This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/5DO2gDG0jIsxWfIdsn6VtS8YzVU.roa File: 5DO2gDG0jIsxWfIdsn6VtS8YzVU.roa (raw, json) Hash identifier: vc1lWKgaQKcWvIEiovIUH6ry7EbnnG5est8nMrCuGtk= Subject key identifier: E4:33:B6:80:31:B4:8C:8B:31:59:F2:1D:B2:7E:95:B5:2F:18:CD:55 Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d Certificate serial: 019B7758BFFDF3269C478ADD26691E74D98B Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/5DO2gDG0jIsxWfIdsn6VtS8YzVU.roa Signing time: Thu 01 Jan 2026 02:17:43 +0000 ROA not before: Thu 01 Jan 2026 02:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213945 IP address blocks: 193.35.153.0/24 maxlen: 24 193.35.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.mft rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:bf:fd:f3:26:9c:47:8a:dd:26:69:1e:74:d9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d Validity Not Before: Jan 1 02:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e433b68031b48c8b3159f21db27e95b52f18cd55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:b0:b0:cf:5a:af:f6:c6:27:0c:3a:ea:27: 49:0b:36:57:45:4d:41:47:89:a7:1b:bd:ca:90:7f: 45:8e:63:46:5a:36:59:5e:f3:a3:26:a6:79:70:95: 43:26:60:e3:51:0c:bf:cd:86:72:b9:f9:8a:1b:73: e6:5f:22:c1:d5:c3:62:b9:f5:8f:f6:d7:ec:f8:f5: f9:a5:b7:08:06:ac:9f:ca:75:e5:b1:29:c4:98:3b: c8:e1:0f:07:fb:ca:51:63:9b:96:01:d3:23:30:75: cb:15:57:bc:eb:c6:9e:6c:d0:57:f3:f9:59:6a:fe: ca:90:2f:04:73:0f:f0:7b:8f:a4:83:81:b7:e2:20: 97:d5:f0:a0:7c:9e:f3:a1:08:23:9c:69:e2:ad:fc: e3:8e:b1:6b:a6:5e:3e:68:59:c6:72:ee:97:06:bc: 63:f9:6b:d3:2f:db:1f:0b:0d:1f:c7:49:c3:ba:e2: 85:37:0e:f2:93:00:5f:34:e9:7f:fb:d0:d7:28:9e: 6f:dd:20:e3:de:ef:90:87:ed:2d:bc:5c:cb:cd:10: 19:e7:10:e2:30:b2:42:7c:34:d6:18:48:bd:70:21: 13:b8:35:42:27:7b:23:d2:20:fd:ba:53:10:3c:49: fa:3a:88:3f:36:b7:6d:19:75:c8:ae:72:b4:ee:5f: 55:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:33:B6:80:31:B4:8C:8B:31:59:F2:1D:B2:7E:95:B5:2F:18:CD:55 X509v3 Authority Key Identifier: keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/5DO2gDG0jIsxWfIdsn6VtS8YzVU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.35.153.0/24 193.35.155.0/24 Signature Algorithm: sha256WithRSAEncryption 37:10:eb:02:59:a2:8c:ba:ef:30:0c:2e:18:fa:4d:7f:15:af: ca:37:90:88:22:7c:6b:bf:c8:88:a7:70:d4:1b:57:ff:38:13: 79:8e:a4:2a:1f:2b:5b:d3:55:3c:49:4e:f6:04:38:72:9c:86: 63:ea:4a:0c:12:1b:5f:76:11:be:0e:d6:63:31:6e:a6:b5:7f: a6:b2:f0:fc:50:60:35:43:ff:a3:3e:bf:44:04:fb:ea:b0:4a: 51:15:0c:34:d1:a0:75:57:06:86:86:e0:9d:81:11:5d:08:41: c2:01:3d:69:6f:ab:d5:81:3a:78:8d:71:6c:2e:ec:9b:fb:12: 4b:ee:da:90:d3:c8:a0:53:4f:31:52:f4:95:a9:cc:c9:a8:9e: 1e:33:d7:55:06:24:fc:a6:5c:54:d3:53:f3:0c:01:05:1d:61: 50:9a:9b:12:24:91:0c:ee:3b:88:66:8d:f9:01:b5:c2:ee:13: 3c:47:37:f5:61:2c:18:1a:62:4f:06:b1:9a:1e:51:43:6c:13: 12:ea:5d:04:f7:1c:17:71:1a:7f:3a:57:27:09:9e:e2:4c:fd: 90:87:8a:24:b3:23:6e:cb:29:6a:01:a3:81:08:6d:91:15:85: ab:71:c2:6d:9c:e3:fa:2e:03:9b:50:13:25:75:9b:5d:48:70: b5:45:38:14 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WL/98yacR4rdJmkedNmLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2MTZjNDE5NTE1MmVmZmVkYmY3YjNhZmVlMmFhNzJlMTkw OTBlNGQwHhcNMjYwMTAxMDIxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNDMzYjY4MDMxYjQ4YzhiMzE1OWYyMWRiMjdlOTViNTJmMThjZDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyd2wsM9ar/bGJww66idJCzZXRU1B R4mnG73KkH9FjmNGWjZZXvOjJqZ5cJVDJmDjUQy/zYZyufmKG3PmXyLB1cNiufWP 9tfs+PX5pbcIBqyfynXlsSnEmDvI4Q8H+8pRY5uWAdMjMHXLFVe868aebNBX8/lZ av7KkC8Ecw/we4+kg4G34iCX1fCgfJ7zoQgjnGnirfzjjrFrpl4+aFnGcu6XBrxj +WvTL9sfCw0fx0nDuuKFNw7ykwBfNOl/+9DXKJ5v3SDj3u+Qh+0tvFzLzRAZ5xDi MLJCfDTWGEi9cCETuDVCJ3sj0iD9ulMQPEn6Oog/NrdtGXXIrnK07l9ViwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOQztoAxtIyLMVnyHbJ+lbUvGM1VMB8GA1UdIwQY MBaAFMYWxBlRUu/+2/ezr+4qpy4ZCQ5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjkt MzlmZGI5ODZmMDU5LzEvNURPMmdERzBqSXN4V2ZJZHNuNlZ0UzhZelZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjktMzlmZGI5ODZmMDU5 LzEveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwSOZAwQA wSObMA0GCSqGSIb3DQEBCwUAA4IBAQA3EOsCWaKMuu8wDC4Y+k1/Fa/KN5CIInxr v8iIp3DUG1f/OBN5jqQqHytb01U8SU72BDhynIZj6koMEhtfdhG+DtZjMW6mtX+m svD8UGA1Q/+jPr9EBPvqsEpRFQw00aB1VwaGhuCdgRFdCEHCAT1pb6vVgTp4jXFs Luyb+xJL7tqQ08igU08xUvSVqczJqJ4eM9dVBiT8plxU01PzDAEFHWFQmpsSJJEM 7juIZo35AbXC7hM8Rzf1YSwYGmJPBrGaHlFDbBMS6l0E9xwXcRp/OlcnCZ7iTP2Q h4oksyNuyylqAaOBCG2RFYWrccJtnOP6LgObUBMldZtdSHC1RTgU -----END CERTIFICATE-----Generated at Wed Jan 21 14:12:23 2026 by rpki-client