This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/_hJ5inVCuiRHr1ByD9sfswwfeDc.roa File: _hJ5inVCuiRHr1ByD9sfswwfeDc.roa (raw, json) Hash identifier: chkzKXrbHJgb52YpJC0UJmLYGqQmDccAXemw3TUuxDc= Subject key identifier: FE:12:79:8A:75:42:BA:24:47:AF:50:72:0F:DB:1F:B3:0C:1F:78:37 Certificate issuer: /CN=e58024b729d99f05133ec6d14390c73eb36db99e Certificate serial: 019B7EA6AADB5F2B82D603D7EB33637B8517 Authority key identifier: E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/_hJ5inVCuiRHr1ByD9sfswwfeDc.roa Signing time: Fri 02 Jan 2026 12:20:10 +0000 ROA not before: Fri 02 Jan 2026 12:20:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208483 IP address blocks: 82.129.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.mft rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:aa:db:5f:2b:82:d6:03:d7:eb:33:63:7b:85:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e58024b729d99f05133ec6d14390c73eb36db99e Validity Not Before: Jan 2 12:20:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fe12798a7542ba2447af50720fdb1fb30c1f7837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:67:3e:64:6c:93:01:74:76:d9:40:e4:a1:96: e2:ea:0d:d4:3b:6e:3c:a9:da:aa:1c:96:a4:63:53: 8d:fc:33:11:24:b9:28:3b:dc:61:ba:52:51:ae:d1: 1b:6c:78:6c:80:48:13:5a:f3:aa:82:ab:a4:82:46: c3:ab:8a:54:14:f8:3c:23:cf:3b:e3:d6:ed:d3:06: 3d:49:dc:6b:8a:c4:47:23:9f:b1:80:03:f7:a9:ad: f9:0e:cc:9a:cd:8a:9c:e0:11:8e:8a:db:aa:02:80: 67:ee:c6:24:1d:fd:7b:92:79:19:10:39:05:bd:84: db:da:9f:e7:47:1e:71:31:6a:20:b7:02:31:42:83: 01:70:1c:2c:df:a6:42:6d:94:be:19:88:48:72:e5: 1d:39:78:8f:f9:60:ef:45:8c:69:9a:fd:6c:57:08: a4:09:d3:9a:67:68:7f:52:28:91:db:d7:50:72:e8: db:78:c5:53:31:2c:fa:8d:74:fd:87:8f:d1:ed:6c: 1a:f9:db:b2:ef:a7:15:a3:f2:1c:3d:49:70:23:e0: 5b:04:8d:5f:4a:04:75:6d:41:de:b8:23:f7:99:6b: 45:bb:a0:fd:17:c9:d8:a0:ca:77:34:b1:67:1f:8b: db:e4:f1:ac:2a:e0:00:87:dd:de:80:3e:79:c0:98: a7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:12:79:8A:75:42:BA:24:47:AF:50:72:0F:DB:1F:B3:0C:1F:78:37 X509v3 Authority Key Identifier: keyid:E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/_hJ5inVCuiRHr1ByD9sfswwfeDc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.129.4.0/24 Signature Algorithm: sha256WithRSAEncryption 40:d4:45:28:26:7d:d7:8f:6d:55:70:82:66:ae:ae:00:3b:3e: 59:96:87:a8:b6:1f:50:c4:5f:61:94:03:2f:9e:ec:38:db:ed: 43:d9:62:18:09:41:7f:92:fc:17:07:1f:3f:ef:51:4d:56:f4: 3e:76:7a:f5:17:3c:98:30:49:9b:04:63:ef:ce:52:31:d9:3e: 0e:6a:ed:c5:09:72:5e:84:8c:14:ad:1c:2e:0d:97:ab:25:76: 96:c6:96:b6:20:71:19:d5:d3:73:6c:2e:82:c8:14:d8:8b:a3: d4:cf:81:0a:c4:df:d1:ee:db:33:1d:32:98:73:1c:b0:3a:bb: 1c:24:ac:f4:3d:da:a7:89:60:0c:77:b5:01:3d:20:eb:e1:ac: ce:f2:03:e3:ba:64:7c:c1:62:b9:8a:d3:ef:df:c3:a8:e7:55: 49:93:14:2e:93:ca:7f:93:ef:d6:78:f0:dd:53:8c:bf:33:b4: 43:bc:cc:8c:0e:ba:fc:97:8e:c2:a5:d1:5b:02:5a:94:d8:6d: f5:8b:e7:6f:4a:bb:6a:6b:c2:cb:be:80:fa:71:44:a8:db:52: 91:53:7e:0d:e4:8d:9a:29:a8:9a:2e:28:e9:de:0b:96:eb:8f: 6a:ac:0b:dc:94:1a:b8:c9:93:bd:82:62:3b:2b:13:71:06:2e: 03:82:b8:4f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pqrbXyuC1gPX6zNje4UXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODAyNGI3MjlkOTlmMDUxMzNlYzZkMTQzOTBjNzNlYjM2 ZGI5OWUwHhcNMjYwMTAyMTIyMDEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZTEyNzk4YTc1NDJiYTI0NDdhZjUwNzIwZmRiMWZiMzBjMWY3ODM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32c+ZGyTAXR22UDkoZbi6g3UO248 qdqqHJakY1ON/DMRJLkoO9xhulJRrtEbbHhsgEgTWvOqgqukgkbDq4pUFPg8I887 49bt0wY9SdxrisRHI5+xgAP3qa35DsyazYqc4BGOituqAoBn7sYkHf17knkZEDkF vYTb2p/nRx5xMWogtwIxQoMBcBws36ZCbZS+GYhIcuUdOXiP+WDvRYxpmv1sVwik CdOaZ2h/UiiR29dQcujbeMVTMSz6jXT9h4/R7Wwa+duy76cVo/IcPUlwI+BbBI1f SgR1bUHeuCP3mWtFu6D9F8nYoMp3NLFnH4vb5PGsKuAAh93egD55wJinHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP4SeYp1QrokR69Qcg/bH7MMH3g3MB8GA1UdIwQY MBaAFOWAJLcp2Z8FEz7G0UOQxz6zbbmeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQt OTU2ZjZiNWM2MTcwLzEvX2hKNWluVkN1aVJIcjFCeUQ5c2Zzd3dmZURjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQtOTU2ZjZiNWM2MTcw LzEvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUoEEMA0G CSqGSIb3DQEBCwUAA4IBAQBA1EUoJn3Xj21VcIJmrq4AOz5Zloeoth9QxF9hlAMv nuw42+1D2WIYCUF/kvwXBx8/71FNVvQ+dnr1FzyYMEmbBGPvzlIx2T4Oau3FCXJe hIwUrRwuDZerJXaWxpa2IHEZ1dNzbC6CyBTYi6PUz4EKxN/R7tszHTKYcxywOrsc JKz0PdqniWAMd7UBPSDr4azO8gPjumR8wWK5itPv38Oo51VJkxQuk8p/k+/WePDd U4y/M7RDvMyMDrr8l47CpdFbAlqU2G31i+dvSrtqa8LLvoD6cUSo21KRU34N5I2a KaiaLijp3guW649qrAvclBq4yZO9gmI7KxNxBi4DgrhP -----END CERTIFICATE-----Generated at Sun Jan 25 15:12:17 2026 by rpki-client