This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/057780-52e8-4777-8a25-021c2e0735b1/1/5ISKJbp4rbTdCWF2uAdFb5yPoJI.roa File: 5ISKJbp4rbTdCWF2uAdFb5yPoJI.roa (raw, json) Hash identifier: OH5/o4eCRTtPdgmEfAYqQLH3iOBiZD4gNNNHJ0XoTvs= Subject key identifier: E4:84:8A:25:BA:78:AD:B4:DD:09:61:76:B8:07:45:6F:9C:8F:A0:92 Certificate issuer: /CN=1f688f9857d9e440c1058dc8959e49f8b3183f61 Certificate serial: 019B79103BA696E98273C627FB3D32851A3C Authority key identifier: 1F:68:8F:98:57:D9:E4:40:C1:05:8D:C8:95:9E:49:F8:B3:18:3F:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2iPmFfZ5EDBBY3IlZ5J-LMYP2E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/057780-52e8-4777-8a25-021c2e0735b1/1/5ISKJbp4rbTdCWF2uAdFb5yPoJI.roa Signing time: Thu 01 Jan 2026 10:17:45 +0000 ROA not before: Thu 01 Jan 2026 10:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205581 IP address blocks: 85.209.240.0/24 maxlen: 24 85.209.241.0/24 maxlen: 24 85.209.242.0/24 maxlen: 24 85.209.243.0/24 maxlen: 24 2a0e:b780::/32 maxlen: 32 2a0e:b781::/32 maxlen: 32 2a0e:b782::/32 maxlen: 32 2a0e:b783::/32 maxlen: 32 2a0e:b784::/32 maxlen: 32 2a0e:b785::/32 maxlen: 32 2a0e:b786::/32 maxlen: 32 2a0e:b787::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/057780-52e8-4777-8a25-021c2e0735b1/1/H2iPmFfZ5EDBBY3IlZ5J-LMYP2E.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/057780-52e8-4777-8a25-021c2e0735b1/1/H2iPmFfZ5EDBBY3IlZ5J-LMYP2E.mft rsync://rpki.ripe.net/repository/DEFAULT/H2iPmFfZ5EDBBY3IlZ5J-LMYP2E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:3b:a6:96:e9:82:73:c6:27:fb:3d:32:85:1a:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f688f9857d9e440c1058dc8959e49f8b3183f61 Validity Not Before: Jan 1 10:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4848a25ba78adb4dd096176b807456f9c8fa092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ec:9f:fe:6d:34:50:45:23:5e:44:13:57:02: 7f:d0:ad:65:f4:6c:07:ef:99:f7:dc:46:c4:c2:56: 9f:f2:e3:3f:a7:bb:90:11:06:04:f2:a2:49:1c:c1: 15:80:d3:56:89:ab:a2:b1:28:a6:b5:5b:bd:d0:f3: 46:71:04:1c:03:f3:18:f9:5d:07:fc:62:6e:9b:02: c1:1a:4f:00:31:f3:9d:ce:fe:60:1f:a4:03:7c:f9: 6c:34:6f:c1:b0:dc:fc:dc:b3:08:08:4f:48:ff:dc: d4:93:1d:50:81:84:36:cd:17:33:4a:30:99:9a:e9: 85:16:15:02:62:da:6b:ec:98:6d:6c:1b:7f:95:95: 42:62:08:ea:9a:90:11:8a:75:13:32:3a:97:b2:12: 8a:a3:bf:6e:7a:f7:0f:bf:c4:47:d2:c3:22:f0:a2: 1f:1e:f5:99:27:1b:82:ab:a4:d4:50:e7:a3:60:56: 8b:03:ef:ba:3f:83:7b:45:cf:d2:a0:f5:59:0e:80: 91:52:e5:61:ff:dc:01:0a:34:25:15:97:58:58:d3: 8d:35:f0:b1:0d:ff:17:97:9e:d6:58:fa:bd:87:23: ec:2f:b2:cf:ff:ba:86:79:bd:57:24:2b:be:be:f0: 11:f5:ab:f2:11:26:ee:c3:15:14:8d:2b:d5:1c:ab: aa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:84:8A:25:BA:78:AD:B4:DD:09:61:76:B8:07:45:6F:9C:8F:A0:92 X509v3 Authority Key Identifier: keyid:1F:68:8F:98:57:D9:E4:40:C1:05:8D:C8:95:9E:49:F8:B3:18:3F:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2iPmFfZ5EDBBY3IlZ5J-LMYP2E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/057780-52e8-4777-8a25-021c2e0735b1/1/5ISKJbp4rbTdCWF2uAdFb5yPoJI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/057780-52e8-4777-8a25-021c2e0735b1/1/H2iPmFfZ5EDBBY3IlZ5J-LMYP2E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.209.240.0/22 IPv6: 2a0e:b780::/29 Signature Algorithm: sha256WithRSAEncryption 21:09:54:12:16:0f:ac:4a:56:b8:5a:15:14:71:09:9e:54:b7: 78:fe:d0:c4:2c:08:4f:38:9a:52:c8:8c:3f:c4:c0:fb:5c:6f: cc:f9:a4:5a:af:33:31:c0:c5:29:68:16:e4:53:04:6d:6b:3b: 9a:56:9a:e6:f3:f3:a9:63:cf:7f:9e:8f:2e:1d:c5:30:90:94: 8e:6a:b6:71:99:83:5b:67:68:2c:6f:16:45:8b:7f:bd:05:96: c7:c6:83:7a:a7:ce:65:3d:cb:70:0e:b8:0d:47:0a:ef:4b:cd: c2:f3:03:93:88:7a:9a:f4:07:1a:b9:cc:a9:9e:66:1a:03:59: 02:85:54:b0:13:3e:e9:97:19:36:df:02:77:2c:9d:e7:13:e8: 65:c7:a3:ef:d5:9b:74:9d:12:ef:cf:f2:a2:dd:c5:bb:f7:8b: 03:af:65:1f:5f:c8:02:ff:be:7f:1b:fe:5b:bd:60:6b:a5:0a: e6:79:66:fd:a4:29:86:01:fd:48:e0:32:86:38:92:b9:a8:84: 6b:af:69:c6:b7:38:6c:ff:f5:8e:ed:40:c0:68:1a:ed:ea:84: cc:30:5f:ed:fd:04:94:a2:56:4d:bb:91:50:f0:0c:32:f5:05: f3:ff:5d:d6:19:e8:aa:5e:14:51:a1:6d:28:48:a7:e1:4f:d1: c5:08:3b:46 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EDumlumCc8Yn+z0yhRo8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNjg4Zjk4NTdkOWU0NDBjMTA1OGRjODk1OWU0OWY4YjMx ODNmNjEwHhcNMjYwMTAxMTAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNDg0OGEyNWJhNzhhZGI0ZGQwOTYxNzZiODA3NDU2ZjljOGZhMDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+yf/m00UEUjXkQTVwJ/0K1l9GwH 75n33EbEwlaf8uM/p7uQEQYE8qJJHMEVgNNWiauisSimtVu90PNGcQQcA/MY+V0H /GJumwLBGk8AMfOdzv5gH6QDfPlsNG/BsNz83LMICE9I/9zUkx1QgYQ2zRczSjCZ mumFFhUCYtpr7JhtbBt/lZVCYgjqmpARinUTMjqXshKKo79uevcPv8RH0sMi8KIf HvWZJxuCq6TUUOejYFaLA++6P4N7Rc/SoPVZDoCRUuVh/9wBCjQlFZdYWNONNfCx Df8Xl57WWPq9hyPsL7LP/7qGeb1XJCu+vvAR9avyESbuwxUUjSvVHKuqAQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOSEiiW6eK203QlhdrgHRW+cj6CSMB8GA1UdIwQY MBaAFB9oj5hX2eRAwQWNyJWeSfizGD9hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDJpUG1GZlo1RURCQlkzSWxaNUotTE1ZUDJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8wNTc3ODAtNTJlOC00Nzc3LThhMjUt MDIxYzJlMDczNWIxLzEvNUlTS0picDRyYlRkQ1dGMnVBZEZiNXlQb0pJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8wNTc3ODAtNTJlOC00Nzc3LThhMjUtMDIxYzJlMDczNWIx LzEvSDJpUG1GZlo1RURCQlkzSWxaNUotTE1ZUDJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCVdHwMA0E AgACMAcDBQMqDreAMA0GCSqGSIb3DQEBCwUAA4IBAQAhCVQSFg+sSla4WhUUcQme VLd4/tDELAhPOJpSyIw/xMD7XG/M+aRarzMxwMUpaBbkUwRtazuaVprm8/OpY89/ no8uHcUwkJSOarZxmYNbZ2gsbxZFi3+9BZbHxoN6p85lPctwDrgNRwrvS83C8wOT iHqa9AcaucypnmYaA1kChVSwEz7plxk23wJ3LJ3nE+hlx6Pv1Zt0nRLvz/Ki3cW7 94sDr2UfX8gC/75/G/5bvWBrpQrmeWb9pCmGAf1I4DKGOJK5qIRrr2nGtzhs//WO 7UDAaBrt6oTMMF/t/QSUolZNu5FQ8Awy9QXz/13WGeiqXhRRoW0oSKfhT9HFCDtG -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:12 2026 by rpki-client