This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/33c6ea-0aa2-4581-9418-3891e6fefea4/1/P5elOkBLveGl1Ib_d-hIHalet_Q.roa File: P5elOkBLveGl1Ib_d-hIHalet_Q.roa (raw, json) Hash identifier: yhnDVPZx7UIZ7b78IbUGd3YNtEhVBShWgFfNgBkV6AE= Subject key identifier: 3F:97:A5:3A:40:4B:BD:E1:A5:D4:86:FF:77:E8:48:1D:A9:5E:B7:F4 Certificate issuer: /CN=ada930587b4fd2fef728f056eca8688422c3b97c Certificate serial: 019B77C7370CBB06F902121A9231E4A8C913 Authority key identifier: AD:A9:30:58:7B:4F:D2:FE:F7:28:F0:56:EC:A8:68:84:22:C3:B9:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rakwWHtP0v73KPBW7KhohCLDuXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/33c6ea-0aa2-4581-9418-3891e6fefea4/1/P5elOkBLveGl1Ib_d-hIHalet_Q.roa Signing time: Thu 01 Jan 2026 04:18:22 +0000 ROA not before: Thu 01 Jan 2026 04:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56553 IP address blocks: 193.219.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/33c6ea-0aa2-4581-9418-3891e6fefea4/1/rakwWHtP0v73KPBW7KhohCLDuXw.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/33c6ea-0aa2-4581-9418-3891e6fefea4/1/rakwWHtP0v73KPBW7KhohCLDuXw.mft rsync://rpki.ripe.net/repository/DEFAULT/rakwWHtP0v73KPBW7KhohCLDuXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:37:0c:bb:06:f9:02:12:1a:92:31:e4:a8:c9:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ada930587b4fd2fef728f056eca8688422c3b97c Validity Not Before: Jan 1 04:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f97a53a404bbde1a5d486ff77e8481da95eb7f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:8d:f9:bd:bc:d5:33:66:d9:ef:22:1a:08:42: 95:30:b5:a6:c5:99:e4:ce:51:3c:96:7e:fc:c3:6c: 4c:34:4a:af:a2:4e:9b:59:f4:13:8f:00:a2:8b:8a: c3:2f:46:8d:42:b5:97:3e:e4:9e:57:5e:2b:50:c7: c3:e5:7a:25:a4:f4:0c:4e:c3:10:87:86:bd:a6:3c: 7b:75:cc:3c:86:17:13:8e:97:e5:9d:61:cb:a7:a8: 06:d4:69:95:c4:a5:50:cf:f8:76:db:fc:ab:81:02: c3:84:0b:23:c4:ff:ca:75:14:ea:44:ae:86:80:b8: c4:9e:e7:50:0e:e7:f6:f6:ff:21:32:6f:51:7e:67: 5e:dd:8d:fe:5a:07:4c:73:0a:02:6e:fe:6f:a3:da: 98:46:d2:fd:bf:95:00:fd:4f:96:37:1c:bf:f1:ff: 11:d4:c7:0a:2c:56:15:d0:aa:94:5c:ff:b1:ef:8b: 94:f8:df:b2:56:50:da:a3:e5:81:f8:58:63:5c:51: 38:56:b1:c7:54:cb:e8:31:7c:10:65:68:ab:64:71: b7:82:e7:60:a1:d8:d7:b1:a5:95:a9:1a:dd:b0:f4: 05:e1:0e:fb:a2:4a:c4:f3:75:b4:57:c5:40:7b:82: 06:a9:0b:8c:42:c1:30:23:09:fd:a1:ea:88:78:30: d4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:97:A5:3A:40:4B:BD:E1:A5:D4:86:FF:77:E8:48:1D:A9:5E:B7:F4 X509v3 Authority Key Identifier: keyid:AD:A9:30:58:7B:4F:D2:FE:F7:28:F0:56:EC:A8:68:84:22:C3:B9:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rakwWHtP0v73KPBW7KhohCLDuXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/33c6ea-0aa2-4581-9418-3891e6fefea4/1/P5elOkBLveGl1Ib_d-hIHalet_Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/33c6ea-0aa2-4581-9418-3891e6fefea4/1/rakwWHtP0v73KPBW7KhohCLDuXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.219.119.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e4:22:31:db:85:82:6c:b8:8d:9d:71:fd:b8:dc:54:40:5b: 1e:16:35:35:b7:f1:c7:14:12:99:20:aa:34:6a:f6:36:83:55: 5d:7a:7e:1d:7e:00:29:a2:93:d6:28:50:d1:e8:1f:e9:7b:ee: 22:85:f2:0e:5a:70:4d:79:c7:5b:28:4a:53:f4:35:06:af:43: 78:c5:65:cd:98:b6:0c:44:51:d1:bc:3a:c4:35:8f:ec:9e:8a: 74:9b:d3:85:fa:1b:c4:21:55:07:34:2c:ed:b7:b4:75:38:f0: 3d:80:68:c6:01:79:a7:78:88:b7:46:a5:74:6e:79:d5:b6:e5: 3b:cd:e8:c9:53:52:3a:b8:d7:04:46:59:af:31:ca:0d:18:60: b9:ef:47:83:3f:80:e3:b8:12:da:1d:d9:1c:d2:57:56:10:32: b5:77:59:1b:ac:d4:76:88:e3:75:8f:31:7c:0f:e6:9f:e0:af: 73:17:3d:5e:c1:4d:51:e5:1a:82:59:d2:58:f7:ac:31:bb:24: 78:34:17:c4:0b:a4:d1:2c:c6:63:1e:33:c2:cb:e6:50:26:bf: 0f:37:23:8b:2d:b1:28:df:4b:58:84:95:27:6e:e4:ea:a1:a2: 27:84:c1:af:f2:d4:3d:bd:de:c0:2b:1c:39:8c:7d:ed:1d:89: 0e:cc:41:1d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xzcMuwb5AhIakjHkqMkTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkYTkzMDU4N2I0ZmQyZmVmNzI4ZjA1NmVjYTg2ODg0MjJj M2I5N2MwHhcNMjYwMTAxMDQxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjk3YTUzYTQwNGJiZGUxYTVkNDg2ZmY3N2U4NDgxZGE5NWViN2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmI35vbzVM2bZ7yIaCEKVMLWmxZnk zlE8ln78w2xMNEqvok6bWfQTjwCii4rDL0aNQrWXPuSeV14rUMfD5XolpPQMTsMQ h4a9pjx7dcw8hhcTjpflnWHLp6gG1GmVxKVQz/h22/yrgQLDhAsjxP/KdRTqRK6G gLjEnudQDuf29v8hMm9Rfmde3Y3+WgdMcwoCbv5vo9qYRtL9v5UA/U+WNxy/8f8R 1McKLFYV0KqUXP+x74uU+N+yVlDao+WB+FhjXFE4VrHHVMvoMXwQZWirZHG3gudg odjXsaWVqRrdsPQF4Q77okrE83W0V8VAe4IGqQuMQsEwIwn9oeqIeDDUFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD+XpTpAS73hpdSG/3foSB2pXrf0MB8GA1UdIwQY MBaAFK2pMFh7T9L+9yjwVuyoaIQiw7l8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmFrd1dIdFAwdjczS1BCVzdLaG9oQ0xEdVh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8zM2M2ZWEtMGFhMi00NTgxLTk0MTgt Mzg5MWU2ZmVmZWE0LzEvUDVlbE9rQkx2ZUdsMUliX2QtaElIYWxldF9RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy8zM2M2ZWEtMGFhMi00NTgxLTk0MTgtMzg5MWU2ZmVmZWE0 LzEvcmFrd1dIdFAwdjczS1BCVzdLaG9oQ0xEdVh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwdt3MA0G CSqGSIb3DQEBCwUAA4IBAQCb5CIx24WCbLiNnXH9uNxUQFseFjU1t/HHFBKZIKo0 avY2g1Vden4dfgApopPWKFDR6B/pe+4ihfIOWnBNecdbKEpT9DUGr0N4xWXNmLYM RFHRvDrENY/snop0m9OF+hvEIVUHNCztt7R1OPA9gGjGAXmneIi3RqV0bnnVtuU7 zejJU1I6uNcERlmvMcoNGGC570eDP4DjuBLaHdkc0ldWEDK1d1kbrNR2iON1jzF8 D+af4K9zFz1ewU1R5RqCWdJY96wxuyR4NBfEC6TRLMZjHjPCy+ZQJr8PNyOLLbEo 30tYhJUnbuTqoaInhMGv8tQ9vd7AKxw5jH3tHYkOzEEd -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:38 2026 by rpki-client