This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/RAlCx5dBkXErr4GLU_5m2X54NZU.roa File: RAlCx5dBkXErr4GLU_5m2X54NZU.roa (raw, json) Hash identifier: ObC2XXv43nkDqryZk3TpQdoXImX/CEh8RrHJ0Kt/ht4= Subject key identifier: 44:09:42:C7:97:41:91:71:2B:AF:81:8B:53:FE:66:D9:7E:78:35:95 Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda Certificate serial: 019B7C8071DC2D32B4DC2479EC3C051982C7 Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/RAlCx5dBkXErr4GLU_5m2X54NZU.roa Signing time: Fri 02 Jan 2026 02:19:11 +0000 ROA not before: Fri 02 Jan 2026 02:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211432 IP address blocks: 109.105.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.mft rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:71:dc:2d:32:b4:dc:24:79:ec:3c:05:19:82:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda Validity Not Before: Jan 2 02:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=440942c7974191712baf818b53fe66d97e783595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c8:7a:93:5c:e4:e3:4f:df:50:4d:58:aa:14: e3:59:73:a6:0a:f4:48:b9:db:da:15:9b:a9:88:c5: 90:ad:2c:7c:7d:7e:f3:87:25:60:7d:12:b9:9f:88: 4f:4e:92:d6:2c:3b:d7:54:d7:fb:9d:cd:74:ba:5a: be:bd:b1:71:a9:56:a8:09:b4:ba:06:7f:6d:5d:41: f2:7d:82:ba:d8:3b:1a:f0:43:b8:1b:59:96:44:ce: de:8d:ea:03:00:58:2f:fb:6b:2f:bf:14:59:fb:f2: dc:91:9b:5d:7f:99:ef:4e:74:82:47:21:1e:75:e1: d4:b6:52:67:78:42:3e:ae:d5:3b:cd:03:ea:e4:e4: ab:02:45:57:5b:55:c6:d9:34:e1:05:bf:f3:58:78: d2:4a:33:c3:ca:c4:9a:1e:ea:27:85:7d:ba:ce:0a: 80:7f:e7:fb:12:ce:e2:79:ce:7f:13:cc:90:ba:c4: a6:b3:16:88:4e:5d:15:68:68:94:49:4a:67:3f:6f: 6e:0e:96:30:a9:26:18:34:56:b6:38:da:ac:b4:85: 3c:4e:22:1f:bb:43:31:0b:cc:b5:5e:ab:e9:4d:69: 31:b7:ef:ab:97:84:b2:aa:e3:22:fb:1f:9e:ff:7a: b3:1e:53:81:4a:7e:a1:df:6f:63:26:29:af:7b:76: 0b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:09:42:C7:97:41:91:71:2B:AF:81:8B:53:FE:66:D9:7E:78:35:95 X509v3 Authority Key Identifier: keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/RAlCx5dBkXErr4GLU_5m2X54NZU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.105.192.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:d4:0d:62:58:f3:ae:78:5a:7b:c0:38:c3:fb:48:38:48:d5: 2d:4a:6a:54:a4:52:ed:2a:43:7d:e3:f7:cf:33:e1:d2:6c:d7: da:83:d2:c2:aa:8e:76:d4:4b:8c:b9:47:23:b8:57:f9:42:f8: 55:fa:b7:5b:e9:6d:df:f1:c1:22:e7:fd:a4:d8:90:de:44:88: 42:ca:2c:65:d0:e4:e3:a1:3c:1d:28:44:de:6e:fa:e2:b0:9e: 97:bb:c9:7b:98:f8:a7:37:19:e2:c8:75:59:d5:ce:9e:11:8b: 2f:9e:d2:1c:83:e5:f9:4e:4f:9c:a2:e1:65:aa:2f:85:68:9b: 9f:64:ad:0a:f2:4d:7f:2b:28:76:24:67:a0:1d:d8:1b:d9:73: 97:da:c8:7f:ce:82:16:86:06:bc:27:d1:5d:8b:0d:69:9a:c6: 6a:79:03:59:c9:3d:2b:59:f3:e7:75:dd:93:25:f9:17:e6:53: 96:8f:c2:43:fb:88:94:e6:62:9a:a6:b7:9d:5a:db:94:e6:29: a6:89:be:e0:b9:93:4e:a4:23:c3:a2:74:0f:88:f3:14:69:d1: 5d:a7:dd:aa:ec:e0:c7:64:7d:f0:dd:af:f9:3e:4c:eb:12:54: 23:7d:c4:1f:f5:4a:a6:54:fe:31:bb:1d:3e:28:cd:7f:a7:aa: f2:55:19:b7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gHHcLTK03CR57DwFGYLHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm NjljZGEwHhcNMjYwMTAyMDIxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDA5NDJjNzk3NDE5MTcxMmJhZjgxOGI1M2ZlNjZkOTdlNzgzNTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0sh6k1zk40/fUE1YqhTjWXOmCvRI udvaFZupiMWQrSx8fX7zhyVgfRK5n4hPTpLWLDvXVNf7nc10ulq+vbFxqVaoCbS6 Bn9tXUHyfYK62Dsa8EO4G1mWRM7ejeoDAFgv+2svvxRZ+/LckZtdf5nvTnSCRyEe deHUtlJneEI+rtU7zQPq5OSrAkVXW1XG2TThBb/zWHjSSjPDysSaHuonhX26zgqA f+f7Es7iec5/E8yQusSmsxaITl0VaGiUSUpnP29uDpYwqSYYNFa2ONqstIU8TiIf u0MxC8y1XqvpTWkxt++rl4SyquMi+x+e/3qzHlOBSn6h329jJimve3YL3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEQJQseXQZFxK6+Bi1P+Ztl+eDWVMB8GA1UdIwQY MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt ZGQyOTRjMzc4ZjZjLzEvUkFsQ3g1ZEJrWEVycjRHTFVfNW0yWDU0TlpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWnAMA0G CSqGSIb3DQEBCwUAA4IBAQAP1A1iWPOueFp7wDjD+0g4SNUtSmpUpFLtKkN94/fP M+HSbNfag9LCqo521EuMuUcjuFf5QvhV+rdb6W3f8cEi5/2k2JDeRIhCyixl0OTj oTwdKETebvrisJ6Xu8l7mPinNxniyHVZ1c6eEYsvntIcg+X5Tk+couFlqi+FaJuf ZK0K8k1/Kyh2JGegHdgb2XOX2sh/zoIWhga8J9Fdiw1pmsZqeQNZyT0rWfPndd2T JfkX5lOWj8JD+4iU5mKapredWtuU5immib7guZNOpCPDonQPiPMUadFdp92q7ODH ZH3w3a/5PkzrElQjfcQf9UqmVP4xux0+KM1/p6ryVRm3 -----END CERTIFICATE-----Generated at Wed Jan 21 19:00:57 2026 by rpki-client