This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/5zwZDxIuULUKjp1rgcwRTBY-pVU.roa File: 5zwZDxIuULUKjp1rgcwRTBY-pVU.roa (raw, json) Hash identifier: mUMWXUGRFNqTfVs8CnS61wDQkaxlvFmZ/n69Cmi6CP8= Subject key identifier: E7:3C:19:0F:12:2E:50:B5:0A:8E:9D:6B:81:CC:11:4C:16:3E:A5:55 Certificate issuer: /CN=79a1cf1aa8fbc4e33378673ebd05364880e2a91f Certificate serial: 019B791122E7BC48FF3C9FB26A87B7AA176D Authority key identifier: 79:A1:CF:1A:A8:FB:C4:E3:33:78:67:3E:BD:05:36:48:80:E2:A9:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaHPGqj7xOMzeGc-vQU2SIDiqR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/5zwZDxIuULUKjp1rgcwRTBY-pVU.roa Signing time: Thu 01 Jan 2026 10:18:44 +0000 ROA not before: Thu 01 Jan 2026 10:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 553 IP address blocks: 141.87.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/eaHPGqj7xOMzeGc-vQU2SIDiqR8.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/eaHPGqj7xOMzeGc-vQU2SIDiqR8.mft rsync://rpki.ripe.net/repository/DEFAULT/eaHPGqj7xOMzeGc-vQU2SIDiqR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:22:e7:bc:48:ff:3c:9f:b2:6a:87:b7:aa:17:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79a1cf1aa8fbc4e33378673ebd05364880e2a91f Validity Not Before: Jan 1 10:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e73c190f122e50b50a8e9d6b81cc114c163ea555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:85:2e:3f:a1:a9:67:4f:fd:7b:37:e6:a9:42: f4:d6:05:6f:04:57:22:f3:99:c0:03:e2:3b:5c:44: fa:d4:66:2a:33:5d:b5:9f:6a:2a:81:39:3f:a3:1b: ca:e1:c7:a8:f8:b2:de:67:31:3e:7b:09:b6:ef:7f: d0:51:c8:c1:f3:e6:8c:46:08:49:9d:71:57:f4:24: 6d:e9:3f:73:08:84:df:62:1e:83:c1:4d:ad:6b:1a: c1:69:fc:5e:6b:e7:39:6e:ef:7d:58:23:09:58:7c: ed:56:aa:0b:ac:62:fb:93:3c:d1:7c:a3:93:3b:77: 39:73:98:c8:a3:cc:2a:27:9f:aa:6e:29:4a:d2:27: 1d:5d:c8:1b:f4:6e:9c:2e:cf:b8:5e:75:fe:81:bb: ba:24:4f:36:05:c4:59:7b:4d:db:75:2a:46:35:35: 97:41:30:09:b9:26:8e:c4:22:2a:b3:c2:66:fe:ee: c4:87:ca:fa:48:80:e9:32:73:3c:60:23:78:4a:67: f1:44:df:b5:70:7a:40:c8:f8:e7:b0:05:54:96:dc: ac:23:2d:2c:ae:3c:71:30:56:2a:de:8c:14:99:8b: a8:c2:1f:68:4b:84:89:9c:6b:12:ae:fa:43:03:bf: 58:31:94:c9:aa:d1:9c:9a:5e:11:59:d8:0b:a7:59: 85:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3C:19:0F:12:2E:50:B5:0A:8E:9D:6B:81:CC:11:4C:16:3E:A5:55 X509v3 Authority Key Identifier: keyid:79:A1:CF:1A:A8:FB:C4:E3:33:78:67:3E:BD:05:36:48:80:E2:A9:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaHPGqj7xOMzeGc-vQU2SIDiqR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/5zwZDxIuULUKjp1rgcwRTBY-pVU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/eaHPGqj7xOMzeGc-vQU2SIDiqR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.87.0.0/16 Signature Algorithm: sha256WithRSAEncryption 78:2e:22:79:b3:22:ce:d1:55:55:de:4a:82:2e:33:c2:d0:86: b7:65:92:6f:81:3b:74:4e:eb:b7:d3:8f:34:9d:17:0e:c1:42: 28:39:01:ae:11:fa:8a:db:1e:6d:81:10:9b:d2:53:bd:6f:7c: 75:06:e1:ca:9e:48:88:47:b9:c3:bb:69:44:dd:02:d2:fa:a8: db:ee:54:53:ab:f2:50:1f:b5:90:2d:de:cc:2c:8c:a3:9f:43: 6e:58:eb:17:15:8b:41:68:48:46:0b:4d:3e:3f:ef:19:c2:ff: 2b:0f:21:cd:71:e2:cf:1a:6f:54:6d:ed:9f:06:f0:a8:2e:57: c9:3d:77:df:3b:6e:0e:c5:b5:48:ae:f8:e9:58:a2:2f:4b:44: 39:67:55:ab:53:aa:ff:a3:99:3f:f9:25:1c:79:79:fa:5f:08: 9b:f3:ce:49:02:cf:42:ed:91:82:ed:36:47:ff:17:3e:04:8a: e5:fc:c4:73:34:db:c9:ad:99:f6:99:90:82:34:25:35:61:ee: 4e:d7:5c:21:b9:5c:ae:5b:65:95:3b:55:2c:69:25:0d:ef:85: 51:e2:c6:98:9e:01:a0:db:77:36:42:03:78:48:51:14:9b:ff: 4a:ee:30:b6:77:cd:54:97:78:ba:c6:59:f9:e4:1b:d8:e1:41: 3f:9d:eb:b3 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt5ESLnvEj/PJ+yaoe3qhdtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5YTFjZjFhYThmYmM0ZTMzMzc4NjczZWJkMDUzNjQ4ODBl MmE5MWYwHhcNMjYwMTAxMTAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzNjMTkwZjEyMmU1MGI1MGE4ZTlkNmI4MWNjMTE0YzE2M2VhNTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIUuP6GpZ0/9ezfmqUL01gVvBFci 85nAA+I7XET61GYqM121n2oqgTk/oxvK4ceo+LLeZzE+ewm273/QUcjB8+aMRghJ nXFX9CRt6T9zCITfYh6DwU2taxrBafxea+c5bu99WCMJWHztVqoLrGL7kzzRfKOT O3c5c5jIo8wqJ5+qbilK0icdXcgb9G6cLs+4XnX+gbu6JE82BcRZe03bdSpGNTWX QTAJuSaOxCIqs8Jm/u7Eh8r6SIDpMnM8YCN4SmfxRN+1cHpAyPjnsAVUltysIy0s rjxxMFYq3owUmYuowh9oS4SJnGsSrvpDA79YMZTJqtGcml4RWdgLp1mFnQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFOc8GQ8SLlC1Co6da4HMEUwWPqVVMB8GA1UdIwQY MBaAFHmhzxqo+8TjM3hnPr0FNkiA4qkfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWFIUEdxajd4T016ZUdjLXZRVTJTSURpcVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9kZjViYWQtYWM1OS00MTNlLTlhZDAt NTk5NWFlOGFjYjlmLzEvNXp3WkR4SXVVTFVLanAxcmdjd1JUQlktcFZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9kZjViYWQtYWM1OS00MTNlLTlhZDAtNTk5NWFlOGFjYjlm LzEvZWFIUEdxajd4T016ZUdjLXZRVTJTSURpcVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjVcwDQYJ KoZIhvcNAQELBQADggEBAHguInmzIs7RVVXeSoIuM8LQhrdlkm+BO3RO67fTjzSd Fw7BQig5Aa4R+orbHm2BEJvSU71vfHUG4cqeSIhHucO7aUTdAtL6qNvuVFOr8lAf tZAt3swsjKOfQ25Y6xcVi0FoSEYLTT4/7xnC/ysPIc1x4s8ab1Rt7Z8G8KguV8k9 d987bg7FtUiu+OlYoi9LRDlnVatTqv+jmT/5JRx5efpfCJvzzkkCz0LtkYLtNkf/ Fz4EiuX8xHM028mtmfaZkII0JTVh7k7XXCG5XK5bZZU7VSxpJQ3vhVHixpieAaDb dzZCA3hIURSb/0ruMLZ3zVSXeLrGWfnkG9jhQT+d67M= -----END CERTIFICATE-----Generated at Mon Feb 2 08:09:20 2026 by rpki-client