This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/s5Tf9Er97Itqjoj6gqrk-vynCFo.roa File: s5Tf9Er97Itqjoj6gqrk-vynCFo.roa (raw, json) Hash identifier: a498PFlcS5thKhXutLYebI+i2DuF8/7C5m6zZZ7mAe0= Subject key identifier: B3:94:DF:F4:4A:FD:EC:8B:6A:8E:88:FA:82:AA:E4:FA:FC:A7:08:5A Certificate issuer: /CN=1d8b9323cd4c92c75d83d346f0d269e5c2d5a808 Certificate serial: 019B7910481BF30FB236AE40DCDBA0130EB1 Authority key identifier: 1D:8B:93:23:CD:4C:92:C7:5D:83:D3:46:F0:D2:69:E5:C2:D5:A8:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYuTI81Mksddg9NG8NJp5cLVqAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/s5Tf9Er97Itqjoj6gqrk-vynCFo.roa Signing time: Thu 01 Jan 2026 10:17:48 +0000 ROA not before: Thu 01 Jan 2026 10:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213467 IP address blocks: 5.183.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/HYuTI81Mksddg9NG8NJp5cLVqAg.crl rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/HYuTI81Mksddg9NG8NJp5cLVqAg.mft rsync://rpki.ripe.net/repository/DEFAULT/HYuTI81Mksddg9NG8NJp5cLVqAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:48:1b:f3:0f:b2:36:ae:40:dc:db:a0:13:0e:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8b9323cd4c92c75d83d346f0d269e5c2d5a808 Validity Not Before: Jan 1 10:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b394dff44afdec8b6a8e88fa82aae4fafca7085a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b4:b4:8a:28:2f:3f:08:4c:aa:e5:8d:21:13: eb:7f:2c:a2:bd:26:12:46:a5:72:ba:02:3d:31:08: ca:85:c2:d6:2c:d4:f2:67:e4:b1:8f:9b:b4:7a:1a: 8a:a2:f7:eb:11:03:21:a5:e8:b4:99:22:a9:81:ec: 38:04:7f:ed:77:18:ca:14:62:52:ee:7b:84:d8:0f: 29:c3:59:88:a4:69:f7:5d:44:11:07:fc:d0:1e:09: 6a:6a:5b:24:40:8f:60:0a:32:e1:b9:aa:75:3a:db: a4:35:0c:ae:66:91:f1:f3:74:f9:88:3c:0b:30:34: fc:92:22:34:94:06:65:b3:c5:8a:61:a9:6b:ef:60: 39:9c:0c:ee:ee:b6:28:b7:7c:4b:c8:0a:56:61:06: 22:7c:34:4e:ef:57:a1:85:80:1b:a3:ef:62:1c:9c: d5:a4:bc:2c:af:36:50:c6:54:b3:6a:a6:a5:a6:84: c0:14:ee:bd:80:d7:3e:b6:27:c3:a9:0a:86:f1:15: 8b:b8:9e:88:da:5d:1a:0a:84:27:06:e1:59:e1:18: 14:0f:b6:b7:47:5e:a0:ad:f4:34:17:75:12:ff:75: 62:30:bf:46:59:29:89:69:6d:79:23:24:5c:87:c2: c8:f0:89:47:e1:cc:e4:3a:1e:87:d6:ad:d5:13:8f: 55:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:94:DF:F4:4A:FD:EC:8B:6A:8E:88:FA:82:AA:E4:FA:FC:A7:08:5A X509v3 Authority Key Identifier: keyid:1D:8B:93:23:CD:4C:92:C7:5D:83:D3:46:F0:D2:69:E5:C2:D5:A8:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYuTI81Mksddg9NG8NJp5cLVqAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/s5Tf9Er97Itqjoj6gqrk-vynCFo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/HYuTI81Mksddg9NG8NJp5cLVqAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.183.195.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:fa:78:42:82:a5:de:7b:d6:76:d0:cb:a0:e5:34:43:71:6e: d8:80:4d:97:cb:03:97:61:63:eb:ca:14:08:db:4b:7c:34:c5: e4:a0:1b:58:0f:4a:3e:80:7e:9c:4f:f5:2c:a4:7d:cc:f6:39: 27:16:2d:c0:c2:d0:34:1f:70:e1:44:7b:2d:9d:ce:4f:bf:0a: a1:44:b4:ab:6d:a5:1f:b6:97:e5:f3:4a:fc:db:3a:07:70:84: 69:2b:4f:fa:a7:62:5f:f3:f4:47:36:4e:d0:1c:d1:78:1a:a7: f3:18:8c:39:a0:5b:b6:84:fd:e2:8b:fa:6b:d6:b8:62:be:e1: 65:8d:23:92:d3:84:30:2e:0e:4f:a3:54:ad:e8:8a:85:31:8f: cd:e2:4a:3e:78:44:fe:c4:5a:a3:a3:5f:ae:db:2a:83:6a:0c: 4b:0f:86:65:e4:9a:c0:f8:08:a2:ed:c9:d8:fa:92:63:4e:ad: d7:44:5b:5e:fb:75:43:ea:31:b6:b3:7e:d5:db:a7:f8:4a:bf: 2d:8e:4b:60:7b:b1:17:2e:ed:13:8d:78:cb:53:51:47:58:8a: 22:78:73:10:60:f5:c6:f7:4f:e7:58:6d:c9:19:06:d3:ce:cc: 4e:cb:c7:69:ec:c6:48:92:bc:b8:35:f4:60:d8:32:b0:4a:49: 6a:f1:e0:74 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EEgb8w+yNq5A3NugEw6xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOGI5MzIzY2Q0YzkyYzc1ZDgzZDM0NmYwZDI2OWU1YzJk NWE4MDgwHhcNMjYwMTAxMTAxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzk0ZGZmNDRhZmRlYzhiNmE4ZTg4ZmE4MmFhZTRmYWZjYTcwODVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7S0iigvPwhMquWNIRPrfyyivSYS RqVyugI9MQjKhcLWLNTyZ+Sxj5u0ehqKovfrEQMhpei0mSKpgew4BH/tdxjKFGJS 7nuE2A8pw1mIpGn3XUQRB/zQHglqalskQI9gCjLhuap1OtukNQyuZpHx83T5iDwL MDT8kiI0lAZls8WKYalr72A5nAzu7rYot3xLyApWYQYifDRO71ehhYAbo+9iHJzV pLwsrzZQxlSzaqalpoTAFO69gNc+tifDqQqG8RWLuJ6I2l0aCoQnBuFZ4RgUD7a3 R16grfQ0F3US/3ViML9GWSmJaW15IyRch8LI8IlH4czkOh6H1q3VE49VJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLOU3/RK/eyLao6I+oKq5Pr8pwhaMB8GA1UdIwQY MBaAFB2LkyPNTJLHXYPTRvDSaeXC1agIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFl1VEk4MU1rc2RkZzlORzhOSnA1Y0xWcUFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS84YzdhMzQtNTM4ZC00MzE0LWFhZjQt MDRkZDgwZDViNzJkLzEvczVUZjlFcjk3SXRxam9qNmdxcmstdnluQ0ZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS84YzdhMzQtNTM4ZC00MzE0LWFhZjQtMDRkZDgwZDViNzJk LzEvSFl1VEk4MU1rc2RkZzlORzhOSnA1Y0xWcUFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbfDMA0G CSqGSIb3DQEBCwUAA4IBAQB9+nhCgqXee9Z20Mug5TRDcW7YgE2XywOXYWPryhQI 20t8NMXkoBtYD0o+gH6cT/UspH3M9jknFi3AwtA0H3DhRHstnc5PvwqhRLSrbaUf tpfl80r82zoHcIRpK0/6p2Jf8/RHNk7QHNF4GqfzGIw5oFu2hP3ii/pr1rhivuFl jSOS04QwLg5Po1St6IqFMY/N4ko+eET+xFqjo1+u2yqDagxLD4Zl5JrA+Aii7cnY +pJjTq3XRFte+3VD6jG2s37V26f4Sr8tjktge7EXLu0TjXjLU1FHWIoieHMQYPXG 90/nWG3JGQbTzsxOy8dp7MZIkry4NfRg2DKwSklq8eB0 -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:50 2026 by rpki-client