This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/cOVZU_NSIF-VG6jwXbfn7L7WD0U.roa File: cOVZU_NSIF-VG6jwXbfn7L7WD0U.roa (raw, json) Hash identifier: gZ0Lh2Ki9788/aWzuU48H8Dq9ry+IjYT8J9pfgrHjCI= Subject key identifier: 70:E5:59:53:F3:52:20:5F:95:1B:A8:F0:5D:B7:E7:EC:BE:D6:0F:45 Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e Certificate serial: 019B7A5B842DE5DD123E6BA38884989D9F5A Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/cOVZU_NSIF-VG6jwXbfn7L7WD0U.roa Signing time: Thu 01 Jan 2026 16:19:36 +0000 ROA not before: Thu 01 Jan 2026 16:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200252 IP address blocks: 5.160.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.mft rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:84:2d:e5:dd:12:3e:6b:a3:88:84:98:9d:9f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e Validity Not Before: Jan 1 16:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=70e55953f352205f951ba8f05db7e7ecbed60f45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:22:e3:cf:4b:75:2f:b4:a5:35:2e:59:f3: e6:50:62:5d:2a:4c:93:31:d4:d2:34:bd:73:6d:5f: 6d:bb:85:95:fb:06:a5:d9:82:2f:a2:d3:9b:85:67: 14:a1:24:7f:52:81:63:7b:08:c2:0d:68:4f:9e:0a: a6:e7:2c:5c:b9:1d:8b:31:b9:b6:6c:e2:4b:6e:ce: e7:94:ec:20:03:1d:a2:a4:23:c7:93:69:54:4a:d4: d9:f0:11:a9:f6:dd:bb:b5:a5:3a:d1:5d:94:7a:3d: aa:ef:e5:8b:df:ed:65:e4:c0:9a:34:64:4b:a4:12: a2:31:71:e3:04:be:a2:4d:2f:7b:b0:42:2c:7d:c9: 67:58:b5:f1:42:41:c1:96:5d:1e:6a:a1:f4:69:92: fd:23:03:73:17:dd:6c:36:75:35:54:57:56:50:86: 59:3b:7f:5a:4d:47:81:8a:96:16:7c:03:4b:4c:21: 3a:2a:c4:95:b5:30:43:f2:4b:b9:dc:7e:aa:71:32: ad:e0:bc:0e:0f:95:74:39:e6:5f:aa:ca:c5:7f:94: 59:c3:ea:2e:6f:29:1d:40:1a:41:07:c6:f2:15:ac: 5e:c1:57:f0:17:b5:51:2a:7c:4d:f2:21:e9:9f:01: e3:e0:46:3b:f0:56:b6:78:e9:9b:d3:cb:61:17:0f: be:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E5:59:53:F3:52:20:5F:95:1B:A8:F0:5D:B7:E7:EC:BE:D6:0F:45 X509v3 Authority Key Identifier: keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/cOVZU_NSIF-VG6jwXbfn7L7WD0U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.160.117.0/24 Signature Algorithm: sha256WithRSAEncryption 80:dd:89:a8:02:b2:87:b8:54:d0:c1:71:fb:4f:b0:4e:72:2c: 84:f2:a2:15:e1:6b:7c:06:45:b0:4a:22:21:72:50:fe:3b:f4: cd:ea:92:77:7e:5c:55:42:f5:e7:2c:e0:7f:c8:18:52:27:61: 3c:49:2b:8c:d6:05:9c:5b:25:67:a7:76:c0:9c:79:7b:fc:97: 4c:54:13:b6:fd:54:23:bb:1f:94:d7:8c:44:7c:1c:ff:21:96: e4:f5:6e:e0:ea:85:bc:68:c3:6e:40:bf:c0:25:4b:c4:b7:5a: 1d:fe:4a:3c:df:0e:0f:d1:be:b9:61:21:0d:af:a2:b5:50:21: ba:43:76:e1:fc:30:68:31:c4:17:7c:74:67:80:4c:1b:89:cf: e0:8b:44:25:65:6b:58:64:2f:86:46:d8:ef:7e:1d:51:53:04: ec:1c:29:9b:be:d1:1d:c9:14:ee:d9:c7:c9:85:50:df:8c:bd: 94:c7:78:a8:98:69:4b:32:24:1e:79:45:7c:b2:8f:fd:a1:fe: c6:7a:35:8c:4f:7a:7b:24:f6:df:6d:37:70:0a:d0:9e:70:ba: 91:b8:2f:9e:4e:a0:c4:9b:d5:7f:6d:13:a0:f6:a0:0b:89:75: 3d:38:78:2d:08:d8:26:a5:e4:0c:d7:18:69:f9:ff:0c:c7:80: d7:75:1d:51 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W4Qt5d0SPmujiISYnZ9aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMzczNTcxYzkwMjQ5YmYyYWE5NDhlNzhiZWQxM2UwODUy OGI4N2UwHhcNMjYwMTAxMTYxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MGU1NTk1M2YzNTIyMDVmOTUxYmE4ZjA1ZGI3ZTdlY2JlZDYwZjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8ci489LdS+0pTUuWfPmUGJdKkyT MdTSNL1zbV9tu4WV+wal2YIvotObhWcUoSR/UoFjewjCDWhPngqm5yxcuR2LMbm2 bOJLbs7nlOwgAx2ipCPHk2lUStTZ8BGp9t27taU60V2Uej2q7+WL3+1l5MCaNGRL pBKiMXHjBL6iTS97sEIsfclnWLXxQkHBll0eaqH0aZL9IwNzF91sNnU1VFdWUIZZ O39aTUeBipYWfANLTCE6KsSVtTBD8ku53H6qcTKt4LwOD5V0OeZfqsrFf5RZw+ou bykdQBpBB8byFaxewVfwF7VRKnxN8iHpnwHj4EY78Fa2eOmb08thFw++YwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHDlWVPzUiBflRuo8F235+y+1g9FMB8GA1UdIwQY MBaAFCI3NXHJAkm/KqlI54vtE+CFKLh+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEt YjQ1NDBjNzRjOTRiLzEvY09WWlVfTlNJRi1WRzZqd1hiZm43TDdXRDBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEtYjQ1NDBjNzRjOTRi LzEvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABaB1MA0G CSqGSIb3DQEBCwUAA4IBAQCA3YmoArKHuFTQwXH7T7BOciyE8qIV4Wt8BkWwSiIh clD+O/TN6pJ3flxVQvXnLOB/yBhSJ2E8SSuM1gWcWyVnp3bAnHl7/JdMVBO2/VQj ux+U14xEfBz/IZbk9W7g6oW8aMNuQL/AJUvEt1od/ko83w4P0b65YSENr6K1UCG6 Q3bh/DBoMcQXfHRngEwbic/gi0QlZWtYZC+GRtjvfh1RUwTsHCmbvtEdyRTu2cfJ hVDfjL2Ux3iomGlLMiQeeUV8so/9of7GejWMT3p7JPbfbTdwCtCecLqRuC+eTqDE m9V/bROg9qALiXU9OHgtCNgmpeQM1xhp+f8Mx4DXdR1R -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:46 2026 by rpki-client