This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/253R_HjPAe_ULUSoVVCZut_DWoY.roa File: 253R_HjPAe_ULUSoVVCZut_DWoY.roa (raw, json) Hash identifier: D4Z9WrfO5QDHXjS9ZWgcaTJ1VBuEVEWpyCuirpjL6iQ= Subject key identifier: DB:9D:D1:FC:78:CF:01:EF:D4:2D:44:A8:55:50:99:BA:DF:C3:5A:86 Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f Certificate serial: 019B7EA710D9114C90AB955EF72312766252 Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/253R_HjPAe_ULUSoVVCZut_DWoY.roa Signing time: Fri 02 Jan 2026 12:20:36 +0000 ROA not before: Fri 02 Jan 2026 12:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12312 IP address blocks: 141.98.44.0/24 maxlen: 24 2a07:6f46:4400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.mft rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:10:d9:11:4c:90:ab:95:5e:f7:23:12:76:62:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f Validity Not Before: Jan 2 12:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db9dd1fc78cf01efd42d44a8555099badfc35a86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fa:95:18:f8:a6:34:cb:ef:b3:a6:cd:69:bb: fa:ac:d5:c8:8f:64:c9:e2:9d:17:89:bf:e9:65:ea: b2:4f:b1:cf:d6:7d:19:a9:a6:27:6e:49:c6:a3:d4: 56:4a:c0:eb:27:60:0e:ee:65:59:e9:07:a2:06:58: 50:9d:f7:97:bb:a4:7a:da:80:a6:8c:7f:60:b4:50: f8:70:a3:94:c1:27:9e:01:2d:44:54:d4:72:b5:b8: 4c:4b:c8:3c:48:4b:a7:9b:a5:b3:0c:51:3a:49:73: 55:44:26:9c:9c:ce:ce:60:b0:02:98:88:97:af:ee: 8c:05:63:c0:34:47:21:a3:58:95:90:99:ea:7c:e7: de:51:4c:2b:35:ac:06:b0:b5:f9:3f:53:f6:92:87: 4f:5b:0c:da:92:29:d4:bd:89:7b:e8:cd:bd:36:aa: 6b:04:4c:f2:5b:3a:4e:cf:49:ff:05:9f:be:dd:48: 2c:06:d2:b6:32:04:47:72:a1:2e:09:2d:e6:6b:fd: 27:06:c5:09:71:6d:ae:bc:29:9a:c0:dc:53:53:3c: 97:d1:3b:74:a7:de:89:46:a2:ca:28:eb:68:64:eb: df:ef:49:1d:f0:ec:33:d6:47:44:56:fb:25:53:75: 5b:94:f4:ed:90:82:9d:9c:b7:65:13:e3:36:77:68: 7a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9D:D1:FC:78:CF:01:EF:D4:2D:44:A8:55:50:99:BA:DF:C3:5A:86 X509v3 Authority Key Identifier: keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/253R_HjPAe_ULUSoVVCZut_DWoY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.98.44.0/24 IPv6: 2a07:6f46:4400::/40 Signature Algorithm: sha256WithRSAEncryption 43:1a:29:f2:81:d4:13:d9:cc:8a:84:59:1f:57:02:4a:f9:e0: 7e:27:13:98:f2:2e:0c:e4:a4:d9:9f:3e:8a:ff:bf:c0:0e:6d: a4:1f:6f:e7:a7:8c:fe:5a:ef:26:47:7f:88:06:6c:2b:d1:2b: bb:1e:2b:25:cf:7d:40:a4:0d:d4:ce:aa:51:2c:92:e5:56:89: f8:3b:45:dc:ea:72:44:b4:03:0b:cb:2c:f0:c3:ae:f7:ef:b9: d4:a1:20:8d:51:c6:e3:68:e6:18:87:13:ea:57:76:20:9e:09: 3e:f3:50:5f:df:86:4e:fd:69:7a:11:ee:e6:11:35:25:d8:86: 45:9c:ff:8a:83:93:52:ff:7e:6b:3f:c0:c6:a8:19:46:d2:7f: 55:35:44:bf:66:50:5c:e7:9f:54:a3:f4:fe:19:3c:29:cc:f4: f9:12:ec:7d:32:89:0b:07:d9:da:2a:3c:42:6f:39:02:70:cd: 84:24:7c:0a:0b:b2:00:01:e1:e9:b8:ba:b4:e8:c6:fd:7b:4d: 39:75:83:85:79:d2:3a:aa:39:1c:0b:dc:af:8c:8b:85:5f:a2: b6:5e:54:8a:e5:54:62:24:9c:72:4b:bf:7d:af:ad:18:d3:d1: cc:19:74:e0:6e:16:c0:9b:8d:86:76:81:64:57:a9:ea:d4:b7: 75:3a:09:dd -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt+pxDZEUyQq5Ve9yMSdmJSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxNGFjNjExNjE0ZGQxNjVkOTQ1NTcyOTZlZDdlZDQ2Yzhm YzAyNWYwHhcNMjYwMTAyMTIyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjlkZDFmYzc4Y2YwMWVmZDQyZDQ0YTg1NTUwOTliYWRmYzM1YTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvqVGPimNMvvs6bNabv6rNXIj2TJ 4p0Xib/pZeqyT7HP1n0ZqaYnbknGo9RWSsDrJ2AO7mVZ6QeiBlhQnfeXu6R62oCm jH9gtFD4cKOUwSeeAS1EVNRytbhMS8g8SEunm6WzDFE6SXNVRCacnM7OYLACmIiX r+6MBWPANEcho1iVkJnqfOfeUUwrNawGsLX5P1P2kodPWwzakinUvYl76M29Nqpr BEzyWzpOz0n/BZ++3UgsBtK2MgRHcqEuCS3ma/0nBsUJcW2uvCmawNxTUzyX0Tt0 p96JRqLKKOtoZOvf70kd8Owz1kdEVvslU3VblPTtkIKdnLdlE+M2d2h6JwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFNud0fx4zwHv1C1EqFVQmbrfw1qGMB8GA1UdIwQY MBaAFOFKxhFhTdFl2UVXKW7X7UbI/AJfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFVyR0VXRk4wV1haUlZjcGJ0ZnRSc2o4QWw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS82ZTc5YjgtMmI4Zi00ZWNjLTlhNmUt NzBlODk4YmIzOGRkLzEvMjUzUl9IalBBZV9VTFVTb1ZWQ1p1dF9EV29ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS82ZTc5YjgtMmI4Zi00ZWNjLTlhNmUtNzBlODk4YmIzOGRk LzEvNFVyR0VXRk4wV1haUlZjcGJ0ZnRSc2o4QWw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAjWIsMA4E AgACMAgDBgAqB29GRDANBgkqhkiG9w0BAQsFAAOCAQEAQxop8oHUE9nMioRZH1cC SvngficTmPIuDOSk2Z8+iv+/wA5tpB9v56eM/lrvJkd/iAZsK9Erux4rJc99QKQN 1M6qUSyS5VaJ+DtF3OpyRLQDC8ss8MOu9++51KEgjVHG42jmGIcT6ld2IJ4JPvNQ X9+GTv1pehHu5hE1JdiGRZz/ioOTUv9+az/AxqgZRtJ/VTVEv2ZQXOefVKP0/hk8 Kcz0+RLsfTKJCwfZ2io8Qm85AnDNhCR8CguyAAHh6bi6tOjG/XtNOXWDhXnSOqo5 HAvcr4yLhV+itl5UiuVUYiSccku/fa+tGNPRzBl04G4WwJuNhnaBZFep6tS3dToJ 3Q== -----END CERTIFICATE-----Generated at Wed Jan 21 12:18:02 2026 by rpki-client