This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/g1jS18XIbHFWOVajZeIylL4GTnk.roa File: g1jS18XIbHFWOVajZeIylL4GTnk.roa (raw, json) Hash identifier: nIY5TFtN0qxsWSA+nESd2yiE7XYpunnYw2JBRv2cMDc= Subject key identifier: 83:58:D2:D7:C5:C8:6C:71:56:39:56:A3:65:E2:32:94:BE:06:4E:79 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B7C1302C4B98959F710E894D245F6E4A6 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/g1jS18XIbHFWOVajZeIylL4GTnk.roa Signing time: Fri 02 Jan 2026 00:19:39 +0000 ROA not before: Fri 02 Jan 2026 00:19:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214127 IP address blocks: 5.231.58.0/24 maxlen: 24 5.231.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:02:c4:b9:89:59:f7:10:e8:94:d2:45:f6:e4:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Jan 2 00:19:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8358d2d7c5c86c71563956a365e23294be064e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:9b:5c:f3:ae:43:da:20:f2:57:5b:ca:c4: 04:b5:1f:7f:ec:8c:73:06:22:46:af:a5:41:42:5b: e7:c8:e5:7d:3d:1b:31:79:da:f4:5c:07:90:6a:e2: 8d:26:75:ba:e0:57:41:24:75:c3:76:fe:90:8e:b5: 7c:e5:08:56:fc:3e:e4:6e:81:1c:67:05:eb:34:a0: f8:31:22:d5:83:a5:05:ea:ad:e5:9b:66:0a:4c:a8: 37:97:db:92:b5:8c:ea:7f:ff:9e:63:71:cc:45:ad: 68:e3:98:d7:53:6d:86:7c:59:69:34:95:3e:4e:42: 9d:ec:35:1b:6f:16:8f:65:9b:f2:6d:71:b0:02:69: bd:27:fd:a0:1a:8c:ec:be:89:f9:fb:c4:7b:ce:d1: 7c:6d:02:d2:b9:64:9b:50:75:3c:fd:7f:25:20:52: 4c:48:8d:e5:8e:10:65:39:5e:c0:5d:60:aa:5c:21: 64:5a:85:f7:bb:37:cc:56:00:4f:55:ce:19:d3:53: 52:68:2a:42:30:2f:26:cf:a4:cf:c9:4a:74:01:e6: db:af:f6:a4:87:8e:e5:6c:90:16:81:18:28:fd:c9: fe:d9:34:79:ce:15:0d:8f:cc:aa:80:1b:a1:02:5a: 2a:a2:6f:e3:6d:a5:5c:34:6e:33:ce:13:fb:67:c8: df:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:58:D2:D7:C5:C8:6C:71:56:39:56:A3:65:E2:32:94:BE:06:4E:79 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/g1jS18XIbHFWOVajZeIylL4GTnk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.231.58.0/24 5.231.61.0/24 Signature Algorithm: sha256WithRSAEncryption b9:41:32:de:11:f1:6b:0f:c6:4c:10:57:0f:88:a5:7a:1f:8a: d5:49:74:c5:4c:da:43:2a:0b:e4:06:4e:1c:c9:0f:19:46:8a: 16:38:49:21:df:67:f8:76:7d:52:7d:f8:50:e3:5a:de:d3:c0: 5c:2a:c5:6c:32:fe:68:08:a5:de:fe:88:0d:06:aa:b7:47:71: c5:67:2c:ae:3a:84:fc:75:7d:e4:eb:ad:e4:4e:52:3e:0e:26: c8:05:98:99:de:34:f6:24:6c:4b:19:01:2d:db:8a:c3:0d:fb: 7e:e3:d7:d0:be:d8:50:f0:0b:e1:2e:04:9e:99:b3:5a:1d:d9: 6c:e3:f3:0a:36:1f:73:bb:e4:38:82:7e:b6:7a:94:63:e0:9a: 42:89:d6:6f:95:f5:d0:ea:49:bb:23:aa:f8:88:04:11:89:76: 70:33:90:7c:eb:a0:c8:3c:0d:9e:1e:07:20:6b:5b:f8:80:c0: ee:fe:a6:7c:a3:67:e9:dd:1f:6c:bd:59:46:8b:b4:60:35:32: 0d:07:20:00:2c:b7:7d:0a:52:1f:d6:ac:0c:51:7a:66:e1:4a: b3:28:95:13:29:43:9b:63:99:c9:f9:71:5f:8f:51:0a:e3:d1: 73:1d:bc:bb:5f:e8:d3:5f:d9:b7:90:e5:f6:69:da:40:56:ac: 1a:02:6a:4d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EwLEuYlZ9xDolNJF9uSmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjYwMTAyMDAxOTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzU4ZDJkN2M1Yzg2YzcxNTYzOTU2YTM2NWUyMzI5NGJlMDY0ZTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoo6bXPOuQ9og8ldbysQEtR9/7Ixz BiJGr6VBQlvnyOV9PRsxedr0XAeQauKNJnW64FdBJHXDdv6QjrV85QhW/D7kboEc ZwXrNKD4MSLVg6UF6q3lm2YKTKg3l9uStYzqf/+eY3HMRa1o45jXU22GfFlpNJU+ TkKd7DUbbxaPZZvybXGwAmm9J/2gGozsvon5+8R7ztF8bQLSuWSbUHU8/X8lIFJM SI3ljhBlOV7AXWCqXCFkWoX3uzfMVgBPVc4Z01NSaCpCMC8mz6TPyUp0Aebbr/ak h47lbJAWgRgo/cn+2TR5zhUNj8yqgBuhAloqom/jbaVcNG4zzhP7Z8jf/QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFINY0tfFyGxxVjlWo2XiMpS+Bk55MB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvZzFqUzE4WEliSEZXT1ZhalplSXlsTDRHVG5rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABec6AwQA Bec9MA0GCSqGSIb3DQEBCwUAA4IBAQC5QTLeEfFrD8ZMEFcPiKV6H4rVSXTFTNpD KgvkBk4cyQ8ZRooWOEkh32f4dn1SffhQ41re08BcKsVsMv5oCKXe/ogNBqq3R3HF ZyyuOoT8dX3k663kTlI+DibIBZiZ3jT2JGxLGQEt24rDDft+49fQvthQ8AvhLgSe mbNaHdls4/MKNh9zu+Q4gn62epRj4JpCidZvlfXQ6km7I6r4iAQRiXZwM5B866DI PA2eHgcga1v4gMDu/qZ8o2fp3R9svVlGi7RgNTINByAALLd9ClIf1qwMUXpm4Uqz KJUTKUObY5nJ+XFfj1EK49FzHby7X+jTX9m3kOX2adpAVqwaAmpN -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:19 2026 by rpki-client