7NwS81QEdrBbO3ZLQE8TefA.roa File: XB9k7NwS81QEdrBbO3ZLQE8TefA.roa (raw, json) Hash identifier: d00LKOSDlwY9rBWTu2qCBuvNFcOqXisToigqhRgSmx8= Subject key identifier: 5C:1F:64:EC:DC:12:F3:54:04:76:B0:5B:3B:76:4B:40:4F:13:79:F0 Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e Certificate serial: 019B7A5B7FA6B65200A22D8B07EFA214049B Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/XB9k7NwS81QEdrBbO3ZLQE8TefA.roa Signing time: Thu 01 Jan 2026 16:19:35 +0000 ROA not before: Thu 01 Jan 2026 16:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62048 IP address blocks: 5.160.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.mft rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:7f:a6:b6:52:00:a2:2d:8b:07:ef:a2:14:04:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e Validity Not Before: Jan 1 16:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c1f64ecdc12f3540476b05b3b764b404f1379f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:99:4c:65:33:1c:c4:03:4b:48:21:30:89:1e: 1f:38:08:70:45:9c:81:ee:91:28:65:0c:6f:82:7b: 4a:4b:e7:e3:8b:9d:c8:4e:1a:6f:77:40:5a:c5:78: 7d:82:2c:24:c5:23:ca:8e:c0:0b:01:ec:5a:0b:d8: cb:f5:e0:e0:05:f4:6a:56:b6:98:45:5e:d8:ad:a4: 1e:55:86:d8:66:2f:da:f8:32:ac:93:8d:41:a7:85: b4:d4:29:65:c7:dc:03:11:63:7b:43:81:d2:8a:67: f9:c8:43:24:1b:da:7b:e9:c2:f6:5d:30:dd:d8:94: 54:26:f0:5b:b6:c5:17:3c:cf:6c:14:cc:22:e9:5d: 73:69:39:3c:d7:c9:9f:9e:ce:af:b3:28:76:19:3d: a0:1a:c2:ac:79:d4:c5:ca:ce:4b:4f:22:7c:0e:7e: ee:d3:ab:94:73:17:30:e0:98:46:05:d0:bb:1f:92: 4d:c6:e7:bb:ba:a6:8a:ea:d1:64:5b:77:05:c2:3b: ea:34:f6:f0:29:7a:d4:ca:a3:c7:3d:2c:db:ae:18: e1:94:5c:0f:1d:38:a6:5f:84:7d:e8:9a:83:01:1d: c8:34:ab:85:94:2e:9f:b7:bb:28:a7:2b:27:a8:fc: c6:4f:8a:b3:85:13:f4:8c:6c:ba:f5:c4:bf:42:42: 4d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:1F:64:EC:DC:12:F3:54:04:76:B0:5B:3B:76:4B:40:4F:13:79:F0 X509v3 Authority Key Identifier: keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/XB9k7NwS81QEdrBbO3ZLQE8TefA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.160.146.0/24 Signature Algorithm: sha256WithRSAEncryption 59:d6:d7:80:a6:4b:5b:0d:8d:62:8b:e4:23:a8:32:56:fe:e0: a7:f2:db:1b:b2:e8:37:a3:8c:4b:9b:32:2e:d1:cd:75:b1:17: a5:68:fb:c0:81:68:7b:a5:55:82:2c:dd:97:88:e0:17:fa:e1: ec:9c:82:c1:7e:ff:e6:a8:c7:cd:3a:e1:50:9f:69:71:30:8f: ed:9b:dc:7e:77:67:eb:be:a5:b7:d0:e1:b0:9c:93:a4:c5:0d: 0a:7b:75:9b:88:41:44:4e:98:5e:0c:51:71:54:f9:85:de:ce: aa:12:05:cf:9e:cf:d4:c0:0d:b7:96:d8:32:26:2e:c9:84:4c: 9c:bd:6e:3a:ae:d0:35:72:b0:60:70:8c:36:d3:4a:8e:06:0d: 12:ea:80:cb:b1:8c:eb:6c:17:85:8f:c6:77:bd:29:ed:43:1f: ff:7c:ed:79:c8:8b:be:b5:5c:be:7c:34:22:9f:2b:d4:62:c8: 20:e3:01:69:b4:ba:c5:c5:37:99:d3:f6:cb:69:b8:86:d0:35: 2f:2d:37:47:d9:f4:54:0d:15:9e:4c:cb:f6:00:79:a2:57:4a: e2:5f:57:11:67:e3:7a:b8:95:a4:1a:c1:c7:02:21:a5:04:8b: 23:8f:62:ae:3e:c0:ef:82:7e:67:13:b5:c0:8c:16:47:07:3e: 3f:40:af:03 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W3+mtlIAoi2LB++iFASbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMzczNTcxYzkwMjQ5YmYyYWE5NDhlNzhiZWQxM2UwODUy OGI4N2UwHhcNMjYwMTAxMTYxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzFmNjRlY2RjMTJmMzU0MDQ3NmIwNWIzYjc2NGI0MDRmMTM3OWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5lMZTMcxANLSCEwiR4fOAhwRZyB 7pEoZQxvgntKS+fji53IThpvd0BaxXh9giwkxSPKjsALAexaC9jL9eDgBfRqVraY RV7YraQeVYbYZi/a+DKsk41Bp4W01Cllx9wDEWN7Q4HSimf5yEMkG9p76cL2XTDd 2JRUJvBbtsUXPM9sFMwi6V1zaTk818mfns6vsyh2GT2gGsKsedTFys5LTyJ8Dn7u 06uUcxcw4JhGBdC7H5JNxue7uqaK6tFkW3cFwjvqNPbwKXrUyqPHPSzbrhjhlFwP HTimX4R96JqDAR3INKuFlC6ft7sopysnqPzGT4qzhRP0jGy69cS/QkJNzwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFwfZOzcEvNUBHawWzt2S0BPE3nwMB8GA1UdIwQY MBaAFCI3NXHJAkm/KqlI54vtE+CFKLh+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEt YjQ1NDBjNzRjOTRiLzEvWEI5azdOd1M4MVFFZHJCYk8zWkxRRThUZWZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEtYjQ1NDBjNzRjOTRi LzEvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABaCSMA0G CSqGSIb3DQEBCwUAA4IBAQBZ1teApktbDY1ii+QjqDJW/uCn8tsbsug3o4xLmzIu 0c11sRelaPvAgWh7pVWCLN2XiOAX+uHsnILBfv/mqMfNOuFQn2lxMI/tm9x+d2fr vqW30OGwnJOkxQ0Ke3WbiEFETpheDFFxVPmF3s6qEgXPns/UwA23ltgyJi7JhEyc vW46rtA1crBgcIw200qOBg0S6oDLsYzrbBeFj8Z3vSntQx//fO15yIu+tVy+fDQi nyvUYsgg4wFptLrFxTeZ0/bLabiG0DUvLTdH2fRUDRWeTMv2AHmiV0riX1cRZ+N6 uJWkGsHHAiGlBIsjj2KuPsDvgn5nE7XAjBZHBz4/QK8D -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:29 2026 by rpki-client