This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/v5LapV5AQ5txIrwohbogIbL5CQM.roa File: v5LapV5AQ5txIrwohbogIbL5CQM.roa (raw, json) Hash identifier: 1uulnB0qTn9UIXqBYtKjkDi+LHKH+ZvnQZRNAFfN05U= Subject key identifier: BF:92:DA:A5:5E:40:43:9B:71:22:BC:28:85:BA:20:21:B2:F9:09:03 Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB6039C28A5DEE91801226216E6553 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/v5LapV5AQ5txIrwohbogIbL5CQM.roa Signing time: Fri 02 Jan 2026 08:20:39 +0000 ROA not before: Fri 02 Jan 2026 08:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43350 IP address blocks: 83.171.232.0/22 maxlen: 22 194.62.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 17:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:60:39:c2:8a:5d:ee:91:80:12:26:21:6e:65:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf92daa55e40439b7122bc2885ba2021b2f90903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:59:fc:d3:13:ce:40:a6:fe:bc:bd:54:94:a8: 81:d1:f7:19:8b:77:d7:9c:66:74:5b:87:38:e4:93: 47:a2:41:7d:75:dd:96:b5:b6:05:d0:0d:75:02:b8: ec:07:ac:78:1f:86:6e:f4:d6:72:db:73:b2:94:d2: 3e:d2:e6:03:14:a3:42:cf:fd:38:6c:28:ad:c7:6c: 26:9a:89:10:53:95:1e:0b:17:a6:51:03:b2:e1:8e: 39:a4:86:64:fb:e9:d3:f0:37:09:8d:b8:20:d9:ee: 31:5f:4e:87:7a:27:d7:46:6f:b2:84:a3:6f:a8:d1: 63:90:04:91:44:c0:09:f8:78:6d:71:d4:5d:a8:db: 1e:6e:ad:5a:c4:b4:48:30:7f:6a:2e:c6:07:52:e7: 81:45:87:2f:0a:39:85:20:4d:ef:bb:47:20:d4:da: 1b:a1:7c:86:d4:2b:5e:9a:cf:7c:47:a8:e8:b7:b9: 0a:75:d1:c7:ed:66:78:14:26:15:55:90:e5:24:3b: a4:68:8d:33:c2:ad:02:73:74:bf:0d:ea:f3:85:da: 66:cb:19:8d:df:88:64:1e:12:57:b2:77:fc:9c:f6: 7f:5f:a1:2a:a6:37:c4:26:60:e3:de:91:4a:10:db: 9f:1a:3f:d0:f3:44:13:e6:b7:b6:80:41:9e:94:ae: d3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:92:DA:A5:5E:40:43:9B:71:22:BC:28:85:BA:20:21:B2:F9:09:03 X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/v5LapV5AQ5txIrwohbogIbL5CQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.171.232.0/22 194.62.132.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:d4:d0:71:c6:67:f2:19:68:9e:18:aa:e3:d7:07:69:b8:04: a4:11:59:c2:2f:47:5f:fb:ce:d0:85:92:6a:0d:b7:2d:17:a3: 25:e3:81:49:cc:fa:e7:4b:bb:8a:a1:60:43:77:3b:cf:10:ef: ce:22:87:3a:1b:5b:fd:0b:ea:3a:32:d0:c7:49:5d:34:7b:01: 13:e7:6b:a6:07:58:2c:f1:49:30:06:d4:25:ed:36:4a:bc:fd: 51:53:39:40:9f:ea:14:fe:97:52:24:5e:1c:87:53:03:8c:29: 0b:0d:1c:46:85:40:cf:76:96:88:4c:dd:8f:c3:43:a6:76:ef: e2:da:7e:7a:2e:26:14:7b:aa:a0:b2:09:ef:90:bf:87:cf:34: 14:13:fa:78:90:a3:ba:72:86:9d:00:5e:c0:24:fe:6d:a9:68: f0:b4:90:96:d3:cd:b8:d7:8e:99:05:5b:f9:49:08:98:1b:89: 49:e1:27:c5:5f:a2:ef:99:d0:18:3e:43:80:f6:17:0e:c2:c8: 7c:63:1b:86:a0:f5:7d:0f:d2:0c:57:db:54:3e:39:a1:36:c7: a6:71:83:cb:6c:0f:90:ea:04:f9:99:4d:bb:bf:20:32:dd:69: 7c:8b:91:9d:e0:9c:00:2e:a4:1b:f9:e5:d7:f6:93:ef:bb:31: 8f:be:37:f4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9y2A5wopd7pGAEiYhbmVTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjkyZGFhNTVlNDA0MzliNzEyMmJjMjg4NWJhMjAyMWIyZjkwOTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Vn80xPOQKb+vL1UlKiB0fcZi3fX nGZ0W4c45JNHokF9dd2WtbYF0A11ArjsB6x4H4Zu9NZy23OylNI+0uYDFKNCz/04 bCitx2wmmokQU5UeCxemUQOy4Y45pIZk++nT8DcJjbgg2e4xX06HeifXRm+yhKNv qNFjkASRRMAJ+HhtcdRdqNsebq1axLRIMH9qLsYHUueBRYcvCjmFIE3vu0cg1Nob oXyG1Ctems98R6jot7kKddHH7WZ4FCYVVZDlJDukaI0zwq0Cc3S/DerzhdpmyxmN 34hkHhJXsnf8nPZ/X6EqpjfEJmDj3pFKENufGj/Q80QT5re2gEGelK7TzQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFL+S2qVeQEObcSK8KIW6ICGy+QkDMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvdjVMYXBWNUFRNXR4SXJ3b2hib2dJYkw1Q1FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCU6voAwQC wj6EMA0GCSqGSIb3DQEBCwUAA4IBAQCM1NBxxmfyGWieGKrj1wdpuASkEVnCL0df +87QhZJqDbctF6Ml44FJzPrnS7uKoWBDdzvPEO/OIoc6G1v9C+o6MtDHSV00ewET 52umB1gs8UkwBtQl7TZKvP1RUzlAn+oU/pdSJF4ch1MDjCkLDRxGhUDPdpaITN2P w0Omdu/i2n56LiYUe6qgsgnvkL+HzzQUE/p4kKO6coadAF7AJP5tqWjwtJCW0824 146ZBVv5SQiYG4lJ4SfFX6LvmdAYPkOA9hcOwsh8YxuGoPV9D9IMV9tUPjmhNsem cYPLbA+Q6gT5mU27vyAy3Wl8i5Gd4JwALqQb+eXX9pPvuzGPvjf0 -----END CERTIFICATE-----Generated at Sat Jan 3 03:22:04 2026 by rpki-client