This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/n5ajNi9wA3P70_E15oIv54CXpok.roa File: n5ajNi9wA3P70_E15oIv54CXpok.roa (raw, json) Hash identifier: jR2itfiSW5cBnQGOq4LIcSp76PVQGV3oF57lsh5izq8= Subject key identifier: 9F:96:A3:36:2F:70:03:73:FB:D3:F1:35:E6:82:2F:E7:80:97:A6:89 Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4 Certificate serial: 019B7DCA398346670CE9D6F70A1F4A586676 Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/n5ajNi9wA3P70_E15oIv54CXpok.roa Signing time: Fri 02 Jan 2026 08:19:23 +0000 ROA not before: Fri 02 Jan 2026 08:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47224 IP address blocks: 91.221.32.0/24 maxlen: 24 91.221.33.0/24 maxlen: 24 171.25.191.0/24 maxlen: 24 185.10.32.0/23 maxlen: 23 185.10.34.0/23 maxlen: 23 193.169.242.0/23 maxlen: 23 194.152.48.0/24 maxlen: 24 194.152.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:39:83:46:67:0c:e9:d6:f7:0a:1f:4a:58:66:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4 Validity Not Before: Jan 2 08:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9f96a3362f700373fbd3f135e6822fe78097a689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:2e:37:41:47:ea:a5:24:45:66:50:72:9b:14: 37:48:51:fb:6a:20:b5:8e:b8:92:76:3d:8a:d3:76: 51:a2:32:4f:26:a1:bf:d9:6e:27:7b:9b:96:3c:5e: 0f:86:b7:34:27:b1:6e:a0:72:bf:63:ab:c6:94:36: 33:68:83:f6:70:8f:5b:32:9d:8f:6d:aa:28:95:5f: e0:82:8e:4e:a8:89:b4:3c:83:10:2a:19:9a:1f:52: 93:5f:49:ce:a6:4e:16:30:ad:3f:e0:7b:1b:85:2b: 58:ab:f5:c9:1f:94:b6:fc:09:65:66:57:6b:76:86: 2b:fe:80:b8:37:50:34:ab:21:d9:6d:da:d6:bd:03: f6:5b:2a:7b:f9:0a:8e:35:7d:c5:c2:5d:7a:3a:62: ff:53:f7:e4:71:69:70:aa:a1:7f:3e:6d:04:87:56: 99:cc:e0:4b:e9:1f:91:98:21:b6:fc:a7:3f:13:6a: e6:26:d5:82:3b:22:4b:e4:d5:71:64:91:a7:81:8e: 7b:48:26:b6:72:68:79:46:45:60:a9:f7:2a:4a:bd: f4:18:2e:83:14:43:70:dc:ea:e1:07:86:88:c9:f2: 5a:74:00:4f:14:19:d6:bf:4b:1d:9b:33:ab:10:d7: 7f:3d:7a:98:b5:9b:60:db:39:84:f9:33:b8:e8:a8: 50:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:96:A3:36:2F:70:03:73:FB:D3:F1:35:E6:82:2F:E7:80:97:A6:89 X509v3 Authority Key Identifier: keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/n5ajNi9wA3P70_E15oIv54CXpok.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.221.32.0/23 171.25.191.0/24 185.10.32.0/22 193.169.242.0/23 194.152.48.0/23 Signature Algorithm: sha256WithRSAEncryption 67:90:7b:54:a1:1e:18:dc:f6:22:a3:47:46:8e:2d:ab:2d:1f: 19:0e:38:9d:bc:70:bb:2d:b9:7e:ca:14:25:34:33:74:b3:cf: 2a:8e:1c:47:c4:bc:a0:68:cd:6e:5a:6d:c9:62:0b:04:ad:9c: 80:56:f9:6a:aa:95:7e:89:36:38:a7:cd:2c:1a:4a:60:6a:26: 1b:c1:e2:85:6c:3c:3f:32:49:53:89:12:e1:bb:c2:66:33:30: a7:b2:50:8a:c1:dd:59:64:b9:f6:1e:74:11:fe:0b:79:1e:2d: cd:34:e9:3b:f6:f2:b4:86:9c:ad:88:59:0f:44:40:26:a3:cd: 02:84:75:f3:b7:a4:fc:7a:4b:da:ff:02:66:8a:ec:d9:02:df: 3a:18:ea:7c:e6:f6:71:86:dd:74:a2:9b:e5:5a:4c:5f:f2:b6: 6c:b3:7d:3a:a0:4a:8b:4a:bf:8e:bc:b5:0e:5e:8c:44:cc:81: 63:c6:24:c4:b9:8b:4d:f1:e9:e0:db:44:1a:72:c7:64:82:3a: b6:1d:3f:e6:1a:da:ba:da:cf:6e:45:c8:fa:e4:fa:b4:c9:7d: 5c:b4:e5:36:14:1c:d5:43:5c:a0:98:5c:55:ec:9c:56:0c:d1: 24:93:c7:e5:d2:79:77:80:91:0d:2b:dc:93:65:83:9a:71:ec: c1:ad:12:f9 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt9yjmDRmcM6db3Ch9KWGZ2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZGU3NTZhOWI2ZDE0MDAwYzNlMTUwZDViN2Q2MDk1Yjc2 MTNmZTQwHhcNMjYwMTAyMDgxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Zjk2YTMzNjJmNzAwMzczZmJkM2YxMzVlNjgyMmZlNzgwOTdhNjg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjS43QUfqpSRFZlBymxQ3SFH7aiC1 jriSdj2K03ZRojJPJqG/2W4ne5uWPF4Phrc0J7FuoHK/Y6vGlDYzaIP2cI9bMp2P baoolV/ggo5OqIm0PIMQKhmaH1KTX0nOpk4WMK0/4HsbhStYq/XJH5S2/AllZldr doYr/oC4N1A0qyHZbdrWvQP2Wyp7+QqONX3Fwl16OmL/U/fkcWlwqqF/Pm0Eh1aZ zOBL6R+RmCG2/Kc/E2rmJtWCOyJL5NVxZJGngY57SCa2cmh5RkVgqfcqSr30GC6D FENw3OrhB4aIyfJadABPFBnWv0sdmzOrENd/PXqYtZtg2zmE+TO46KhQFwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFJ+WozYvcANz+9PxNeaCL+eAl6aJMB8GA1UdIwQY MBaAFB3edWqbbRQADD4VDVt9YJW3YT/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMt NzM1YTBjYzFlNzg5LzEvbjVhak5pOXdBM1A3MF9FMTVvSXY1NENYcG9rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMtNzM1YTBjYzFlNzg5 LzEvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBW90gAwQA qxm/AwQCuQogAwQBwanyAwQBwpgwMA0GCSqGSIb3DQEBCwUAA4IBAQBnkHtUoR4Y 3PYio0dGji2rLR8ZDjidvHC7Lbl+yhQlNDN0s88qjhxHxLygaM1uWm3JYgsErZyA VvlqqpV+iTY4p80sGkpgaiYbweKFbDw/MklTiRLhu8JmMzCnslCKwd1ZZLn2HnQR /gt5Hi3NNOk79vK0hpytiFkPREAmo80ChHXzt6T8ekva/wJmiuzZAt86GOp85vZx ht10opvlWkxf8rZss306oEqLSr+OvLUOXoxEzIFjxiTEuYtN8eng20Qacsdkgjq2 HT/mGtq62s9uRcj65Pq0yX1ctOU2FBzVQ1ygmFxV7JxWDNEkk8fl0nl3gJENK9yT ZYOacezBrRL5 -----END CERTIFICATE-----Generated at Tue Feb 10 04:49:36 2026 by rpki-client