This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/2e5AvXlufc-kEczHhTECSJ-V-JQ.roa File: 2e5AvXlufc-kEczHhTECSJ-V-JQ.roa (raw, json) Hash identifier: I9+kJ0K5wv3UioVKT0ZYctRfAuqgjg7khDoT9z5Qntc= Subject key identifier: D9:EE:40:BD:79:6E:7D:CF:A4:11:CC:C7:85:31:02:48:9F:95:F8:94 Certificate issuer: /CN=56c8a1713c7476e00ed2b77fd98fd89330365d87 Certificate serial: 019B7F83D8E41CEAF4D4B525C27F930D759C Authority key identifier: 56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/2e5AvXlufc-kEczHhTECSJ-V-JQ.roa Signing time: Fri 02 Jan 2026 16:21:45 +0000 ROA not before: Fri 02 Jan 2026 16:21:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41870 IP address blocks: 88.80.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.mft rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:d8:e4:1c:ea:f4:d4:b5:25:c2:7f:93:0d:75:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56c8a1713c7476e00ed2b77fd98fd89330365d87 Validity Not Before: Jan 2 16:21:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9ee40bd796e7dcfa411ccc7853102489f95f894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0c:68:6b:d3:8e:9c:e7:40:17:18:0f:e2:d5: ab:1a:9c:da:9f:06:a8:8b:0e:ee:09:9d:67:58:45: 09:44:1e:e4:57:88:cc:17:67:3c:39:f6:54:92:f9: 6b:f1:c5:dd:8a:31:ed:6b:d3:3d:63:21:86:53:ba: 5e:15:27:54:37:a9:8e:70:ed:d0:2e:a3:14:e8:07: 37:f3:65:c4:9c:94:ca:6b:1b:9d:8d:b9:4b:dc:c3: 4f:a1:0d:c3:1d:0c:11:78:5f:fd:c9:05:a8:6f:60: dc:ac:84:ac:65:6b:b2:6e:52:54:48:55:78:a9:4e: ca:7a:29:6e:24:4f:4c:10:e2:c3:8f:fe:73:38:f4: 2e:41:7f:01:9b:13:c8:ab:b5:a5:7a:7c:0f:f3:a9: 22:88:a2:8b:24:a0:75:37:8c:9d:4b:d8:15:f1:56: 79:60:8c:d1:70:cf:6a:a7:19:04:dc:3b:91:02:c8: 8d:5c:54:6a:39:ed:bf:d4:14:1c:3a:ea:87:48:18: 15:e1:1e:02:c0:84:39:4c:f9:1b:7a:e1:7a:e2:87: 69:ab:13:a5:44:56:a3:0d:2a:49:50:66:1d:01:a2: b5:bf:48:70:5f:35:74:bb:44:89:a3:68:15:f2:74: 96:7e:6e:53:f3:2b:4b:86:8c:65:74:f0:a2:a0:4b: 8d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:EE:40:BD:79:6E:7D:CF:A4:11:CC:C7:85:31:02:48:9F:95:F8:94 X509v3 Authority Key Identifier: keyid:56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/2e5AvXlufc-kEczHhTECSJ-V-JQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.80.150.0/24 Signature Algorithm: sha256WithRSAEncryption b3:af:f0:96:70:85:e4:fd:83:e0:ef:a9:d4:d8:f5:c9:18:a4: 2c:bf:48:97:1e:60:e1:a1:ed:28:d1:d5:1f:8d:a6:47:ac:44: 4e:ca:cf:74:1e:62:c5:6a:68:30:38:64:47:f2:d9:71:e1:1a: 43:ff:07:05:01:36:a6:ad:20:63:ce:e3:0e:b7:60:cc:d7:80: e2:14:55:fa:07:cc:33:4b:8d:9e:a0:4a:34:a7:36:ff:3f:35: bf:1c:f3:05:08:9d:2e:6e:e9:f4:7e:90:01:a7:40:89:c9:7e: a7:28:44:22:14:1a:05:9a:74:c3:39:6a:14:27:86:2c:10:52: 74:ed:e6:b8:9b:49:aa:5e:7d:06:1a:98:63:02:41:48:f9:ad: 11:20:1f:93:df:27:d8:a1:fd:1b:7c:06:ea:73:05:27:dc:dd: f3:29:ca:9d:eb:bf:99:a7:d9:a0:52:c0:80:f1:69:af:ce:25: 8d:fe:30:5d:8d:8a:85:be:10:24:4c:07:f6:4f:80:a0:3a:79: 3e:88:c2:11:37:32:5c:be:12:41:dc:b0:de:9a:67:fc:cf:c6: 9c:34:e9:ec:5a:57:b9:84:01:24:f5:3e:e4:c4:64:16:fb:12: 8f:0a:0e:00:2b:13:8a:2b:3d:7c:9e:fb:99:42:f9:3a:bb:f7: 16:24:ca:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g9jkHOr01LUlwn+TDXWcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2YzhhMTcxM2M3NDc2ZTAwZWQyYjc3ZmQ5OGZkODkzMzAz NjVkODcwHhcNMjYwMTAyMTYyMTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOWVlNDBiZDc5NmU3ZGNmYTQxMWNjYzc4NTMxMDI0ODlmOTVmODk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Qxoa9OOnOdAFxgP4tWrGpzanwao iw7uCZ1nWEUJRB7kV4jMF2c8OfZUkvlr8cXdijHta9M9YyGGU7peFSdUN6mOcO3Q LqMU6Ac382XEnJTKaxudjblL3MNPoQ3DHQwReF/9yQWob2DcrISsZWuyblJUSFV4 qU7KeiluJE9MEOLDj/5zOPQuQX8BmxPIq7WlenwP86kiiKKLJKB1N4ydS9gV8VZ5 YIzRcM9qpxkE3DuRAsiNXFRqOe2/1BQcOuqHSBgV4R4CwIQ5TPkbeuF64odpqxOl RFajDSpJUGYdAaK1v0hwXzV0u0SJo2gV8nSWfm5T8ytLhoxldPCioEuNLQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNnuQL15bn3PpBHMx4UxAkiflfiUMB8GA1UdIwQY MBaAFFbIoXE8dHbgDtK3f9mP2JMwNl2HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnNpaGNUeDBkdUFPMHJkXzJZX1lrekEyWFljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8yM2Q1MjUtODI5Ni00ZjljLTlkZTQt OTFlMzJjNTE3MTUyLzEvMmU1QXZYbHVmYy1rRWN6SGhURUNTSi1WLUpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS8yM2Q1MjUtODI5Ni00ZjljLTlkZTQtOTFlMzJjNTE3MTUy LzEvVnNpaGNUeDBkdUFPMHJkXzJZX1lrekEyWFljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWFCWMA0G CSqGSIb3DQEBCwUAA4IBAQCzr/CWcIXk/YPg76nU2PXJGKQsv0iXHmDhoe0o0dUf jaZHrEROys90HmLFamgwOGRH8tlx4RpD/wcFATamrSBjzuMOt2DM14DiFFX6B8wz S42eoEo0pzb/PzW/HPMFCJ0ubun0fpABp0CJyX6nKEQiFBoFmnTDOWoUJ4YsEFJ0 7ea4m0mqXn0GGphjAkFI+a0RIB+T3yfYof0bfAbqcwUn3N3zKcqd67+Zp9mgUsCA 8WmvziWN/jBdjYqFvhAkTAf2T4CgOnk+iMIRNzJcvhJB3LDemmf8z8acNOnsWle5 hAEk9T7kxGQW+xKPCg4AKxOKKz18nvuZQvk6u/cWJMrA -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:52 2026 by rpki-client