This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/C5KHI6RHNe-c2_yE7mE0xFRL3gk.roa File: C5KHI6RHNe-c2_yE7mE0xFRL3gk.roa (raw, json) Hash identifier: +jtxc9DRUocKwAVf35hRGVq2koZLjGVbE1XT/GiZZ2w= Subject key identifier: 0B:92:87:23:A4:47:35:EF:9C:DB:FC:84:EE:61:34:C4:54:4B:DE:09 Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e Certificate serial: 019B7C7FBFDE9A6FA9AFA25584B688DD446B Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/C5KHI6RHNe-c2_yE7mE0xFRL3gk.roa Signing time: Fri 02 Jan 2026 02:18:25 +0000 ROA not before: Fri 02 Jan 2026 02:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 46516 IP address blocks: 2a06:2700::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.mft rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:bf:de:9a:6f:a9:af:a2:55:84:b6:88:dd:44:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e Validity Not Before: Jan 2 02:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0b928723a44735ef9cdbfc84ee6134c4544bde09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7b:55:d0:4a:16:c6:b2:b5:29:11:57:97:1c: e6:75:e4:08:86:9f:f2:7c:45:5b:a0:a3:d9:95:36: 57:1e:ed:47:e9:66:65:ee:42:bf:b6:23:48:d6:0d: 33:21:b7:ab:38:1b:ce:36:85:b6:31:68:6a:90:66: ca:f6:96:ff:fb:b0:61:53:9a:53:a3:38:a9:8d:88: 7c:62:03:3a:c0:10:ac:ae:4c:19:57:08:66:53:31: a3:09:6f:d3:6d:06:14:45:04:ca:ba:5d:9c:1a:c4: e8:89:92:78:dc:5f:bb:0f:9d:d9:ba:92:dc:0b:27: 37:82:41:af:11:68:4b:7d:73:15:ae:98:5b:f5:ab: 91:20:16:9b:39:d9:a4:71:de:af:2e:9b:e3:47:cb: 3d:6d:42:59:aa:37:ed:ca:31:8e:70:56:04:17:19: 95:82:dc:f1:81:23:3b:11:9c:e5:bd:6e:42:64:40: a4:51:58:e4:32:f9:26:ad:1f:25:45:42:e6:97:47: 51:40:ce:88:ce:f5:5e:05:d7:41:76:70:88:90:ca: 74:a4:31:42:24:81:d2:13:5b:a8:ca:4e:b2:4c:10: 50:32:51:4a:d1:ad:a5:37:78:1c:8b:3f:75:84:62: 7e:fc:0e:f9:f0:e8:05:d6:9f:9b:5c:39:7e:f9:33: 6f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:92:87:23:A4:47:35:EF:9C:DB:FC:84:EE:61:34:C4:54:4B:DE:09 X509v3 Authority Key Identifier: keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/C5KHI6RHNe-c2_yE7mE0xFRL3gk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:2700::/29 Signature Algorithm: sha256WithRSAEncryption 9e:a0:39:35:76:1d:78:41:48:b7:0a:cf:2e:1e:4c:3d:9f:a1: 70:a4:f5:b7:72:8a:c0:67:f9:bc:33:ec:fc:d8:58:01:3a:bf: a6:ec:f4:8a:aa:00:2e:c0:04:6d:7b:76:4c:15:64:bf:8d:3d: cb:3a:65:a7:8f:e1:0e:bf:7e:23:99:6c:ec:e2:15:5a:eb:03: cb:8b:7f:df:12:98:85:2a:9c:32:e5:89:96:79:29:69:4e:c7: b8:81:32:85:86:e4:01:c0:11:d2:1e:92:4f:bc:9c:88:6d:f8: ee:07:45:1e:16:0a:74:82:41:d7:77:c4:52:32:71:b6:2d:49: 81:f3:47:6f:86:46:03:e5:0b:30:cc:d5:7b:2f:1c:61:33:3d: 7f:62:11:cb:eb:0c:9e:26:4c:b6:b3:82:42:29:e9:e3:f0:12: 48:d3:d4:ab:29:93:ea:53:ba:b3:52:5b:97:64:fe:74:7b:8a: 0f:bf:a1:eb:7e:0b:64:fe:2d:97:38:94:df:9f:c8:75:06:e9: 09:ed:8c:a7:60:d0:b7:52:9e:48:25:8e:c3:f5:42:36:81:e0: d3:f3:c1:2a:71:6e:d2:4d:d2:a7:84:53:4b:5d:d1:24:a4:20: 24:23:7e:a2:fa:a7:55:f1:d4:64:38:e7:1e:f2:1f:ee:7e:a4: 3c:a0:d4:38 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8f7/emm+pr6JVhLaI3URrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMjIwOGI0N2I2YTg2NGQ5ZDFmZjMzZTA2YWE4MWQxMzgx OWE3NGUwHhcNMjYwMTAyMDIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYjkyODcyM2E0NDczNWVmOWNkYmZjODRlZTYxMzRjNDU0NGJkZTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHtV0EoWxrK1KRFXlxzmdeQIhp/y fEVboKPZlTZXHu1H6WZl7kK/tiNI1g0zIberOBvONoW2MWhqkGbK9pb/+7BhU5pT ozipjYh8YgM6wBCsrkwZVwhmUzGjCW/TbQYURQTKul2cGsToiZJ43F+7D53ZupLc Cyc3gkGvEWhLfXMVrphb9auRIBabOdmkcd6vLpvjR8s9bUJZqjftyjGOcFYEFxmV gtzxgSM7EZzlvW5CZECkUVjkMvkmrR8lRULml0dRQM6IzvVeBddBdnCIkMp0pDFC JIHSE1uoyk6yTBBQMlFK0a2lN3gciz91hGJ+/A758OgF1p+bXDl++TNviQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFAuShyOkRzXvnNv8hO5hNMRUS94JMB8GA1UdIwQY MBaAFJIiCLR7aoZNnR/zPgaqgdE4GadOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTct OTViMDhlMzY2MGNmLzEvQzVLSEk2UkhOZS1jMl95RTdtRTB4RlJMM2drLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTctOTViMDhlMzY2MGNm LzEva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgYnADAN BgkqhkiG9w0BAQsFAAOCAQEAnqA5NXYdeEFItwrPLh5MPZ+hcKT1t3KKwGf5vDPs /NhYATq/puz0iqoALsAEbXt2TBVkv409yzplp4/hDr9+I5ls7OIVWusDy4t/3xKY hSqcMuWJlnkpaU7HuIEyhYbkAcAR0h6ST7yciG347gdFHhYKdIJB13fEUjJxti1J gfNHb4ZGA+ULMMzVey8cYTM9f2IRy+sMniZMtrOCQinp4/ASSNPUqymT6lO6s1Jb l2T+dHuKD7+h634LZP4tlziU35/IdQbpCe2Mp2DQt1KeSCWOw/VCNoHg0/PBKnFu 0k3Sp4RTS13RJKQgJCN+ovqnVfHUZDjnHvIf7n6kPKDUOA== -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:23 2026 by rpki-client