This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/U5hNsQftk4jBhJgnSzltEs40yws.roa File: U5hNsQftk4jBhJgnSzltEs40yws.roa (raw, json) Hash identifier: jWVB1YgLR+kF+eVobGpNuE5qTeNqPRhYvBtHFviVz60= Subject key identifier: 53:98:4D:B1:07:ED:93:88:C1:84:98:27:4B:39:6D:12:CE:34:CB:0B Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8C3EBCD21D237B39FB80BE243EFD8 Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/U5hNsQftk4jBhJgnSzltEs40yws.roa Signing time: Thu 01 Jan 2026 18:18:56 +0000 ROA not before: Thu 01 Jan 2026 18:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42663 IP address blocks: 213.175.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:c3:eb:cd:21:d2:37:b3:9f:b8:0b:e2:43:ef:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53984db107ed9388c18498274b396d12ce34cb0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ad:43:70:5c:e9:5f:93:91:99:b1:33:59:58: 1a:e6:1d:df:8e:bb:eb:0e:ae:db:7f:dd:ec:41:0e: 2b:f3:6c:20:f4:d8:1a:b7:22:c6:74:95:ff:c8:99: eb:51:34:8d:4f:14:fa:b1:cb:1b:4a:6d:9e:e9:52: 12:43:b6:02:af:1b:47:2b:47:9a:2f:ae:99:b1:64: 40:fe:c6:28:18:e4:69:0f:b1:f6:53:3a:e4:58:55: 99:35:b0:0a:5b:46:93:df:af:9d:c4:da:72:df:79: cd:ef:35:56:16:2c:23:3d:d9:72:19:ba:9e:4f:e7: 50:8b:c3:93:f6:99:1b:a0:b6:97:6a:2c:80:a7:09: 93:6b:15:12:a9:92:27:a4:f9:0d:73:d3:77:ca:18: a7:c7:6e:47:00:14:25:22:88:af:21:ca:f4:8c:97: 7d:cb:5f:47:b7:6d:05:37:61:c2:cb:34:61:de:b2: 91:b5:3a:aa:e3:fb:27:eb:c7:9a:89:bc:90:2b:fc: 92:26:ca:c0:6e:fa:21:b5:57:4a:25:0d:68:64:3d: 94:eb:8c:23:7f:36:4a:bf:de:00:31:2f:7b:14:86: fd:c4:47:d0:3a:b7:41:df:4e:65:9b:de:17:c7:4c: 20:20:3d:c7:28:8a:eb:c0:f0:5c:f0:5b:c2:6b:77: f7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:98:4D:B1:07:ED:93:88:C1:84:98:27:4B:39:6D:12:CE:34:CB:0B X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/U5hNsQftk4jBhJgnSzltEs40yws.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.175.78.0/24 Signature Algorithm: sha256WithRSAEncryption 00:66:0c:9e:ac:58:03:fa:21:7b:d1:87:40:9a:23:98:14:db: 41:2a:8f:45:9a:f6:c6:d8:07:6f:18:91:b4:f5:77:6e:93:f4: 51:31:e4:37:77:e4:b0:9d:ab:c4:ea:1a:1f:ae:84:0c:49:fd: b7:54:cd:46:d9:56:52:7b:84:f3:cd:74:79:eb:ed:ab:8d:08: 24:70:1e:56:fa:be:c1:64:1c:65:b0:18:07:53:27:69:dc:dc: c0:f3:32:c0:8c:27:17:36:46:6f:92:e6:25:e8:eb:02:dc:a0: e9:8c:51:6f:ef:b2:31:be:02:86:df:4b:77:29:30:f6:61:1a: bc:2a:62:7f:5f:2e:ff:c1:b3:96:da:76:01:17:ef:27:59:96: 78:a5:71:4d:6c:a6:2d:e1:48:86:4c:e4:ea:05:64:9c:fb:e8: c9:48:6a:f0:1a:28:ab:06:72:dd:fb:8c:89:27:36:33:32:c9: c2:bb:6f:0d:c8:9c:52:60:97:85:f4:54:bb:e3:dc:e9:b9:5b: a2:d6:11:6f:12:1a:6b:2e:7e:9d:94:98:98:e1:c0:c5:3f:07: 8e:44:2f:02:b5:89:1c:a2:60:1a:0a:70:dc:52:d4:76:68:f8: 42:f7:a2:2f:ab:cb:21:b5:cc:fe:c1:bd:50:07:ad:1a:fe:ea: 8c:86:b0:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yMPrzSHSN7OfuAviQ+/YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mzk4NGRiMTA3ZWQ5Mzg4YzE4NDk4Mjc0YjM5NmQxMmNlMzRjYjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu61DcFzpX5ORmbEzWVga5h3fjrvr Dq7bf93sQQ4r82wg9NgatyLGdJX/yJnrUTSNTxT6scsbSm2e6VISQ7YCrxtHK0ea L66ZsWRA/sYoGORpD7H2UzrkWFWZNbAKW0aT36+dxNpy33nN7zVWFiwjPdlyGbqe T+dQi8OT9pkboLaXaiyApwmTaxUSqZInpPkNc9N3yhinx25HABQlIoivIcr0jJd9 y19Ht20FN2HCyzRh3rKRtTqq4/sn68eaibyQK/ySJsrAbvohtVdKJQ1oZD2U64wj fzZKv94AMS97FIb9xEfQOrdB305lm94Xx0wgID3HKIrrwPBc8FvCa3f3bQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFOYTbEH7ZOIwYSYJ0s5bRLONMsLMB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvVTVoTnNRZnRrNGpCaEpnblN6bHRFczQweXdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1a9OMA0G CSqGSIb3DQEBCwUAA4IBAQAAZgyerFgD+iF70YdAmiOYFNtBKo9FmvbG2AdvGJG0 9Xduk/RRMeQ3d+SwnavE6hofroQMSf23VM1G2VZSe4TzzXR56+2rjQgkcB5W+r7B ZBxlsBgHUydp3NzA8zLAjCcXNkZvkuYl6OsC3KDpjFFv77IxvgKG30t3KTD2YRq8 KmJ/Xy7/wbOW2nYBF+8nWZZ4pXFNbKYt4UiGTOTqBWSc++jJSGrwGiirBnLd+4yJ JzYzMsnCu28NyJxSYJeF9FS749zpuVui1hFvEhprLn6dlJiY4cDFPweORC8CtYkc omAaCnDcUtR2aPhC96Ivq8shtcz+wb1QB60a/uqMhrD2 -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:05 2026 by rpki-client