This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/GHgeSvR0nlIwq5g4En986B3g5Sc.roa File: GHgeSvR0nlIwq5g4En986B3g5Sc.roa (raw, json) Hash identifier: iPHEakcNZLRK2eMXB/3rOqacvijEmherqvZPa3kI1nc= Subject key identifier: 18:78:1E:4A:F4:74:9E:52:30:AB:98:38:12:7F:7C:E8:1D:E0:E5:27 Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA781B7ADCE5320475BE8AA1378CEFA Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/GHgeSvR0nlIwq5g4En986B3g5Sc.roa Signing time: Fri 02 Jan 2026 12:21:05 +0000 ROA not before: Fri 02 Jan 2026 12:21:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197571 IP address blocks: 5.143.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:81:b7:ad:ce:53:20:47:5b:e8:aa:13:78:ce:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:21:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18781e4af4749e5230ab9838127f7ce81de0e527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:da:2b:66:db:a8:f0:e2:1c:e1:60:75:1f:05: 4c:e8:a3:cf:1c:e4:f0:fd:a2:e8:fe:f3:07:b9:09: a9:27:89:21:db:8e:93:9a:30:68:b6:10:fa:02:1d: ac:2d:c7:68:87:cb:71:1b:5d:cc:1e:37:a5:4f:df: 65:40:df:ec:2b:d8:35:da:f0:5b:59:e3:22:59:84: a6:5e:b6:9d:e3:a9:6d:ab:1c:b7:56:87:33:56:bc: e5:4e:97:e9:ea:73:f1:66:44:0a:c2:14:07:02:b9: 1c:d4:5b:c6:7b:7d:dc:f7:da:2c:29:21:de:e7:3e: fb:ee:e8:8e:ce:6b:fd:82:f2:fb:bc:8b:e5:1f:10: 86:1f:60:4c:d3:c0:39:58:52:89:8b:a1:99:ae:f4: e1:04:f8:bf:bc:51:ac:0a:b0:f1:f9:db:82:82:f7: 3c:55:78:f3:a8:02:8a:ae:18:89:3b:ed:9f:b2:d7: f3:04:1f:0c:22:67:fd:05:c9:76:df:7c:c8:c8:40: f8:c1:2e:c0:92:9d:94:29:55:5d:1a:e4:aa:fc:d5: b3:46:c0:7e:cb:26:ef:1c:f2:07:87:3f:f1:92:69: f8:f1:3c:b8:69:3c:7a:2a:0a:27:7a:39:ca:23:28: 8d:d1:71:fc:b6:ae:8f:b1:e2:af:c7:35:67:68:69: f8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:78:1E:4A:F4:74:9E:52:30:AB:98:38:12:7F:7C:E8:1D:E0:E5:27 X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/GHgeSvR0nlIwq5g4En986B3g5Sc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.143.224.0/24 Signature Algorithm: sha256WithRSAEncryption 38:bf:f2:ae:cc:be:82:44:e9:ee:94:11:2b:a8:7d:a0:48:ed: 52:16:28:8c:b0:fd:74:1e:7c:0b:de:39:51:9d:b5:b8:5e:ff: d7:ab:b3:fc:ca:73:e8:19:d0:59:7e:3c:2a:f1:15:6b:7b:a1: 81:e0:33:de:89:1b:93:9b:43:84:24:b1:cc:3e:b9:df:f7:09: 1a:7a:ba:4d:c1:39:5c:ce:f2:43:b7:ee:e9:02:02:da:70:79: 30:4d:21:74:df:b1:11:06:29:f4:28:e9:ee:61:4e:64:fa:46: da:f1:53:27:1b:12:cf:26:b5:e8:3d:4c:01:a1:2c:29:c2:27: 88:26:64:cc:2f:3b:63:ab:ba:22:0a:d2:e8:b4:e2:91:b8:13: 5d:be:ca:35:7e:13:d8:ec:f7:8d:ad:43:58:ac:c0:73:e2:d1: d2:a2:08:3e:16:22:ec:43:18:a5:d9:15:e7:37:26:9d:ad:45: 6b:cf:fc:1d:37:16:7f:ae:0b:52:f1:ab:bb:71:61:e8:26:95: 9d:00:c7:e0:dc:8f:f9:2b:d3:ca:ad:fc:77:70:fd:df:d4:7e: 10:be:a5:01:2e:94:0f:a4:96:7c:03:87:90:f5:ef:1a:5d:66: 10:99:23:8c:97:24:cb:d1:12:81:90:1e:f0:3f:6f:5a:e8:6f: 48:85:43:51 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p4G3rc5TIEdb6KoTeM76MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODc4MWU0YWY0NzQ5ZTUyMzBhYjk4MzgxMjdmN2NlODFkZTBlNTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNorZtuo8OIc4WB1HwVM6KPPHOTw /aLo/vMHuQmpJ4kh246TmjBothD6Ah2sLcdoh8txG13MHjelT99lQN/sK9g12vBb WeMiWYSmXrad46ltqxy3VoczVrzlTpfp6nPxZkQKwhQHArkc1FvGe33c99osKSHe 5z777uiOzmv9gvL7vIvlHxCGH2BM08A5WFKJi6GZrvThBPi/vFGsCrDx+duCgvc8 VXjzqAKKrhiJO+2fstfzBB8MImf9Bcl233zIyED4wS7Akp2UKVVdGuSq/NWzRsB+ yybvHPIHhz/xkmn48Ty4aTx6KgonejnKIyiN0XH8tq6PseKvxzVnaGn46wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBh4Hkr0dJ5SMKuYOBJ/fOgd4OUnMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvR0hnZVN2UjBubEl3cTVnNEVuOTg2QjNnNVNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABY/gMA0G CSqGSIb3DQEBCwUAA4IBAQA4v/KuzL6CROnulBErqH2gSO1SFiiMsP10HnwL3jlR nbW4Xv/Xq7P8ynPoGdBZfjwq8RVre6GB4DPeiRuTm0OEJLHMPrnf9wkaerpNwTlc zvJDt+7pAgLacHkwTSF037ERBin0KOnuYU5k+kba8VMnGxLPJrXoPUwBoSwpwieI JmTMLztjq7oiCtLotOKRuBNdvso1fhPY7PeNrUNYrMBz4tHSogg+FiLsQxil2RXn NyadrUVrz/wdNxZ/rgtS8au7cWHoJpWdAMfg3I/5K9PKrfx3cP3f1H4QvqUBLpQP pJZ8A4eQ9e8aXWYQmSOMlyTL0RKBkB7wP29a6G9IhUNR -----END CERTIFICATE-----Generated at Mon Jan 26 01:41:42 2026 by rpki-client