This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/U5rSDmrf4PlzCLlDWaskjjffVr0.roa File: U5rSDmrf4PlzCLlDWaskjjffVr0.roa (raw, json) Hash identifier: vcOPT76+F+1LBT6UYH+sea2r4OZXBrlNwePW6nY/XiU= Subject key identifier: 53:9A:D2:0E:6A:DF:E0:F9:73:08:B9:43:59:AB:24:8E:37:DF:56:BD Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24 Certificate serial: 019B78A32A5E7BA51F5915030858DAE3FDBA Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/U5rSDmrf4PlzCLlDWaskjjffVr0.roa Signing time: Thu 01 Jan 2026 08:18:37 +0000 ROA not before: Thu 01 Jan 2026 08:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12129 IP address blocks: 147.189.140.0/24 maxlen: 24 176.111.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:2a:5e:7b:a5:1f:59:15:03:08:58:da:e3:fd:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24 Validity Not Before: Jan 1 08:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=539ad20e6adfe0f97308b94359ab248e37df56bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:96:f8:80:16:aa:5a:4c:ae:aa:f7:2e:f5:4c: 1f:38:d5:7f:74:fd:e4:9b:6a:a0:7a:5c:c1:05:f8: 0f:a8:26:11:ff:de:2f:c9:84:e2:19:d2:e4:a1:61: 79:7d:4b:18:78:2a:1d:0e:c1:4f:37:13:af:20:41: 5d:ce:55:28:92:ef:38:28:14:d9:bf:9e:40:67:03: 33:f4:03:3c:b0:c6:a0:26:82:b6:32:bd:01:79:cb: f1:b6:87:63:cd:1f:02:64:47:28:5b:55:6b:55:92: 0b:be:ea:c9:50:7d:d3:22:a1:95:5f:87:54:73:05: 5a:77:2d:5b:e3:d1:a7:a3:03:58:e8:c0:4d:2a:66: ed:41:57:03:5c:58:47:54:c1:de:e5:ff:35:a5:b8: 0a:2c:14:dc:11:97:06:b4:51:b1:e1:6d:b8:2f:7a: b7:83:ff:b7:9c:93:a1:ba:1f:7e:1e:1f:38:2f:bd: 1d:84:d8:67:80:3f:9d:8d:81:7f:06:56:1b:f5:66: d4:9e:6c:c1:7f:7c:10:a4:a6:15:37:fb:9f:4d:9f: 46:ba:12:a6:9b:90:00:b7:46:e6:f9:49:8e:ca:d7: 62:34:02:4f:dd:5f:bd:9c:c9:d3:a5:f8:1b:ff:7e: c1:27:c9:8c:dc:ec:b4:c0:1f:a5:5b:84:18:d7:27: 20:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9A:D2:0E:6A:DF:E0:F9:73:08:B9:43:59:AB:24:8E:37:DF:56:BD X509v3 Authority Key Identifier: keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/U5rSDmrf4PlzCLlDWaskjjffVr0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.189.140.0/24 176.111.221.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:02:4c:0c:90:d6:0c:66:aa:85:71:0b:3a:3f:c9:1f:f4:06: cf:25:66:b5:75:c6:26:d2:60:62:58:df:e9:2f:74:5a:26:15: a0:09:f2:f4:c9:d4:cd:60:0c:a3:70:04:a7:be:47:42:f1:72: f6:9f:32:78:eb:1d:cb:03:22:c7:42:7f:23:fc:26:73:67:9c: a8:67:dd:96:1c:c8:cb:85:7c:69:a8:06:f5:d9:b8:01:80:f5: a2:1f:23:8e:6e:ac:17:f3:b2:69:2e:04:ca:93:76:53:75:bb: 00:35:23:d6:9c:e3:91:90:2d:02:b9:cb:a9:c6:75:24:b1:25: dc:ea:f3:7a:8d:99:a0:27:23:44:f4:92:9d:e6:48:b9:0d:f1: 9d:17:8d:72:45:01:92:2f:e1:ca:58:d5:26:60:ad:ee:cf:43: f8:f1:ee:11:a3:a9:f5:19:9c:79:dd:55:c3:64:4e:f1:6e:3c: bd:fa:c1:11:e2:0c:29:c9:84:ee:2a:8a:2f:3a:10:bd:9c:1c: 63:c3:e5:75:88:82:69:ee:30:de:e6:a9:94:ea:40:e3:7e:8e: 38:5f:0f:80:63:ad:d2:87:78:66:bc:1f:cd:f8:57:a3:5d:b6: c9:1b:53:28:1f:a9:a2:c7:69:38:27:db:95:f3:5e:2d:ee:d6: 1d:50:96:b6 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt4oypee6UfWRUDCFja4/26MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5M2FjNmNkMjI0MDI0OWJiYTYwMTcxZjA4NmU5MTAxY2M4 N2NhMjQwHhcNMjYwMTAxMDgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MzlhZDIwZTZhZGZlMGY5NzMwOGI5NDM1OWFiMjQ4ZTM3ZGY1NmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Zb4gBaqWkyuqvcu9UwfONV/dP3k m2qgelzBBfgPqCYR/94vyYTiGdLkoWF5fUsYeCodDsFPNxOvIEFdzlUoku84KBTZ v55AZwMz9AM8sMagJoK2Mr0BecvxtodjzR8CZEcoW1VrVZILvurJUH3TIqGVX4dU cwVady1b49GnowNY6MBNKmbtQVcDXFhHVMHe5f81pbgKLBTcEZcGtFGx4W24L3q3 g/+3nJOhuh9+Hh84L70dhNhngD+djYF/BlYb9WbUnmzBf3wQpKYVN/ufTZ9GuhKm m5AAt0bm+UmOytdiNAJP3V+9nMnTpfgb/37BJ8mM3Oy0wB+lW4QY1ycgIQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFFOa0g5q3+D5cwi5Q1mrJI4331a9MB8GA1UdIwQY MBaAFPk6xs0iQCSbumAXHwhukQHMh8okMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1Uckd6U0pBSkp1NllCY2ZDRzZSQWN5SHlpUS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvYjAzMjEzLTVlODAtNDkzMS04MWNl LWY3NTJkODE2MDVmYi8xL1U1clNEbXJmNFBsekNMbERXYXNrampmZlZyMC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOTgvYjAzMjEzLTVlODAtNDkzMS04MWNlLWY3NTJkODE2MDVm Yi8xLzEtVHJHelNKQUpKdTZZQmNmQ0c2UkFjeUh5aVEuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBACTvYwD BACwb90wDQYJKoZIhvcNAQELBQADggEBAI4CTAyQ1gxmqoVxCzo/yR/0Bs8lZrV1 xibSYGJY3+kvdFomFaAJ8vTJ1M1gDKNwBKe+R0LxcvafMnjrHcsDIsdCfyP8JnNn nKhn3ZYcyMuFfGmoBvXZuAGA9aIfI45urBfzsmkuBMqTdlN1uwA1I9ac45GQLQK5 y6nGdSSxJdzq83qNmaAnI0T0kp3mSLkN8Z0XjXJFAZIv4cpY1SZgre7PQ/jx7hGj qfUZnHndVcNkTvFuPL36wRHiDCnJhO4qii86EL2cHGPD5XWIgmnuMN7mqZTqQON+ jjhfD4BjrdKHeGa8H834V6NdtskbUygfqaLHaTgn25XzXi3u1h1QlrY= -----END CERTIFICATE-----Generated at Fri Jan 23 04:01:21 2026 by rpki-client