This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/5lnasV2204ovFjXYLSXNVvtyrOk.roa File: 5lnasV2204ovFjXYLSXNVvtyrOk.roa (raw, json) Hash identifier: xjGig7wrwgL+6zENtEl5DMDRUc85WEr4TmfLvxx+0vU= Subject key identifier: E6:59:DA:B1:5D:B6:D3:8A:2F:16:35:D8:2D:25:CD:56:FB:72:AC:E9 Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d Certificate serial: 019B76EB4CEFD7A4442D4150F70476C4AF40 Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/5lnasV2204ovFjXYLSXNVvtyrOk.roa Signing time: Thu 01 Jan 2026 00:18:10 +0000 ROA not before: Thu 01 Jan 2026 00:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60895 IP address blocks: 185.23.112.0/22 maxlen: 22 185.23.112.0/23 maxlen: 23 185.23.112.0/24 maxlen: 24 185.23.113.0/24 maxlen: 24 185.23.114.0/23 maxlen: 23 185.23.114.0/24 maxlen: 24 185.23.115.0/24 maxlen: 24 2a00:6d20::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:4c:ef:d7:a4:44:2d:41:50:f7:04:76:c4:af:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d Validity Not Before: Jan 1 00:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e659dab15db6d38a2f1635d82d25cd56fb72ace9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a1:d9:f7:3a:0e:fb:6f:9c:45:d8:75:3b:f3: 37:c6:d8:ca:93:f2:3a:09:38:eb:97:4b:93:ad:6a: 8f:95:88:40:ae:64:bd:41:15:d3:fc:c7:91:e3:22: 9d:37:be:7e:0f:67:94:ad:6b:cf:10:5a:51:92:8e: 21:84:51:97:0f:6a:7d:07:6a:51:3d:7d:ba:d3:21: eb:72:bc:bb:ca:31:53:93:bb:2d:65:eb:72:5c:59: d2:bd:da:57:82:e6:67:75:c1:9b:40:a1:49:e2:95: 9f:49:e8:70:e2:20:1a:d1:93:2b:a5:5d:89:1a:ab: 3c:1e:9c:fe:da:53:82:37:26:b4:c8:e4:5e:a1:61: 14:3f:f9:84:3a:3c:15:83:9a:53:e1:9b:3d:c0:86: 2f:fb:4b:6d:cf:d5:e6:79:1a:be:75:5c:51:e0:7d: 6d:88:7f:5c:69:40:d2:a9:55:78:45:b0:fe:99:60: b8:41:40:7c:65:1e:ee:a6:6f:a2:8f:01:bc:0b:4a: 11:e0:38:a0:92:e0:c5:bf:59:46:b0:52:cd:04:4e: 82:be:e2:5b:8d:b8:99:bc:f6:64:cb:59:b2:46:1f: 73:38:d9:ff:9c:e1:e5:19:5c:bd:db:0b:14:a8:74: 5b:70:17:24:9a:48:bf:fe:5a:cd:3d:6b:fa:aa:68: 60:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:59:DA:B1:5D:B6:D3:8A:2F:16:35:D8:2D:25:CD:56:FB:72:AC:E9 X509v3 Authority Key Identifier: keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/5lnasV2204ovFjXYLSXNVvtyrOk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.23.112.0/22 IPv6: 2a00:6d20::/29 Signature Algorithm: sha256WithRSAEncryption 51:19:7b:dc:1b:e2:51:e7:18:ec:e4:ad:13:76:94:61:4c:33: d9:94:b6:23:e9:48:bd:a0:39:7b:4b:42:97:33:9d:54:e6:6b: 27:38:40:ba:44:66:a8:7a:14:3b:92:49:d1:40:0f:f9:f6:05: ba:b5:48:7b:3f:c0:cf:cf:b4:79:52:0f:ee:6e:24:ec:b1:07: 67:9d:83:36:58:a1:2f:2e:e1:d6:24:16:98:66:7f:0f:40:74: a3:fb:69:8e:2e:ad:c0:4b:95:f0:3b:ce:94:65:f0:58:1d:e6: cd:5f:27:8e:a7:b4:a8:81:27:76:f6:80:d4:d6:f9:d6:ea:16: ac:a3:99:cb:8a:e3:4b:f2:86:83:e8:8a:89:a4:5a:46:a5:17: cf:c5:b3:da:e4:f8:ce:26:9b:bf:74:46:58:02:ff:c9:e3:b8: 68:b7:98:2e:8b:2c:e7:2f:36:06:84:4b:bb:ac:e3:2a:e6:7c: 85:f0:91:b1:cd:4b:74:74:51:db:d6:d0:91:34:d7:e1:b0:99: 2a:da:6f:db:25:09:7f:a5:b1:75:88:01:cf:5f:9d:14:5d:62: c6:a8:0c:43:d3:35:28:19:e5:4a:95:87:dc:59:cd:43:20:0a: f6:3c:53:61:b9:7c:2f:01:ec:fc:ff:80:9d:5e:15:98:d7:b5: b6:63:9e:5d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt260zv16RELUFQ9wR2xK9AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YThkMzI1Zjk3YjAzNzEzMzQyNjgyZmM0MDhkNTMzNjg3 NDBlN2QwHhcNMjYwMTAxMDAxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjU5ZGFiMTVkYjZkMzhhMmYxNjM1ZDgyZDI1Y2Q1NmZiNzJhY2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6HZ9zoO+2+cRdh1O/M3xtjKk/I6 CTjrl0uTrWqPlYhArmS9QRXT/MeR4yKdN75+D2eUrWvPEFpRko4hhFGXD2p9B2pR PX260yHrcry7yjFTk7stZetyXFnSvdpXguZndcGbQKFJ4pWfSehw4iAa0ZMrpV2J Gqs8Hpz+2lOCNya0yOReoWEUP/mEOjwVg5pT4Zs9wIYv+0ttz9XmeRq+dVxR4H1t iH9caUDSqVV4RbD+mWC4QUB8ZR7upm+ijwG8C0oR4DigkuDFv1lGsFLNBE6CvuJb jbiZvPZky1myRh9zONn/nOHlGVy92wsUqHRbcBckmki//lrNPWv6qmhgWwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOZZ2rFdttOKLxY12C0lzVb7cqzpMB8GA1UdIwQY MBaAFIio0yX5ewNxM0JoL8QI1TNodA59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAt Y2YwM2ZhNGNhMDgzLzEvNWxuYXNWMjIwNG92RmpYWUxTWE5WdnR5ck9rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAtY2YwM2ZhNGNhMDgz LzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuRdwMA0E AgACMAcDBQMqAG0gMA0GCSqGSIb3DQEBCwUAA4IBAQBRGXvcG+JR5xjs5K0TdpRh TDPZlLYj6Ui9oDl7S0KXM51U5msnOEC6RGaoehQ7kknRQA/59gW6tUh7P8DPz7R5 Ug/ubiTssQdnnYM2WKEvLuHWJBaYZn8PQHSj+2mOLq3AS5XwO86UZfBYHebNXyeO p7SogSd29oDU1vnW6haso5nLiuNL8oaD6IqJpFpGpRfPxbPa5PjOJpu/dEZYAv/J 47hot5guiyznLzYGhEu7rOMq5nyF8JGxzUt0dFHb1tCRNNfhsJkq2m/bJQl/pbF1 iAHPX50UXWLGqAxD0zUoGeVKlYfcWc1DIAr2PFNhuXwvAez8/4CdXhWY17W2Y55d -----END CERTIFICATE-----Generated at Tue Feb 10 03:11:43 2026 by rpki-client