This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/t5ZpdQdakz93WmXWJ_al0M0qYog.roa File: t5ZpdQdakz93WmXWJ_al0M0qYog.roa (raw, json) Hash identifier: ZYC1omK7NgO2nQPCpRlt52kAchXz0Fe3jlMw43xrEYU= Subject key identifier: B7:96:69:75:07:5A:93:3F:77:5A:65:D6:27:F6:A5:D0:CD:2A:62:88 Certificate issuer: /CN=afec4f4a16cc51bd51621011539ceb574ac15d02 Certificate serial: 019B797EEB2EDE979E94D135FB2ADE251B15 Authority key identifier: AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/t5ZpdQdakz93WmXWJ_al0M0qYog.roa Signing time: Thu 01 Jan 2026 12:18:39 +0000 ROA not before: Thu 01 Jan 2026 12:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204248 IP address blocks: 185.109.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.crl rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.mft rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:eb:2e:de:97:9e:94:d1:35:fb:2a:de:25:1b:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afec4f4a16cc51bd51621011539ceb574ac15d02 Validity Not Before: Jan 1 12:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7966975075a933f775a65d627f6a5d0cd2a6288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b7:4c:e8:4e:94:e1:fb:13:9d:27:f1:e1:99: 5b:0e:a7:bc:d1:8f:27:0d:b1:f7:86:d6:92:30:68: bd:89:68:6a:64:30:b3:9b:25:04:b8:86:b3:8d:67: 4c:98:27:47:fe:af:c3:4c:7d:90:8c:ad:93:4e:15: a5:d7:0d:ad:68:d5:eb:8a:88:df:14:30:07:a1:0b: 15:20:af:27:57:04:13:ae:05:43:91:30:db:9d:8e: bc:a7:e1:65:5a:de:5d:97:29:06:84:b3:14:39:bf: 13:cb:67:19:ed:82:a0:b1:ae:57:11:46:5b:ce:3d: 1b:b6:7a:d3:47:a7:b3:2b:af:35:5b:14:20:12:b4: 9c:6d:77:56:25:94:1b:6a:81:2c:70:75:e9:ff:ce: 45:f6:13:1d:b2:09:66:e5:95:05:86:17:40:cf:bc: 58:df:fc:76:9a:59:e1:0a:fe:bc:03:2f:fc:75:c3: 24:4b:8b:2f:74:a7:55:e8:a9:af:d2:c2:12:2d:11: e3:73:c1:23:de:8b:7a:88:1f:d4:c1:fc:de:49:38: 58:d8:e6:24:d1:3b:66:b2:1a:dc:79:33:63:0a:4f: b4:4f:92:0b:aa:a6:a7:db:e1:4f:37:f7:10:e2:b1: d5:68:ab:cd:0e:9a:14:62:90:65:ab:25:80:96:af: f0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:96:69:75:07:5A:93:3F:77:5A:65:D6:27:F6:A5:D0:CD:2A:62:88 X509v3 Authority Key Identifier: keyid:AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/t5ZpdQdakz93WmXWJ_al0M0qYog.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.109.240.0/23 Signature Algorithm: sha256WithRSAEncryption 28:2f:a4:a6:e8:87:7b:50:6d:77:5b:35:7f:c2:cb:80:5a:16: c0:da:f9:ff:1b:c3:5a:c5:e8:5d:e2:68:1c:52:48:02:ef:ae: b8:d3:a6:80:cc:af:13:5a:54:e1:ef:ba:d8:be:06:0c:64:bd: a2:6b:93:f9:40:52:00:95:22:83:2c:4f:c4:83:45:9c:60:80: 89:42:ee:f6:18:4f:ee:bb:99:e1:ea:2c:ec:87:fa:74:a3:78: a5:82:39:6f:82:8a:ce:70:36:d4:3f:83:fd:be:44:b3:4f:db: 10:09:ab:81:5e:44:1b:31:b7:a3:4c:68:c8:8e:a2:18:65:60: e4:34:8d:a8:af:52:64:e2:06:37:ea:d6:5e:95:46:da:3f:89: cf:cc:3a:41:c5:85:b8:34:9d:ad:c8:c3:bc:7d:af:fa:f9:c4: db:83:e9:76:5c:7d:01:7a:54:21:e5:8b:83:bb:28:a7:b8:38: dd:b8:0c:fc:fc:2c:43:68:fd:84:f6:c0:25:4a:28:63:7d:46: 72:7d:17:35:83:74:ad:cf:a8:d0:79:4a:b2:99:62:23:83:2a: f4:44:84:2c:e6:84:74:86:85:8b:18:f6:23:fe:e8:3c:e5:4f: aa:c6:a9:41:8f:8a:37:52:91:ab:39:6e:bf:81:83:31:cc:6d: 4e:c8:a3:cf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fusu3peelNE1+yreJRsVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmZWM0ZjRhMTZjYzUxYmQ1MTYyMTAxMTUzOWNlYjU3NGFj MTVkMDIwHhcNMjYwMTAxMTIxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzk2Njk3NTA3NWE5MzNmNzc1YTY1ZDYyN2Y2YTVkMGNkMmE2Mjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA77dM6E6U4fsTnSfx4ZlbDqe80Y8n DbH3htaSMGi9iWhqZDCzmyUEuIazjWdMmCdH/q/DTH2QjK2TThWl1w2taNXriojf FDAHoQsVIK8nVwQTrgVDkTDbnY68p+FlWt5dlykGhLMUOb8Ty2cZ7YKgsa5XEUZb zj0btnrTR6ezK681WxQgErScbXdWJZQbaoEscHXp/85F9hMdsglm5ZUFhhdAz7xY 3/x2mlnhCv68Ay/8dcMkS4svdKdV6Kmv0sISLRHjc8Ej3ot6iB/UwfzeSThY2OYk 0TtmshrceTNjCk+0T5ILqqan2+FPN/cQ4rHVaKvNDpoUYpBlqyWAlq/wNwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLeWaXUHWpM/d1pl1if2pdDNKmKIMB8GA1UdIwQY MBaAFK/sT0oWzFG9UWIQEVOc61dKwV0CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvci14UFNoYk1VYjFSWWhBUlU1enJWMHJCWFFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni85ZjdiNmItYjI5ZC00ODZlLTg0Nzgt MjdlZmMxM2FmZjFlLzEvdDVacGRRZGFrejkzV21YV0pfYWwwTTBxWW9nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni85ZjdiNmItYjI5ZC00ODZlLTg0NzgtMjdlZmMxM2FmZjFl LzEvci14UFNoYk1VYjFSWWhBUlU1enJWMHJCWFFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuW3wMA0G CSqGSIb3DQEBCwUAA4IBAQAoL6Sm6Id7UG13WzV/wsuAWhbA2vn/G8Naxehd4mgc UkgC766406aAzK8TWlTh77rYvgYMZL2ia5P5QFIAlSKDLE/Eg0WcYICJQu72GE/u u5nh6izsh/p0o3ilgjlvgorOcDbUP4P9vkSzT9sQCauBXkQbMbejTGjIjqIYZWDk NI2or1Jk4gY36tZelUbaP4nPzDpBxYW4NJ2tyMO8fa/6+cTbg+l2XH0BelQh5YuD uyinuDjduAz8/CxDaP2E9sAlSihjfUZyfRc1g3Stz6jQeUqymWIjgyr0RIQs5oR0 hoWLGPYj/ug85U+qxqlBj4o3UpGrOW6/gYMxzG1OyKPP -----END CERTIFICATE-----Generated at Tue Feb 10 06:55:47 2026 by rpki-client