This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/rX5q-Qetjx4POF2GvlR417IW6L4.roa File: rX5q-Qetjx4POF2GvlR417IW6L4.roa (raw, json) Hash identifier: tiIrtpX6AKRymX250yU0c3zBCmdPt9/pAFQHnUnOZj4= Subject key identifier: AD:7E:6A:F9:07:AD:8F:1E:0F:38:5D:86:BE:54:78:D7:B2:16:E8:BE Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9 Certificate serial: 019BB32DB0C47B53590C8658C5443E46F9FC Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/rX5q-Qetjx4POF2GvlR417IW6L4.roa Signing time: Mon 12 Jan 2026 17:07:54 +0000 ROA not before: Mon 12 Jan 2026 17:07:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213541 IP address blocks: 104.239.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.mft rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 02:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b3:2d:b0:c4:7b:53:59:0c:86:58:c5:44:3e:46:f9:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9 Validity Not Before: Jan 12 17:07:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ad7e6af907ad8f1e0f385d86be5478d7b216e8be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9e:ef:7a:27:83:3a:b1:17:f7:e2:13:f0:de: c6:76:bb:b5:67:ee:3e:e3:a7:fa:1b:18:7f:4a:35: 95:e0:be:d3:d8:be:7c:87:25:a4:1d:d0:a0:78:3f: c1:b8:88:10:36:2e:ef:22:a4:82:4f:59:d5:fc:dc: d1:43:d0:2b:1a:f9:37:c4:b7:01:98:88:e9:3d:bc: b3:d6:50:15:7e:ed:d0:f6:33:64:24:50:37:34:99: 94:8a:0d:57:2d:e8:e8:cd:c4:d4:cd:2a:b3:44:35: b4:da:91:e2:c9:c0:94:63:17:4d:c7:ec:c0:89:25: 58:44:83:d5:1d:83:7e:6f:c0:5d:67:f5:31:b7:54: a1:40:da:0b:c9:31:4b:13:89:7b:cd:a7:98:e3:93: 29:99:fc:75:fa:73:65:39:f8:a0:60:79:40:fd:b1: bf:b0:fd:eb:dc:13:ec:b3:99:c5:c4:5c:fb:ee:87: 88:d8:a7:88:73:d1:c8:7e:a9:fd:32:17:91:9d:3e: 69:8f:fd:4b:56:96:f6:67:63:06:7e:df:c0:c4:db: 83:71:d3:ee:8a:99:9c:9d:8d:2f:0a:d8:cf:9a:bb: 5f:1e:33:fa:47:8b:cb:e0:c3:94:6f:99:d4:ac:80: 4d:30:a9:90:7e:f1:d1:73:eb:ee:5b:26:4c:10:8a: 76:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7E:6A:F9:07:AD:8F:1E:0F:38:5D:86:BE:54:78:D7:B2:16:E8:BE X509v3 Authority Key Identifier: keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/rX5q-Qetjx4POF2GvlR417IW6L4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.239.15.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:2b:c1:c1:0a:d9:9d:b2:f8:ce:bb:46:6e:7f:fd:d8:1d:54: 39:e2:86:a4:a7:3f:f2:94:7c:e2:0a:29:8d:80:ee:bc:b0:9f: f9:01:03:a6:57:b6:02:3c:52:1b:dc:e1:da:01:69:08:56:32: 56:0a:64:cd:40:7c:85:a6:f6:ac:c4:64:ea:7f:94:87:90:21: 2f:60:e1:1e:44:8f:7c:12:1d:4e:80:e5:c2:4a:74:fc:30:a3: 75:61:87:56:4d:7d:05:07:12:f7:1a:d6:ae:57:8c:04:9e:79: e6:34:47:f4:95:db:b7:d9:30:e5:c3:63:85:c0:41:1e:7d:5b: 49:62:1b:d1:d1:1a:4b:d4:23:53:ed:69:99:f9:e9:d9:12:5f: c5:98:13:9e:12:ba:0b:6b:27:75:d5:3e:1b:03:d0:ed:86:17: d7:dd:5d:cd:b8:10:b6:f9:60:3b:d5:1e:97:d7:91:15:59:c2: a7:f0:8a:b8:99:5d:74:de:8c:b6:b2:a2:0f:0e:a8:ab:17:c1: e6:ee:de:36:5e:4a:e2:17:ce:cb:e4:6f:56:68:e3:10:f3:5d: 31:8e:65:6b:54:bd:a5:be:32:65:7b:84:b9:13:c3:c0:ad:59: 34:7d:f8:bf:18:94:2f:e9:85:2e:e6:fc:19:1e:fe:45:7b:b3: 6e:19:2f:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuzLbDEe1NZDIZYxUQ+Rvn8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj Mzg1ZTkwHhcNMjYwMTEyMTcwNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDdlNmFmOTA3YWQ4ZjFlMGYzODVkODZiZTU0NzhkN2IyMTZlOGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Z7veieDOrEX9+IT8N7Gdru1Z+4+ 46f6Gxh/SjWV4L7T2L58hyWkHdCgeD/BuIgQNi7vIqSCT1nV/NzRQ9ArGvk3xLcB mIjpPbyz1lAVfu3Q9jNkJFA3NJmUig1XLejozcTUzSqzRDW02pHiycCUYxdNx+zA iSVYRIPVHYN+b8BdZ/Uxt1ShQNoLyTFLE4l7zaeY45Mpmfx1+nNlOfigYHlA/bG/ sP3r3BPss5nFxFz77oeI2KeIc9HIfqn9MheRnT5pj/1LVpb2Z2MGft/AxNuDcdPu ipmcnY0vCtjPmrtfHjP6R4vL4MOUb5nUrIBNMKmQfvHRc+vuWyZMEIp25wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK1+avkHrY8eDzhdhr5UeNeyFui+MB8GA1UdIwQY MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt ZmIwNzk1NWYzYWFhLzEvclg1cS1RZXRqeDRQT0YyR3ZsUjQxN0lXNkw0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAaO8PMA0G CSqGSIb3DQEBCwUAA4IBAQBPK8HBCtmdsvjOu0Zuf/3YHVQ54oakpz/ylHziCimN gO68sJ/5AQOmV7YCPFIb3OHaAWkIVjJWCmTNQHyFpvasxGTqf5SHkCEvYOEeRI98 Eh1OgOXCSnT8MKN1YYdWTX0FBxL3GtauV4wEnnnmNEf0ldu32TDlw2OFwEEefVtJ YhvR0RpL1CNT7WmZ+enZEl/FmBOeEroLayd11T4bA9DthhfX3V3NuBC2+WA71R6X 15EVWcKn8Iq4mV103oy2sqIPDqirF8Hm7t42XkriF87L5G9WaOMQ810xjmVrVL2l vjJle4S5E8PArVk0ffi/GJQv6YUu5vwZHv5Fe7NuGS/6 -----END CERTIFICATE-----Generated at Mon Jan 19 11:49:12 2026 by rpki-client