This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/5ZvGc8tkuNhUyr1deZRgz_5UAkM.roa File: 5ZvGc8tkuNhUyr1deZRgz_5UAkM.roa (raw, json) Hash identifier: fD1b2KaN+WqJAeefkhCdYUatmhyJIzqATjQPIOPvWLg= Subject key identifier: E5:9B:C6:73:CB:64:B8:D8:54:CA:BD:5D:79:94:60:CF:FE:54:02:43 Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8 Certificate serial: 019B7F8541EC5A835464F4C5275ED99507EA Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/5ZvGc8tkuNhUyr1deZRgz_5UAkM.roa Signing time: Fri 02 Jan 2026 16:23:18 +0000 ROA not before: Fri 02 Jan 2026 16:23:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202943 IP address blocks: 89.33.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.mft rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:41:ec:5a:83:54:64:f4:c5:27:5e:d9:95:07:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8 Validity Not Before: Jan 2 16:23:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e59bc673cb64b8d854cabd5d799460cffe540243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:59:10:73:4d:8a:c0:21:4a:54:be:de:5c:a5: 04:74:fc:cf:1c:fa:6e:0a:25:6c:4b:c6:85:8d:43: 75:3f:7a:4e:41:e5:ef:5e:9b:43:aa:b5:71:23:91: 85:c6:8b:a8:24:3c:dc:36:a1:75:28:a8:db:2b:43: a4:f5:1a:9e:61:a7:a8:01:49:90:08:bc:89:8e:3a: 8c:76:c6:3e:c5:d1:f8:a8:6e:99:47:bf:66:58:29: 32:4f:ae:d0:ee:e2:33:2e:bf:36:84:d7:04:a4:eb: 03:f7:5d:07:47:7e:98:c6:77:52:a4:53:0a:99:46: d1:24:65:86:51:47:23:5a:2a:77:ab:9e:23:ca:92: a9:af:c5:0d:83:56:88:b7:2a:fe:97:52:4c:a4:ee: 1c:74:82:0c:f4:bf:92:c0:bf:43:91:d2:d2:d5:07: cd:94:48:15:9e:21:a5:44:16:82:de:75:8e:4d:ad: 97:e3:92:92:bb:34:f8:bb:13:67:5d:31:95:d9:52: d7:50:0b:71:ec:e1:14:7a:f4:a1:21:a8:06:76:85: 0b:88:06:10:c7:9a:cd:9d:e3:40:08:79:6a:46:b3: 29:ce:18:e7:66:39:f2:06:55:72:35:d9:dc:82:4b: 2c:5a:3f:2d:ec:8c:68:2d:64:2f:f1:0e:0e:09:03: c7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:9B:C6:73:CB:64:B8:D8:54:CA:BD:5D:79:94:60:CF:FE:54:02:43 X509v3 Authority Key Identifier: keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/5ZvGc8tkuNhUyr1deZRgz_5UAkM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.33.135.0/24 Signature Algorithm: sha256WithRSAEncryption 90:74:f2:49:45:8b:cc:76:aa:92:ee:7c:08:29:6c:70:d1:4f: 05:c2:20:cf:77:c8:2e:8d:3f:77:d0:6a:92:09:b4:4d:db:6f: 75:5a:98:ff:c0:21:27:61:77:32:2e:d6:f1:d4:d7:1a:a6:7d: 28:62:9f:0e:2e:29:93:b8:be:3b:21:bd:9e:10:da:8f:ab:b4: 9d:a5:5d:be:44:4d:c5:0c:04:a8:f4:15:0d:49:dd:a2:80:fc: bd:3d:d2:ba:19:8e:ab:d6:d3:dd:63:5c:ba:e6:b2:74:ee:19: 2a:9c:03:77:04:ee:ee:a8:80:98:cc:ca:d3:3d:0e:11:75:de: 3d:4a:b3:ad:d0:0b:5a:73:7a:15:73:d3:0e:06:a2:9d:25:05: 59:3a:f6:63:d7:d1:6d:c3:67:b2:d5:11:84:d3:05:dd:e1:91: 55:97:f8:0b:de:5c:91:35:0b:4a:e5:46:c5:7a:11:aa:96:43: 33:6d:1b:5e:18:d6:0c:e9:85:a3:b9:59:01:f0:9a:e5:bb:0e: e7:17:1b:c8:f3:44:7d:fa:be:8f:bf:27:42:cb:94:1d:6b:df: eb:aa:a0:57:84:00:ff:23:d8:8b:e3:63:13:d3:26:d4:e3:b0: f7:e4:a7:c8:01:28:15:46:1b:22:3e:4e:cc:4c:5b:50:3c:99: f7:29:f6:8c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hUHsWoNUZPTFJ17ZlQfqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYWIzMDY4Mzg1OWVjN2UwMjA2ZmU5MjY1MzYzZThlMzk3 MWE5YTgwHhcNMjYwMTAyMTYyMzE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTliYzY3M2NiNjRiOGQ4NTRjYWJkNWQ3OTk0NjBjZmZlNTQwMjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+VkQc02KwCFKVL7eXKUEdPzPHPpu CiVsS8aFjUN1P3pOQeXvXptDqrVxI5GFxouoJDzcNqF1KKjbK0Ok9RqeYaeoAUmQ CLyJjjqMdsY+xdH4qG6ZR79mWCkyT67Q7uIzLr82hNcEpOsD910HR36YxndSpFMK mUbRJGWGUUcjWip3q54jypKpr8UNg1aItyr+l1JMpO4cdIIM9L+SwL9DkdLS1QfN lEgVniGlRBaC3nWOTa2X45KSuzT4uxNnXTGV2VLXUAtx7OEUevShIagGdoULiAYQ x5rNneNACHlqRrMpzhjnZjnyBlVyNdncgkssWj8t7IxoLWQv8Q4OCQPHXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOWbxnPLZLjYVMq9XXmUYM/+VAJDMB8GA1UdIwQY MBaAFIurMGg4Wex+Agb+kmU2Po45camoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQt M2FjOWU1NmMzMDg5LzEvNVp2R2M4dGt1TmhVeXIxZGVaUmd6XzVVQWtNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQtM2FjOWU1NmMzMDg5 LzEvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSGHMA0G CSqGSIb3DQEBCwUAA4IBAQCQdPJJRYvMdqqS7nwIKWxw0U8FwiDPd8gujT930GqS CbRN2291Wpj/wCEnYXcyLtbx1Ncapn0oYp8OLimTuL47Ib2eENqPq7SdpV2+RE3F DASo9BUNSd2igPy9PdK6GY6r1tPdY1y65rJ07hkqnAN3BO7uqICYzMrTPQ4Rdd49 SrOt0Atac3oVc9MOBqKdJQVZOvZj19Ftw2ey1RGE0wXd4ZFVl/gL3lyRNQtK5UbF ehGqlkMzbRteGNYM6YWjuVkB8Jrluw7nFxvI80R9+r6PvydCy5Qda9/rqqBXhAD/ I9iL42MT0ybU47D35KfIASgVRhsiPk7MTFtQPJn3KfaM -----END CERTIFICATE-----Generated at Sun Jan 25 22:50:46 2026 by rpki-client