This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/hNGVcRAWKch7wbr4t3XxbUYQ1R4.roa File: hNGVcRAWKch7wbr4t3XxbUYQ1R4.roa (raw, json) Hash identifier: vZVKd6hd6CqKb6rQzLQevzyNg555XjxtBAFVH63jI1k= Subject key identifier: 84:D1:95:71:10:16:29:C8:7B:C1:BA:F8:B7:75:F1:6D:46:10:D5:1E Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA77C655CDA641EC6B90E848B33CA52 Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/hNGVcRAWKch7wbr4t3XxbUYQ1R4.roa Signing time: Fri 02 Jan 2026 12:21:04 +0000 ROA not before: Fri 02 Jan 2026 12:21:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50714 IP address blocks: 5.143.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:7c:65:5c:da:64:1e:c6:b9:0e:84:8b:33:ca:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:21:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84d19571101629c87bc1baf8b775f16d4610d51e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fb:03:d1:62:68:b1:79:e3:a6:dd:ef:63:89: 81:50:da:a3:79:95:3d:f8:4c:be:83:4a:70:b0:6e: 83:30:b6:6a:52:16:23:16:f6:5c:52:31:c5:b3:86: 04:3d:d7:2f:d3:21:58:00:08:71:f1:70:15:e9:cf: af:7e:dd:67:f7:7d:5e:b2:45:c9:ec:38:8c:a5:72: a2:e9:f4:4f:76:76:5e:bb:38:f1:7b:aa:57:9b:62: d6:df:69:d6:b7:d7:29:17:14:64:1c:0f:c4:53:d6: 66:14:b9:80:bd:be:7d:ee:cd:4b:7d:7f:38:8e:49: ce:aa:b3:05:c3:77:e8:33:79:6a:ae:10:1c:7e:b7: 49:0a:9e:7a:3e:ae:11:ca:11:e3:1e:d9:b8:e6:a1: a5:ff:42:fd:e2:84:b8:c0:20:d6:c9:94:aa:fd:35: 97:67:f6:76:96:91:22:7c:4f:2a:c6:48:f9:f9:6b: 1e:9f:0a:73:e7:06:66:61:66:fb:5f:1e:da:0f:d3: 1d:56:15:77:1e:ed:0e:49:18:00:fb:0d:5e:47:0b: 10:73:da:82:bd:89:48:bf:14:ae:ea:cf:49:0e:40: 91:3a:f9:29:5b:0e:82:a8:af:95:bc:16:2c:cf:07: a2:6d:48:f4:d6:65:6b:62:cc:b5:db:96:83:e9:e6: c3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D1:95:71:10:16:29:C8:7B:C1:BA:F8:B7:75:F1:6D:46:10:D5:1E X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/hNGVcRAWKch7wbr4t3XxbUYQ1R4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.143.227.0/24 Signature Algorithm: sha256WithRSAEncryption 63:ba:bc:94:ab:8e:03:ed:32:5f:c6:cb:6d:65:e2:8b:82:14: fd:80:e5:9e:c7:1f:53:09:4e:8c:29:78:09:d2:af:95:61:b2: e8:e0:ff:08:bb:6e:05:67:e9:13:19:5b:38:0c:c3:c7:7c:0e: 7b:62:7b:b7:18:24:59:84:ac:51:8b:ee:ae:0a:a2:c4:ec:8a: 67:ef:d7:a3:65:22:c8:f9:59:86:06:93:f3:c3:93:63:2f:a7: 6b:d8:28:02:23:9f:df:72:6e:ca:80:40:1e:3f:98:c2:ed:bb: ff:ec:91:e5:0e:9d:6c:b0:9d:f4:56:73:c6:ca:d1:5d:77:39: 84:9a:17:84:c6:2e:a5:c9:31:43:32:ee:e7:10:dc:73:44:26: 98:55:8d:43:a5:69:2e:a0:c9:a3:9a:12:da:a6:82:22:5d:b6: 17:23:8a:f8:a4:9c:7f:10:b1:e6:b0:7c:c1:67:6d:3a:9c:31: 43:de:0a:ab:9a:42:b8:a1:5c:3a:0d:46:3d:56:cd:f0:6e:54: bc:a6:cc:16:e1:e1:ad:bd:b1:50:0b:0f:15:55:8e:a6:55:02: 9f:83:66:d6:9f:9e:86:2a:46:bc:e0:ae:00:28:b9:68:dd:99: d3:75:6d:fc:f5:70:49:91:b6:d4:9a:27:1b:ec:90:08:0e:88: c7:d6:6a:27 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p3xlXNpkHsa5DoSLM8pSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGQxOTU3MTEwMTYyOWM4N2JjMWJhZjhiNzc1ZjE2ZDQ2MTBkNTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/sD0WJosXnjpt3vY4mBUNqjeZU9 +Ey+g0pwsG6DMLZqUhYjFvZcUjHFs4YEPdcv0yFYAAhx8XAV6c+vft1n931eskXJ 7DiMpXKi6fRPdnZeuzjxe6pXm2LW32nWt9cpFxRkHA/EU9ZmFLmAvb597s1LfX84 jknOqrMFw3foM3lqrhAcfrdJCp56Pq4RyhHjHtm45qGl/0L94oS4wCDWyZSq/TWX Z/Z2lpEifE8qxkj5+Wsenwpz5wZmYWb7Xx7aD9MdVhV3Hu0OSRgA+w1eRwsQc9qC vYlIvxSu6s9JDkCROvkpWw6CqK+VvBYszweibUj01mVrYsy125aD6ebDdwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFITRlXEQFinIe8G6+Ld18W1GENUeMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvaE5HVmNSQVdLY2g3d2JyNHQzWHhiVVlRMVI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABY/jMA0G CSqGSIb3DQEBCwUAA4IBAQBjuryUq44D7TJfxsttZeKLghT9gOWexx9TCU6MKXgJ 0q+VYbLo4P8Iu24FZ+kTGVs4DMPHfA57Ynu3GCRZhKxRi+6uCqLE7Ipn79ejZSLI +VmGBpPzw5NjL6dr2CgCI5/fcm7KgEAeP5jC7bv/7JHlDp1ssJ30VnPGytFddzmE mheExi6lyTFDMu7nENxzRCaYVY1DpWkuoMmjmhLapoIiXbYXI4r4pJx/ELHmsHzB Z206nDFD3gqrmkK4oVw6DUY9Vs3wblS8pswW4eGtvbFQCw8VVY6mVQKfg2bWn56G Kka84K4AKLlo3ZnTdW389XBJkbbUmicb7JAIDojH1mon -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:24 2026 by rpki-client