This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/5yMdib-0sOswI0lZXAuoUHXXHVA.roa File: 5yMdib-0sOswI0lZXAuoUHXXHVA.roa (raw, json) Hash identifier: 5aP/kmB4CNB8EVL6XcgZn/Qsj+a9mFR0w4XcjiN0sUQ= Subject key identifier: E7:23:1D:89:BF:B4:B0:EB:30:23:49:59:5C:0B:A8:50:75:D7:1D:50 Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Certificate serial: 019B7D5CFBD90FDF9EE600CD195AA48D47DD Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/5yMdib-0sOswI0lZXAuoUHXXHVA.roa Signing time: Fri 02 Jan 2026 06:20:04 +0000 ROA not before: Fri 02 Jan 2026 06:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8938 IP address blocks: 2001:4190:8024::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.mft rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:fb:d9:0f:df:9e:e6:00:cd:19:5a:a4:8d:47:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Validity Not Before: Jan 2 06:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7231d89bfb4b0eb302349595c0ba85075d71d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f5:fa:4c:ab:71:0a:87:d5:7d:54:34:56:51: 78:1e:d1:dc:92:93:f5:9c:8a:7e:f4:0e:f8:d8:9d: 17:af:05:7a:81:ab:f6:f5:0f:10:39:72:bc:ed:03: e6:df:75:ed:6a:92:69:5c:91:d2:9f:16:ff:f3:f4: fc:f8:4d:dc:42:b6:c4:4e:7f:10:71:d9:c3:81:61: a5:74:64:e0:65:98:16:e0:45:9e:d9:a4:06:89:82: 0d:af:35:5b:9c:c3:cc:e3:25:64:37:31:9e:21:34: 4b:c2:c8:e4:b2:63:62:89:bb:b5:ae:4e:95:96:54: 65:9a:ba:9c:5b:ad:fb:ac:5a:1e:47:92:d8:d2:07: f0:03:83:0e:62:87:01:51:72:b8:ad:19:e1:5c:d1: b0:ca:1c:df:77:b0:ac:d4:67:c9:ca:4c:9c:39:9b: 38:d2:0f:3d:1c:e1:32:d6:ec:20:96:dc:90:81:6a: ce:e3:d9:1e:52:21:8a:69:ca:df:37:50:14:10:29: a4:82:90:a6:60:88:a5:3f:62:4f:6b:2c:e5:f8:21: 2a:22:2a:1d:35:ff:48:d5:bb:6c:5f:0c:c6:fb:08: ed:3a:5b:c8:56:15:63:88:5f:17:8b:99:38:49:e6: 36:fc:fd:04:f0:47:d0:37:a5:a9:b4:0a:45:7f:35: ed:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:23:1D:89:BF:B4:B0:EB:30:23:49:59:5C:0B:A8:50:75:D7:1D:50 X509v3 Authority Key Identifier: keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/5yMdib-0sOswI0lZXAuoUHXXHVA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:4190:8024::/48 Signature Algorithm: sha256WithRSAEncryption 38:19:f3:1c:c1:2d:29:c8:cc:f2:e0:8a:e1:04:7d:39:b0:19: e9:1b:93:6e:69:c9:9e:5e:2d:23:1d:08:1d:7d:22:c7:2d:6c: e3:50:27:37:83:df:b9:cb:79:be:38:f0:f6:0d:89:6b:53:ea: 3c:ec:6b:66:dc:c2:cb:c1:5f:a4:81:af:ba:c3:2f:7d:89:52: 70:1d:14:cc:29:0b:73:f8:1c:6b:32:36:ee:78:57:bb:a0:0e: 11:83:25:49:f7:fe:1d:01:af:13:48:d4:2c:ca:fa:e8:06:78: e8:79:05:87:0c:98:bc:ca:3e:d8:65:1e:1c:d1:d7:b9:4d:7d: f9:2f:ad:a4:79:f9:a5:64:6b:72:17:2b:74:5f:a0:ee:cc:5d: 24:e5:f5:82:63:be:0e:b9:d2:06:f3:16:f2:40:0b:95:ec:5c: d9:0e:e2:b2:66:96:7c:cf:ae:6c:a6:dc:ea:46:e3:36:44:2f: 5b:7d:d5:c8:05:3a:d2:59:2a:63:42:e2:f6:03:28:cc:40:7a: ac:7c:8b:b1:cb:bf:e7:f1:78:4e:cd:4c:b8:09:98:3c:3d:b7: 20:a3:f5:0b:0b:73:01:c0:70:96:1a:9d:35:dd:40:88:3d:35: d1:1b:eb:2a:df:01:fd:51:83:b1:b2:51:03:f8:8a:d8:bf:57: b5:4c:47:33 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XPvZD9+e5gDNGVqkjUfdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhY2E2M2RmMjQ4YjdhZGYzZGRkMDdlOGMyZDNlZWRkMDJj ZWY5MzMwHhcNMjYwMTAyMDYyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzIzMWQ4OWJmYjRiMGViMzAyMzQ5NTk1YzBiYTg1MDc1ZDcxZDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfX6TKtxCofVfVQ0VlF4HtHckpP1 nIp+9A742J0XrwV6gav29Q8QOXK87QPm33XtapJpXJHSnxb/8/T8+E3cQrbETn8Q cdnDgWGldGTgZZgW4EWe2aQGiYINrzVbnMPM4yVkNzGeITRLwsjksmNiibu1rk6V llRlmrqcW637rFoeR5LY0gfwA4MOYocBUXK4rRnhXNGwyhzfd7Cs1GfJykycOZs4 0g89HOEy1uwgltyQgWrO49keUiGKacrfN1AUECmkgpCmYIilP2JPayzl+CEqIiod Nf9I1btsXwzG+wjtOlvIVhVjiF8Xi5k4SeY2/P0E8EfQN6WptApFfzXtTQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOcjHYm/tLDrMCNJWVwLqFB11x1QMB8GA1UdIwQY MBaAFBrKY98ki3rfPd0H6MLT7t0CzvkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzIt OTFlMzE4NGJiMGFiLzEvNXlNZGliLTBzT3N3STBsWlhBdW9VSFhYSFZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzItOTFlMzE4NGJiMGFi LzEvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAFBkIAk MA0GCSqGSIb3DQEBCwUAA4IBAQA4GfMcwS0pyMzy4IrhBH05sBnpG5NuacmeXi0j HQgdfSLHLWzjUCc3g9+5y3m+OPD2DYlrU+o87Gtm3MLLwV+kga+6wy99iVJwHRTM KQtz+BxrMjbueFe7oA4RgyVJ9/4dAa8TSNQsyvroBnjoeQWHDJi8yj7YZR4c0de5 TX35L62kefmlZGtyFyt0X6DuzF0k5fWCY74OudIG8xbyQAuV7FzZDuKyZpZ8z65s ptzqRuM2RC9bfdXIBTrSWSpjQuL2AyjMQHqsfIuxy7/n8XhOzUy4CZg8Pbcgo/UL C3MBwHCWGp013UCIPTXRG+sq3wH9UYOxslED+IrYv1e1TEcz -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:42 2026 by rpki-client