This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/5UQnHrIssl-L3tEs4ZaCR-OpgzU.roa File: 5UQnHrIssl-L3tEs4ZaCR-OpgzU.roa (raw, json) Hash identifier: aHEZnc6yTe0TRFc35pEnWkxNreWvfEne2GzfuKDiaPI= Subject key identifier: E5:44:27:1E:B2:2C:B2:5F:8B:DE:D1:2C:E1:96:82:47:E3:A9:83:35 Certificate issuer: /CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906 Certificate serial: 019B7AC896B9EB99B74FA7ECCB53E517A1DA Authority key identifier: 75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/5UQnHrIssl-L3tEs4ZaCR-OpgzU.roa Signing time: Thu 01 Jan 2026 18:18:44 +0000 ROA not before: Thu 01 Jan 2026 18:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44023 IP address blocks: 91.198.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:96:b9:eb:99:b7:4f:a7:ec:cb:53:e5:17:a1:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906 Validity Not Before: Jan 1 18:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e544271eb22cb25f8bded12ce1968247e3a98335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:81:e1:60:de:0b:78:cc:72:62:d5:b9:f1:3b: 9a:45:54:57:66:7c:6e:92:2a:f2:ea:4c:06:7c:8e: f8:29:81:2c:ca:93:80:0d:8f:ba:97:4d:b6:23:ec: 16:f4:e0:93:49:3a:a9:9a:1e:bc:46:7c:9d:9b:f6: 38:5a:2a:9a:6a:59:dd:1d:bf:b0:ff:77:31:09:53: d6:19:28:7b:b1:11:e0:14:63:55:3a:fc:09:72:31: d2:73:35:a4:c9:bf:18:48:39:e1:04:27:fd:e3:7b: 3a:0d:b2:1d:f3:68:c3:e2:e9:ac:ae:ef:69:44:47: 1d:fd:d3:db:08:2b:61:b6:f7:79:21:f8:91:0e:16: b8:28:4c:02:b8:25:ef:4f:8c:e9:b7:92:a4:14:08: 9b:ee:55:08:5f:9f:07:b0:de:29:8c:64:be:c5:78: 7f:06:b9:f1:6c:9f:dc:8f:45:e9:0f:78:49:06:48: c4:bd:d8:c0:06:94:f8:cc:46:f9:8f:ee:be:8d:f5: 8a:f6:10:76:ed:ae:f2:c6:a8:8c:35:2c:78:82:64: a0:ea:36:9a:20:66:d6:d6:9a:fa:74:70:87:12:c4: 6d:f3:d6:30:ba:9e:25:40:0c:d2:93:13:8c:35:fc: fc:98:05:d8:cc:0a:8c:2c:4a:d8:58:ae:93:b5:9b: 8c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:44:27:1E:B2:2C:B2:5F:8B:DE:D1:2C:E1:96:82:47:E3:A9:83:35 X509v3 Authority Key Identifier: keyid:75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/5UQnHrIssl-L3tEs4ZaCR-OpgzU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.253.0/24 Signature Algorithm: sha256WithRSAEncryption 69:b7:20:94:2e:b7:ad:0c:21:28:40:23:06:51:fb:0a:a4:94: 32:e8:45:8c:f2:3d:15:09:81:b9:b6:5d:70:4b:7f:1a:f0:94: f1:f6:24:81:60:df:65:9f:0f:50:2d:bd:d6:96:d8:3c:f9:1f: c5:07:45:c9:34:d0:ed:76:8e:bc:77:96:c8:76:a2:95:95:1c: e0:47:3d:e7:a3:40:bf:e2:6e:3c:8c:a1:51:76:e0:97:17:ca: 58:31:5d:c6:a3:d0:99:d9:7a:42:7b:95:bd:35:cc:f9:f1:29: c3:c2:43:f4:d8:08:0f:0f:d8:88:5a:05:7f:54:0c:09:8e:b8: 34:8b:b4:0f:56:76:6e:31:aa:9e:6c:cd:95:eb:50:dd:38:af: fc:10:b6:4e:e3:8c:f1:6b:e1:a0:08:0c:1a:18:d5:53:b3:40: 3a:8b:81:c2:7b:31:8a:2b:df:df:cf:a9:14:89:92:05:63:62: bf:3e:e5:7e:de:68:11:c2:e9:e6:f7:a0:59:5c:56:8d:92:9e: 50:d9:27:e8:cd:cf:5c:12:01:b8:e5:40:54:52:69:c0:35:c3: b2:11:fa:87:6e:25:ea:a8:0b:53:84:59:81:22:57:aa:e6:22: aa:e2:b5:c5:5b:65:2d:84:c1:79:0b:f0:45:f3:02:3e:cb:d2: 28:1e:47:23 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yJa565m3T6fsy1PlF6HaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1OWRiYmI0Y2EwNDMyOWJjNTA5ZDZkZDFjZDUwYjkzNTZh ZDg5MDYwHhcNMjYwMTAxMTgxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTQ0MjcxZWIyMmNiMjVmOGJkZWQxMmNlMTk2ODI0N2UzYTk4MzM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4HhYN4LeMxyYtW58TuaRVRXZnxu kiry6kwGfI74KYEsypOADY+6l022I+wW9OCTSTqpmh68Rnydm/Y4WiqaalndHb+w /3cxCVPWGSh7sRHgFGNVOvwJcjHSczWkyb8YSDnhBCf943s6DbId82jD4umsru9p REcd/dPbCCthtvd5IfiRDha4KEwCuCXvT4zpt5KkFAib7lUIX58HsN4pjGS+xXh/ BrnxbJ/cj0XpD3hJBkjEvdjABpT4zEb5j+6+jfWK9hB27a7yxqiMNSx4gmSg6jaa IGbW1pr6dHCHEsRt89Ywup4lQAzSkxOMNfz8mAXYzAqMLErYWK6TtZuM9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOVEJx6yLLJfi97RLOGWgkfjqYM1MB8GA1UdIwQY MBaAFHWdu7TKBDKbxQnW3RzVC5NWrYkGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFoyN3RNb0VNcHZGQ2RiZEhOVUxrMWF0aVFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zYTQ0YTItN2YzNy00ZWY1LWIwMzQt YTRmYzY3ZTFjMmZiLzEvNVVRbkhySXNzbC1MM3RFczRaYUNSLU9wZ3pVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8zYTQ0YTItN2YzNy00ZWY1LWIwMzQtYTRmYzY3ZTFjMmZi LzEvZFoyN3RNb0VNcHZGQ2RiZEhOVUxrMWF0aVFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8b9MA0G CSqGSIb3DQEBCwUAA4IBAQBptyCULretDCEoQCMGUfsKpJQy6EWM8j0VCYG5tl1w S38a8JTx9iSBYN9lnw9QLb3Wltg8+R/FB0XJNNDtdo68d5bIdqKVlRzgRz3no0C/ 4m48jKFRduCXF8pYMV3Go9CZ2XpCe5W9Ncz58SnDwkP02AgPD9iIWgV/VAwJjrg0 i7QPVnZuMaqebM2V61DdOK/8ELZO44zxa+GgCAwaGNVTs0A6i4HCezGKK9/fz6kU iZIFY2K/PuV+3mgRwunm96BZXFaNkp5Q2Sfozc9cEgG45UBUUmnANcOyEfqHbiXq qAtThFmBIleq5iKq4rXFW2UthMF5C/BF8wI+y9IoHkcj -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:45 2026 by rpki-client