This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5nwMYdXAWVhFb0PQIVO1934YSLI.roa File: 5nwMYdXAWVhFb0PQIVO1934YSLI.roa (raw, json) Hash identifier: 0aXHeZ5x3H++tHBGmYiHK4TN69Iur3yWbG3zuQhfqXE= Subject key identifier: E6:7C:0C:61:D5:C0:59:58:45:6F:43:D0:21:53:B5:F7:7E:18:48:B2 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019AD98D0620A9CCF4234F8095BE28F04192 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5nwMYdXAWVhFb0PQIVO1934YSLI.roa Signing time: Mon 01 Dec 2025 10:54:49 +0000 ROA not before: Mon 01 Dec 2025 10:54:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141114 IP address blocks: 31.56.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 15:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d9:8d:06:20:a9:cc:f4:23:4f:80:95:be:28:f0:41:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Dec 1 10:54:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e67c0c61d5c05958456f43d02153b5f77e1848b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fe:da:88:f7:e5:66:b1:35:a9:88:50:10:cb: f8:39:28:ad:87:80:21:d3:a7:90:e8:94:fc:d2:d5: 74:29:62:2f:aa:b4:17:85:ee:d5:97:cd:17:d1:b1: 6d:ca:21:b6:68:c9:a8:c8:32:db:cc:15:46:8c:7c: 3d:1a:4c:e4:82:aa:82:7d:96:42:e6:63:85:ca:07: b6:4f:63:68:78:66:c0:68:3b:7e:91:a6:68:e1:d7: ca:c3:2c:46:e2:cb:d1:b7:ba:74:36:d9:e1:f3:0e: c6:16:66:a6:e7:32:17:ce:8d:a5:8d:fd:c8:dc:7a: 32:fa:4d:10:97:6d:c2:a5:a9:a8:fb:0c:85:08:a9: c6:c9:fd:5d:8a:e0:36:4d:67:54:7a:99:46:c2:87: 19:32:f8:e2:ac:65:87:a2:03:39:37:eb:a7:2f:b3: 2a:c4:48:49:e2:08:d8:0a:76:ce:94:72:00:f9:c2: 6f:0a:da:60:54:d4:2e:91:e2:13:3d:c3:44:cc:4c: b8:19:21:74:fa:9f:6f:28:b5:f6:49:f4:02:21:b8: 80:90:b4:33:65:ef:d5:aa:92:76:32:76:5c:40:69: 4e:3a:55:39:4a:ca:a2:48:81:a6:26:b4:be:9d:d9: d3:f8:20:f8:a4:64:12:ec:bd:90:1b:17:cb:0d:0c: 70:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7C:0C:61:D5:C0:59:58:45:6F:43:D0:21:53:B5:F7:7E:18:48:B2 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5nwMYdXAWVhFb0PQIVO1934YSLI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.99.0/24 Signature Algorithm: sha256WithRSAEncryption 79:fa:ec:ff:a1:48:32:fe:6a:cf:26:b3:6a:f6:8d:75:07:cf: 4b:1d:e4:26:a7:ce:a4:8b:79:32:01:07:56:0e:e9:59:64:17: 0d:dc:68:2c:99:27:fb:e2:37:41:6c:fc:50:cd:2f:fd:2c:0e: 5e:14:b8:7f:2d:28:f2:39:29:99:5b:21:b7:8f:cd:9d:03:1c: 7a:f9:6f:df:6d:91:a9:44:73:e2:9f:f1:73:13:84:c5:18:80: d9:b5:72:87:58:54:75:c9:78:4d:2e:60:50:04:09:17:ed:80: a0:cb:13:35:63:ff:ba:b3:bc:8e:18:5f:16:fe:d6:a8:5d:d1: 4c:c4:c1:56:6c:b5:fb:88:88:d0:19:38:7b:51:85:ca:c9:97: 22:b8:ee:b3:c1:fe:60:63:a7:ad:21:50:3c:35:52:e5:63:e8: 2f:58:23:a9:b1:46:82:d2:48:79:d5:13:cd:42:0c:15:3f:e3: 8d:b2:1f:23:00:b7:0a:f0:7d:22:1c:3e:55:fe:91:f3:43:c7: 54:e1:71:ef:e5:3c:62:d9:e4:06:3a:76:99:20:2c:bd:b5:bc: 9e:59:d1:47:fc:a2:5d:8a:8c:40:26:ac:52:01:1d:52:61:70: 1f:bb:18:a1:c6:d2:75:af:e2:1d:55:37:46:0f:a3:b6:bd:06: 9b:0a:44:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrZjQYgqcz0I0+Alb4o8EGSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMjAxMTA1NDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjdjMGM2MWQ1YzA1OTU4NDU2ZjQzZDAyMTUzYjVmNzdlMTg0OGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/7aiPflZrE1qYhQEMv4OSith4Ah 06eQ6JT80tV0KWIvqrQXhe7Vl80X0bFtyiG2aMmoyDLbzBVGjHw9GkzkgqqCfZZC 5mOFyge2T2NoeGbAaDt+kaZo4dfKwyxG4svRt7p0Ntnh8w7GFmam5zIXzo2ljf3I 3Hoy+k0Ql23Cpamo+wyFCKnGyf1diuA2TWdUeplGwocZMvjirGWHogM5N+unL7Mq xEhJ4gjYCnbOlHIA+cJvCtpgVNQukeITPcNEzEy4GSF0+p9vKLX2SfQCIbiAkLQz Ze/VqpJ2MnZcQGlOOlU5SsqiSIGmJrS+ndnT+CD4pGQS7L2QGxfLDQxwlwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOZ8DGHVwFlYRW9D0CFTtfd+GEiyMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvNW53TVlkWEFXVmhGYjBQUUlWTzE5MzRZU0xJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzhjMA0G CSqGSIb3DQEBCwUAA4IBAQB5+uz/oUgy/mrPJrNq9o11B89LHeQmp86ki3kyAQdW DulZZBcN3GgsmSf74jdBbPxQzS/9LA5eFLh/LSjyOSmZWyG3j82dAxx6+W/fbZGp RHPin/FzE4TFGIDZtXKHWFR1yXhNLmBQBAkX7YCgyxM1Y/+6s7yOGF8W/taoXdFM xMFWbLX7iIjQGTh7UYXKyZciuO6zwf5gY6etIVA8NVLlY+gvWCOpsUaC0kh51RPN QgwVP+ONsh8jALcK8H0iHD5V/pHzQ8dU4XHv5Txi2eQGOnaZICy9tbyeWdFH/KJd ioxAJqxSAR1SYXAfuxihxtJ1r+IdVTdGD6O2vQabCkQf -----END CERTIFICATE-----Generated at Wed Dec 3 17:36:09 2025 by rpki-client