This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/U5bL1XUWpyqR9zj1AtedsmjrxgY.roa File: U5bL1XUWpyqR9zj1AtedsmjrxgY.roa (raw, json) Hash identifier: GK03uc0PHnXu/AnANUZOoM5k0hlXQwfi3sn5VuB2sHo= Subject key identifier: 53:96:CB:D5:75:16:A7:2A:91:F7:38:F5:02:D7:9D:B2:68:EB:C6:06 Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Certificate serial: 019B7B360D6F4D67741408093780FB83C114 Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/U5bL1XUWpyqR9zj1AtedsmjrxgY.roa Signing time: Thu 01 Jan 2026 20:18:18 +0000 ROA not before: Thu 01 Jan 2026 20:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198584 IP address blocks: 194.120.171.0/24 maxlen: 24 194.120.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:0d:6f:4d:67:74:14:08:09:37:80:fb:83:c1:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Validity Not Before: Jan 1 20:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5396cbd57516a72a91f738f502d79db268ebc606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:82:54:6f:fe:13:b5:0c:f5:6b:fd:75:63:bd: 4e:be:f2:ad:cc:3e:16:0c:3e:49:21:bf:f0:ee:92: 58:c1:f8:02:f2:92:bc:8b:b1:b8:eb:e6:29:f0:6f: 23:42:2a:69:c1:38:32:7e:02:95:d7:ac:73:4b:f6: dd:45:7a:9e:a4:f9:98:a1:b9:29:14:f2:f5:95:cf: 67:3f:b2:a5:15:55:35:46:d6:da:4d:25:e0:78:ed: 79:15:ef:d2:fb:9b:ed:49:ef:ab:59:a2:fb:7b:84: b8:08:e1:2e:7c:f6:69:be:1a:9b:87:57:48:b6:af: 0e:1e:18:74:7e:1f:0d:4f:f5:9a:0e:ee:8b:36:10: 01:98:e6:31:5f:f9:8f:d9:d7:bb:30:83:d0:1f:7e: 3a:00:18:1f:38:86:5d:f1:9b:d6:61:79:e4:27:53: 14:4b:64:0b:a2:44:fd:b2:83:f7:9f:15:34:9e:33: 25:72:9f:f3:de:55:8e:e9:8e:e6:f4:00:48:e7:39: 60:f5:be:4d:c4:1b:35:f9:fc:b6:bf:55:94:19:83: d3:6f:49:85:f9:31:33:97:7d:06:92:5f:83:79:e8: bc:46:c4:28:4a:39:a1:5b:ea:ae:53:10:6b:da:b1: 87:04:d7:7d:ef:cc:5c:60:b1:a3:28:b0:f3:20:ec: 18:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:96:CB:D5:75:16:A7:2A:91:F7:38:F5:02:D7:9D:B2:68:EB:C6:06 X509v3 Authority Key Identifier: keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/U5bL1XUWpyqR9zj1AtedsmjrxgY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.120.171.0/24 194.120.230.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:25:02:1d:9a:38:aa:c7:7e:00:8e:02:15:87:fc:f4:cc:7b: 4a:59:d7:1c:b6:7f:ad:0e:5e:d6:b1:19:42:49:ad:4f:db:1d: 08:49:69:00:d4:ef:77:1d:51:61:90:5d:3b:9e:bc:a5:90:a7: 9c:5c:0d:03:06:01:a0:15:fe:c7:5f:c3:f5:b2:c1:28:47:d2: b5:ee:ac:11:f8:3c:38:82:c1:b2:b0:25:c5:e9:a0:bf:aa:9a: a1:54:74:64:46:36:05:1b:37:94:52:8c:6a:a1:6a:4d:b5:55: ba:79:d8:32:af:bf:08:13:9d:9a:90:88:19:c7:b0:d3:e2:e4: f3:e8:13:81:4c:02:48:1a:b9:e3:be:a4:c0:ed:73:ca:39:2d: 4b:1c:16:d8:74:b3:c2:67:fe:bd:81:91:7c:60:ba:36:b6:74: b6:22:cd:8a:84:54:d2:c5:65:e4:c5:3c:ce:23:ed:0c:3a:b5: 52:d9:df:6d:15:b0:8b:d4:1f:d2:1e:55:35:7b:95:87:af:20: e7:0b:be:58:b8:6d:b8:4c:14:76:dd:35:54:7a:9e:1c:aa:31: a3:63:58:a3:3b:da:fd:d9:a6:7b:20:57:b5:6f:dc:1b:34:a0: 53:af:a7:ac:a5:04:26:c5:9a:09:0f:bb:02:cb:4d:54:68:7e: c3:2b:cc:77 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7Ng1vTWd0FAgJN4D7g8EUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2 YzhkY2MwHhcNMjYwMTAxMjAxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mzk2Y2JkNTc1MTZhNzJhOTFmNzM4ZjUwMmQ3OWRiMjY4ZWJjNjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYJUb/4TtQz1a/11Y71OvvKtzD4W DD5JIb/w7pJYwfgC8pK8i7G46+Yp8G8jQippwTgyfgKV16xzS/bdRXqepPmYobkp FPL1lc9nP7KlFVU1RtbaTSXgeO15Fe/S+5vtSe+rWaL7e4S4COEufPZpvhqbh1dI tq8OHhh0fh8NT/WaDu6LNhABmOYxX/mP2de7MIPQH346ABgfOIZd8ZvWYXnkJ1MU S2QLokT9soP3nxU0njMlcp/z3lWO6Y7m9ABI5zlg9b5NxBs1+fy2v1WUGYPTb0mF +TEzl30Gkl+Deei8RsQoSjmhW+quUxBr2rGHBNd978xcYLGjKLDzIOwYsQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFOWy9V1Fqcqkfc49QLXnbJo68YGMB8GA1UdIwQY MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt OTE4YWM2NDYyNjc5LzEvVTViTDFYVVdweXFSOXpqMUF0ZWRzbWpyeGdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5 LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwnirAwQA wnjmMA0GCSqGSIb3DQEBCwUAA4IBAQA8JQIdmjiqx34AjgIVh/z0zHtKWdcctn+t Dl7WsRlCSa1P2x0ISWkA1O93HVFhkF07nrylkKecXA0DBgGgFf7HX8P1ssEoR9K1 7qwR+Dw4gsGysCXF6aC/qpqhVHRkRjYFGzeUUoxqoWpNtVW6edgyr78IE52akIgZ x7DT4uTz6BOBTAJIGrnjvqTA7XPKOS1LHBbYdLPCZ/69gZF8YLo2tnS2Is2KhFTS xWXkxTzOI+0MOrVS2d9tFbCL1B/SHlU1e5WHryDnC75YuG24TBR23TVUep4cqjGj Y1ijO9r92aZ7IFe1b9wbNKBTr6espQQmxZoJD7sCy01UaH7DK8x3 -----END CERTIFICATE-----Generated at Wed Jan 21 09:24:15 2026 by rpki-client