This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21195c-566a-4ff0-9496-508081499be7/1/fph5gTuLwd2OWoh3SrvtX0TJ1jU.roa File: fph5gTuLwd2OWoh3SrvtX0TJ1jU.roa (raw, json) Hash identifier: SKuyO2n0G10edipOcdvCUjjKqC8VGVks6CgzeewLwB4= Subject key identifier: 7E:98:79:81:3B:8B:C1:DD:8E:5A:88:77:4A:BB:ED:5F:44:C9:D6:35 Certificate issuer: /CN=5ad62d64b020e6c0114842f276265e3c07d3ea5c Certificate serial: 019B78A2382FDE66DFC03226DDFADD4D5AF3 Authority key identifier: 5A:D6:2D:64:B0:20:E6:C0:11:48:42:F2:76:26:5E:3C:07:D3:EA:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WtYtZLAg5sARSELydiZePAfT6lw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21195c-566a-4ff0-9496-508081499be7/1/fph5gTuLwd2OWoh3SrvtX0TJ1jU.roa Signing time: Thu 01 Jan 2026 08:17:35 +0000 ROA not before: Thu 01 Jan 2026 08:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62182 IP address blocks: 185.253.188.0/23 maxlen: 23 185.253.188.0/24 maxlen: 24 185.253.189.0/24 maxlen: 24 185.253.190.0/23 maxlen: 23 185.253.190.0/24 maxlen: 24 185.253.191.0/24 maxlen: 24 2a10:d400::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21195c-566a-4ff0-9496-508081499be7/1/WtYtZLAg5sARSELydiZePAfT6lw.crl rsync://rpki.ripe.net/repository/DEFAULT/38/21195c-566a-4ff0-9496-508081499be7/1/WtYtZLAg5sARSELydiZePAfT6lw.mft rsync://rpki.ripe.net/repository/DEFAULT/WtYtZLAg5sARSELydiZePAfT6lw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:38:2f:de:66:df:c0:32:26:dd:fa:dd:4d:5a:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ad62d64b020e6c0114842f276265e3c07d3ea5c Validity Not Before: Jan 1 08:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e9879813b8bc1dd8e5a88774abbed5f44c9d635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:62:bd:2e:a0:b2:03:3e:3d:a8:e7:cf:b8:7f: 74:ed:9b:2e:88:a1:7d:60:ba:51:1e:92:2d:02:42: f1:3f:0c:e0:cd:fa:4b:28:e2:3f:67:71:24:a5:9a: 92:8e:8f:50:7b:3a:9c:03:d1:5b:34:19:46:3f:79: 1b:b8:25:54:b2:ef:e6:1e:a2:b2:3b:c0:b4:cd:28: 3b:bc:03:3d:bb:af:c1:08:c5:ed:bb:3c:31:fa:09: 03:8c:7a:2b:fc:cf:87:22:71:49:53:f6:07:86:28: 5c:c3:bf:95:6b:db:9a:f3:6f:21:a2:48:61:16:e7: ee:32:d8:e1:40:a5:f5:d3:16:75:09:01:af:3c:0b: b3:fb:9f:8c:5c:2d:c1:e4:28:1b:88:2d:1e:64:f3: 51:07:f6:63:76:9e:66:f6:3f:5d:03:af:0d:ce:14: 59:66:af:21:df:7f:2a:bf:a7:54:30:72:6f:37:d1: 6f:1a:d9:32:99:d0:c1:2e:5f:4e:98:a7:ad:93:db: 49:96:0f:a8:ab:77:46:a4:70:42:32:84:97:b0:33: 66:1f:82:96:39:73:77:ac:08:be:e6:1c:20:6d:ad: 95:1c:d7:ca:f1:2c:46:dc:7a:f5:5d:4b:62:77:3a: 12:e4:d2:61:b7:46:52:bb:ba:18:af:ea:ef:f4:c5: b9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:98:79:81:3B:8B:C1:DD:8E:5A:88:77:4A:BB:ED:5F:44:C9:D6:35 X509v3 Authority Key Identifier: keyid:5A:D6:2D:64:B0:20:E6:C0:11:48:42:F2:76:26:5E:3C:07:D3:EA:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WtYtZLAg5sARSELydiZePAfT6lw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21195c-566a-4ff0-9496-508081499be7/1/fph5gTuLwd2OWoh3SrvtX0TJ1jU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21195c-566a-4ff0-9496-508081499be7/1/WtYtZLAg5sARSELydiZePAfT6lw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.253.188.0/22 IPv6: 2a10:d400::/29 Signature Algorithm: sha256WithRSAEncryption 8a:ff:72:b1:9d:09:06:72:6e:29:89:22:61:13:e1:19:6c:ee: a9:2d:32:35:06:99:a8:3b:98:05:39:83:80:f7:a8:8d:aa:45: 60:3c:26:cb:28:5e:e2:85:15:1d:c7:d3:89:ec:f0:50:07:f4: ae:80:fa:4d:e0:be:67:69:56:da:b7:99:f8:0e:b8:1c:85:9f: dd:5d:87:d4:dc:a8:1b:f7:28:3a:80:80:97:15:f4:67:49:70: a2:29:6e:db:2a:a9:d9:90:0e:35:c6:d8:45:4e:a0:fd:20:0b: 5f:1b:5c:a8:8f:99:55:a2:38:ce:71:47:5d:a7:d3:18:55:5d: 32:50:6f:5e:2f:68:91:91:9e:69:d6:1e:d4:ad:c3:71:fa:32: f0:26:70:c8:b4:7f:a5:62:fb:10:f3:e7:ec:9b:08:bc:ab:de: 57:09:cf:ea:3e:29:5d:33:5a:27:cf:aa:17:61:e7:cc:4e:de: 33:1c:36:e5:ad:da:04:25:8e:4a:4e:0b:52:cc:f4:b5:86:a5: a0:da:ef:3a:d9:f5:c8:05:b6:bc:3d:42:b7:40:25:a1:d0:22: 06:90:0c:e1:17:36:9d:03:6e:02:7d:9f:b8:e5:98:26:d9:49: a5:72:74:93:67:de:ec:14:56:38:6a:85:2c:bb:96:4c:86:f5: 45:a3:3b:2e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4ojgv3mbfwDIm3frdTVrzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhZDYyZDY0YjAyMGU2YzAxMTQ4NDJmMjc2MjY1ZTNjMDdk M2VhNWMwHhcNMjYwMTAxMDgxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTk4Nzk4MTNiOGJjMWRkOGU1YTg4Nzc0YWJiZWQ1ZjQ0YzlkNjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWK9LqCyAz49qOfPuH907ZsuiKF9 YLpRHpItAkLxPwzgzfpLKOI/Z3EkpZqSjo9QezqcA9FbNBlGP3kbuCVUsu/mHqKy O8C0zSg7vAM9u6/BCMXtuzwx+gkDjHor/M+HInFJU/YHhihcw7+Va9ua828hokhh FufuMtjhQKX10xZ1CQGvPAuz+5+MXC3B5CgbiC0eZPNRB/Zjdp5m9j9dA68NzhRZ Zq8h338qv6dUMHJvN9FvGtkymdDBLl9OmKetk9tJlg+oq3dGpHBCMoSXsDNmH4KW OXN3rAi+5hwgba2VHNfK8SxG3Hr1XUtidzoS5NJht0ZSu7oYr+rv9MW5PQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFH6YeYE7i8HdjlqId0q77V9EydY1MB8GA1UdIwQY MBaAFFrWLWSwIObAEUhC8nYmXjwH0+pcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3RZdFpMQWc1c0FSU0VMeWRpWmVQQWZUNmx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yMTE5NWMtNTY2YS00ZmYwLTk0OTYt NTA4MDgxNDk5YmU3LzEvZnBoNWdUdUx3ZDJPV29oM1NydnRYMFRKMWpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8yMTE5NWMtNTY2YS00ZmYwLTk0OTYtNTA4MDgxNDk5YmU3 LzEvV3RZdFpMQWc1c0FSU0VMeWRpWmVQQWZUNmx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuf28MA0E AgACMAcDBQMqENQAMA0GCSqGSIb3DQEBCwUAA4IBAQCK/3KxnQkGcm4piSJhE+EZ bO6pLTI1BpmoO5gFOYOA96iNqkVgPCbLKF7ihRUdx9OJ7PBQB/SugPpN4L5naVba t5n4DrgchZ/dXYfU3Kgb9yg6gICXFfRnSXCiKW7bKqnZkA41xthFTqD9IAtfG1yo j5lVojjOcUddp9MYVV0yUG9eL2iRkZ5p1h7UrcNx+jLwJnDItH+lYvsQ8+fsmwi8 q95XCc/qPildM1onz6oXYefMTt4zHDblrdoEJY5KTgtSzPS1hqWg2u862fXIBba8 PUK3QCWh0CIGkAzhFzadA24CfZ+45Zgm2UmlcnSTZ97sFFY4aoUsu5ZMhvVFozsu -----END CERTIFICATE-----Generated at Mon Feb 9 22:24:14 2026 by rpki-client