This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/pQOstsuFb4QqjECPQsyJ_C3WeD0.roa File: pQOstsuFb4QqjECPQsyJ_C3WeD0.roa (raw, json) Hash identifier: YhRNa/iZVKW2njLjDXYtKuyq+avbwnWSww/n3FopXKk= Subject key identifier: A5:03:AC:B6:CB:85:6F:84:2A:8C:40:8F:42:CC:89:FC:2D:D6:78:3D Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b Certificate serial: 019B79107486ED4AD3CD00A80EBACF01661D Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/pQOstsuFb4QqjECPQsyJ_C3WeD0.roa Signing time: Thu 01 Jan 2026 10:18:00 +0000 ROA not before: Thu 01 Jan 2026 10:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203679 IP address blocks: 5.178.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.mft rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:74:86:ed:4a:d3:cd:00:a8:0e:ba:cf:01:66:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b Validity Not Before: Jan 1 10:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a503acb6cb856f842a8c408f42cc89fc2dd6783d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:db:f2:c5:48:68:fd:30:02:d5:9c:46:0d:01: fd:b1:27:95:3c:df:dc:09:e7:80:34:22:cd:56:6c: 97:7d:94:08:04:d9:95:57:42:42:cd:ad:79:ae:ba: 1c:6e:a5:95:18:00:18:16:ed:6e:f0:d2:5c:5b:81: 87:42:2b:7c:4d:5a:f1:76:c4:0d:7c:b5:69:c5:10: 95:b2:78:95:9c:45:34:17:51:df:e0:4b:98:1f:15: 2b:24:ed:2c:43:16:16:ed:37:42:17:68:ab:30:d4: 1b:39:1d:2d:a4:1f:28:c9:69:0f:1c:6f:96:b3:0e: 88:d7:f3:64:41:d3:2c:87:f5:14:67:51:4b:32:4c: 86:da:b9:e3:2a:cd:01:a3:29:10:af:b0:7c:6b:45: 5e:ac:ac:a4:41:30:a9:44:33:92:b3:b0:f4:06:56: bb:1c:46:a1:35:37:e7:2d:6b:93:e3:78:46:c3:61: e4:5d:4c:10:e9:c6:3e:68:4e:7b:a3:76:01:23:67: 82:ec:ed:4d:80:d1:b4:96:0f:35:9b:cf:ff:95:d1: ef:4e:2d:c6:81:40:63:a7:80:e4:7d:2f:7c:ff:bb: 19:92:ab:3c:b6:ca:e3:6a:0c:d6:06:f8:38:f3:d8: 8a:f0:1b:07:a8:d0:c9:4a:9e:95:7c:ee:2d:e3:54: d8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:03:AC:B6:CB:85:6F:84:2A:8C:40:8F:42:CC:89:FC:2D:D6:78:3D X509v3 Authority Key Identifier: keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/pQOstsuFb4QqjECPQsyJ_C3WeD0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.178.99.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:59:5f:04:ea:ed:8b:31:54:cf:be:c3:1e:74:0d:92:9c:f0: cf:07:91:a6:3b:0b:24:9e:90:70:7e:57:03:03:05:74:13:d9: d7:40:05:af:d7:e3:4d:2a:40:70:11:27:a9:c4:1a:f5:ca:40: a3:3b:98:88:9a:90:ee:7f:0d:70:c6:a6:89:ec:c3:02:4e:f7: 5b:d8:24:b7:c7:b7:90:6a:1b:22:4e:ec:e1:df:8e:80:d3:14: 61:4e:32:18:52:dd:8e:17:2e:0c:33:b3:97:23:9a:12:ad:5d: 71:83:28:76:ce:38:de:0a:79:49:d3:65:10:b6:c0:2a:d3:f8: c6:9c:90:65:f8:6f:c7:31:de:55:83:01:2d:34:b7:fb:16:56: db:bb:e2:b6:38:9c:de:80:d4:03:10:ef:92:1b:a9:d7:37:08: 25:20:de:35:6a:4d:e0:3d:53:c7:1f:9a:92:26:65:88:a3:04: cf:82:d4:42:af:bf:ed:ae:3a:37:ac:8e:22:14:c5:d6:2f:e8: 1e:a4:6c:ee:6d:22:d7:97:2b:4d:7e:4e:2d:74:c9:60:a6:30: 74:02:48:68:15:be:f3:61:a6:64:04:b2:2c:af:90:17:9d:7e: 59:98:21:60:b2:8d:85:28:4d:ae:35:dc:ad:87:47:41:40:6a: fd:fc:be:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EHSG7UrTzQCoDrrPAWYdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5 M2U0NmIwHhcNMjYwMTAxMTAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTAzYWNiNmNiODU2Zjg0MmE4YzQwOGY0MmNjODlmYzJkZDY3ODNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdvyxUho/TAC1ZxGDQH9sSeVPN/c CeeANCLNVmyXfZQIBNmVV0JCza15rrocbqWVGAAYFu1u8NJcW4GHQit8TVrxdsQN fLVpxRCVsniVnEU0F1Hf4EuYHxUrJO0sQxYW7TdCF2irMNQbOR0tpB8oyWkPHG+W sw6I1/NkQdMsh/UUZ1FLMkyG2rnjKs0BoykQr7B8a0VerKykQTCpRDOSs7D0Bla7 HEahNTfnLWuT43hGw2HkXUwQ6cY+aE57o3YBI2eC7O1NgNG0lg81m8//ldHvTi3G gUBjp4DkfS98/7sZkqs8tsrjagzWBvg489iK8BsHqNDJSp6VfO4t41TYSQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKUDrLbLhW+EKoxAj0LMifwt1ng9MB8GA1UdIwQY MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt Y2Q2MTUyMjYxYzZmLzEvcFFPc3RzdUZiNFFxakVDUFFzeUpfQzNXZUQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbJjMA0G CSqGSIb3DQEBCwUAA4IBAQA8WV8E6u2LMVTPvsMedA2SnPDPB5GmOwsknpBwflcD AwV0E9nXQAWv1+NNKkBwESepxBr1ykCjO5iImpDufw1wxqaJ7MMCTvdb2CS3x7eQ ahsiTuzh346A0xRhTjIYUt2OFy4MM7OXI5oSrV1xgyh2zjjeCnlJ02UQtsAq0/jG nJBl+G/HMd5VgwEtNLf7Flbbu+K2OJzegNQDEO+SG6nXNwglIN41ak3gPVPHH5qS JmWIowTPgtRCr7/trjo3rI4iFMXWL+gepGzubSLXlytNfk4tdMlgpjB0AkhoFb7z YaZkBLIsr5AXnX5ZmCFgso2FKE2uNdyth0dBQGr9/L7y -----END CERTIFICATE-----Generated at Tue Jan 20 06:16:36 2026 by rpki-client