This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/t4R25ZXPVStjauKJN0GTtODr3yU.roa File: t4R25ZXPVStjauKJN0GTtODr3yU.roa (raw, json) Hash identifier: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI= Subject key identifier: B7:84:76:E5:95:CF:55:2B:63:6A:E2:89:37:41:93:B4:E0:EB:DF:25 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B7A59B28499876119BC9F7117A1EEFB40 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/t4R25ZXPVStjauKJN0GTtODr3yU.roa Signing time: Thu 01 Jan 2026 16:17:37 +0000 ROA not before: Thu 01 Jan 2026 16:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209854 IP address blocks: 5.182.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:b2:84:99:87:61:19:bc:9f:71:17:a1:ee:fb:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 1 16:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b78476e595cf552b636ae289374193b4e0ebdf25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:31:1a:6e:0f:77:a4:fb:c4:22:20:f6:af:82: a3:6a:63:ec:c7:5d:a6:3d:5d:dd:4f:a2:b3:95:a2: 6b:23:5d:ca:3d:e7:98:d2:21:b2:14:ce:2f:54:61: 7a:9f:92:74:a9:3d:f4:be:db:93:5a:0e:dd:d1:a4: 25:e3:49:62:d4:74:6a:83:88:6b:11:82:51:2c:5d: 7e:4e:5c:dd:0f:62:91:bf:e6:2f:8c:bb:7d:1d:72: ae:5c:06:d4:e4:c4:4c:9c:14:71:bb:7b:12:b6:19: 57:a8:bb:40:d2:c7:0b:9e:bd:56:b1:c6:69:49:a5: 0b:1e:2e:d0:ac:54:c4:48:07:3c:8c:55:ee:77:2f: 0f:23:b2:b0:70:9e:d9:e8:0e:bf:5e:3b:94:bb:19: 72:43:d2:3e:2c:10:48:43:70:25:8f:d8:6f:41:1e: 95:81:1d:7e:50:3e:bf:3b:cb:b4:1a:8b:95:cb:cb: 97:03:1f:9e:37:9f:3d:29:20:30:64:6f:36:a9:ef: 1d:19:af:21:d5:ad:d0:c1:e2:f6:8a:24:d4:3d:90: f4:31:3a:26:6c:c3:f0:03:b3:e9:81:16:f9:44:f2: c6:67:13:c1:4a:45:33:31:b7:99:d8:2d:94:00:9f: df:86:b0:2c:79:db:56:9c:34:a6:84:2a:49:41:6c: 2a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:84:76:E5:95:CF:55:2B:63:6A:E2:89:37:41:93:B4:E0:EB:DF:25 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/t4R25ZXPVStjauKJN0GTtODr3yU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.103.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:53:8a:45:67:83:a8:01:08:6a:0c:e1:fd:26:4e:42:3f:e3: 08:e7:db:4e:41:16:e7:d7:a0:15:3c:4d:ec:e8:f5:e1:1e:d4: 0b:c2:3d:9c:37:48:4d:01:b7:73:2f:2d:95:ad:28:ef:be:c3: 45:9c:a9:2c:ba:17:91:73:48:eb:a8:a5:72:96:39:d3:84:30: 10:8d:05:6e:8c:ca:ea:20:3a:fb:26:8d:bf:42:4b:97:7d:a4: 2c:22:a3:e1:bf:25:24:8d:0c:42:9e:18:9c:dd:88:b7:af:4b: 85:3f:05:b7:47:77:57:fe:99:8b:c4:42:ef:c5:da:e6:f9:c7: bb:62:7f:a9:03:d8:7c:6a:88:5b:81:4a:9f:35:19:83:48:63: d9:13:7d:a1:f6:55:ac:2f:81:10:dd:7f:aa:57:f5:2a:48:3a: 3a:f2:bf:32:ea:b5:ce:37:1d:9f:f9:34:64:53:3f:e0:98:1f: 98:53:d0:a9:c6:d3:1d:e8:aa:ee:40:11:5e:df:d9:93:c5:37: c7:04:44:8c:1c:51:ea:db:f4:47:d4:60:1c:14:13:b3:7b:5e: 9b:dc:63:4d:99:aa:46:57:17:d0:a8:2a:6d:f9:69:ba:c9:94: 29:00:49:b9:7c:9c:07:7d:e9:51:fc:f8:20:90:ad:07:51:af: 73:25:82:5e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WbKEmYdhGbyfcReh7vtAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTAxMTYxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzg0NzZlNTk1Y2Y1NTJiNjM2YWUyODkzNzQxOTNiNGUwZWJkZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzEabg93pPvEIiD2r4KjamPsx12m PV3dT6KzlaJrI13KPeeY0iGyFM4vVGF6n5J0qT30vtuTWg7d0aQl40li1HRqg4hr EYJRLF1+TlzdD2KRv+YvjLt9HXKuXAbU5MRMnBRxu3sSthlXqLtA0scLnr1WscZp SaULHi7QrFTESAc8jFXudy8PI7KwcJ7Z6A6/XjuUuxlyQ9I+LBBIQ3Alj9hvQR6V gR1+UD6/O8u0GouVy8uXAx+eN589KSAwZG82qe8dGa8h1a3QweL2iiTUPZD0MTom bMPwA7PpgRb5RPLGZxPBSkUzMbeZ2C2UAJ/fhrAsedtWnDSmhCpJQWwq6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLeEduWVz1UrY2riiTdBk7Tg698lMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvdDRSMjVaWFBWU3RqYXVLSk4wR1R0T0RyM3lVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbZnMA0G CSqGSIb3DQEBCwUAA4IBAQB9U4pFZ4OoAQhqDOH9Jk5CP+MI59tOQRbn16AVPE3s 6PXhHtQLwj2cN0hNAbdzLy2VrSjvvsNFnKksuheRc0jrqKVyljnThDAQjQVujMrq IDr7Jo2/QkuXfaQsIqPhvyUkjQxCnhic3Yi3r0uFPwW3R3dX/pmLxELvxdrm+ce7 Yn+pA9h8aohbgUqfNRmDSGPZE32h9lWsL4EQ3X+qV/UqSDo68r8y6rXONx2f+TRk Uz/gmB+YU9CpxtMd6KruQBFe39mTxTfHBESMHFHq2/RH1GAcFBOze16b3GNNmapG VxfQqCpt+Wm6yZQpAEm5fJwHfelR/PggkK0HUa9zJYJe -----END CERTIFICATE-----Generated at Mon Jan 5 03:58:39 2026 by rpki-client