This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/61ONFvLT5Rg0-imK5TJAXsyuc_s.roa File: 61ONFvLT5Rg0-imK5TJAXsyuc_s.roa (raw, json) Hash identifier: 7I5ltFHrgSt2SphyinCJqzIRRXKzrlYeALmK4YgvaSA= Subject key identifier: EB:53:8D:16:F2:D3:E5:18:34:FA:29:8A:E5:32:40:5E:CC:AE:73:FB Certificate issuer: /CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5 Certificate serial: 019B7CEE1901DBBBDC35F044CCE5EDA97F06 Authority key identifier: 81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/61ONFvLT5Rg0-imK5TJAXsyuc_s.roa Signing time: Fri 02 Jan 2026 04:18:57 +0000 ROA not before: Fri 02 Jan 2026 04:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209448 IP address blocks: 5.253.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:19:01:db:bb:dc:35:f0:44:cc:e5:ed:a9:7f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5 Validity Not Before: Jan 2 04:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eb538d16f2d3e51834fa298ae532405eccae73fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:ca:2c:ca:03:11:dc:7c:e1:f9:9b:4a:7c:23: 7e:7a:08:d9:0a:c1:1c:a5:a5:11:ce:3f:58:e0:16: 18:7e:ea:b2:17:25:2b:21:2e:08:96:08:36:d2:34: 0a:72:c5:d6:81:b0:c4:d2:bd:32:5c:5a:6f:6e:5b: b6:d3:85:e2:46:8f:6a:6e:6f:3f:b8:17:b2:0b:0d: 47:b3:4c:20:8d:4d:09:91:7f:f3:7d:fb:48:ba:31: 02:ec:ad:41:38:db:b8:38:38:f2:50:d7:8e:1d:44: f1:2f:53:ee:3e:e6:1a:d1:52:69:e0:59:e1:9f:c9: 3c:a0:96:c9:ba:d2:68:b9:c2:e4:48:6d:b6:37:c4: 12:a3:6a:de:5c:d6:d3:ae:de:a8:45:57:37:f4:0d: 4e:44:af:85:fb:6d:95:5a:7b:e5:1f:06:0b:b5:a5: 6d:45:c7:81:fd:79:0d:7d:6f:2f:ed:80:a8:94:d9: c4:22:45:49:95:ba:6e:96:79:8d:05:f3:62:b3:9a: f1:12:d7:ee:ec:05:92:3d:05:c7:e0:ea:b3:f3:be: ec:96:4a:ef:4e:3e:66:8f:73:be:f0:b6:db:cb:bc: ba:77:4e:3d:16:23:bd:ae:73:6a:bf:5f:79:b4:89: fc:48:6d:24:33:fa:7b:da:6c:57:67:e2:1b:28:c2: e7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:53:8D:16:F2:D3:E5:18:34:FA:29:8A:E5:32:40:5E:CC:AE:73:FB X509v3 Authority Key Identifier: keyid:81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/61ONFvLT5Rg0-imK5TJAXsyuc_s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.164.0/22 Signature Algorithm: sha256WithRSAEncryption 71:02:54:54:0f:3f:44:e4:47:54:36:53:b7:38:c9:4d:ae:11: 0f:6c:74:e7:05:56:60:df:a7:8a:33:69:00:24:cc:2b:b8:45: 2d:16:fa:c9:a4:44:72:d7:de:04:1d:ca:03:0c:5c:1d:e2:37: ca:c8:a0:b3:67:41:2e:7b:3a:16:1e:84:19:87:31:da:9c:70: ba:8e:8f:1e:5a:e1:b1:f9:fd:eb:1e:51:cb:8e:7c:30:28:46: 6d:50:84:f1:39:ba:cc:87:e6:0f:4e:32:2a:d2:a1:72:89:87: 76:58:bb:af:14:8d:fa:3c:a9:97:54:f6:1c:c1:8c:41:b2:5b: a7:18:5a:8d:b0:df:c4:e8:c9:4c:3e:f6:8d:4f:e4:c3:0e:3c: a1:89:d9:7a:0b:9f:b5:3d:11:a9:61:5e:93:f8:45:a2:25:91: 81:52:ae:01:c9:65:c9:bc:85:e1:0d:cc:74:ae:4a:75:56:c9: 34:fc:51:b3:4c:2e:3f:8e:54:ac:4a:88:38:46:7a:d3:3f:20: 20:86:2b:e2:fd:81:c6:07:e7:ff:58:8c:9d:fd:30:80:bd:93: 8e:48:cf:97:e4:ae:bb:fc:15:36:49:3c:b0:82:d7:b6:0b:3f: 85:42:f4:2b:e9:a6:08:1d:8b:a3:6c:0a:34:7d:49:bc:78:f2: 6c:c8:96:df -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87hkB27vcNfBEzOXtqX8GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYTAyMWQ1NDBlZDdkODJjNjkwYWRjMDRmYmQ5ZGQ2ZWU1 MGU4ZDUwHhcNMjYwMTAyMDQxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYjUzOGQxNmYyZDNlNTE4MzRmYTI5OGFlNTMyNDA1ZWNjYWU3M2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8osygMR3Hzh+ZtKfCN+egjZCsEc paURzj9Y4BYYfuqyFyUrIS4Ilgg20jQKcsXWgbDE0r0yXFpvblu204XiRo9qbm8/ uBeyCw1Hs0wgjU0JkX/zfftIujEC7K1BONu4ODjyUNeOHUTxL1PuPuYa0VJp4Fnh n8k8oJbJutJoucLkSG22N8QSo2reXNbTrt6oRVc39A1ORK+F+22VWnvlHwYLtaVt RceB/XkNfW8v7YColNnEIkVJlbpulnmNBfNis5rxEtfu7AWSPQXH4Oqz877slkrv Tj5mj3O+8Lbby7y6d049FiO9rnNqv195tIn8SG0kM/p72mxXZ+IbKMLn5wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOtTjRby0+UYNPopiuUyQF7MrnP7MB8GA1UdIwQY MBaAFIGgIdVA7X2CxpCtwE+9ndbuUOjVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2FBaDFVRHRmWUxHa0szQVQ3MmQxdTVRNk5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9lMmI5NDYtMWI0YS00MjE0LTkyMzQt YWQwMjczMjdmOWQ4LzEvNjFPTkZ2TFQ1UmcwLWltSzVUSkFYc3l1Y19zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9lMmI5NDYtMWI0YS00MjE0LTkyMzQtYWQwMjczMjdmOWQ4 LzEvZ2FBaDFVRHRmWUxHa0szQVQ3MmQxdTVRNk5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBf2kMA0G CSqGSIb3DQEBCwUAA4IBAQBxAlRUDz9E5EdUNlO3OMlNrhEPbHTnBVZg36eKM2kA JMwruEUtFvrJpERy194EHcoDDFwd4jfKyKCzZ0EuezoWHoQZhzHanHC6jo8eWuGx +f3rHlHLjnwwKEZtUITxObrMh+YPTjIq0qFyiYd2WLuvFI36PKmXVPYcwYxBslun GFqNsN/E6MlMPvaNT+TDDjyhidl6C5+1PRGpYV6T+EWiJZGBUq4ByWXJvIXhDcx0 rkp1Vsk0/FGzTC4/jlSsSog4RnrTPyAghivi/YHGB+f/WIyd/TCAvZOOSM+X5K67 /BU2STywgte2Cz+FQvQr6aYIHYujbAo0fUm8ePJsyJbf -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:00 2026 by rpki-client