This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/5qU8Hj8n5pIGWKazH2ouWf5wGDw.roa File: 5qU8Hj8n5pIGWKazH2ouWf5wGDw.roa (raw, json) Hash identifier: fPUgMv/+v3XOMbxImndbZYNoHUKb8QS4TfiXrOUr7b8= Subject key identifier: E6:A5:3C:1E:3F:27:E6:92:06:58:A6:B3:1F:6A:2E:59:FE:70:18:3C Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78344DFEA88B0A1DFBD3160EAFB91548 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/5qU8Hj8n5pIGWKazH2ouWf5wGDw.roa Signing time: Thu 01 Jan 2026 06:17:32 +0000 ROA not before: Thu 01 Jan 2026 06:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28099 IP address blocks: 193.235.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:4d:fe:a8:8b:0a:1d:fb:d3:16:0e:af:b9:15:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e6a53c1e3f27e6920658a6b31f6a2e59fe70183c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d5:12:76:65:c3:3f:31:6f:54:6f:bd:ac:50: 88:6f:d3:81:67:62:6a:50:0e:06:07:21:33:e4:1d: 3e:f3:02:74:82:55:c3:44:4e:97:ff:56:75:52:9f: 65:59:1d:29:56:46:ec:a4:31:de:f7:10:ce:ec:79: 34:48:b8:8a:18:0d:b7:57:d8:69:fa:95:d6:44:8f: 3f:e5:da:d4:e8:be:16:de:0d:7e:83:b2:0a:8b:71: 40:2b:e9:9f:bc:bc:f2:f3:0b:a0:b2:e8:9c:4a:fb: 6c:b8:8f:a8:fc:28:56:37:4f:06:a4:20:e0:29:c7: bc:43:cd:07:6b:6d:5c:42:ba:78:3c:eb:68:8a:9c: f7:1e:b7:12:8f:ad:a9:96:28:44:a6:8c:a1:63:b1: f1:b6:07:c7:9e:5e:db:77:76:1a:78:64:6a:07:d8: 37:75:49:39:79:c7:92:aa:34:6f:a1:d2:94:b3:3c: 94:2f:9d:48:78:36:16:18:29:de:7b:db:2d:87:f3: eb:6f:f7:7c:ab:ec:8a:db:5a:98:ea:dc:2e:73:b3: b8:a4:58:ae:52:fa:1c:85:06:97:1b:f4:f0:2e:b6: 6a:1e:f7:f0:be:c4:c4:3e:92:78:3d:70:f2:ea:b7: b3:61:c9:c4:7f:38:2d:54:1b:cf:b6:42:44:e4:d5: e8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A5:3C:1E:3F:27:E6:92:06:58:A6:B3:1F:6A:2E:59:FE:70:18:3C X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/5qU8Hj8n5pIGWKazH2ouWf5wGDw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.235.146.0/24 Signature Algorithm: sha256WithRSAEncryption a7:01:1e:8f:bb:fe:a0:56:ac:64:15:f1:1b:39:d2:1b:a5:8e: 65:ea:32:e5:b0:d6:8f:e3:17:05:4b:98:18:a8:54:73:eb:9d: 80:f8:43:c1:ca:0d:0f:86:bc:09:f2:0d:4b:cb:8c:79:20:5a: 9d:33:34:04:00:c3:79:20:5e:96:a1:24:c0:07:55:c9:99:45: 86:da:aa:65:c7:0d:26:ed:5a:9c:70:3e:1f:ff:32:bb:ac:db: 04:83:cb:f2:75:b0:0b:e6:93:d5:45:cd:69:16:a0:a8:29:af: a7:53:06:87:cc:1c:b5:43:a6:29:c0:1c:22:3c:44:13:5b:82: 74:b4:fe:3d:dc:ad:49:c0:70:24:5b:ad:37:e0:ce:ae:af:f3: b8:10:00:0a:25:9d:49:b8:32:13:2f:e1:53:68:0b:e8:09:61: 8c:8d:73:df:98:8c:10:a8:59:5e:c9:73:f2:8c:d6:3f:f0:b4: 88:01:6a:e5:a8:22:1b:0a:63:d9:02:8c:4f:a5:8b:e2:13:8a: df:9b:33:a2:17:32:45:8b:32:19:1e:df:46:8a:c8:55:9b:e6: 15:f9:0f:33:44:df:20:35:5c:49:62:ce:f8:df:13:94:96:d9: c0:5e:d2:a9:f6:8a:97:54:37:f8:1d:cf:6b:03:45:bf:ca:5b: d3:c2:75:bd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NE3+qIsKHfvTFg6vuRVIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNmE1M2MxZTNmMjdlNjkyMDY1OGE2YjMxZjZhMmU1OWZlNzAxODNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNUSdmXDPzFvVG+9rFCIb9OBZ2Jq UA4GByEz5B0+8wJ0glXDRE6X/1Z1Up9lWR0pVkbspDHe9xDO7Hk0SLiKGA23V9hp +pXWRI8/5drU6L4W3g1+g7IKi3FAK+mfvLzy8wugsuicSvtsuI+o/ChWN08GpCDg Kce8Q80Ha21cQrp4POtoipz3HrcSj62plihEpoyhY7HxtgfHnl7bd3YaeGRqB9g3 dUk5eceSqjRvodKUszyUL51IeDYWGCnee9sth/Prb/d8q+yK21qY6twuc7O4pFiu UvochQaXG/TwLrZqHvfwvsTEPpJ4PXDy6rezYcnEfzgtVBvPtkJE5NXoQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOalPB4/J+aSBlimsx9qLln+cBg8MB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvNXFVOEhqOG41cElHV0thekgyb3VXZjV3R0R3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAweuSMA0G CSqGSIb3DQEBCwUAA4IBAQCnAR6Pu/6gVqxkFfEbOdIbpY5l6jLlsNaP4xcFS5gY qFRz652A+EPByg0PhrwJ8g1Ly4x5IFqdMzQEAMN5IF6WoSTAB1XJmUWG2qplxw0m 7VqccD4f/zK7rNsEg8vydbAL5pPVRc1pFqCoKa+nUwaHzBy1Q6YpwBwiPEQTW4J0 tP493K1JwHAkW6034M6ur/O4EAAKJZ1JuDITL+FTaAvoCWGMjXPfmIwQqFleyXPy jNY/8LSIAWrlqCIbCmPZAoxPpYviE4rfmzOiFzJFizIZHt9GishVm+YV+Q8zRN8g NVxJYs743xOUltnAXtKp9oqXVDf4Hc9rA0W/ylvTwnW9 -----END CERTIFICATE-----Generated at Sun Jan 25 12:06:23 2026 by rpki-client