This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/mK9jBg2iFuywF6JUAww3mxKLxCU.roa File: mK9jBg2iFuywF6JUAww3mxKLxCU.roa (raw, json) Hash identifier: lk8hbAdLVuILHrw42c6HMnMUPa/ZOyLXrol4InQSdq8= Subject key identifier: 98:AF:63:06:0D:A2:16:EC:B0:17:A2:54:03:0C:37:9B:12:8B:C4:25 Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112 Certificate serial: 019B7A5B93C7A52E1A5D49AF5B5880D8ADD9 Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/mK9jBg2iFuywF6JUAww3mxKLxCU.roa Signing time: Thu 01 Jan 2026 16:19:40 +0000 ROA not before: Thu 01 Jan 2026 16:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16524 IP address blocks: 194.5.135.0/24 maxlen: 24 195.64.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:93:c7:a5:2e:1a:5d:49:af:5b:58:80:d8:ad:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53bf98d53522aa957081fdec28b172084394f112 Validity Not Before: Jan 1 16:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98af63060da216ecb017a254030c379b128bc425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:88:43:37:e6:9c:b4:38:f2:78:f8:c2:57:e0: 98:77:11:3c:52:f6:79:9c:2c:30:e7:94:f3:ac:58: 37:5c:be:f4:7e:da:9b:76:52:b6:70:49:37:42:a9: fe:ff:32:b0:bc:27:ae:cd:ac:19:a9:1d:e7:c2:6c: 7e:5c:94:fc:79:ea:8a:27:12:9f:a7:45:57:1e:ce: 23:8f:e0:2b:11:ab:49:d7:ba:a0:2c:d9:db:78:c0: 6b:32:7d:f8:3b:d4:99:7f:1d:6e:bf:6d:f9:1c:ff: b9:f3:1a:41:02:68:f3:59:3b:07:f1:d7:7a:06:68: 49:ee:6f:48:ca:d4:28:ed:f6:ae:31:3b:b5:e1:a9: bc:cb:fb:ad:d2:dd:24:3f:ac:3e:6c:d0:c5:0e:73: 18:60:68:09:d5:34:86:a2:31:dd:a5:b6:89:4a:b2: a3:ca:b5:fb:d4:80:a2:16:c0:09:49:e3:93:d3:ca: 8a:54:e4:ce:46:bc:1d:1f:dd:d4:67:6e:f4:9a:f6: af:6a:17:81:b3:b5:0c:9b:f6:68:18:45:7a:69:17: 77:93:5f:34:f5:28:2f:63:3d:29:dc:d2:dc:13:3c: 3c:36:6e:35:4e:41:09:95:62:16:92:92:4a:55:1c: 68:fa:27:79:4f:3a:03:e3:1a:dd:5a:16:75:2d:15: 52:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AF:63:06:0D:A2:16:EC:B0:17:A2:54:03:0C:37:9B:12:8B:C4:25 X509v3 Authority Key Identifier: keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/mK9jBg2iFuywF6JUAww3mxKLxCU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.5.135.0/24 195.64.98.0/24 Signature Algorithm: sha256WithRSAEncryption 18:23:48:45:ba:48:e5:18:a1:72:99:ee:87:f1:1d:4a:b2:eb: e7:7a:87:a8:3a:2b:7e:de:d0:10:fa:6a:48:7b:ea:3d:9a:7d: 7e:6e:ef:9e:3a:4b:7e:09:d8:d3:16:90:5a:3a:06:d1:63:3e: 1e:ef:76:8a:3d:df:24:44:4d:75:dd:7e:42:16:96:74:e7:cc: cc:3b:ef:ea:30:1f:f6:5c:10:d6:73:ef:af:42:41:f0:d8:a4: fc:dd:ae:41:c5:ed:0f:d6:ea:4d:ec:f4:6b:9d:79:cc:87:04: b1:2f:6f:76:20:c0:7d:a4:4f:a5:47:9f:67:c6:d7:74:5a:97: dc:63:4e:a8:da:95:4a:6b:d8:2a:6e:7b:63:56:35:33:ec:6b: e1:2e:07:ae:96:6a:21:c3:a9:b7:8b:8d:1f:e2:f0:b7:12:c7: c2:1a:88:c8:cf:20:de:c4:f0:b8:69:68:d7:e3:49:dd:4e:cf: 85:58:ea:ea:8f:7d:56:e4:e3:98:1a:ef:64:2c:3e:e7:a4:67: 3b:d9:a6:f3:c8:e4:81:c5:31:2c:85:9d:86:a9:60:4b:72:0b: da:51:c0:4f:39:5e:37:4f:b8:9e:80:13:9d:68:04:80:5b:ea: 6b:fd:e1:8d:c3:65:33:5b:22:74:37:cb:74:39:33:9d:f2:a7: ea:8d:47:77 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6W5PHpS4aXUmvW1iA2K3ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYmY5OGQ1MzUyMmFhOTU3MDgxZmRlYzI4YjE3MjA4NDM5 NGYxMTIwHhcNMjYwMTAxMTYxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OGFmNjMwNjBkYTIxNmVjYjAxN2EyNTQwMzBjMzc5YjEyOGJjNDI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYhDN+actDjyePjCV+CYdxE8UvZ5 nCww55TzrFg3XL70ftqbdlK2cEk3Qqn+/zKwvCeuzawZqR3nwmx+XJT8eeqKJxKf p0VXHs4jj+ArEatJ17qgLNnbeMBrMn34O9SZfx1uv235HP+58xpBAmjzWTsH8dd6 BmhJ7m9IytQo7fauMTu14am8y/ut0t0kP6w+bNDFDnMYYGgJ1TSGojHdpbaJSrKj yrX71ICiFsAJSeOT08qKVOTORrwdH93UZ270mvavaheBs7UMm/ZoGEV6aRd3k180 9SgvYz0p3NLcEzw8Nm41TkEJlWIWkpJKVRxo+id5TzoD4xrdWhZ1LRVS8QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJivYwYNohbssBeiVAMMN5sSi8QlMB8GA1UdIwQY MBaAFFO/mNU1IqqVcIH97CixcghDlPESMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMt ZmFkNzA3ZDljNGY2LzEvbUs5akJnMmlGdXl3RjZKVUF3dzNteEtMeENVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMtZmFkNzA3ZDljNGY2 LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwgWHAwQA w0BiMA0GCSqGSIb3DQEBCwUAA4IBAQAYI0hFukjlGKFyme6H8R1KsuvneoeoOit+ 3tAQ+mpIe+o9mn1+bu+eOkt+CdjTFpBaOgbRYz4e73aKPd8kRE113X5CFpZ058zM O+/qMB/2XBDWc++vQkHw2KT83a5Bxe0P1upN7PRrnXnMhwSxL292IMB9pE+lR59n xtd0WpfcY06o2pVKa9gqbntjVjUz7GvhLgeulmohw6m3i40f4vC3EsfCGojIzyDe xPC4aWjX40ndTs+FWOrqj31W5OOYGu9kLD7npGc72abzyOSBxTEshZ2GqWBLcgva UcBPOV43T7iegBOdaASAW+pr/eGNw2UzWyJ0N8t0OTOd8qfqjUd3 -----END CERTIFICATE-----Generated at Sat Jan 10 22:32:57 2026 by rpki-client