This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5cwRbNgmHDrE6pX2gcDefhpRqdI.roa File: 5cwRbNgmHDrE6pX2gcDefhpRqdI.roa (raw, json) Hash identifier: mqpjJaRsrx8obWRDwL/Ay2blQpHzAot5CYtILt07CLs= Subject key identifier: E5:CC:11:6C:D8:26:1C:3A:C4:EA:95:F6:81:C0:DE:7E:1A:51:A9:D2 Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Certificate serial: 019B7B36137240F2EB4426B117446DC9C724 Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5cwRbNgmHDrE6pX2gcDefhpRqdI.roa Signing time: Thu 01 Jan 2026 20:18:19 +0000 ROA not before: Thu 01 Jan 2026 20:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203004 IP address blocks: 185.164.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 04:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:13:72:40:f2:eb:44:26:b1:17:44:6d:c9:c7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Validity Not Before: Jan 1 20:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e5cc116cd8261c3ac4ea95f681c0de7e1a51a9d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ba:4c:93:46:5d:e9:72:3e:0b:2b:88:96:ca: 5c:b0:f3:97:78:dc:a7:6f:77:81:d5:74:a9:45:cc: 4c:51:59:4b:4f:b2:95:13:33:5b:ac:2b:29:42:5d: e7:d9:da:a9:a2:50:b8:d0:d9:44:ec:b4:c2:88:e0: aa:57:cd:d5:9c:4b:34:17:28:ed:91:1b:4c:bf:1f: 77:26:f5:c5:b3:9b:69:59:2b:9f:6e:32:27:14:78: 69:ea:f2:43:fe:54:08:b8:b3:ad:4f:8a:08:ea:e9: b4:f8:a0:f8:a6:a4:88:82:63:1f:a0:23:bc:eb:ce: ac:51:08:7f:42:12:a5:c5:6a:ff:6f:77:e1:c4:d7: a9:23:98:50:d5:7e:c3:73:80:00:8e:d2:9b:4d:d2: 67:6f:13:55:7e:fe:8a:84:7b:ea:cc:fd:dc:e3:a6: 05:9c:47:48:b7:c9:c4:79:bf:a7:90:19:24:d6:e2: 4c:ec:ee:8a:24:81:44:23:56:89:18:0b:e3:c7:39: 04:22:e2:b4:b5:e7:df:75:9e:5c:b4:72:1f:d9:c7: ba:a6:17:86:fa:93:5d:c3:4d:f6:90:22:24:95:5d: 9e:57:d0:07:cf:38:37:7c:6b:ee:ee:62:6f:93:83: 03:ee:80:4c:60:d6:f7:73:00:b5:26:c7:eb:18:9f: cd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:CC:11:6C:D8:26:1C:3A:C4:EA:95:F6:81:C0:DE:7E:1A:51:A9:D2 X509v3 Authority Key Identifier: keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5cwRbNgmHDrE6pX2gcDefhpRqdI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.164.173.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:3a:a9:ee:4c:ce:dd:e9:40:76:e3:be:a4:58:48:09:44:5c: 2d:29:2f:ce:ce:c0:83:ac:8e:b0:99:2b:75:d0:18:50:73:97: ab:78:48:f2:60:66:95:ab:15:f9:18:8e:08:7f:d0:c7:89:75: 64:a5:97:3d:bb:42:ff:90:88:79:48:8b:e0:7c:33:c6:5e:d2: 39:df:44:4a:e7:0d:5e:c1:f1:db:ee:7f:64:1d:30:80:e2:01: 41:fe:99:47:49:c9:ae:ae:ea:d9:da:ff:af:37:6a:54:68:4b: 5a:b8:ea:03:a2:20:bf:78:28:ab:d4:fe:94:60:a1:66:cd:9c: 7d:06:59:ec:8e:7b:41:ca:8e:7b:23:ae:9c:1b:09:bc:9f:6a: de:4c:fe:47:35:c4:f1:b3:8a:47:04:f6:6b:0a:3f:ae:b5:3d: c3:1c:e7:ba:73:cd:6b:80:b3:cc:60:64:88:02:c6:03:38:6f: 8f:0b:ce:06:7d:61:19:0a:5f:91:07:dc:fb:31:2a:9b:b5:24: f6:5f:2f:a1:1f:60:35:18:dc:4b:7a:09:27:e5:cd:ad:4c:ac: 21:e2:24:1d:33:ca:69:69:3f:29:37:bc:cd:64:f1:61:b5:f2: 62:1f:34:25:b0:92:cb:39:da:1d:71:0e:e1:c9:ac:3f:83:26: e3:00:de:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NhNyQPLrRCaxF0RtycckMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw N2VlNTYwHhcNMjYwMTAxMjAxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNWNjMTE2Y2Q4MjYxYzNhYzRlYTk1ZjY4MWMwZGU3ZTFhNTFhOWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbpMk0Zd6XI+CyuIlspcsPOXeNyn b3eB1XSpRcxMUVlLT7KVEzNbrCspQl3n2dqpolC40NlE7LTCiOCqV83VnEs0Fyjt kRtMvx93JvXFs5tpWSufbjInFHhp6vJD/lQIuLOtT4oI6um0+KD4pqSIgmMfoCO8 686sUQh/QhKlxWr/b3fhxNepI5hQ1X7Dc4AAjtKbTdJnbxNVfv6KhHvqzP3c46YF nEdIt8nEeb+nkBkk1uJM7O6KJIFEI1aJGAvjxzkEIuK0teffdZ5ctHIf2ce6pheG +pNdw032kCIklV2eV9AHzzg3fGvu7mJvk4MD7oBMYNb3cwC1JsfrGJ/NywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOXMEWzYJhw6xOqV9oHA3n4aUanSMB8GA1UdIwQY MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt OGJmYmRkNDVjYjYyLzEvNWN3UmJOZ21IRHJFNnBYMmdjRGVmaHBScWRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaStMA0G CSqGSIb3DQEBCwUAA4IBAQB8OqnuTM7d6UB2476kWEgJRFwtKS/OzsCDrI6wmSt1 0BhQc5ereEjyYGaVqxX5GI4If9DHiXVkpZc9u0L/kIh5SIvgfDPGXtI530RK5w1e wfHb7n9kHTCA4gFB/plHScmururZ2v+vN2pUaEtauOoDoiC/eCir1P6UYKFmzZx9 BlnsjntByo57I66cGwm8n2reTP5HNcTxs4pHBPZrCj+utT3DHOe6c81rgLPMYGSI AsYDOG+PC84GfWEZCl+RB9z7MSqbtST2Xy+hH2A1GNxLegkn5c2tTKwh4iQdM8pp aT8pN7zNZPFhtfJiHzQlsJLLOdodcQ7hyaw/gybjAN6j -----END CERTIFICATE-----Generated at Thu Jan 15 13:19:18 2026 by rpki-client