This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bI2Fcx40NlcrVJ-2qM7r-PEAdkM.roa File: bI2Fcx40NlcrVJ-2qM7r-PEAdkM.roa (raw, json) Hash identifier: IYsxSsEJqe9SSXOgroMsqluOQS8U4W4z1v1/DL8DvIA= Subject key identifier: 6C:8D:85:73:1E:34:36:57:2B:54:9F:B6:A8:CE:EB:F8:F1:00:76:43 Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Certificate serial: 019B7E382B94C88AF97B29843B9EA04F45DF Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bI2Fcx40NlcrVJ-2qM7r-PEAdkM.roa Signing time: Fri 02 Jan 2026 10:19:29 +0000 ROA not before: Fri 02 Jan 2026 10:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60931 IP address blocks: 5.101.92.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:2b:94:c8:8a:f9:7b:29:84:3b:9e:a0:4f:45:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Validity Not Before: Jan 2 10:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c8d85731e3436572b549fb6a8ceebf8f1007643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4d:54:8d:79:6e:07:72:29:32:01:36:01:09: cb:5e:0a:a7:c6:d5:c6:98:55:39:e6:a4:f4:41:3c: 92:8e:a1:5e:f7:2a:75:08:3c:b4:14:43:09:6b:4c: 41:63:d8:4a:4d:57:26:94:20:b0:2f:2c:4d:0b:54: 78:8a:05:f8:2d:77:48:c9:88:0c:03:7d:ee:6d:f0: de:f0:7b:54:60:4a:0a:5e:8f:a7:88:3b:d1:f2:3e: c4:5c:e9:2e:7c:d2:6f:e9:c7:55:6a:38:6c:f0:62: 38:d1:b6:5d:4e:d4:b6:73:43:ff:d2:f2:39:b8:2b: 19:38:0b:77:90:3b:88:bb:4e:b3:bc:aa:f1:b5:19: ab:b6:3a:be:52:c6:04:79:17:de:fa:70:39:fc:bf: 32:58:42:62:07:dd:5f:a5:d9:df:06:4a:86:1a:43: 5d:9d:3a:5b:7e:6d:29:1a:1c:8c:20:70:47:f2:81: 38:e5:77:ab:33:7f:82:be:ef:79:53:0a:63:94:3a: 33:c7:6e:48:fe:3b:ae:c9:65:c7:b9:db:2a:dd:61: a6:b5:01:02:e7:ae:c5:5a:38:6e:c7:95:fd:81:65: 13:89:f4:fd:09:70:1b:ee:fa:d3:d1:7b:b6:30:9d: ac:d1:2b:9b:6e:2a:c9:a5:53:ff:b1:08:05:13:f0: 3c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:8D:85:73:1E:34:36:57:2B:54:9F:B6:A8:CE:EB:F8:F1:00:76:43 X509v3 Authority Key Identifier: keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bI2Fcx40NlcrVJ-2qM7r-PEAdkM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.101.92.0/22 Signature Algorithm: sha256WithRSAEncryption c7:87:b1:39:d4:a7:02:fa:e6:44:a8:7d:64:e8:3e:94:2e:95: b3:9a:00:83:ac:56:21:01:17:24:41:e9:e4:66:15:53:85:3b: ce:7a:e6:f0:fd:6b:67:21:70:b1:63:f7:de:cb:36:ab:bc:5f: 11:f5:ab:51:e7:5c:77:d7:c0:95:19:bf:d5:3b:d6:e1:f1:42: 7c:5f:ec:63:3f:9c:0e:3f:d3:dd:39:8d:c8:8f:29:11:56:d3: ac:c6:13:da:6b:ca:ba:08:25:3a:66:eb:51:33:91:a0:b9:4f: 03:f8:0d:02:fb:f7:65:44:c4:b4:c1:bc:19:04:d3:c1:85:4d: 09:81:a1:17:8e:a2:7c:2e:c5:f2:fe:84:82:85:3f:4a:01:d1: e9:7c:95:14:af:10:d2:41:ef:78:df:8f:21:c5:96:f3:12:1d: 53:78:94:ae:c3:c3:f1:48:2e:40:18:97:f4:a2:48:43:87:fc: 9e:72:2d:72:05:dc:d4:96:de:f8:e8:39:02:1a:24:c9:de:81: 89:b5:0e:64:c9:f3:e7:ad:5d:77:8b:6e:ce:16:7c:46:cb:e8: 01:84:0e:bf:32:00:a9:f3:da:44:ac:7f:da:28:52:d9:f8:d9: 7d:08:07:9b:42:85:5b:09:31:a5:23:03:d9:a3:d5:f4:b9:52: 20:79:c7:eb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OCuUyIr5eymEO56gT0XfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl Y2EwNzEwHhcNMjYwMTAyMTAxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzhkODU3MzFlMzQzNjU3MmI1NDlmYjZhOGNlZWJmOGYxMDA3NjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArU1UjXluB3IpMgE2AQnLXgqnxtXG mFU55qT0QTySjqFe9yp1CDy0FEMJa0xBY9hKTVcmlCCwLyxNC1R4igX4LXdIyYgM A33ubfDe8HtUYEoKXo+niDvR8j7EXOkufNJv6cdVajhs8GI40bZdTtS2c0P/0vI5 uCsZOAt3kDuIu06zvKrxtRmrtjq+UsYEeRfe+nA5/L8yWEJiB91fpdnfBkqGGkNd nTpbfm0pGhyMIHBH8oE45XerM3+Cvu95UwpjlDozx25I/juuyWXHudsq3WGmtQEC 567FWjhux5X9gWUTifT9CXAb7vrT0Xu2MJ2s0SubbirJpVP/sQgFE/A8LwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGyNhXMeNDZXK1SftqjO6/jxAHZDMB8GA1UdIwQY MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt ODlkMDkyNDBjNDNiLzEvYkkyRmN4NDBObGNyVkotMnFNN3ItUEVBZGtNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBWVcMA0G CSqGSIb3DQEBCwUAA4IBAQDHh7E51KcC+uZEqH1k6D6ULpWzmgCDrFYhARckQenk ZhVThTvOeubw/WtnIXCxY/feyzarvF8R9atR51x318CVGb/VO9bh8UJ8X+xjP5wO P9PdOY3IjykRVtOsxhPaa8q6CCU6ZutRM5GguU8D+A0C+/dlRMS0wbwZBNPBhU0J gaEXjqJ8LsXy/oSChT9KAdHpfJUUrxDSQe94348hxZbzEh1TeJSuw8PxSC5AGJf0 okhDh/yeci1yBdzUlt746DkCGiTJ3oGJtQ5kyfPnrV13i27OFnxGy+gBhA6/MgCp 89pErH/aKFLZ+Nl9CAebQoVbCTGlIwPZo9X0uVIgecfr -----END CERTIFICATE-----Generated at Tue Jan 20 09:21:57 2026 by rpki-client