This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/5l92TKSO_nkIuzIJ4zucDeK79pk.roa File: 5l92TKSO_nkIuzIJ4zucDeK79pk.roa (raw, json) Hash identifier: XUtIUMfFBwHG02M6rf+xdt+n5Vz/NsIVHT2NMMg6/cc= Subject key identifier: E6:5F:76:4C:A4:8E:FE:79:08:BB:32:09:E3:3B:9C:0D:E2:BB:F6:99 Certificate issuer: /CN=b0095ed011c94358245c32757d46bed860df4c19 Certificate serial: 019B7D5ADFB94274D3173341E461B9544401 Authority key identifier: B0:09:5E:D0:11:C9:43:58:24:5C:32:75:7D:46:BE:D8:60:DF:4C:19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/5l92TKSO_nkIuzIJ4zucDeK79pk.roa Signing time: Fri 02 Jan 2026 06:17:46 +0000 ROA not before: Fri 02 Jan 2026 06:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200209 IP address blocks: 5.63.20.0/24 maxlen: 24 185.23.109.0/24 maxlen: 24 2a13:a000::/32 maxlen: 32 2a13:a000:1000::/36 maxlen: 36 2a13:a000:2000::/36 maxlen: 36 2a13:a000:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.mft rsync://rpki.ripe.net/repository/DEFAULT/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:df:b9:42:74:d3:17:33:41:e4:61:b9:54:44:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0095ed011c94358245c32757d46bed860df4c19 Validity Not Before: Jan 2 06:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e65f764ca48efe7908bb3209e33b9c0de2bbf699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6c:d6:8b:1f:2a:ee:5e:fd:a0:a3:9b:51:26: aa:e3:a3:75:de:e0:6e:ef:87:67:08:6e:81:e2:2e: 99:27:c7:1d:7d:bd:8b:85:4d:40:4b:6f:35:38:4a: c9:77:f2:77:92:eb:20:a1:be:b2:14:1c:cb:9f:58: 64:5c:b6:fa:86:c5:94:89:15:a9:87:25:b4:97:46: 0d:14:41:8f:47:89:e5:bb:e2:af:61:90:26:0c:de: d4:f7:22:99:73:66:b2:c0:91:da:a1:0e:c6:bc:df: c4:b1:6d:4e:dc:cb:6e:63:b7:a6:11:f5:0e:5a:b6: 10:f1:93:c5:b8:10:bf:01:69:00:b0:1f:00:c3:17: d9:d1:97:b3:03:69:f8:42:e9:5d:18:f1:5b:6c:14: 1f:62:0b:49:78:84:e1:97:03:69:f2:0d:85:91:1e: 88:1a:dd:c1:5b:3c:54:c7:d4:0e:57:8d:11:82:b6: fa:de:16:89:c5:69:01:ee:bf:22:1d:5c:1d:72:7d: 05:a8:ca:2e:3d:79:1b:93:21:b7:57:a9:95:4c:02: 84:ac:f3:aa:28:c4:b9:9c:4b:a0:90:64:ab:d7:b1: f3:b8:e7:0e:32:ce:3d:1b:55:a3:a7:31:31:50:d6: ab:8a:f9:32:5e:31:90:56:85:29:1b:1c:09:9f:3a: 90:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:5F:76:4C:A4:8E:FE:79:08:BB:32:09:E3:3B:9C:0D:E2:BB:F6:99 X509v3 Authority Key Identifier: keyid:B0:09:5E:D0:11:C9:43:58:24:5C:32:75:7D:46:BE:D8:60:DF:4C:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/5l92TKSO_nkIuzIJ4zucDeK79pk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.63.20.0/24 185.23.109.0/24 IPv6: 2a13:a000::/32 Signature Algorithm: sha256WithRSAEncryption ad:c3:99:ee:2b:e1:ae:d1:72:43:16:61:cd:29:67:8f:01:44: 65:be:aa:52:66:76:dc:93:47:61:44:69:cf:b2:61:87:4a:ad: 85:11:4f:02:d6:e2:cb:6f:79:9c:fd:83:8d:06:ca:a5:5d:c8: a8:9b:c4:31:7c:33:fc:2b:32:05:1d:8f:70:44:59:87:1b:70: d4:8d:61:ff:1d:02:21:8f:12:c2:5b:d2:05:79:e3:c8:9b:9c: 6c:d1:df:61:39:f2:f1:65:ef:8f:2d:a2:b5:8e:d4:94:d4:2f: 7f:d5:36:38:27:c6:bd:9c:78:16:13:f8:87:8a:d8:4f:45:5f: 63:db:7d:b0:33:87:01:c4:0f:f3:74:e4:1d:cc:e6:54:3e:22: ac:db:87:f3:d3:c4:b0:c9:ba:31:60:d9:73:c9:34:49:9a:9b: 56:69:fe:eb:0e:a4:32:39:fe:f3:3f:36:ef:20:1b:f3:47:5e: b3:d0:87:12:5f:37:a5:bc:70:b0:5b:b4:a1:f0:8e:65:2c:c7: 6c:8f:fd:6c:0f:c2:d1:39:a1:36:a3:6d:90:d4:c4:1e:11:8d: a8:9b:c3:2c:4c:6f:7a:7b:9d:ea:ab:9c:12:b4:c3:e2:3f:2b: 4e:60:48:f3:ba:80:a6:73:ea:47:d8:69:16:bf:a7:b2:0c:68: ff:67:cc:96 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt9Wt+5QnTTFzNB5GG5VEQBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwMDk1ZWQwMTFjOTQzNTgyNDVjMzI3NTdkNDZiZWQ4NjBk ZjRjMTkwHhcNMjYwMTAyMDYxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjVmNzY0Y2E0OGVmZTc5MDhiYjMyMDllMzNiOWMwZGUyYmJmNjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGzWix8q7l79oKObUSaq46N13uBu 74dnCG6B4i6ZJ8cdfb2LhU1AS281OErJd/J3kusgob6yFBzLn1hkXLb6hsWUiRWp hyW0l0YNFEGPR4nlu+KvYZAmDN7U9yKZc2aywJHaoQ7GvN/EsW1O3MtuY7emEfUO WrYQ8ZPFuBC/AWkAsB8AwxfZ0ZezA2n4QuldGPFbbBQfYgtJeIThlwNp8g2FkR6I Gt3BWzxUx9QOV40Rgrb63haJxWkB7r8iHVwdcn0FqMouPXkbkyG3V6mVTAKErPOq KMS5nEugkGSr17HzuOcOMs49G1WjpzExUNarivkyXjGQVoUpGxwJnzqQ+QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFOZfdkykjv55CLsyCeM7nA3iu/aZMB8GA1UdIwQY MBaAFLAJXtARyUNYJFwydX1Gvthg30wZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0FsZTBCSEpRMWdrWERKMWZVYS0yR0RmVEJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80OWNkZWMtNjlmMC00NTQwLTg5YmEt ZWE0NTk2OTk1MGNjLzEvNWw5MlRLU09fbmtJdXpJSjR6dWNEZUs3OXBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80OWNkZWMtNjlmMC00NTQwLTg5YmEtZWE0NTk2OTk1MGNj LzEvc0FsZTBCSEpRMWdrWERKMWZVYS0yR0RmVEJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQABT8UAwQA uRdtMA0EAgACMAcDBQAqE6AAMA0GCSqGSIb3DQEBCwUAA4IBAQCtw5nuK+Gu0XJD FmHNKWePAURlvqpSZnbck0dhRGnPsmGHSq2FEU8C1uLLb3mc/YONBsqlXciom8Qx fDP8KzIFHY9wRFmHG3DUjWH/HQIhjxLCW9IFeePIm5xs0d9hOfLxZe+PLaK1jtSU 1C9/1TY4J8a9nHgWE/iHithPRV9j232wM4cBxA/zdOQdzOZUPiKs24fz08Swybox YNlzyTRJmptWaf7rDqQyOf7zPzbvIBvzR16z0IcSXzelvHCwW7Sh8I5lLMdsj/1s D8LROaE2o22Q1MQeEY2om8MsTG96e53qq5wStMPiPytOYEjzuoCmc+pH2GkWv6ey DGj/Z8yW -----END CERTIFICATE-----Generated at Wed Jan 21 02:47:32 2026 by rpki-client