This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/m5rD58AweHEvsDH4tbR7IKV265E.roa File: m5rD58AweHEvsDH4tbR7IKV265E.roa (raw, json) Hash identifier: ZtXIPbeCB1rz8AcZjfipOZe9HIQPbbVzu/XgM264hK0= Subject key identifier: 9B:9A:C3:E7:C0:30:78:71:2F:B0:31:F8:B5:B4:7B:20:A5:76:EB:91 Certificate issuer: /CN=c011ee066641750a51147d8dc99a1b105658d203 Certificate serial: 019B797E157C1E678427737DA48EFE57C256 Authority key identifier: C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/m5rD58AweHEvsDH4tbR7IKV265E.roa Signing time: Thu 01 Jan 2026 12:17:44 +0000 ROA not before: Thu 01 Jan 2026 12:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57184 IP address blocks: 185.128.200.0/22 maxlen: 22 2a03:9b60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.mft rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:15:7c:1e:67:84:27:73:7d:a4:8e:fe:57:c2:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c011ee066641750a51147d8dc99a1b105658d203 Validity Not Before: Jan 1 12:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b9ac3e7c03078712fb031f8b5b47b20a576eb91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:7d:74:24:0e:12:b7:df:27:e3:38:e2:9b:0e: ee:09:4d:09:6a:01:0e:14:6b:2e:4c:23:f1:cb:c3: fa:bb:2e:8f:38:1d:8a:ad:55:18:c1:64:6f:53:2e: 2b:3b:16:79:22:e7:31:d6:3c:53:23:99:9e:66:05: ce:0b:1f:7e:e2:b7:a3:c0:87:97:c8:ad:4e:0e:5a: 4e:67:3b:4c:33:1c:c4:6b:b7:d0:42:72:31:58:d3: fa:8d:dd:04:e0:ea:b9:f3:19:61:a4:c2:63:e6:03: c6:e8:ae:34:3a:b6:e0:0e:f9:0b:0c:63:13:87:21: 71:66:fb:36:c2:82:fa:53:b5:e5:0c:6d:d2:2d:c7: c9:05:24:1d:bd:eb:21:ed:3e:2f:a1:59:31:60:5b: 23:cd:66:5e:aa:ab:bb:74:22:70:39:dd:d3:9a:bf: ca:47:34:eb:7f:35:df:5d:af:c8:ce:e3:1d:d9:51: e7:55:39:fa:23:83:bb:a8:9c:e6:e1:22:17:c3:d6: d3:62:06:74:d7:60:da:66:ef:e1:0c:b5:59:ba:ea: 85:1b:18:f1:2a:1a:65:c4:49:32:22:29:1c:b6:17: 53:f3:81:ec:ec:c2:ed:63:6a:49:97:76:57:1d:7a: 8d:04:a4:5f:e2:b5:f6:e3:ec:66:d1:a1:8e:2f:90: 04:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9A:C3:E7:C0:30:78:71:2F:B0:31:F8:B5:B4:7B:20:A5:76:EB:91 X509v3 Authority Key Identifier: keyid:C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/m5rD58AweHEvsDH4tbR7IKV265E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.128.200.0/22 IPv6: 2a03:9b60::/32 Signature Algorithm: sha256WithRSAEncryption 01:58:de:94:bf:cd:7c:1a:f5:25:a5:3b:f6:ef:70:6e:17:b9: 4e:e5:47:b5:9a:64:9f:51:71:13:5b:d4:30:fe:ca:9a:2e:23: 52:5f:2a:03:52:ba:bf:53:3f:4d:c6:ba:de:ef:18:3b:e2:75: be:77:1c:73:b3:fe:79:a3:20:bb:ce:e9:00:6d:a3:5a:c0:43: 2b:e1:ae:e0:23:bc:56:cc:66:00:4b:ca:13:c4:b6:93:dd:b9: 0f:bf:3b:fb:cf:1a:76:c2:41:d5:30:50:13:80:16:ba:c8:2b: 2a:8a:5e:1f:aa:7a:8c:d2:28:51:f3:22:62:d1:1f:73:aa:a9: 7c:b2:e4:49:ef:2e:3f:34:b3:17:0d:99:e5:25:cd:7d:d8:16: 70:11:95:dc:49:ad:0c:4c:79:9b:7e:28:38:60:74:79:f1:af: 61:0d:9a:2d:4f:92:40:ef:88:7b:56:11:f5:08:99:bc:13:d8: a5:7d:b5:3c:9c:27:8e:b8:e3:9b:d3:ee:9c:fb:0e:ba:28:e2: 52:c6:08:a0:4b:df:40:77:e6:10:0e:59:7e:f3:0e:9e:62:1e: 19:c2:87:1c:62:6c:c7:ba:59:92:e4:bd:8c:6b:45:89:f4:86: 42:bb:19:c6:47:52:33:6c:79:a4:28:4e:19:29:c1:d0:5f:8d: 68:35:30:96 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fhV8HmeEJ3N9pI7+V8JWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwMTFlZTA2NjY0MTc1MGE1MTE0N2Q4ZGM5OWExYjEwNTY1 OGQyMDMwHhcNMjYwMTAxMTIxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjlhYzNlN2MwMzA3ODcxMmZiMDMxZjhiNWI0N2IyMGE1NzZlYjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7n10JA4St98n4zjimw7uCU0JagEO FGsuTCPxy8P6uy6POB2KrVUYwWRvUy4rOxZ5Iucx1jxTI5meZgXOCx9+4rejwIeX yK1ODlpOZztMMxzEa7fQQnIxWNP6jd0E4Oq58xlhpMJj5gPG6K40OrbgDvkLDGMT hyFxZvs2woL6U7XlDG3SLcfJBSQdvesh7T4voVkxYFsjzWZeqqu7dCJwOd3Tmr/K RzTrfzXfXa/IzuMd2VHnVTn6I4O7qJzm4SIXw9bTYgZ012DaZu/hDLVZuuqFGxjx KhplxEkyIikcthdT84Hs7MLtY2pJl3ZXHXqNBKRf4rX24+xm0aGOL5AEQwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJuaw+fAMHhxL7Ax+LW0eyClduuRMB8GA1UdIwQY MBaAFMAR7gZmQXUKURR9jcmaGxBWWNIDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0JIdUJtWkJkUXBSRkgyTnlab2JFRlpZMGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi85YmU4NTYtMGUzMi00MDBmLThlODkt MzY5Y2Q4YmUyNWZlLzEvbTVyRDU4QXdlSEV2c0RINHRiUjdJS1YyNjVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi85YmU4NTYtMGUzMi00MDBmLThlODktMzY5Y2Q4YmUyNWZl LzEvd0JIdUJtWkJkUXBSRkgyTnlab2JFRlpZMGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuYDIMA0E AgACMAcDBQAqA5tgMA0GCSqGSIb3DQEBCwUAA4IBAQABWN6Uv818GvUlpTv273Bu F7lO5Ue1mmSfUXETW9Qw/sqaLiNSXyoDUrq/Uz9Nxrre7xg74nW+dxxzs/55oyC7 zukAbaNawEMr4a7gI7xWzGYAS8oTxLaT3bkPvzv7zxp2wkHVMFATgBa6yCsqil4f qnqM0ihR8yJi0R9zqql8suRJ7y4/NLMXDZnlJc192BZwEZXcSa0MTHmbfig4YHR5 8a9hDZotT5JA74h7VhH1CJm8E9ilfbU8nCeOuOOb0+6c+w66KOJSxgigS99Ad+YQ Dll+8w6eYh4ZwoccYmzHulmS5L2Ma0WJ9IZCuxnGR1IzbHmkKE4ZKcHQX41oNTCW -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:32 2026 by rpki-client