This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/A_5M0CfXYUUC_BjsX_wFA_AapkY.roa File: A_5M0CfXYUUC_BjsX_wFA_AapkY.roa (raw, json) Hash identifier: UxtCMoKmpdBbD3cNYjI3Iakd8mHfIDVh+Sc1KrYzV8A= Subject key identifier: 03:FE:4C:D0:27:D7:61:45:02:FC:18:EC:5F:FC:05:03:F0:1A:A6:46 Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6 Certificate serial: 019B7B35EC833F2E02D3430C2E7BB81C916C Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/A_5M0CfXYUUC_BjsX_wFA_AapkY.roa Signing time: Thu 01 Jan 2026 20:18:09 +0000 ROA not before: Thu 01 Jan 2026 20:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 193.36.66.0/24 maxlen: 24 193.36.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ec:83:3f:2e:02:d3:43:0c:2e:7b:b8:1c:91:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6 Validity Not Before: Jan 1 20:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03fe4cd027d7614502fc18ec5ffc0503f01aa646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:18:3f:df:a1:ad:f1:c6:51:c6:b8:a6:30:1d: 84:6a:45:85:90:c7:72:da:17:21:46:1a:23:a5:ad: b7:7a:cc:98:72:d2:76:ce:e5:a4:4a:a2:33:20:65: 49:5a:58:07:05:f2:ff:40:3c:80:2a:97:f2:a8:22: b4:89:76:72:4e:61:11:c9:a7:eb:14:eb:07:f6:77: 68:3d:b7:a2:cc:78:16:c4:03:79:ae:18:c6:45:43: 1a:6a:2e:8f:4e:0f:c5:1c:99:1b:7d:d3:3e:d2:e7: 13:ea:58:ba:9f:83:e5:f6:05:e2:7a:57:d5:09:59: 57:4f:d2:0c:2c:a4:8e:7a:59:e0:8f:43:e9:7f:fe: be:d5:18:db:b5:3f:71:15:9a:83:75:fa:dc:39:6c: b2:0d:13:fe:aa:8b:e3:ce:aa:4d:cf:e9:b3:63:dc: 3c:1d:b8:37:5d:c5:19:23:8d:8c:59:97:f5:28:11: 28:97:01:c5:53:1e:41:d7:30:ea:45:f4:3d:04:67: ff:b9:1c:ea:87:37:eb:63:dd:33:2c:d3:78:68:3f: de:dc:f0:75:fc:7a:17:70:12:1b:0e:f3:43:d2:fd: fc:8f:0a:35:f9:ae:f3:98:07:9e:8a:de:18:a4:e0: 11:71:93:8c:78:79:cc:ea:85:9a:50:32:fe:e8:02: ef:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:FE:4C:D0:27:D7:61:45:02:FC:18:EC:5F:FC:05:03:F0:1A:A6:46 X509v3 Authority Key Identifier: keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/A_5M0CfXYUUC_BjsX_wFA_AapkY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.36.66.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:c0:c2:6a:b4:95:e3:2d:dd:8c:18:17:54:2d:9d:c5:23:d8: 18:94:5e:21:71:ee:ff:5e:bc:5d:b2:88:3d:b5:f2:99:cd:66: 67:b1:57:30:4b:9b:2f:89:8f:a6:c5:3c:1b:b7:be:e6:8a:aa: 20:b1:84:6f:a9:0b:e0:4c:0e:cc:53:3c:92:68:08:3e:7b:2a: c8:a3:44:ae:6b:ed:73:76:e3:43:64:32:78:ea:44:f7:ff:cd: 80:20:82:68:e0:99:c7:f1:d6:6d:35:93:12:13:1a:ad:8e:1f: c3:cc:55:0f:71:b9:69:6b:d2:b2:2e:b8:c3:c4:c7:5f:1d:76: e0:5c:1f:5b:5a:23:6b:c0:75:85:62:3a:ec:01:99:15:ad:42: bb:5c:49:8e:df:1a:7d:f9:15:21:9a:12:c4:4d:cc:ca:cd:7d: ed:4b:93:81:86:33:cc:bb:8a:d7:ed:0e:2c:37:03:d4:9a:70: 5e:ac:e1:cf:02:2a:0d:37:55:7e:f6:97:4b:d7:0e:b5:68:35: 7c:6f:8e:e6:dc:a9:0c:b3:b1:18:3d:d3:45:c7:f1:97:a9:89: d3:c3:fe:53:f8:52:ce:f0:43:c6:ee:cb:24:72:08:80:ce:44: 6b:1f:8c:66:be:89:da:5b:40:5e:83:d7:35:b1:19:47:73:43: a9:39:1e:0f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NeyDPy4C00MMLnu4HJFsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YTk3NTIzOWZkZDQ0M2I3ZDNkODJlMzkyYTllNGFlMzky MThlZjYwHhcNMjYwMTAxMjAxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwM2ZlNGNkMDI3ZDc2MTQ1MDJmYzE4ZWM1ZmZjMDUwM2YwMWFhNjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxg/36Gt8cZRxrimMB2EakWFkMdy 2hchRhojpa23esyYctJ2zuWkSqIzIGVJWlgHBfL/QDyAKpfyqCK0iXZyTmERyafr FOsH9ndoPbeizHgWxAN5rhjGRUMaai6PTg/FHJkbfdM+0ucT6li6n4Pl9gXielfV CVlXT9IMLKSOelngj0Ppf/6+1RjbtT9xFZqDdfrcOWyyDRP+qovjzqpNz+mzY9w8 Hbg3XcUZI42MWZf1KBEolwHFUx5B1zDqRfQ9BGf/uRzqhzfrY90zLNN4aD/e3PB1 /HoXcBIbDvND0v38jwo1+a7zmAeeit4YpOARcZOMeHnM6oWaUDL+6ALvlwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAP+TNAn12FFAvwY7F/8BQPwGqZGMB8GA1UdIwQY MBaAFKWpdSOf3UQ7fT2C45Kp5K45IY72MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGFsMUk1X2RSRHQ5UFlMamtxbmtyamtoanZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mMjcwMGItOTg1My00MTcyLTlhNjEt YTY5MTQ0OGIyZWM0LzEvQV81TTBDZlhZVVVDX0Jqc1hfd0ZBX0FhcGtZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mMjcwMGItOTg1My00MTcyLTlhNjEtYTY5MTQ0OGIyZWM0 LzEvcGFsMUk1X2RSRHQ5UFlMamtxbmtyamtoanZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSRCMA0G CSqGSIb3DQEBCwUAA4IBAQCewMJqtJXjLd2MGBdULZ3FI9gYlF4hce7/Xrxdsog9 tfKZzWZnsVcwS5sviY+mxTwbt77miqogsYRvqQvgTA7MUzySaAg+eyrIo0Sua+1z duNDZDJ46kT3/82AIIJo4JnH8dZtNZMSExqtjh/DzFUPcblpa9KyLrjDxMdfHXbg XB9bWiNrwHWFYjrsAZkVrUK7XEmO3xp9+RUhmhLETczKzX3tS5OBhjPMu4rX7Q4s NwPUmnBerOHPAioNN1V+9pdL1w61aDV8b47m3KkMs7EYPdNFx/GXqYnTw/5T+FLO 8EPG7sskcgiAzkRrH4xmvonaW0Beg9c1sRlHc0OpOR4P -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:23 2026 by rpki-client