This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/M-iyUcFiIpGBXytxyfelCROA0_w.roa File: M-iyUcFiIpGBXytxyfelCROA0_w.roa (raw, json) Hash identifier: g4M0g1y/ZBPnSa0093I71lrjvt2fSGhJoi/31vmfSe0= Subject key identifier: 33:E8:B2:51:C1:62:22:91:81:5F:2B:71:C9:F7:A5:09:13:80:D3:FC Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Certificate serial: 019B7E38291F4E19E85A9D21BFBF2548E232 Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/M-iyUcFiIpGBXytxyfelCROA0_w.roa Signing time: Fri 02 Jan 2026 10:19:28 +0000 ROA not before: Fri 02 Jan 2026 10:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56694 IP address blocks: 5.188.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:29:1f:4e:19:e8:5a:9d:21:bf:bf:25:48:e2:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Validity Not Before: Jan 2 10:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33e8b251c1622291815f2b71c9f7a5091380d3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d9:c8:8a:1f:46:37:6a:26:b1:ca:d7:9d:c5: ab:78:c3:78:eb:d2:76:56:48:72:0c:9f:10:d5:fc: 75:6a:c0:79:be:80:5a:32:74:99:15:46:2d:cd:41: 6f:e0:5f:80:7c:26:97:e9:e1:8d:fe:f3:8a:74:ac: e1:f8:22:5d:19:34:38:41:cb:87:78:b6:d2:c1:38: e3:07:e2:82:8d:8b:12:03:10:cf:e9:56:30:c5:6a: 4c:ee:85:f5:33:f2:83:38:d1:75:2c:c5:33:18:05: ea:48:d3:20:cd:83:a1:66:e3:05:7b:e9:69:35:17: 53:fc:19:7a:1c:d6:ce:80:cb:37:ae:c0:08:86:b5: 45:43:55:7b:1d:b7:51:69:30:24:a9:48:1a:f2:e8: 00:75:49:92:04:ab:21:4c:7c:fb:c0:e8:4e:ee:49: 80:19:88:05:4f:c0:13:14:56:c0:05:a9:f7:c0:8a: 5e:b5:ab:3c:77:a8:2c:97:1f:8c:f4:32:72:cb:68: c3:07:c6:45:8c:e7:53:e6:5f:ba:f4:fa:4e:b4:c2: d1:90:40:2d:21:10:82:8d:5c:9b:f0:61:2d:46:4c: 60:a2:fa:e7:15:4f:8e:a9:cb:39:dd:20:e7:8e:38: 50:f6:56:a7:6e:ba:ac:33:cc:72:10:2a:4d:b2:a1: 22:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E8:B2:51:C1:62:22:91:81:5F:2B:71:C9:F7:A5:09:13:80:D3:FC X509v3 Authority Key Identifier: keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/M-iyUcFiIpGBXytxyfelCROA0_w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.188.166.0/24 Signature Algorithm: sha256WithRSAEncryption 52:5f:f7:95:36:9b:c5:5d:70:fa:7b:64:c5:8d:8f:2e:e7:2f: 1a:6b:4e:0c:2e:d3:69:da:c5:4b:6a:ac:ad:f5:5f:8d:bf:d3: 28:43:44:5c:12:ba:33:10:2b:57:dd:62:c3:b2:2c:1d:a4:9d: 13:e8:5f:24:8d:3a:67:70:cb:13:94:77:e0:d7:c2:b7:2c:cd: 51:07:a3:70:05:c7:f2:7c:35:a0:ba:c4:4f:cb:b8:3e:1d:db: 6f:ec:ba:e0:61:a0:a9:6b:7a:43:af:fe:15:f4:0b:64:19:52: 56:65:13:63:c2:07:c9:65:24:85:bc:8e:22:90:e2:6a:14:09: 81:8e:fd:4d:48:36:1f:71:b2:69:6e:8b:63:0c:e1:b1:6a:98: 84:79:91:11:f1:d9:40:48:15:ff:59:e2:01:fe:72:f8:a4:06: 48:c4:85:06:1a:b4:73:9e:67:9d:b5:1d:1b:40:5d:d8:53:14: ea:0f:6d:6d:e9:82:9c:26:98:fc:ac:55:d3:7a:90:a9:0e:67: de:7d:a2:48:62:ba:34:d2:ed:5f:e7:d3:14:8d:e6:2f:6a:16: fa:ea:9d:37:4e:15:c4:aa:07:b1:ea:34:2a:51:f9:b9:6f:94: f5:90:0c:de:a7:fe:78:c5:79:16:cd:c4:e3:f2:3a:8e:94:e5: f6:7b:fa:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OCkfThnoWp0hv78lSOIyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl Y2EwNzEwHhcNMjYwMTAyMTAxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzM2U4YjI1MWMxNjIyMjkxODE1ZjJiNzFjOWY3YTUwOTEzODBkM2ZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNnIih9GN2omscrXncWreMN469J2 VkhyDJ8Q1fx1asB5voBaMnSZFUYtzUFv4F+AfCaX6eGN/vOKdKzh+CJdGTQ4QcuH eLbSwTjjB+KCjYsSAxDP6VYwxWpM7oX1M/KDONF1LMUzGAXqSNMgzYOhZuMFe+lp NRdT/Bl6HNbOgMs3rsAIhrVFQ1V7HbdRaTAkqUga8ugAdUmSBKshTHz7wOhO7kmA GYgFT8ATFFbABan3wIpetas8d6gslx+M9DJyy2jDB8ZFjOdT5l+69PpOtMLRkEAt IRCCjVyb8GEtRkxgovrnFU+Oqcs53SDnjjhQ9lanbrqsM8xyECpNsqEiDwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDPoslHBYiKRgV8rccn3pQkTgNP8MB8GA1UdIwQY MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt ODlkMDkyNDBjNDNiLzEvTS1peVVjRmlJcEdCWHl0eHlmZWxDUk9BMF93LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbymMA0G CSqGSIb3DQEBCwUAA4IBAQBSX/eVNpvFXXD6e2TFjY8u5y8aa04MLtNp2sVLaqyt 9V+Nv9MoQ0RcErozECtX3WLDsiwdpJ0T6F8kjTpncMsTlHfg18K3LM1RB6NwBcfy fDWgusRPy7g+Hdtv7LrgYaCpa3pDr/4V9AtkGVJWZRNjwgfJZSSFvI4ikOJqFAmB jv1NSDYfcbJpbotjDOGxapiEeZER8dlASBX/WeIB/nL4pAZIxIUGGrRznmedtR0b QF3YUxTqD21t6YKcJpj8rFXTepCpDmfefaJIYro00u1f59MUjeYvahb66p03ThXE qgex6jQqUfm5b5T1kAzep/54xXkWzcTj8jqOlOX2e/pL -----END CERTIFICATE-----Generated at Tue Jan 20 00:56:45 2026 by rpki-client