This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/kL4y3pQMqSij8ayM6CXPtuSYIvA.roa File: kL4y3pQMqSij8ayM6CXPtuSYIvA.roa (raw, json) Hash identifier: 84H603zDH0MyON3E0y8p6yH+6YkuXUAniURtdGliVVo= Subject key identifier: 90:BE:32:DE:94:0C:A9:28:A3:F1:AC:8C:E8:25:CF:B6:E4:98:22:F0 Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e Certificate serial: 019B7A5B7E4F8DA0B5F0A87AA81796DCCC07 Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/kL4y3pQMqSij8ayM6CXPtuSYIvA.roa Signing time: Thu 01 Jan 2026 16:19:35 +0000 ROA not before: Thu 01 Jan 2026 16:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60539 IP address blocks: 5.160.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.mft rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:7e:4f:8d:a0:b5:f0:a8:7a:a8:17:96:dc:cc:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e Validity Not Before: Jan 1 16:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=90be32de940ca928a3f1ac8ce825cfb6e49822f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ce:51:36:b6:5f:de:b5:5b:e2:f5:b5:dc:87: 3c:fb:44:c3:b2:49:31:97:37:e6:af:f1:a2:f6:8c: fc:c3:d0:c2:81:16:d5:09:21:1e:65:92:72:64:cb: bf:5c:a5:a6:44:f0:35:60:d0:c7:eb:27:69:85:8d: 66:59:a1:fc:6c:f2:b7:2f:53:cb:91:f5:7e:a1:72: 03:07:bf:3b:dc:8f:f9:3b:cc:71:46:63:4a:b7:46: b7:00:40:4d:3f:e6:e9:91:81:44:be:ef:de:cd:b4: ae:49:ed:a4:c9:37:90:3b:07:22:74:4c:e8:8d:fd: a0:64:8c:7a:2b:74:63:71:2b:59:45:33:88:a3:1c: 5c:af:b2:b9:2e:1d:bd:72:a8:4b:4f:2c:1f:bc:28: ee:5c:a5:6e:0f:25:36:31:71:60:a7:11:26:b3:bc: 36:f5:7b:34:2e:e5:64:f7:47:a3:5d:7f:ab:b3:13: 22:6d:a3:84:28:1b:30:f7:9e:92:66:10:64:77:b7: ab:55:c5:4e:39:81:aa:34:58:c2:d4:2a:d2:b2:6f: 26:e2:46:f1:1c:90:ce:bc:9c:08:74:50:5d:d8:05: 64:85:d6:65:49:b0:a1:36:3a:a2:76:a8:23:3f:5c: fb:4f:88:d0:bc:75:78:2f:f5:f6:be:48:8d:e1:6f: e1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BE:32:DE:94:0C:A9:28:A3:F1:AC:8C:E8:25:CF:B6:E4:98:22:F0 X509v3 Authority Key Identifier: keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/kL4y3pQMqSij8ayM6CXPtuSYIvA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.160.111.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:38:3c:2b:7d:af:28:6e:73:5d:31:7d:66:6c:69:d5:2b:61: 17:b9:41:ea:47:ba:2b:c6:0c:57:d4:f9:80:02:45:b7:d1:5f: 17:05:35:31:a9:d5:f1:59:08:9b:91:1b:23:ef:93:ab:9c:48: f8:e3:2d:4c:78:29:ab:6d:22:42:f8:ca:32:73:72:10:4f:15: ae:c4:1c:4e:81:1f:fe:59:25:9d:2a:31:0e:83:0a:29:fc:d5: d2:9a:7e:f3:4d:a3:06:fc:61:dd:4f:53:88:b6:44:b7:c8:8f: 89:f0:7c:2e:65:11:9e:4f:83:c1:f5:e8:15:2a:74:e7:c1:2e: 98:13:ba:37:98:65:08:50:fc:d8:32:66:1f:a1:0b:9b:6b:0a: 78:32:54:9a:0b:73:1e:81:61:cc:d4:d9:37:86:b4:8a:0a:05: 27:43:eb:e5:18:5b:bf:27:af:7a:49:27:02:50:db:cd:41:63: 46:bd:ea:e4:f5:d9:09:89:3d:04:13:64:6a:fa:c9:72:2c:51: 6f:0f:78:b4:27:f1:66:02:80:a9:68:4b:03:c3:8c:a4:cc:99: 6e:fe:4e:8b:e8:10:11:48:58:b9:cc:00:e5:e1:f4:d9:f1:2a: a9:13:6a:34:00:a4:78:b2:8a:c2:1e:bb:d9:44:2c:ce:1c:1d: bf:b9:d7:47 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W35PjaC18Kh6qBeW3MwHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMzczNTcxYzkwMjQ5YmYyYWE5NDhlNzhiZWQxM2UwODUy OGI4N2UwHhcNMjYwMTAxMTYxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MGJlMzJkZTk0MGNhOTI4YTNmMWFjOGNlODI1Y2ZiNmU0OTgyMmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA585RNrZf3rVb4vW13Ic8+0TDskkx lzfmr/Gi9oz8w9DCgRbVCSEeZZJyZMu/XKWmRPA1YNDH6ydphY1mWaH8bPK3L1PL kfV+oXIDB7873I/5O8xxRmNKt0a3AEBNP+bpkYFEvu/ezbSuSe2kyTeQOwcidEzo jf2gZIx6K3RjcStZRTOIoxxcr7K5Lh29cqhLTywfvCjuXKVuDyU2MXFgpxEms7w2 9Xs0LuVk90ejXX+rsxMibaOEKBsw956SZhBkd7erVcVOOYGqNFjC1CrSsm8m4kbx HJDOvJwIdFBd2AVkhdZlSbChNjqidqgjP1z7T4jQvHV4L/X2vkiN4W/h0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJC+Mt6UDKkoo/GsjOglz7bkmCLwMB8GA1UdIwQY MBaAFCI3NXHJAkm/KqlI54vtE+CFKLh+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEt YjQ1NDBjNzRjOTRiLzEva0w0eTNwUU1xU2lqOGF5TTZDWFB0dVNZSXZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEtYjQ1NDBjNzRjOTRi LzEvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABaBvMA0G CSqGSIb3DQEBCwUAA4IBAQB8ODwrfa8obnNdMX1mbGnVK2EXuUHqR7orxgxX1PmA AkW30V8XBTUxqdXxWQibkRsj75OrnEj44y1MeCmrbSJC+Moyc3IQTxWuxBxOgR/+ WSWdKjEOgwop/NXSmn7zTaMG/GHdT1OItkS3yI+J8HwuZRGeT4PB9egVKnTnwS6Y E7o3mGUIUPzYMmYfoQubawp4MlSaC3MegWHM1Nk3hrSKCgUnQ+vlGFu/J696SScC UNvNQWNGverk9dkJiT0EE2Rq+slyLFFvD3i0J/FmAoCpaEsDw4ykzJlu/k6L6BAR SFi5zADl4fTZ8SqpE2o0AKR4sorCHrvZRCzOHB2/uddH -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:31 2026 by rpki-client