This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kO5-uT448TUeeJJLiktWfY038-s.roa File: kO5-uT448TUeeJJLiktWfY038-s.roa (raw, json) Hash identifier: C0/Ff9QlqSkW3l++lhsrKBRuPUQux1tAYOKL6irvWR4= Subject key identifier: 90:EE:7E:B9:3E:38:F1:35:1E:78:92:4B:8A:4B:56:7D:8D:37:F3:EB Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E3933AB4C93BFEEB7C817A61A45A587 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kO5-uT448TUeeJJLiktWfY038-s.roa Signing time: Fri 02 Jan 2026 10:20:36 +0000 ROA not before: Fri 02 Jan 2026 10:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202673 IP address blocks: 163.5.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:33:ab:4c:93:bf:ee:b7:c8:17:a6:1a:45:a5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=90ee7eb93e38f1351e78924b8a4b567d8d37f3eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:80:1e:4d:16:85:50:b0:35:e5:19:0d:13:f7: 08:67:59:6b:88:e0:81:5d:c0:7f:58:33:fd:3b:4f: 8d:81:57:d6:22:4c:6c:58:ac:27:0a:18:9c:34:88: 30:4d:4d:c2:5d:d9:15:2e:f2:fe:f2:bd:9a:0d:85: de:1f:3b:9a:50:46:8d:c2:94:fd:4f:16:32:44:8f: 90:57:d3:e9:06:ab:a6:e5:ca:3c:8b:d0:40:fd:21: 0c:8e:63:5e:2c:80:fd:2b:d3:eb:63:b6:9e:3c:f9: 31:ec:a0:02:72:b8:e0:4e:f5:7d:d3:b5:91:f4:3c: 7b:72:21:0e:bd:46:08:8a:83:06:6e:e2:7a:51:11: bb:49:dd:ee:7e:33:3f:b6:7c:4b:54:02:9b:34:73: b2:b4:98:3d:f3:d6:72:e3:d6:9a:32:38:65:0d:d3: be:b9:f9:19:cc:b0:8c:2f:e1:69:8c:68:21:91:e8: b2:44:aa:bc:e3:28:33:3b:68:73:4e:31:e5:17:86: ca:5d:a0:04:41:fa:61:03:12:a6:74:91:a2:43:4b: 50:e5:c1:e7:04:e2:f2:6e:bc:58:ff:22:05:56:20: e7:37:1d:a2:3e:fb:a2:27:1d:4b:81:b5:0c:81:9f: 6b:f3:2f:3b:cd:7f:45:5c:f0:ba:1a:d3:87:e7:2d: a5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EE:7E:B9:3E:38:F1:35:1E:78:92:4B:8A:4B:56:7D:8D:37:F3:EB X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kO5-uT448TUeeJJLiktWfY038-s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.120.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:0f:35:1c:1f:02:73:3b:1a:f8:2b:05:b2:9b:19:2c:71:9e: a1:b1:98:77:70:44:f9:da:35:9a:14:08:d5:01:71:90:d3:51: 73:84:44:d5:72:b3:98:e0:6c:64:cc:ed:0a:e5:71:b4:cd:55: 0f:51:bd:9d:1c:35:76:76:e6:bd:4d:98:a9:00:e0:dc:3a:1d: 17:78:40:0a:2e:c5:92:c0:6f:96:cc:ee:ee:d4:67:27:a5:d5: 67:61:47:4a:38:c6:9f:37:2f:35:c5:d6:25:18:4b:d3:4a:d9: d9:b8:b6:3b:82:3d:bf:4d:13:6b:d9:95:ee:34:64:39:fc:20: 8d:0c:cc:b2:ae:f5:ee:a3:ae:90:62:07:3b:1f:5b:73:01:01: 37:c3:06:42:f7:73:15:fb:d6:d7:21:b9:88:ff:14:87:f2:84: ce:22:b2:f0:a0:05:78:63:10:0b:e8:24:02:d6:02:a3:d5:77: 07:10:7e:ef:c0:04:d6:7d:60:f9:e1:c1:d8:da:d6:fc:7c:0a: 8a:3f:52:e2:1f:a0:71:13:d2:d7:45:f5:99:54:8e:fd:ae:c1: 4f:66:b1:d9:6b:6e:36:e2:23:0f:fd:71:6b:4b:1e:c5:cb:87: f5:23:65:39:9b:2e:00:b2:13:de:a5:a2:b9:3d:53:bf:26:83: c2:0c:7f:91 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OTOrTJO/7rfIF6YaRaWHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MGVlN2ViOTNlMzhmMTM1MWU3ODkyNGI4YTRiNTY3ZDhkMzdmM2ViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIAeTRaFULA15RkNE/cIZ1lriOCB XcB/WDP9O0+NgVfWIkxsWKwnChicNIgwTU3CXdkVLvL+8r2aDYXeHzuaUEaNwpT9 TxYyRI+QV9PpBqum5co8i9BA/SEMjmNeLID9K9PrY7aePPkx7KACcrjgTvV907WR 9Dx7ciEOvUYIioMGbuJ6URG7Sd3ufjM/tnxLVAKbNHOytJg989Zy49aaMjhlDdO+ ufkZzLCML+FpjGghkeiyRKq84ygzO2hzTjHlF4bKXaAEQfphAxKmdJGiQ0tQ5cHn BOLybrxY/yIFViDnNx2iPvuiJx1LgbUMgZ9r8y87zX9FXPC6GtOH5y2lRwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJDufrk+OPE1HniSS4pLVn2NN/PrMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEva081LXVUNDQ4VFVlZUpKTGlrdFdmWTAzOC1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowV4MA0G CSqGSIb3DQEBCwUAA4IBAQBeDzUcHwJzOxr4KwWymxkscZ6hsZh3cET52jWaFAjV AXGQ01FzhETVcrOY4GxkzO0K5XG0zVUPUb2dHDV2dua9TZipAODcOh0XeEAKLsWS wG+WzO7u1GcnpdVnYUdKOMafNy81xdYlGEvTStnZuLY7gj2/TRNr2ZXuNGQ5/CCN DMyyrvXuo66QYgc7H1tzAQE3wwZC93MV+9bXIbmI/xSH8oTOIrLwoAV4YxAL6CQC 1gKj1XcHEH7vwATWfWD54cHY2tb8fAqKP1LiH6BxE9LXRfWZVI79rsFPZrHZa242 4iMP/XFrSx7Fy4f1I2U5my4AshPepaK5PVO/JoPCDH+R -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:14 2026 by rpki-client