This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/e2fbfd-05f9-48ec-835b-70c770b1087b/1/m5v93tUMRlQaxfIjzpbnrJ9Lohk.roa File: m5v93tUMRlQaxfIjzpbnrJ9Lohk.roa (raw, json) Hash identifier: 1uqxOdkBAdrXDzt6+/f4JBRjuvDt70ncNU0kmF4G9OY= Subject key identifier: 9B:9B:FD:DE:D5:0C:46:54:1A:C5:F2:23:CE:96:E7:AC:9F:4B:A2:19 Certificate issuer: /CN=58cedba67a45b737d8ad0f7a784c350d86d67118 Certificate serial: 019B7DCB3743443083847489528DDCAF4EB8 Authority key identifier: 58:CE:DB:A6:7A:45:B7:37:D8:AD:0F:7A:78:4C:35:0D:86:D6:71:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WM7bpnpFtzfYrQ96eEw1DYbWcRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/e2fbfd-05f9-48ec-835b-70c770b1087b/1/m5v93tUMRlQaxfIjzpbnrJ9Lohk.roa Signing time: Fri 02 Jan 2026 08:20:28 +0000 ROA not before: Fri 02 Jan 2026 08:20:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12337 IP address blocks: 2001:67c:fc4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/e2fbfd-05f9-48ec-835b-70c770b1087b/1/WM7bpnpFtzfYrQ96eEw1DYbWcRg.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/e2fbfd-05f9-48ec-835b-70c770b1087b/1/WM7bpnpFtzfYrQ96eEw1DYbWcRg.mft rsync://rpki.ripe.net/repository/DEFAULT/WM7bpnpFtzfYrQ96eEw1DYbWcRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 21:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:37:43:44:30:83:84:74:89:52:8d:dc:af:4e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58cedba67a45b737d8ad0f7a784c350d86d67118 Validity Not Before: Jan 2 08:20:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b9bfdded50c46541ac5f223ce96e7ac9f4ba219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:44:da:22:80:90:f0:e7:5a:b5:f2:0c:b9:c0: 73:09:2d:4d:ad:99:c4:64:c4:4e:cd:62:6a:de:62: 1c:00:f5:81:db:80:75:64:d4:47:62:ec:ad:62:79: a4:1d:97:1b:4d:79:57:3c:38:22:57:c5:56:e5:b8: ee:7b:70:2e:90:41:b5:43:a8:28:46:57:b6:df:91: 42:60:d3:0d:e5:56:ab:2c:67:20:ff:d9:78:09:e9: 5a:22:c2:fc:51:b6:90:05:d6:06:66:cc:07:54:f0: 2b:ce:76:61:52:83:08:21:a3:ff:64:0a:db:61:e6: 32:44:f3:6b:13:a6:91:3b:c5:1c:02:38:93:8a:4a: 9f:45:e6:d1:9b:cb:85:e2:c2:bf:b4:94:73:79:9c: 17:d7:da:dc:25:2b:19:b0:0d:e5:b0:71:f0:e7:99: 44:a3:bb:4b:2e:26:cc:bc:13:01:9c:34:c7:17:b0: c3:d9:da:1e:72:ce:ad:a7:66:d6:eb:da:82:4f:d5: 08:33:d5:81:76:6d:7d:60:9b:ff:a1:ee:23:ea:d8: e9:3c:12:42:6f:62:f9:ff:57:4b:8a:1d:21:3e:c6: 95:d5:76:3c:79:ea:9d:e5:dd:85:d8:ab:ef:75:a2: 92:2d:3c:eb:ec:33:1e:06:6e:32:a8:34:b6:89:f6: 98:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9B:FD:DE:D5:0C:46:54:1A:C5:F2:23:CE:96:E7:AC:9F:4B:A2:19 X509v3 Authority Key Identifier: keyid:58:CE:DB:A6:7A:45:B7:37:D8:AD:0F:7A:78:4C:35:0D:86:D6:71:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WM7bpnpFtzfYrQ96eEw1DYbWcRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e2fbfd-05f9-48ec-835b-70c770b1087b/1/m5v93tUMRlQaxfIjzpbnrJ9Lohk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e2fbfd-05f9-48ec-835b-70c770b1087b/1/WM7bpnpFtzfYrQ96eEw1DYbWcRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:fc4::/48 Signature Algorithm: sha256WithRSAEncryption 0c:bc:2c:8e:1e:61:35:a0:77:37:2f:c3:c5:56:91:50:1e:ab: e3:cd:93:b2:d6:ee:3b:07:f5:7d:e3:73:47:f8:0b:1a:9d:68: 1c:b4:bd:cd:8b:98:ae:a0:52:7a:c5:65:3d:04:fa:31:db:62: f4:84:7b:e7:4b:ef:c8:2d:5b:59:2a:3c:65:92:b0:5b:72:df: 2d:65:64:2c:66:b1:b3:45:24:1a:8f:77:af:3a:c6:0a:b1:26: 44:9e:36:74:49:30:92:ba:2e:81:e9:98:bc:99:80:17:5c:00: e6:50:b6:72:a1:57:df:c7:33:2a:b0:b2:f5:fa:a3:13:94:13: 82:5c:99:35:7d:ea:1c:27:66:e2:c1:44:2e:5a:0e:29:8d:bf: 37:92:75:69:4d:a5:50:9c:5e:41:cb:ea:ef:4c:15:a7:5d:11: 39:f0:61:0c:30:32:b9:0d:52:4c:0d:fc:b0:7c:15:de:4d:16: 2b:0d:80:3a:38:0f:e9:b1:e0:63:63:96:3d:65:f0:8d:c4:77: 03:c1:87:bb:b1:28:12:6c:c8:cf:ff:b9:79:43:22:65:1a:fc: 1f:3a:58:2e:af:bb:8b:2c:95:4d:42:5e:21:d5:d9:39:db:d7: e6:73:b1:41:c7:6b:ff:9c:33:b5:fd:48:3b:55:6c:31:8a:01: ac:6f:98:71 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9yzdDRDCDhHSJUo3cr064MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4Y2VkYmE2N2E0NWI3MzdkOGFkMGY3YTc4NGMzNTBkODZk NjcxMTgwHhcNMjYwMTAyMDgyMDI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjliZmRkZWQ1MGM0NjU0MWFjNWYyMjNjZTk2ZTdhYzlmNGJhMjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+UTaIoCQ8OdatfIMucBzCS1NrZnE ZMROzWJq3mIcAPWB24B1ZNRHYuytYnmkHZcbTXlXPDgiV8VW5bjue3AukEG1Q6go Rle235FCYNMN5VarLGcg/9l4CelaIsL8UbaQBdYGZswHVPArznZhUoMIIaP/ZArb YeYyRPNrE6aRO8UcAjiTikqfRebRm8uF4sK/tJRzeZwX19rcJSsZsA3lsHHw55lE o7tLLibMvBMBnDTHF7DD2doecs6tp2bW69qCT9UIM9WBdm19YJv/oe4j6tjpPBJC b2L5/1dLih0hPsaV1XY8eeqd5d2F2KvvdaKSLTzr7DMeBm4yqDS2ifaYRQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJub/d7VDEZUGsXyI86W56yfS6IZMB8GA1UdIwQY MBaAFFjO26Z6Rbc32K0PenhMNQ2G1nEYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV003YnBucEZ0emZZclE5NmVFdzFEWWJXY1JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lMmZiZmQtMDVmOS00OGVjLTgzNWIt NzBjNzcwYjEwODdiLzEvbTV2OTN0VU1SbFFheGZJanpwYm5ySjlMb2hrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9lMmZiZmQtMDVmOS00OGVjLTgzNWItNzBjNzcwYjEwODdi LzEvV003YnBucEZ0emZZclE5NmVFdzFEWWJXY1JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA/E MA0GCSqGSIb3DQEBCwUAA4IBAQAMvCyOHmE1oHc3L8PFVpFQHqvjzZOy1u47B/V9 43NH+AsanWgctL3Ni5iuoFJ6xWU9BPox22L0hHvnS+/ILVtZKjxlkrBbct8tZWQs ZrGzRSQaj3evOsYKsSZEnjZ0STCSui6B6Zi8mYAXXADmULZyoVffxzMqsLL1+qMT lBOCXJk1feocJ2biwUQuWg4pjb83knVpTaVQnF5By+rvTBWnXRE58GEMMDK5DVJM DfywfBXeTRYrDYA6OA/pseBjY5Y9ZfCNxHcDwYe7sSgSbMjP/7l5QyJlGvwfOlgu r7uLLJVNQl4h1dk529fmc7FBx2v/nDO1/Ug7VWwxigGsb5hx -----END CERTIFICATE-----Generated at Tue Feb 3 06:34:01 2026 by rpki-client