This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/r4Hrg0bEs6gpKFTSd59isgxSeSk.roa File: r4Hrg0bEs6gpKFTSd59isgxSeSk.roa (raw, json) Hash identifier: /DPtXcMqR60C1x1kBS5/vOOh84pABE6/ZVLVmshPVjY= Subject key identifier: AF:81:EB:83:46:C4:B3:A8:29:28:54:D2:77:9F:62:B2:0C:52:79:29 Certificate issuer: /CN=109192c073862e6220c5f9106d7c55e3fc6c5d4b Certificate serial: 019B7D5CCAADCC50B9EF2B513A696FB146C5 Authority key identifier: 10:91:92:C0:73:86:2E:62:20:C5:F9:10:6D:7C:55:E3:FC:6C:5D:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJGSwHOGLmIgxfkQbXxV4_xsXUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/r4Hrg0bEs6gpKFTSd59isgxSeSk.roa Signing time: Fri 02 Jan 2026 06:19:51 +0000 ROA not before: Fri 02 Jan 2026 06:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61425 IP address blocks: 5.198.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/EJGSwHOGLmIgxfkQbXxV4_xsXUs.crl rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/EJGSwHOGLmIgxfkQbXxV4_xsXUs.mft rsync://rpki.ripe.net/repository/DEFAULT/EJGSwHOGLmIgxfkQbXxV4_xsXUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ca:ad:cc:50:b9:ef:2b:51:3a:69:6f:b1:46:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=109192c073862e6220c5f9106d7c55e3fc6c5d4b Validity Not Before: Jan 2 06:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af81eb8346c4b3a8292854d2779f62b20c527929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:13:b9:14:e8:fa:6c:b7:a6:1d:24:bc:ed:ae: 6a:df:11:b8:28:f8:a9:51:70:49:51:9b:39:07:b7: a1:8a:d8:aa:24:a4:b6:1f:a2:76:95:c3:b9:89:4d: 03:8f:9c:70:e6:06:53:72:0e:90:b8:76:f2:c5:48: c8:8a:23:ae:a8:dd:d9:c3:d3:29:76:1a:b0:8f:9a: 93:04:78:02:ef:1a:c2:ba:b2:e0:5b:74:ab:ab:1f: 19:f1:f2:e6:5d:4b:90:60:35:f4:e5:f5:db:2a:62: 15:c7:76:7b:07:e9:6f:78:41:45:08:da:a6:f7:ae: 1a:f3:42:9e:39:53:09:26:13:73:33:cf:53:bf:66: 05:2c:91:d9:1b:ab:86:00:03:57:85:4b:c5:aa:b5: 71:69:6f:bc:1f:c9:54:59:a4:dc:c2:7b:9d:6f:ff: 1f:65:03:60:85:14:2d:f3:70:b3:b5:c4:c2:ed:59: 96:67:3d:84:88:46:c5:ac:a3:71:55:30:29:53:fa: ec:d6:a2:1e:cd:e5:9d:cd:48:47:b0:f3:3a:a2:51: 19:d0:16:f5:a4:f0:9d:95:31:b7:c6:58:11:e2:ac: b4:25:6b:ce:63:69:d0:2b:7c:64:11:ab:b9:69:42: df:cf:dd:28:b1:05:49:92:6d:5a:10:ff:e6:75:8e: c4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:81:EB:83:46:C4:B3:A8:29:28:54:D2:77:9F:62:B2:0C:52:79:29 X509v3 Authority Key Identifier: keyid:10:91:92:C0:73:86:2E:62:20:C5:F9:10:6D:7C:55:E3:FC:6C:5D:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJGSwHOGLmIgxfkQbXxV4_xsXUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/r4Hrg0bEs6gpKFTSd59isgxSeSk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/EJGSwHOGLmIgxfkQbXxV4_xsXUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.198.128.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:1e:10:fe:3e:29:86:1d:5e:cd:ef:f7:fe:8d:f5:d4:c7:c0: 25:fc:b2:cf:91:61:61:8c:4b:70:79:c5:cb:c1:64:8d:1d:81: 77:f0:0e:c7:7e:cd:6d:f7:40:be:99:1d:bb:80:61:b5:25:7a: 1b:9d:3d:30:c5:57:a0:ca:57:8c:fc:32:75:87:4b:2b:79:fa: c1:3c:b3:17:6f:a6:2d:f7:29:15:82:0f:04:bc:70:7b:e8:d1: f3:fe:b6:f7:b0:fa:b0:16:71:f2:24:7d:27:72:64:6e:b9:b7: 7c:05:f2:3a:b1:aa:41:81:07:12:22:98:aa:42:3b:d8:e2:98: a3:66:33:de:b0:9d:bb:f5:3d:f0:68:9b:56:0d:14:f4:0f:78: 5f:d1:9c:95:a7:01:1d:8f:06:ef:1a:d7:43:34:1b:8b:26:a0: d6:89:7c:d8:2b:f6:95:38:45:4f:2f:46:2c:0d:4a:37:a0:28: 91:b9:02:5c:49:30:a3:f2:a0:28:64:75:2e:0e:45:91:84:55: f9:34:84:52:49:43:1d:e1:f3:c8:46:a3:22:95:cf:f8:a6:dc: bf:92:2f:e0:dc:d2:da:38:b5:ec:7f:0a:7d:7b:23:2f:60:76: fb:f1:c4:05:ab:40:21:d2:82:26:37:70:90:f5:23:32:f6:2e: 7e:41:9b:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XMqtzFC57ytROmlvsUbFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwOTE5MmMwNzM4NjJlNjIyMGM1ZjkxMDZkN2M1NWUzZmM2 YzVkNGIwHhcNMjYwMTAyMDYxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjgxZWI4MzQ2YzRiM2E4MjkyODU0ZDI3NzlmNjJiMjBjNTI3OTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRO5FOj6bLemHSS87a5q3xG4KPip UXBJUZs5B7ehitiqJKS2H6J2lcO5iU0Dj5xw5gZTcg6QuHbyxUjIiiOuqN3Zw9Mp dhqwj5qTBHgC7xrCurLgW3Srqx8Z8fLmXUuQYDX05fXbKmIVx3Z7B+lveEFFCNqm 964a80KeOVMJJhNzM89Tv2YFLJHZG6uGAANXhUvFqrVxaW+8H8lUWaTcwnudb/8f ZQNghRQt83CztcTC7VmWZz2EiEbFrKNxVTApU/rs1qIezeWdzUhHsPM6olEZ0Bb1 pPCdlTG3xlgR4qy0JWvOY2nQK3xkEau5aULfz90osQVJkm1aEP/mdY7EHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK+B64NGxLOoKShU0nefYrIMUnkpMB8GA1UdIwQY MBaAFBCRksBzhi5iIMX5EG18VeP8bF1LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUpHU3dIT0dMbUlneGZrUWJYeFY0X3hzWFVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81M2MwNTEtNTU3Mi00ZjgzLWE3ZDYt ZTZmZTY5MWQ5NDg5LzEvcjRIcmcwYkVzNmdwS0ZUU2Q1OWlzZ3hTZVNrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi81M2MwNTEtNTU3Mi00ZjgzLWE3ZDYtZTZmZTY5MWQ5NDg5 LzEvRUpHU3dIT0dMbUlneGZrUWJYeFY0X3hzWFVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBcaAMA0G CSqGSIb3DQEBCwUAA4IBAQCLHhD+PimGHV7N7/f+jfXUx8Al/LLPkWFhjEtwecXL wWSNHYF38A7Hfs1t90C+mR27gGG1JXobnT0wxVegyleM/DJ1h0srefrBPLMXb6Yt 9ykVgg8EvHB76NHz/rb3sPqwFnHyJH0ncmRuubd8BfI6sapBgQcSIpiqQjvY4pij ZjPesJ279T3waJtWDRT0D3hf0ZyVpwEdjwbvGtdDNBuLJqDWiXzYK/aVOEVPL0Ys DUo3oCiRuQJcSTCj8qAoZHUuDkWRhFX5NIRSSUMd4fPIRqMilc/4pty/ki/g3NLa OLXsfwp9eyMvYHb78cQFq0Ah0oImN3CQ9SMy9i5+QZve -----END CERTIFICATE-----Generated at Tue Jan 27 05:32:55 2026 by rpki-client