This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/jPU42eSfoA2tlNgN2hIojOiHe30.roa File: jPU42eSfoA2tlNgN2hIojOiHe30.roa (raw, json) Hash identifier: /L4zqco4TkMw5ksHGNn7iEBvLxKh4kpSoFBetJiOpEM= Subject key identifier: 8C:F5:38:D9:E4:9F:A0:0D:AD:94:D8:0D:DA:12:28:8C:E8:87:7B:7D Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e Certificate serial: 019B7A5B863240FD39421DCED71EF4A120CF Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/jPU42eSfoA2tlNgN2hIojOiHe30.roa Signing time: Thu 01 Jan 2026 16:19:37 +0000 ROA not before: Thu 01 Jan 2026 16:19:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209836 IP address blocks: 5.160.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.mft rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:86:32:40:fd:39:42:1d:ce:d7:1e:f4:a1:20:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e Validity Not Before: Jan 1 16:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8cf538d9e49fa00dad94d80dda12288ce8877b7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e7:cb:1e:04:56:ac:eb:4f:1b:07:42:46:fc: a1:cd:cf:48:5c:2d:2b:01:21:82:a0:70:79:75:30: 89:e8:57:d3:a1:ba:cf:eb:40:7d:0e:7f:6a:52:af: 3d:4b:c0:77:ec:c8:4b:87:8a:00:48:44:5b:b0:01: e5:28:96:f1:e0:4e:12:0e:a2:36:f0:f0:8a:9e:2b: 2e:01:8a:10:4a:af:7a:64:1d:12:70:f0:cb:80:e6: 39:cb:6f:ec:e9:4c:d3:e9:4a:8e:03:4b:a8:ea:4d: 0b:e0:5a:c0:d4:1b:f9:9a:d2:b0:b0:ff:c5:03:74: 67:cb:82:95:0f:b1:16:eb:7e:50:89:c4:ae:9d:f4: a0:f3:2b:d8:ff:d3:79:05:6b:9e:bc:2a:35:ba:74: d7:69:32:0f:23:4d:40:92:71:04:c7:44:6d:0d:32: 1d:66:39:05:c2:95:45:d8:f6:6f:1a:73:02:03:dd: 46:80:8d:b0:a1:a4:5b:7d:28:9c:8c:a7:7c:20:27: b5:4e:25:b3:14:ac:a5:ff:11:3a:bf:5a:90:50:43: 5e:9f:a8:69:e3:19:3d:98:a9:e6:a6:18:51:c5:b9: df:af:6a:2c:c8:85:af:d3:be:55:26:c6:2c:c0:81: ae:74:3b:01:0f:c5:21:fd:42:6f:0e:e1:13:11:72: 77:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F5:38:D9:E4:9F:A0:0D:AD:94:D8:0D:DA:12:28:8C:E8:87:7B:7D X509v3 Authority Key Identifier: keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/jPU42eSfoA2tlNgN2hIojOiHe30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.160.46.0/24 Signature Algorithm: sha256WithRSAEncryption 26:2e:1d:c7:a5:24:ef:43:2a:3f:14:5b:51:34:37:0c:38:d3: 3e:31:4c:b6:ad:3e:06:83:b2:e6:11:fe:bd:ad:3f:b1:8e:2a: d0:96:02:83:fa:16:7c:ca:f9:3a:32:87:a8:e8:ea:6f:92:71: 7a:73:50:3b:0b:db:f4:da:32:89:b0:15:dc:6a:58:f8:17:81: f2:46:e6:42:fe:f6:ab:d7:e4:ff:a3:d0:d3:e6:ca:ef:80:d0: 0d:62:b6:31:8a:6d:d1:bd:d5:bb:ea:c5:b9:83:13:39:bf:b9: 3a:94:3d:43:10:92:3d:a7:fe:6a:05:ab:38:f8:92:e5:da:66: cd:2e:46:37:b9:28:9e:9f:ca:ed:68:3f:a1:33:b5:d5:20:65: ea:12:43:25:48:1e:1b:23:10:a4:77:c6:fa:33:b5:8e:22:8f: 19:3d:cc:b4:c0:a9:82:2b:b0:f8:e0:eb:d6:d8:d3:93:8b:ef: de:64:68:20:7d:43:cd:67:8e:40:c3:76:e4:f2:29:19:9b:d2: 84:bf:9f:21:7e:3c:1c:53:f4:45:aa:ad:cf:49:f2:03:cc:eb: 96:01:d7:5d:89:b1:ef:18:71:0e:fc:9a:74:1f:7a:f6:59:28: ed:82:75:d4:ac:5d:44:a4:df:de:27:e6:8a:cd:de:93:eb:32: ea:44:af:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W4YyQP05Qh3O1x70oSDPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMzczNTcxYzkwMjQ5YmYyYWE5NDhlNzhiZWQxM2UwODUy OGI4N2UwHhcNMjYwMTAxMTYxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Y2Y1MzhkOWU0OWZhMDBkYWQ5NGQ4MGRkYTEyMjg4Y2U4ODc3YjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyufLHgRWrOtPGwdCRvyhzc9IXC0r ASGCoHB5dTCJ6FfTobrP60B9Dn9qUq89S8B37MhLh4oASERbsAHlKJbx4E4SDqI2 8PCKnisuAYoQSq96ZB0ScPDLgOY5y2/s6UzT6UqOA0uo6k0L4FrA1Bv5mtKwsP/F A3Rny4KVD7EW635QicSunfSg8yvY/9N5BWuevCo1unTXaTIPI01AknEEx0RtDTId ZjkFwpVF2PZvGnMCA91GgI2woaRbfSicjKd8ICe1TiWzFKyl/xE6v1qQUENen6hp 4xk9mKnmphhRxbnfr2osyIWv075VJsYswIGudDsBD8Uh/UJvDuETEXJ3ZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIz1ONnkn6ANrZTYDdoSKIzoh3t9MB8GA1UdIwQY MBaAFCI3NXHJAkm/KqlI54vtE+CFKLh+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEt YjQ1NDBjNzRjOTRiLzEvalBVNDJlU2ZvQTJ0bE5nTjJoSW9qT2lIZTMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEtYjQ1NDBjNzRjOTRi LzEvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABaAuMA0G CSqGSIb3DQEBCwUAA4IBAQAmLh3HpSTvQyo/FFtRNDcMONM+MUy2rT4Gg7LmEf69 rT+xjirQlgKD+hZ8yvk6Moeo6OpvknF6c1A7C9v02jKJsBXcalj4F4HyRuZC/var 1+T/o9DT5srvgNANYrYxim3RvdW76sW5gxM5v7k6lD1DEJI9p/5qBas4+JLl2mbN LkY3uSien8rtaD+hM7XVIGXqEkMlSB4bIxCkd8b6M7WOIo8ZPcy0wKmCK7D44OvW 2NOTi+/eZGggfUPNZ45Aw3bk8ikZm9KEv58hfjwcU/RFqq3PSfIDzOuWAdddibHv GHEO/Jp0H3r2WSjtgnXUrF1EpN/eJ+aKzd6T6zLqRK/H -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:39 2026 by rpki-client