This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/is0QjH9ofNQ3wM-JwbNhBRrAaFM.roa File: is0QjH9ofNQ3wM-JwbNhBRrAaFM.roa (raw, json) Hash identifier: 9iP3EMND8SDJUE7gJsVW26TMFKWa33cfsL1lxGR0fno= Subject key identifier: 8A:CD:10:8C:7F:68:7C:D4:37:C0:CF:89:C1:B3:61:05:1A:C0:68:53 Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e Certificate serial: 019B7A5B796FEE38EE82B9415629DAEAD363 Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/is0QjH9ofNQ3wM-JwbNhBRrAaFM.roa Signing time: Thu 01 Jan 2026 16:19:33 +0000 ROA not before: Thu 01 Jan 2026 16:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50855 IP address blocks: 5.160.154.0/24 maxlen: 24 5.160.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.mft rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:79:6f:ee:38:ee:82:b9:41:56:29:da:ea:d3:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e Validity Not Before: Jan 1 16:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8acd108c7f687cd437c0cf89c1b361051ac06853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:47:4a:bc:f8:1c:d6:f1:1f:24:fc:ad:a1:56: 5c:d9:1d:78:45:38:72:40:ce:89:52:b0:5a:2f:16: 9c:65:de:7e:d4:64:8c:09:45:92:cb:0d:54:e7:af: d4:22:92:63:6f:13:72:3d:61:32:87:67:fd:36:77: 32:68:ce:cb:75:26:8d:c8:4e:03:41:64:f2:5f:83: 53:ba:8a:d7:0a:b9:97:e5:b9:b8:00:db:ca:11:a8: 1f:2c:2d:bf:26:0c:82:3a:16:76:0b:26:12:42:5e: 73:37:cd:eb:0d:3a:52:8f:b6:06:31:5c:88:fc:dd: 31:20:bb:ff:e1:2d:04:b2:b6:30:ab:3c:5b:26:a3: 21:f7:87:67:eb:20:22:0d:d0:ee:77:ef:54:e6:9d: ff:66:1d:7b:c7:73:57:01:64:a0:95:b4:f2:a7:13: 8f:7e:71:2c:65:fd:dc:d8:d5:5e:b3:e6:21:19:68: 47:45:4b:54:9d:87:f9:ce:5a:9c:c4:bf:01:c7:b4: c7:ef:33:28:75:b1:27:3a:d5:63:59:59:4e:f0:94: 5d:97:40:40:81:7f:13:ee:da:fe:bf:c7:64:88:d8: 00:39:6b:54:42:41:de:8f:79:c9:42:63:f2:7b:9d: 39:ef:6b:2e:05:d5:d8:b7:18:62:36:79:a9:93:4b: 7c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CD:10:8C:7F:68:7C:D4:37:C0:CF:89:C1:B3:61:05:1A:C0:68:53 X509v3 Authority Key Identifier: keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/is0QjH9ofNQ3wM-JwbNhBRrAaFM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.160.154.0/23 Signature Algorithm: sha256WithRSAEncryption 06:ca:33:db:c1:82:ba:45:ae:8f:49:8c:80:40:e6:f3:3e:17: 7b:c4:2d:e4:f3:23:14:70:1b:ad:52:03:1c:3f:b9:a6:5d:0b: 59:99:7f:7e:69:28:f6:5c:a5:ef:22:b2:59:2b:c5:3a:d9:e7: 69:95:86:15:96:5c:09:12:cd:37:77:46:7e:42:55:fd:14:b0: eb:fe:2d:78:92:9f:99:fb:4b:f1:e8:31:60:cf:2d:53:d8:03: 0c:b7:1c:da:04:b3:a4:b8:89:88:72:40:03:75:4b:50:ff:f1: 8a:dd:6f:67:78:18:19:07:71:0f:e9:0d:c1:d2:39:38:c2:87: 23:49:fc:ca:19:b5:36:e7:55:bc:d9:d2:99:be:26:94:8b:05: 53:55:ce:79:17:a6:15:5f:8b:79:3d:ef:b4:2c:b7:4c:f8:a5: e3:d3:7c:65:83:ee:d6:84:8b:da:d0:9e:8c:09:ac:69:4f:61: 66:95:8c:73:d9:87:22:79:6e:77:fd:0f:7a:4c:98:9a:f7:12: 4d:36:47:1e:3e:8d:35:e4:f8:d8:1a:ee:64:13:d8:90:c4:11: ec:8f:08:c7:87:18:3d:b8:46:49:2d:fb:31:97:db:87:d1:5f: 12:e3:1e:06:ec:00:a5:f0:b4:07:71:6c:7b:b4:0a:ec:b1:54: 60:e6:88:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W3lv7jjugrlBVina6tNjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMzczNTcxYzkwMjQ5YmYyYWE5NDhlNzhiZWQxM2UwODUy OGI4N2UwHhcNMjYwMTAxMTYxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWNkMTA4YzdmNjg3Y2Q0MzdjMGNmODljMWIzNjEwNTFhYzA2ODUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEdKvPgc1vEfJPytoVZc2R14RThy QM6JUrBaLxacZd5+1GSMCUWSyw1U56/UIpJjbxNyPWEyh2f9NncyaM7LdSaNyE4D QWTyX4NTuorXCrmX5bm4ANvKEagfLC2/JgyCOhZ2CyYSQl5zN83rDTpSj7YGMVyI /N0xILv/4S0EsrYwqzxbJqMh94dn6yAiDdDud+9U5p3/Zh17x3NXAWSglbTypxOP fnEsZf3c2NVes+YhGWhHRUtUnYf5zlqcxL8Bx7TH7zModbEnOtVjWVlO8JRdl0BA gX8T7tr+v8dkiNgAOWtUQkHej3nJQmPye50572suBdXYtxhiNnmpk0t8YQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIrNEIx/aHzUN8DPicGzYQUawGhTMB8GA1UdIwQY MBaAFCI3NXHJAkm/KqlI54vtE+CFKLh+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEt YjQ1NDBjNzRjOTRiLzEvaXMwUWpIOW9mTlEzd00tSndiTmhCUnJBYUZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEtYjQ1NDBjNzRjOTRi LzEvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBaCaMA0G CSqGSIb3DQEBCwUAA4IBAQAGyjPbwYK6Ra6PSYyAQObzPhd7xC3k8yMUcButUgMc P7mmXQtZmX9+aSj2XKXvIrJZK8U62edplYYVllwJEs03d0Z+QlX9FLDr/i14kp+Z +0vx6DFgzy1T2AMMtxzaBLOkuImIckADdUtQ//GK3W9neBgZB3EP6Q3B0jk4wocj SfzKGbU251W82dKZviaUiwVTVc55F6YVX4t5Pe+0LLdM+KXj03xlg+7WhIva0J6M CaxpT2FmlYxz2YcieW53/Q96TJia9xJNNkcePo015PjYGu5kE9iQxBHsjwjHhxg9 uEZJLfsxl9uH0V8S4x4G7ACl8LQHcWx7tArssVRg5ojh -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:44 2026 by rpki-client