This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/5tq-dphgnapNG8uID0bzWyuSiiI.roa File: 5tq-dphgnapNG8uID0bzWyuSiiI.roa (raw, json) Hash identifier: Geh8HxvdWtRdjQA8GTRZhRKQeMt/TQkbrTaKQX7hwuM= Subject key identifier: E6:DA:BE:76:98:60:9D:AA:4D:1B:CB:88:0F:46:F3:5B:2B:92:8A:22 Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572 Certificate serial: 019B77596C004C8E340B60E82792635F168D Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/5tq-dphgnapNG8uID0bzWyuSiiI.roa Signing time: Thu 01 Jan 2026 02:18:27 +0000 ROA not before: Thu 01 Jan 2026 02:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43558 IP address blocks: 87.239.120.0/24 maxlen: 24 2001:678:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 14:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:6c:00:4c:8e:34:0b:60:e8:27:92:63:5f:16:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572 Validity Not Before: Jan 1 02:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e6dabe7698609daa4d1bcb880f46f35b2b928a22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:06:e4:cc:de:36:e0:b1:fe:18:dc:f9:3d:d2: 3e:c5:14:a2:64:09:67:c9:ec:25:6e:dd:62:64:03: 16:8b:ce:5f:e1:81:e1:13:0f:a5:11:09:ac:b5:17: 4f:77:e6:d8:23:9a:2d:5b:9d:80:38:f2:48:27:75: 2e:0a:9b:d7:32:d8:ff:18:db:0b:3a:f7:14:c0:7e: 5e:2d:b7:24:16:c9:55:0d:92:ac:5e:0e:f2:0b:a1: 31:1f:1c:01:dd:e6:27:a1:61:c0:27:c6:34:4e:30: e5:c5:35:e7:2f:a1:af:ef:af:8a:9b:1d:45:5b:9d: 8b:45:59:3e:ed:1a:41:33:af:e3:f9:1d:bd:11:53: 75:e3:52:b2:ba:7e:2a:4c:7a:b4:4c:fb:cd:c5:8a: c6:8a:27:c9:ba:8e:15:43:04:84:95:3d:0c:05:d5: d9:4c:d2:f4:e3:90:86:d8:1b:e2:dc:47:13:f9:a4: 3d:99:c2:64:25:ae:db:15:12:2a:dc:12:95:de:bb: 1d:de:cd:e1:ab:cf:db:cf:2b:74:06:9e:2d:64:ad: 66:ac:90:4f:bf:a6:df:2e:05:77:60:df:61:9a:30: ae:b5:20:37:0d:a0:13:8c:45:37:ba:fa:73:7a:53: c9:ab:03:30:d6:33:12:ce:f5:38:c8:d5:c8:16:b1: 5e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DA:BE:76:98:60:9D:AA:4D:1B:CB:88:0F:46:F3:5B:2B:92:8A:22 X509v3 Authority Key Identifier: keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/5tq-dphgnapNG8uID0bzWyuSiiI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.239.120.0/24 IPv6: 2001:678:a0::/48 Signature Algorithm: sha256WithRSAEncryption 6d:6e:8e:f1:9a:5d:b5:e2:e5:ca:2a:86:36:e7:9e:f6:a7:44: 2a:9d:2a:7d:79:4d:73:10:a6:fa:2d:0f:3d:11:41:7f:b7:4e: ed:28:f3:31:76:13:33:40:77:2d:4e:08:3e:6a:55:6f:81:e4: 30:8b:cf:86:23:88:57:de:08:a2:e2:76:d5:97:6c:ca:80:87: 8e:b9:2e:25:9c:85:52:e8:78:23:cb:3d:ae:b6:d8:f3:69:dd: 19:41:95:f4:4b:bc:c0:51:b1:38:bb:79:0a:58:ff:5f:ca:d4: 33:7b:88:e2:71:a8:a9:85:53:40:c3:18:50:69:7f:a3:0f:82: 5f:c9:b9:e2:50:5d:6f:6c:d1:87:98:27:de:19:da:c7:73:da: 6b:20:e6:59:84:33:ec:1f:ed:f5:bd:99:bc:91:10:c8:47:b3: 8a:79:88:8e:3d:c8:5e:15:92:7f:a7:c8:5b:49:39:9d:de:8c: 00:c9:bb:58:76:a3:8e:04:ae:8c:fc:a1:72:c3:e7:81:21:d4: 1a:9c:db:cc:ee:ce:43:63:c0:a6:86:12:65:24:93:a3:fa:a2: 9b:af:06:b0:8e:d7:05:a2:15:72:4f:25:c8:0c:27:d1:fc:7b: a5:3e:fa:d4:e0:13:58:3d:8b:d3:ae:ae:0e:42:3c:d4:8e:35: 57:90:ea:8c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3WWwATI40C2DoJ5JjXxaNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2OWNlZGE1YmYzNzkwMWZlOWU0NGY3M2I1YmY4MmI2ODdi MzQ1NzIwHhcNMjYwMTAxMDIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNmRhYmU3Njk4NjA5ZGFhNGQxYmNiODgwZjQ2ZjM1YjJiOTI4YTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQbkzN424LH+GNz5PdI+xRSiZAln yewlbt1iZAMWi85f4YHhEw+lEQmstRdPd+bYI5otW52AOPJIJ3UuCpvXMtj/GNsL OvcUwH5eLbckFslVDZKsXg7yC6ExHxwB3eYnoWHAJ8Y0TjDlxTXnL6Gv76+Kmx1F W52LRVk+7RpBM6/j+R29EVN141Kyun4qTHq0TPvNxYrGiifJuo4VQwSElT0MBdXZ TNL045CG2Bvi3EcT+aQ9mcJkJa7bFRIq3BKV3rsd3s3hq8/bzyt0Bp4tZK1mrJBP v6bfLgV3YN9hmjCutSA3DaATjEU3uvpzelPJqwMw1jMSzvU4yNXIFrFeOwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFObavnaYYJ2qTRvLiA9G81srkooiMB8GA1UdIwQY MBaAFJac7aW/N5Af6eRPc7W/graHs0VyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQt MjFmYzlhZmM4YWMxLzEvNXRxLWRwaGduYXBORzh1SUQwYnpXeXVTaWlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQtMjFmYzlhZmM4YWMx LzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAV+94MA8E AgACMAkDBwAgAQZ4AKAwDQYJKoZIhvcNAQELBQADggEBAG1ujvGaXbXi5coqhjbn nvanRCqdKn15TXMQpvotDz0RQX+3Tu0o8zF2EzNAdy1OCD5qVW+B5DCLz4YjiFfe CKLidtWXbMqAh465LiWchVLoeCPLPa622PNp3RlBlfRLvMBRsTi7eQpY/1/K1DN7 iOJxqKmFU0DDGFBpf6MPgl/JueJQXW9s0YeYJ94Z2sdz2msg5lmEM+wf7fW9mbyR EMhHs4p5iI49yF4Vkn+nyFtJOZ3ejADJu1h2o44Eroz8oXLD54Eh1Bqc28zuzkNj wKaGEmUkk6P6opuvBrCO1wWiFXJPJcgMJ9H8e6U++tTgE1g9i9Ourg5CPNSONVeQ 6ow= -----END CERTIFICATE-----Generated at Tue Jan 20 17:06:33 2026 by rpki-client