This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/X5Ymd6WEcUE3RBitWnZgMNGLi38.roa File: X5Ymd6WEcUE3RBitWnZgMNGLi38.roa (raw, json) Hash identifier: teOz52cqwtYKf7mWrKGg9ryu2dmFFf9qwDzVHYhVtqw= Subject key identifier: 5F:96:26:77:A5:84:71:41:37:44:18:AD:5A:76:60:30:D1:8B:8B:7F Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Certificate serial: 019B7F14ACE7C3A1DD641D241C7423C1C092 Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/X5Ymd6WEcUE3RBitWnZgMNGLi38.roa Signing time: Fri 02 Jan 2026 14:20:19 +0000 ROA not before: Fri 02 Jan 2026 14:20:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 194.231.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:ac:e7:c3:a1:dd:64:1d:24:1c:74:23:c1:c0:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Validity Not Before: Jan 2 14:20:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f962677a5847141374418ad5a766030d18b8b7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:cf:9a:4c:74:b7:0e:5b:0a:aa:52:14:07:f4: 0b:6b:06:83:42:c6:45:c1:a4:01:02:b0:2e:9b:0a: 2d:fa:f8:33:c8:ff:4d:53:5f:0e:c9:f4:d3:1d:e9: 4e:68:02:f0:e9:d4:47:d5:79:48:59:56:5f:07:1c: 4e:c6:1e:6f:39:00:1d:87:1c:6f:f7:76:e3:72:b1: 63:11:09:39:d5:70:43:29:9b:f7:7a:8f:56:8e:6d: 14:00:85:89:b5:86:04:63:24:1c:5b:24:a2:77:b8: b1:de:a1:b9:9e:13:44:46:05:53:19:e3:79:89:d2: b2:32:a5:2f:3a:69:08:00:40:5e:e0:85:bd:7a:a5: a4:9b:25:fb:13:4b:0f:0f:f3:8a:34:e3:e8:66:e4: 2a:ec:a8:af:8e:94:26:7e:89:7a:00:cb:9a:79:d5: cd:b8:7d:95:ad:65:b6:fa:b1:4d:0c:38:a1:a3:9d: d7:67:19:89:1f:17:26:a3:df:a2:fd:4a:df:cb:1b: 87:53:0c:67:8f:cf:64:30:e8:d5:21:ac:0a:06:e9: 2f:1f:85:34:9c:6f:7a:8a:25:a8:60:2d:21:f7:79: 49:1b:ae:0d:9b:39:71:79:b7:9c:ef:ee:96:e2:83: cf:52:ce:cd:bc:f5:ba:f6:42:6a:2e:82:03:08:93: 76:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:96:26:77:A5:84:71:41:37:44:18:AD:5A:76:60:30:D1:8B:8B:7F X509v3 Authority Key Identifier: keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/X5Ymd6WEcUE3RBitWnZgMNGLi38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.231.196.0/24 Signature Algorithm: sha256WithRSAEncryption 91:33:ac:3d:0d:ed:03:25:97:45:b4:a3:39:2c:92:a8:b9:f6: 9f:04:f8:f3:4f:6c:53:46:cd:11:af:00:1b:64:fb:0d:91:32: 56:04:f9:36:ee:94:bd:29:7f:e4:2e:b9:ec:8f:ea:2f:74:ce: 7c:76:ad:e5:01:4d:f6:ed:01:66:9f:18:bf:4e:3b:7b:70:8e: aa:d0:56:b5:59:44:6e:97:cf:0b:ce:31:d1:3d:15:c3:46:60: a7:13:87:ce:01:f5:72:58:de:4c:4f:2c:b6:f7:c3:35:30:33: 50:f7:37:f9:56:37:fd:2f:b2:74:31:14:ed:da:46:f7:b0:4e: 9d:58:1d:34:26:85:14:c9:1e:8e:66:9b:54:85:fa:18:fe:78: 8c:69:ea:74:e9:5d:a6:21:ea:54:83:70:44:ad:71:f4:cd:2d: b5:16:19:6b:20:cb:d2:65:50:0e:78:7a:03:f6:28:ab:df:ce: 72:c1:c3:bf:8e:6f:99:c9:4c:ca:ad:63:8d:0e:4b:c8:40:21: 11:81:29:c4:93:d3:ed:32:d9:5c:4b:00:63:9e:09:3b:ac:88: 16:8e:a2:19:f8:77:c8:ea:df:63:80:dc:bc:9f:c7:c3:a2:f0: 91:bf:c5:23:88:58:9b:de:f2:ab:ab:5f:dc:97:96:93:e3:df: cd:d6:c0:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FKznw6HdZB0kHHQjwcCSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0 NmQxNzEwHhcNMjYwMTAyMTQyMDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Zjk2MjY3N2E1ODQ3MTQxMzc0NDE4YWQ1YTc2NjAzMGQxOGI4YjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmc+aTHS3DlsKqlIUB/QLawaDQsZF waQBArAumwot+vgzyP9NU18OyfTTHelOaALw6dRH1XlIWVZfBxxOxh5vOQAdhxxv 93bjcrFjEQk51XBDKZv3eo9Wjm0UAIWJtYYEYyQcWySid7ix3qG5nhNERgVTGeN5 idKyMqUvOmkIAEBe4IW9eqWkmyX7E0sPD/OKNOPoZuQq7KivjpQmfol6AMuaedXN uH2VrWW2+rFNDDiho53XZxmJHxcmo9+i/UrfyxuHUwxnj89kMOjVIawKBukvH4U0 nG96iiWoYC0h93lJG64Nmzlxebec7+6W4oPPUs7NvPW69kJqLoIDCJN22wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF+WJnelhHFBN0QYrVp2YDDRi4t/MB8GA1UdIwQY MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt MGNmMTA5M2Q0NTQ4LzEvWDVZbWQ2V0VjVUUzUkJpdFduWmdNTkdMaTM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4 LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwufEMA0G CSqGSIb3DQEBCwUAA4IBAQCRM6w9De0DJZdFtKM5LJKoufafBPjzT2xTRs0RrwAb ZPsNkTJWBPk27pS9KX/kLrnsj+ovdM58dq3lAU327QFmnxi/Tjt7cI6q0Fa1WURu l88LzjHRPRXDRmCnE4fOAfVyWN5MTyy298M1MDNQ9zf5Vjf9L7J0MRTt2kb3sE6d WB00JoUUyR6OZptUhfoY/niMaep06V2mIepUg3BErXH0zS21FhlrIMvSZVAOeHoD 9iir385ywcO/jm+ZyUzKrWONDkvIQCERgSnEk9PtMtlcSwBjngk7rIgWjqIZ+HfI 6t9jgNy8n8fDovCRv8UjiFib3vKrq1/cl5aT49/N1sCi -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:00 2026 by rpki-client