This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/5quSGDFiCc7x9xQL3RZ2oDRoZEI.roa File: 5quSGDFiCc7x9xQL3RZ2oDRoZEI.roa (raw, json) Hash identifier: GKv86KDQ60+mPLbc7GtPs9wY5m72zA4FBxOc21v69ao= Subject key identifier: E6:AB:92:18:31:62:09:CE:F1:F7:14:0B:DD:16:76:A0:34:68:64:42 Certificate issuer: /CN=2d2cc139321951db276f3ffa293ac0a0f3fa8bf7 Certificate serial: 019B7C1279083637FE68373F721EE859C4EA Authority key identifier: 2D:2C:C1:39:32:19:51:DB:27:6F:3F:FA:29:3A:C0:A0:F3:FA:8B:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/5quSGDFiCc7x9xQL3RZ2oDRoZEI.roa Signing time: Fri 02 Jan 2026 00:19:03 +0000 ROA not before: Fri 02 Jan 2026 00:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1257 IP address blocks: 193.17.67.0/24 maxlen: 24 2001:678:3ec::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.mft rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:79:08:36:37:fe:68:37:3f:72:1e:e8:59:c4:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d2cc139321951db276f3ffa293ac0a0f3fa8bf7 Validity Not Before: Jan 2 00:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e6ab9218316209cef1f7140bdd1676a034686442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fb:9b:3a:49:8e:d7:fc:da:61:4b:ec:b1:24: f4:58:aa:55:6a:f4:7a:a9:3e:55:2e:90:e1:7e:b7: 9e:a5:c7:fa:2a:f5:d4:59:b8:ac:ec:02:d3:49:a1: 93:f9:56:45:e9:bb:19:dd:ff:10:73:f2:9e:1a:11: a7:d3:51:45:84:c8:d4:76:a3:8c:c1:b4:32:75:b6: 5b:7a:6a:fe:e6:86:91:91:d3:40:88:4d:c4:f9:32: 23:aa:30:2b:19:ee:a7:b8:be:18:84:9c:5a:dc:4e: 23:55:af:73:ae:a5:c6:aa:b8:2d:1c:c6:b7:07:a0: 46:29:a1:3d:4b:a4:bd:7f:6e:e3:79:5f:a6:56:86: ed:a1:77:56:70:74:9f:fa:d3:df:70:50:d2:04:50: 98:5d:4a:d8:3f:f4:cf:ea:99:d3:ce:6c:af:b2:5b: b7:e8:1b:61:1e:78:e9:4c:57:fb:08:d1:98:84:4d: 36:ca:41:ed:fa:65:0b:01:0f:20:06:3e:66:f8:e1: b3:89:0b:3d:1a:4e:e1:4e:00:18:f1:34:50:66:67: 5d:5a:88:71:a5:5e:dd:6a:c8:86:33:42:0d:21:76: a8:f8:a0:b4:3e:bb:8d:c0:57:f5:47:28:15:b9:29: 68:8a:6f:df:c6:f2:6a:59:61:64:f2:a4:35:14:da: bd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AB:92:18:31:62:09:CE:F1:F7:14:0B:DD:16:76:A0:34:68:64:42 X509v3 Authority Key Identifier: keyid:2D:2C:C1:39:32:19:51:DB:27:6F:3F:FA:29:3A:C0:A0:F3:FA:8B:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/5quSGDFiCc7x9xQL3RZ2oDRoZEI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.67.0/24 IPv6: 2001:678:3ec::/48 Signature Algorithm: sha256WithRSAEncryption 9c:9f:c5:6f:2c:18:af:42:02:69:7f:56:19:26:25:3f:7e:ae: 6c:ad:fd:2f:37:45:f7:a0:96:cb:5c:d6:0c:fd:e8:10:3d:70: 54:f4:52:f0:f5:82:98:10:06:38:c9:dc:2f:82:2d:e6:ba:70: ce:9e:cd:2b:b9:19:ac:fe:01:c3:9c:f2:84:ca:ad:18:5c:89: 70:5c:da:f3:9e:cf:fb:db:37:7e:e6:3f:22:48:b9:61:b5:b1: c8:cd:5b:da:f6:a7:58:64:d4:16:0d:e6:bb:02:f1:66:5e:08: 58:76:10:cd:f4:02:af:bc:95:55:c1:62:9c:7d:27:be:90:3c: 02:40:e5:18:6b:49:9b:8f:5f:00:e2:f0:c0:8c:0b:4b:24:82: 63:02:6c:57:40:3e:fd:67:af:11:0a:06:33:99:86:69:57:1c: 1e:1b:35:fe:6f:7a:f2:d5:a1:1e:0e:2d:3d:bc:cf:79:53:9d: 3a:a5:e6:63:6d:f8:c2:56:bb:fc:89:1c:5a:4c:54:6d:2b:56: 63:01:fd:6b:94:62:86:57:2b:8b:8b:ef:1f:0c:3d:96:19:09: fe:d0:15:6b:b5:dd:19:04:bb:42:3b:6b:6d:76:fd:5e:fa:da: 57:ca:ca:6a:b8:76:b7:88:04:38:72:38:8f:75:3e:22:e1:86: 7a:db:1d:b4 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8EnkINjf+aDc/ch7oWcTqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMmNjMTM5MzIxOTUxZGIyNzZmM2ZmYTI5M2FjMGEwZjNm YThiZjcwHhcNMjYwMTAyMDAxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNmFiOTIxODMxNjIwOWNlZjFmNzE0MGJkZDE2NzZhMDM0Njg2NDQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fubOkmO1/zaYUvssST0WKpVavR6 qT5VLpDhfreepcf6KvXUWbis7ALTSaGT+VZF6bsZ3f8Qc/KeGhGn01FFhMjUdqOM wbQydbZbemr+5oaRkdNAiE3E+TIjqjArGe6nuL4YhJxa3E4jVa9zrqXGqrgtHMa3 B6BGKaE9S6S9f27jeV+mVobtoXdWcHSf+tPfcFDSBFCYXUrYP/TP6pnTzmyvslu3 6BthHnjpTFf7CNGYhE02ykHt+mULAQ8gBj5m+OGziQs9Gk7hTgAY8TRQZmddWohx pV7dasiGM0INIXao+KC0PruNwFf1RygVuSloim/fxvJqWWFk8qQ1FNq9lwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFOarkhgxYgnO8fcUC90WdqA0aGRCMB8GA1UdIwQY MBaAFC0swTkyGVHbJ28/+ik6wKDz+ov3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFN6Qk9USVpVZHNuYnpfNktUckFvUFA2aV9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMjhiNDItNDlmYi00MmNkLThiMWIt MjE2NGQ5OTk1MTk4LzEvNXF1U0dERmlDYzd4OXhRTDNSWjJvRFJvWkVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMjhiNDItNDlmYi00MmNkLThiMWItMjE2NGQ5OTk1MTk4 LzEvTFN6Qk9USVpVZHNuYnpfNktUckFvUFA2aV9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwRFDMA8E AgACMAkDBwAgAQZ4A+wwDQYJKoZIhvcNAQELBQADggEBAJyfxW8sGK9CAml/Vhkm JT9+rmyt/S83Rfeglstc1gz96BA9cFT0UvD1gpgQBjjJ3C+CLea6cM6ezSu5Gaz+ AcOc8oTKrRhciXBc2vOez/vbN37mPyJIuWG1scjNW9r2p1hk1BYN5rsC8WZeCFh2 EM30Aq+8lVXBYpx9J76QPAJA5RhrSZuPXwDi8MCMC0skgmMCbFdAPv1nrxEKBjOZ hmlXHB4bNf5vevLVoR4OLT28z3lTnTql5mNt+MJWu/yJHFpMVG0rVmMB/WuUYoZX K4uL7x8MPZYZCf7QFWu13RkEu0I7a212/V762lfKymq4dreIBDhyOI91PiLhhnrb HbQ= -----END CERTIFICATE-----Generated at Mon Jan 26 04:39:27 2026 by rpki-client