This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/5_NsVpM8FaeSqhKOf8w72GF6QhI.roa File: 5_NsVpM8FaeSqhKOf8w72GF6QhI.roa (raw, json) Hash identifier: 2zny0xGyvTx1/9rtQ7mwoKTteA97Jpuq2EaV8f4cXH4= Subject key identifier: E7:F3:6C:56:93:3C:15:A7:92:AA:12:8E:7F:CC:3B:D8:61:7A:42:12 Certificate issuer: /CN=59877720c014688494ea6910c83474de13e99802 Certificate serial: 019B76EB84E06EC862044CF8418C83AFBD48 Authority key identifier: 59:87:77:20:C0:14:68:84:94:EA:69:10:C8:34:74:DE:13:E9:98:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WYd3IMAUaISU6mkQyDR03hPpmAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/5_NsVpM8FaeSqhKOf8w72GF6QhI.roa Signing time: Thu 01 Jan 2026 00:18:25 +0000 ROA not before: Thu 01 Jan 2026 00:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 185.144.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/WYd3IMAUaISU6mkQyDR03hPpmAI.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/WYd3IMAUaISU6mkQyDR03hPpmAI.mft rsync://rpki.ripe.net/repository/DEFAULT/WYd3IMAUaISU6mkQyDR03hPpmAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:84:e0:6e:c8:62:04:4c:f8:41:8c:83:af:bd:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59877720c014688494ea6910c83474de13e99802 Validity Not Before: Jan 1 00:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7f36c56933c15a792aa128e7fcc3bd8617a4212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5f:ad:b5:5b:83:3e:ee:ba:4a:b3:f8:0f:63: 20:83:aa:90:9a:0b:7b:3a:9b:b9:11:71:34:49:09: 1c:70:80:f9:94:8b:cf:53:ba:ed:76:e3:3e:e1:5e: c0:a9:79:bc:5f:a8:92:c9:a4:d9:3e:96:f0:1a:c1: e9:2e:62:4d:0a:19:d3:74:3b:ec:02:00:c5:0b:dd: b2:f1:08:55:b8:8f:0d:7c:c8:61:d6:c9:a5:57:70: 5e:78:4f:c7:53:4f:bf:85:b3:d3:32:38:70:c7:f5: fa:5e:dc:06:44:90:8a:a2:96:da:78:2a:52:55:74: 5d:bd:cc:15:e2:7e:fa:dc:bf:06:5c:0b:12:ab:b5: 0c:17:10:94:11:b6:c0:43:c5:25:6e:36:cc:e2:72: 4a:e5:ca:1f:56:b0:c2:77:37:d3:98:3d:c2:b8:62: ca:e0:d4:36:fc:9d:9a:97:fe:c0:d3:37:51:d9:b3: 08:67:6c:53:51:aa:a4:59:fe:20:42:5a:ee:34:8e: 11:77:e3:55:bd:c7:bd:d1:c8:a5:ad:ea:d5:8e:b6: 9d:46:94:aa:cd:fe:8a:12:7a:b2:d8:70:1d:3e:67: c3:bd:c1:dc:f3:57:da:16:81:91:e3:b2:60:bd:e8: 1a:21:36:05:99:45:61:45:1f:f2:f8:e0:2d:b3:3a: 97:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F3:6C:56:93:3C:15:A7:92:AA:12:8E:7F:CC:3B:D8:61:7A:42:12 X509v3 Authority Key Identifier: keyid:59:87:77:20:C0:14:68:84:94:EA:69:10:C8:34:74:DE:13:E9:98:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WYd3IMAUaISU6mkQyDR03hPpmAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/5_NsVpM8FaeSqhKOf8w72GF6QhI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/WYd3IMAUaISU6mkQyDR03hPpmAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.144.15.0/24 Signature Algorithm: sha256WithRSAEncryption 21:e2:84:3f:5d:20:ed:0a:82:11:fe:db:5a:f0:11:69:ca:6d: f8:a7:86:3e:16:a7:cb:83:36:26:83:f5:11:50:b7:ec:53:3b: c1:b0:35:49:d0:5f:85:f8:d9:57:e6:4a:4c:ea:d1:14:8f:66: 80:0e:e0:dc:5a:e3:8a:13:80:db:cb:98:c2:7a:35:38:40:af: 17:35:05:2d:f6:3f:b1:a7:f8:d9:60:52:a0:d1:73:82:5b:7d: 4a:d1:f9:28:32:20:f5:1f:7a:98:41:c1:0a:27:38:80:07:e0: 5b:b2:2a:dd:7f:fb:49:e6:e5:c0:19:01:08:2a:58:f9:9f:2e: 10:12:fd:08:39:a4:1e:cf:c8:49:ef:20:e2:ff:8d:ad:1b:d7: a7:b9:c6:08:5d:2f:7b:60:dc:8c:bf:71:4a:54:af:44:c5:8e: 43:57:32:3f:e3:ec:17:d8:64:d7:48:ac:a9:14:b7:15:96:b5: 45:5e:c4:6a:1f:77:80:98:90:86:bb:e2:80:d6:a5:a7:ca:2c: 3b:d0:96:94:04:9c:fe:f2:a5:31:79:5f:8f:d9:60:38:0c:dd: 3b:dd:6d:56:81:b1:a3:03:8d:b2:d4:11:85:e1:a5:14:5b:e2: 0a:06:ba:12:02:ab:2c:d4:16:af:51:71:3f:02:f4:27:a4:1f: 12:57:b2:b1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt264TgbshiBEz4QYyDr71IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5ODc3NzIwYzAxNDY4ODQ5NGVhNjkxMGM4MzQ3NGRlMTNl OTk4MDIwHhcNMjYwMTAxMDAxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2YzNmM1NjkzM2MxNWE3OTJhYTEyOGU3ZmNjM2JkODYxN2E0MjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuV+ttVuDPu66SrP4D2Mgg6qQmgt7 Opu5EXE0SQkccID5lIvPU7rtduM+4V7AqXm8X6iSyaTZPpbwGsHpLmJNChnTdDvs AgDFC92y8QhVuI8NfMhh1smlV3BeeE/HU0+/hbPTMjhwx/X6XtwGRJCKopbaeCpS VXRdvcwV4n763L8GXAsSq7UMFxCUEbbAQ8UlbjbM4nJK5cofVrDCdzfTmD3CuGLK 4NQ2/J2al/7A0zdR2bMIZ2xTUaqkWf4gQlruNI4Rd+NVvce90cilrerVjradRpSq zf6KEnqy2HAdPmfDvcHc81faFoGR47JgvegaITYFmUVhRR/y+OAtszqXsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOfzbFaTPBWnkqoSjn/MO9hhekISMB8GA1UdIwQY MBaAFFmHdyDAFGiElOppEMg0dN4T6ZgCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1lkM0lNQVVhSVNVNm1rUXlEUjAzaFBwbUFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8yYTA4MDgtN2U5Ny00N2UwLWFmYmIt NzRjY2Q4MjQwYmFkLzEvNV9Oc1ZwTThGYWVTcWhLT2Y4dzcyR0Y2UWhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8yYTA4MDgtN2U5Ny00N2UwLWFmYmItNzRjY2Q4MjQwYmFk LzEvV1lkM0lNQVVhSVNVNm1rUXlEUjAzaFBwbUFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZAPMA0G CSqGSIb3DQEBCwUAA4IBAQAh4oQ/XSDtCoIR/tta8BFpym34p4Y+FqfLgzYmg/UR ULfsUzvBsDVJ0F+F+NlX5kpM6tEUj2aADuDcWuOKE4Dby5jCejU4QK8XNQUt9j+x p/jZYFKg0XOCW31K0fkoMiD1H3qYQcEKJziAB+Bbsirdf/tJ5uXAGQEIKlj5ny4Q Ev0IOaQez8hJ7yDi/42tG9enucYIXS97YNyMv3FKVK9ExY5DVzI/4+wX2GTXSKyp FLcVlrVFXsRqH3eAmJCGu+KA1qWnyiw70JaUBJz+8qUxeV+P2WA4DN073W1WgbGj A42y1BGF4aUUW+IKBroSAqss1BavUXE/AvQnpB8SV7Kx -----END CERTIFICATE-----Generated at Tue Jan 20 01:21:56 2026 by rpki-client