This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/a5WIpxpcCW-EOyhphWZb3UFJuWc.roa File: a5WIpxpcCW-EOyhphWZb3UFJuWc.roa (raw, json) Hash identifier: k9ya1hRP+oWGNakJJagD/f72sF9aNOue3X1cql18Y2I= Subject key identifier: 6B:95:88:A7:1A:5C:09:6F:84:3B:28:69:85:66:5B:DD:41:49:B9:67 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783461760FFA4DB981040675F0105E20 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/a5WIpxpcCW-EOyhphWZb3UFJuWc.roa Signing time: Thu 01 Jan 2026 06:17:37 +0000 ROA not before: Thu 01 Jan 2026 06:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47171 IP address blocks: 192.36.69.0/24 maxlen: 24 192.121.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:61:76:0f:fa:4d:b9:81:04:06:75:f0:10:5e:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b9588a71a5c096f843b286985665bdd4149b967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c6:16:97:d6:84:f7:45:73:e5:29:78:a9:bd: 3e:77:dc:35:2c:21:65:a7:64:59:0b:17:21:33:fd: ab:89:f8:80:c7:dc:37:ca:07:d2:b4:3e:fb:34:ad: 26:f4:2f:e1:0a:ed:66:c6:e9:03:87:ec:3b:c1:ad: 26:33:9f:a7:15:a6:da:77:dc:96:3b:e2:bd:81:94: ca:d4:bf:9e:47:5e:31:b3:dc:cc:20:cd:d7:34:83: 89:c4:08:cb:da:e9:16:7e:47:9e:8b:5f:3d:d1:2d: f7:f2:e7:df:22:8b:39:dd:c9:3c:c7:a9:9a:9d:6b: 17:8a:5f:ed:13:7d:35:79:20:46:f6:4c:40:ad:37: f2:7d:ad:28:22:44:af:3c:a0:90:36:58:44:b5:47: 96:ce:40:2c:97:eb:bc:ed:aa:56:c6:0a:7e:13:bd: ed:e4:f4:0a:4d:81:7a:73:93:1e:3a:c2:d4:f8:d0: e5:74:b2:0a:0d:00:ba:0b:79:c1:90:c7:fa:45:5e: bf:ed:94:01:30:60:b3:d6:68:5f:df:02:7b:dc:cc: da:86:25:cf:49:ff:1f:fe:f6:df:de:96:8f:1d:9c: 85:84:56:ed:bf:a2:14:ad:ea:8d:69:82:3e:17:c2: 59:e0:2d:a7:f5:c7:28:da:10:79:72:fd:e8:e8:d3: 37:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:95:88:A7:1A:5C:09:6F:84:3B:28:69:85:66:5B:DD:41:49:B9:67 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/a5WIpxpcCW-EOyhphWZb3UFJuWc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.36.69.0/24 192.121.200.0/22 Signature Algorithm: sha256WithRSAEncryption b9:e5:d6:2b:29:0b:be:99:7c:ec:78:59:dc:42:e7:2e:f8:8a: 60:64:88:51:cc:7b:5e:55:db:7d:96:fa:4d:4c:e6:1d:8c:28: 43:d4:61:1c:da:e9:12:f1:48:fe:59:ed:b1:4e:01:c0:90:d1: 72:6b:d6:e5:39:34:96:72:d0:a1:b8:ac:88:a4:e2:33:19:47: 21:7c:e3:fe:be:82:0f:f7:66:1d:35:10:62:3c:3c:1f:c1:c6: 46:83:1d:b5:6f:e6:50:c3:d5:e2:b0:d0:ad:1c:65:4f:fc:3d: 8b:23:bd:33:da:9d:02:85:f1:b2:cb:1a:4a:16:b4:12:ed:ec: 98:ec:e9:89:24:58:6d:42:b5:a7:9b:a6:78:df:5b:6f:e3:53: 08:04:2a:b0:e1:1e:3d:16:c0:7b:43:55:f4:76:9f:fb:4c:97: da:7c:eb:04:89:d3:7f:e5:8a:59:77:dd:50:89:bb:a7:66:ff: 0e:58:31:a3:49:7e:f1:5c:43:93:47:ef:3c:83:f1:76:40:34: e6:1f:57:18:82:a7:8a:24:1a:34:d9:38:ee:0c:6f:f0:94:bc: 0b:fd:38:0a:82:c3:94:c2:ee:69:f7:d3:aa:b6:de:47:bc:1f: ca:6a:24:5d:40:77:66:40:7f:c5:92:32:3a:1a:d8:06:96:4e: 72:2c:f4:38 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NGF2D/pNuYEEBnXwEF4gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Yjk1ODhhNzFhNWMwOTZmODQzYjI4Njk4NTY2NWJkZDQxNDliOTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcYWl9aE90Vz5Sl4qb0+d9w1LCFl p2RZCxchM/2rifiAx9w3ygfStD77NK0m9C/hCu1mxukDh+w7wa0mM5+nFabad9yW O+K9gZTK1L+eR14xs9zMIM3XNIOJxAjL2ukWfkeei1890S338uffIos53ck8x6ma nWsXil/tE301eSBG9kxArTfyfa0oIkSvPKCQNlhEtUeWzkAsl+u87apWxgp+E73t 5PQKTYF6c5MeOsLU+NDldLIKDQC6C3nBkMf6RV6/7ZQBMGCz1mhf3wJ73MzahiXP Sf8f/vbf3paPHZyFhFbtv6IUreqNaYI+F8JZ4C2n9cco2hB5cv3o6NM3XwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGuViKcaXAlvhDsoaYVmW91BSblnMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvYTVXSXB4cGNDVy1FT3locGhXWmIzVUZKdVdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwCRFAwQC wHnIMA0GCSqGSIb3DQEBCwUAA4IBAQC55dYrKQu+mXzseFncQucu+IpgZIhRzHte Vdt9lvpNTOYdjChD1GEc2ukS8Uj+We2xTgHAkNFya9blOTSWctChuKyIpOIzGUch fOP+voIP92YdNRBiPDwfwcZGgx21b+ZQw9XisNCtHGVP/D2LI70z2p0ChfGyyxpK FrQS7eyY7OmJJFhtQrWnm6Z431tv41MIBCqw4R49FsB7Q1X0dp/7TJfafOsEidN/ 5YpZd91QibunZv8OWDGjSX7xXEOTR+88g/F2QDTmH1cYgqeKJBo02TjuDG/wlLwL /TgKgsOUwu5p99Oqtt5HvB/KaiRdQHdmQH/FkjI6GtgGlk5yLPQ4 -----END CERTIFICATE-----Generated at Sun Jan 25 10:30:19 2026 by rpki-client