This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/e5H8rjjlVKlxfiAJ6IlS4G9OI08.roa File: e5H8rjjlVKlxfiAJ6IlS4G9OI08.roa (raw, json) Hash identifier: NsnVR6BfsnGaMNfRKxx2wayfw4t4s2vRuzJq672PfAo= Subject key identifier: 7B:91:FC:AE:38:E5:54:A9:71:7E:20:09:E8:89:52:E0:6F:4E:23:4F Certificate issuer: /CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Certificate serial: 019B78A23004A177F71022826414749353D5 Authority key identifier: 29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/e5H8rjjlVKlxfiAJ6IlS4G9OI08.roa Signing time: Thu 01 Jan 2026 08:17:33 +0000 ROA not before: Thu 01 Jan 2026 08:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208976 IP address blocks: 5.10.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.mft rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 11:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:30:04:a1:77:f7:10:22:82:64:14:74:93:53:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Validity Not Before: Jan 1 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b91fcae38e554a9717e2009e88952e06f4e234f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c1:30:4f:8f:99:a3:ea:e9:de:46:1d:58:c5: fd:fc:b7:bd:8b:77:ff:45:bb:d6:76:4c:d1:72:eb: a7:70:fd:dc:b8:a2:68:30:a0:a4:90:05:07:04:de: 2d:96:c4:ce:fe:d0:91:54:3d:6e:5b:16:af:b1:e1: dd:01:8e:97:d0:95:fc:cb:4b:17:34:cb:f1:7c:b7: 88:ad:89:da:76:48:7a:3d:6e:8e:cb:f5:b9:c0:8c: ce:93:80:04:79:86:87:ef:15:8c:69:82:c9:85:1e: 2d:9d:57:1c:f7:8a:50:fe:4e:de:e5:5d:76:02:0c: a7:36:68:62:0a:75:ec:db:e2:85:65:16:43:05:9f: 5a:24:60:2d:db:1e:10:a3:fa:0c:2d:a1:45:ae:26: 75:42:d0:4d:fa:bf:06:bf:2b:9b:72:2d:be:a0:f0: 60:d9:94:73:38:a1:40:7d:50:64:0c:9c:20:8b:33: 1c:bf:77:7f:b7:42:08:73:3f:e4:95:8c:c9:0f:c9: 66:97:c3:73:e6:2e:b6:6a:8a:23:ee:36:80:fe:59: 32:16:5a:da:00:38:3f:c4:a0:b3:1e:2a:4c:d1:c0: a4:d7:31:34:2c:96:55:c2:7a:37:17:d5:25:d1:6c: 91:5d:1b:ef:65:0e:14:f7:3e:4d:af:3d:6c:0e:23: 23:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:91:FC:AE:38:E5:54:A9:71:7E:20:09:E8:89:52:E0:6F:4E:23:4F X509v3 Authority Key Identifier: keyid:29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/e5H8rjjlVKlxfiAJ6IlS4G9OI08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.10.212.0/24 Signature Algorithm: sha256WithRSAEncryption 49:e2:62:06:24:8a:63:44:1a:87:06:6b:11:30:e6:aa:63:b6: 6d:ff:32:12:ea:55:71:93:32:e8:95:f4:28:50:8e:83:5a:f5: 64:f4:8c:14:12:cc:ee:b2:97:17:aa:ac:21:c7:ae:31:5a:51: 08:d4:fa:da:34:ca:32:d9:46:f4:72:d6:0a:cd:f6:bc:f8:aa: c5:22:63:fc:d3:90:2a:37:ef:30:4f:45:dd:37:d9:96:ed:5f: fa:44:d0:c7:d8:0f:ff:f5:bc:c9:fd:dc:ee:0d:ee:b4:40:53: 0c:36:bd:3a:37:e5:b7:ef:be:1b:dd:01:e9:8d:23:28:c2:90: 8f:1d:ef:9f:71:73:b0:01:7d:ac:a3:9a:af:11:58:3d:b5:a3: e9:09:47:de:95:37:99:c9:a4:d3:b3:61:70:b8:18:dd:4e:9d: 55:5a:e4:4f:d8:6e:c1:72:cf:03:e6:d8:e1:ec:83:78:15:1e: ef:04:eb:b1:88:f9:89:48:5c:0d:7c:89:4c:2c:61:d2:39:f9: 7c:19:fe:0f:d3:42:8a:17:4b:61:42:6a:78:6c:a8:9d:2c:5b: d4:bd:8a:57:b3:f7:7b:fe:c8:3e:b8:c0:0e:51:ca:26:9f:0b: f8:b8:f9:5c:7e:9a:a4:f6:63:fe:75:d6:aa:29:f5:b8:a9:4a: 3d:f8:dc:7d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ojAEoXf3ECKCZBR0k1PVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2VmOWJlZmQxYTdlMjRjMGNjOTcyOTk4N2ZjMDY1ZDZi NzEzMmYwHhcNMjYwMTAxMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjkxZmNhZTM4ZTU1NGE5NzE3ZTIwMDllODg5NTJlMDZmNGUyMzRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMEwT4+Zo+rp3kYdWMX9/Le9i3f/ RbvWdkzRcuuncP3cuKJoMKCkkAUHBN4tlsTO/tCRVD1uWxavseHdAY6X0JX8y0sX NMvxfLeIrYnadkh6PW6Oy/W5wIzOk4AEeYaH7xWMaYLJhR4tnVcc94pQ/k7e5V12 AgynNmhiCnXs2+KFZRZDBZ9aJGAt2x4Qo/oMLaFFriZ1QtBN+r8Gvyubci2+oPBg 2ZRzOKFAfVBkDJwgizMcv3d/t0IIcz/klYzJD8lml8Nz5i62aooj7jaA/lkyFlra ADg/xKCzHipM0cCk1zE0LJZVwno3F9Ul0WyRXRvvZQ4U9z5Nrz1sDiMjoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHuR/K445VSpcX4gCeiJUuBvTiNPMB8GA1UdIwQY MBaAFCl++b79Gn4kwMyXKZh/wGXWtxMvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWIt ZGVlNzY4NjAwMTNkLzEvZTVIOHJqamxWS2x4ZmlBSjZJbFM0RzlPSTA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWItZGVlNzY4NjAwMTNk LzEvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABQrUMA0G CSqGSIb3DQEBCwUAA4IBAQBJ4mIGJIpjRBqHBmsRMOaqY7Zt/zIS6lVxkzLolfQo UI6DWvVk9IwUEszuspcXqqwhx64xWlEI1PraNMoy2Ub0ctYKzfa8+KrFImP805Aq N+8wT0XdN9mW7V/6RNDH2A//9bzJ/dzuDe60QFMMNr06N+W3774b3QHpjSMowpCP He+fcXOwAX2so5qvEVg9taPpCUfelTeZyaTTs2FwuBjdTp1VWuRP2G7Bcs8D5tjh 7IN4FR7vBOuxiPmJSFwNfIlMLGHSOfl8Gf4P00KKF0thQmp4bKidLFvUvYpXs/d7 /sg+uMAOUcomnwv4uPlcfpqk9mP+ddaqKfW4qUo9+Nx9 -----END CERTIFICATE-----Generated at Wed Jan 21 18:23:22 2026 by rpki-client