This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/ccc7de-47de-4287-a0b2-1df40145b0be/1/5KOoriFpYDWNQa_aIXxLJE8pBHY.roa File: 5KOoriFpYDWNQa_aIXxLJE8pBHY.roa (raw, json) Hash identifier: 9iEGmIKb7O59KI7QS/sDIkqkU0kq2Alr+CCrXsTWZJ4= Subject key identifier: E4:A3:A8:AE:21:69:60:35:8D:41:AF:DA:21:7C:4B:24:4F:29:04:76 Certificate issuer: /CN=b1d596fb1a3f2f4b127fb7cec19fd90bb94c73a4 Certificate serial: 019B7C132BBB53D9DB2B9B1A807D0BC2AED8 Authority key identifier: B1:D5:96:FB:1A:3F:2F:4B:12:7F:B7:CE:C1:9F:D9:0B:B9:4C:73:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdWW-xo_L0sSf7fOwZ_ZC7lMc6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/ccc7de-47de-4287-a0b2-1df40145b0be/1/5KOoriFpYDWNQa_aIXxLJE8pBHY.roa Signing time: Fri 02 Jan 2026 00:19:49 +0000 ROA not before: Fri 02 Jan 2026 00:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48685 IP address blocks: 185.118.32.0/22 maxlen: 22 2a03:5cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/ccc7de-47de-4287-a0b2-1df40145b0be/1/sdWW-xo_L0sSf7fOwZ_ZC7lMc6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/26/ccc7de-47de-4287-a0b2-1df40145b0be/1/sdWW-xo_L0sSf7fOwZ_ZC7lMc6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/sdWW-xo_L0sSf7fOwZ_ZC7lMc6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:2b:bb:53:d9:db:2b:9b:1a:80:7d:0b:c2:ae:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1d596fb1a3f2f4b127fb7cec19fd90bb94c73a4 Validity Not Before: Jan 2 00:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4a3a8ae216960358d41afda217c4b244f290476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:54:0f:e6:7b:2a:1e:da:a1:a9:f1:c4:de: aa:20:cd:0e:52:61:1c:04:93:a8:67:3d:a5:24:21: 2a:f2:28:3f:be:1b:73:27:9a:c0:5f:de:02:1d:bd: df:4d:9f:62:66:d2:da:b1:88:bc:b5:83:bd:c7:be: 21:0d:1a:de:e6:15:a4:c1:c4:26:bf:63:26:ad:66: c0:8d:e4:55:92:48:2c:05:fd:61:55:2b:3c:1e:38: 76:7c:71:88:79:02:01:73:2d:f2:a4:18:c7:90:e0: 15:73:a5:59:92:06:95:8f:07:ce:ef:fa:c9:cd:a9: 66:55:53:30:b0:43:af:d7:9c:55:ae:08:a5:74:8b: 77:bb:55:7c:13:ac:c5:6a:1a:42:be:ad:e0:1c:ac: 67:7b:ab:6b:c0:58:ca:17:1a:3a:00:2a:70:62:32: a5:b1:6d:2b:3b:07:57:94:c7:3d:6d:e8:60:10:65: 2e:b8:14:07:82:9d:f4:d8:d9:ce:95:b8:1e:a5:ad: b5:9b:f8:ef:f4:17:d7:da:62:a6:b8:43:5e:f2:dc: dc:1c:75:f2:5b:f7:73:95:df:21:89:b5:cc:26:ac: 1e:18:87:6a:15:3c:17:ab:ac:ab:4a:70:04:5c:92: 99:a0:36:d4:32:ec:5a:3b:66:93:de:1a:0e:2f:02: 23:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A3:A8:AE:21:69:60:35:8D:41:AF:DA:21:7C:4B:24:4F:29:04:76 X509v3 Authority Key Identifier: keyid:B1:D5:96:FB:1A:3F:2F:4B:12:7F:B7:CE:C1:9F:D9:0B:B9:4C:73:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdWW-xo_L0sSf7fOwZ_ZC7lMc6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ccc7de-47de-4287-a0b2-1df40145b0be/1/5KOoriFpYDWNQa_aIXxLJE8pBHY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ccc7de-47de-4287-a0b2-1df40145b0be/1/sdWW-xo_L0sSf7fOwZ_ZC7lMc6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.118.32.0/22 IPv6: 2a03:5cc0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:46:f9:f6:10:7a:b4:ff:6a:f4:d8:af:22:ad:64:68:64:22: ba:40:14:77:0a:1f:51:ff:e4:73:8c:67:30:2b:ab:99:ec:bf: 0f:f8:d6:58:1c:20:9d:fa:a8:07:37:f7:8e:87:05:0b:42:9a: 9d:62:c2:96:c1:27:97:31:90:7a:92:0c:98:1b:e7:c5:f9:3d: 27:0d:2a:eb:29:c1:a7:7d:24:e2:ff:be:30:76:a0:4c:10:e3: d9:68:dc:42:ce:12:ae:de:44:63:62:7e:56:9f:16:99:39:e6: 04:38:0a:65:cf:45:fd:fa:9c:6b:dc:44:11:60:3f:75:c5:87: 5a:fe:b4:de:8b:60:29:a1:d9:8e:af:96:11:66:7e:0e:5b:a7: f1:7a:8a:ef:e6:48:cd:88:2f:36:52:4a:61:fa:7f:be:45:d0: 2b:eb:2e:a2:00:8d:93:e4:77:80:b1:5e:bb:42:ec:c0:1c:64: 53:ce:bf:35:b1:41:41:2e:7b:cd:d6:77:b9:79:a2:ca:98:43: 7d:8e:ad:3b:58:4d:d8:70:12:7f:e2:09:3e:ee:70:46:63:0e: b5:15:7d:54:00:6c:5d:db:30:46:6e:a4:bb:83:2c:13:ba:67: ce:ae:23:42:4a:82:7f:cd:a8:a4:8f:15:18:57:3a:3a:c6:db: be:41:18:9b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8Eyu7U9nbK5sagH0Lwq7YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZDU5NmZiMWEzZjJmNGIxMjdmYjdjZWMxOWZkOTBiYjk0 YzczYTQwHhcNMjYwMTAyMDAxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNGEzYThhZTIxNjk2MDM1OGQ0MWFmZGEyMTdjNGIyNDRmMjkwNDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqmlUD+Z7Kh7aoanxxN6qIM0OUmEc BJOoZz2lJCEq8ig/vhtzJ5rAX94CHb3fTZ9iZtLasYi8tYO9x74hDRre5hWkwcQm v2MmrWbAjeRVkkgsBf1hVSs8Hjh2fHGIeQIBcy3ypBjHkOAVc6VZkgaVjwfO7/rJ zalmVVMwsEOv15xVrgildIt3u1V8E6zFahpCvq3gHKxne6trwFjKFxo6ACpwYjKl sW0rOwdXlMc9behgEGUuuBQHgp302NnOlbgepa21m/jv9BfX2mKmuENe8tzcHHXy W/dzld8hibXMJqweGIdqFTwXq6yrSnAEXJKZoDbUMuxaO2aT3hoOLwIjlQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOSjqK4haWA1jUGv2iF8SyRPKQR2MB8GA1UdIwQY MBaAFLHVlvsaPy9LEn+3zsGf2Qu5THOkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2RXVy14b19MMHNTZjdmT3daX1pDN2xNYzZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9jY2M3ZGUtNDdkZS00Mjg3LWEwYjIt MWRmNDAxNDViMGJlLzEvNUtPb3JpRnBZRFdOUWFfYUlYeExKRThwQkhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9jY2M3ZGUtNDdkZS00Mjg3LWEwYjItMWRmNDAxNDViMGJl LzEvc2RXVy14b19MMHNTZjdmT3daX1pDN2xNYzZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXYgMA0E AgACMAcDBQAqA1zAMA0GCSqGSIb3DQEBCwUAA4IBAQCMRvn2EHq0/2r02K8irWRo ZCK6QBR3Ch9R/+RzjGcwK6uZ7L8P+NZYHCCd+qgHN/eOhwULQpqdYsKWwSeXMZB6 kgyYG+fF+T0nDSrrKcGnfSTi/74wdqBMEOPZaNxCzhKu3kRjYn5WnxaZOeYEOApl z0X9+pxr3EQRYD91xYda/rTei2ApodmOr5YRZn4OW6fxeorv5kjNiC82Ukph+n++ RdAr6y6iAI2T5HeAsV67QuzAHGRTzr81sUFBLnvN1ne5eaLKmEN9jq07WE3YcBJ/ 4gk+7nBGYw61FX1UAGxd2zBGbqS7gywTumfOriNCSoJ/zaikjxUYVzo6xtu+QRib -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:29 2026 by rpki-client