This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/2-5KrVXjH6eEZSodttKuQguzdvY.roa File: 2-5KrVXjH6eEZSodttKuQguzdvY.roa (raw, json) Hash identifier: XmDzvGkMNalxbWNFOkKZfG0r/SFAaUoj/XtwKlCaXKo= Subject key identifier: DB:EE:4A:AD:55:E3:1F:A7:84:65:2A:1D:B6:D2:AE:42:0B:B3:76:F6 Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3 Certificate serial: 019B7CECFC62F573A1F6F1014879808CE136 Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/2-5KrVXjH6eEZSodttKuQguzdvY.roa Signing time: Fri 02 Jan 2026 04:17:44 +0000 ROA not before: Fri 02 Jan 2026 04:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8700 IP address blocks: 195.251.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.mft rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:fc:62:f5:73:a1:f6:f1:01:48:79:80:8c:e1:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3 Validity Not Before: Jan 2 04:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbee4aad55e31fa784652a1db6d2ae420bb376f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:df:23:6f:be:24:ef:c5:b2:b0:9d:b2:78:30: 65:da:59:fc:29:53:e0:ec:1c:fb:77:ad:41:f9:c5: 26:76:82:9e:5e:21:ef:64:dc:57:ba:c5:40:3b:a6: 30:91:ae:df:96:f7:05:14:60:e5:71:6b:be:93:05: 9f:e6:95:e3:9c:cb:87:ea:e3:d0:11:e7:7e:74:ce: 64:a4:ca:fc:36:3d:cf:ca:25:81:16:79:25:d5:62: f5:da:b7:40:fd:19:b8:43:01:92:fc:49:ef:1c:b3: 75:53:66:c8:06:90:fe:3f:d2:44:d2:c4:ca:15:b4: e4:12:ad:57:d7:74:16:c1:46:a9:89:a3:a2:bb:1c: a7:00:c4:b8:59:60:8e:b4:fa:72:b9:4c:d4:95:22: ad:71:c8:b4:a4:ef:74:e2:8a:23:05:ed:00:5a:ae: 72:bd:76:e7:e9:8b:ca:df:07:fd:48:7d:fc:9a:c6: 45:8b:27:04:26:c8:44:4b:d2:67:f3:f0:7b:f7:1d: 85:09:a5:00:6c:06:5a:59:a9:d1:dc:fd:7d:44:fb: 90:06:02:d0:6e:7a:b4:e5:81:e4:b8:a7:97:cc:1d: a3:fc:74:95:69:81:e7:a2:7e:b3:0a:99:de:c4:86: 0d:6c:5b:4d:d9:45:52:6f:73:f9:0f:17:e0:22:ea: 67:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:EE:4A:AD:55:E3:1F:A7:84:65:2A:1D:B6:D2:AE:42:0B:B3:76:F6 X509v3 Authority Key Identifier: keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/2-5KrVXjH6eEZSodttKuQguzdvY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.251.124.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:e4:cc:1b:4f:31:70:5c:a6:b3:6c:25:21:c3:54:66:c8:b6: 9a:ed:a1:0d:cb:08:c9:b6:af:0e:00:65:e9:ab:5c:a6:fe:38: 69:72:59:d3:ae:31:2a:ae:e8:d4:16:0a:4a:64:97:34:e0:50: dc:e8:ea:eb:a4:5e:3b:01:f5:b1:87:4b:e3:03:6a:af:a1:c0: 33:ed:4c:44:04:5a:5f:f7:cb:6e:f9:b9:a1:2d:93:3d:7a:b7: 4a:f5:c7:4f:df:cb:9b:be:9a:52:f0:2e:28:cf:b4:35:8e:a9: 36:75:c6:0d:14:00:22:96:5f:06:59:d0:3a:db:e3:75:f6:69: a1:49:d6:c3:b6:c6:9a:a2:4d:4b:24:6c:95:1a:b8:7e:9a:2a: f7:21:79:50:22:48:0f:74:1c:8b:8d:90:7a:7d:35:65:59:f3: 81:06:5c:99:18:35:ae:39:54:00:d4:14:32:05:6e:00:32:7a: be:42:80:4c:08:67:01:f5:95:b2:c9:1d:4e:02:a0:92:ce:ce: 2d:04:53:ec:4e:09:8f:67:d1:ae:ec:2e:9a:7c:99:43:da:14: 53:42:41:1e:24:50:a2:cd:a0:b4:db:07:7c:65:6d:df:2e:2e: 15:ac:5c:1b:fa:9a:6e:93:61:f6:5c:77:c7:69:20:40:fc:cd: c3:1d:c5:88 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87Pxi9XOh9vEBSHmAjOE2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhNmY5Mjk1NTIxZGYzMGExNThmNTA2YmE3Y2I4NzNhYjk1 MjlkYzMwHhcNMjYwMTAyMDQxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmVlNGFhZDU1ZTMxZmE3ODQ2NTJhMWRiNmQyYWU0MjBiYjM3NmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA498jb74k78WysJ2yeDBl2ln8KVPg 7Bz7d61B+cUmdoKeXiHvZNxXusVAO6Ywka7flvcFFGDlcWu+kwWf5pXjnMuH6uPQ Eed+dM5kpMr8Nj3PyiWBFnkl1WL12rdA/Rm4QwGS/EnvHLN1U2bIBpD+P9JE0sTK FbTkEq1X13QWwUapiaOiuxynAMS4WWCOtPpyuUzUlSKtcci0pO904oojBe0AWq5y vXbn6YvK3wf9SH38msZFiycEJshES9Jn8/B79x2FCaUAbAZaWanR3P19RPuQBgLQ bnq05YHkuKeXzB2j/HSVaYHnon6zCpnexIYNbFtN2UVSb3P5DxfgIupnswIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNvuSq1V4x+nhGUqHbbSrkILs3b2MB8GA1UdIwQY MBaAFFpvkpVSHfMKFY9Qa6fLhzq5Up3DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV20tU2xWSWQ4d29WajFCcnA4dUhPcmxTbmNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWY5M2ItYmUzMS00NWNmLWFhN2Ut YWFhNDU1M2QyYWJkLzEvMi01S3JWWGpINmVFWlNvZHR0S3VRZ3V6ZHZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWY5M2ItYmUzMS00NWNmLWFhN2UtYWFhNDU1M2QyYWJk LzEvV20tU2xWSWQ4d29WajFCcnA4dUhPcmxTbmNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw/t8MA0G CSqGSIb3DQEBCwUAA4IBAQBb5MwbTzFwXKazbCUhw1RmyLaa7aENywjJtq8OAGXp q1ym/jhpclnTrjEqrujUFgpKZJc04FDc6OrrpF47AfWxh0vjA2qvocAz7UxEBFpf 98tu+bmhLZM9erdK9cdP38ubvppS8C4oz7Q1jqk2dcYNFAAill8GWdA62+N19mmh SdbDtsaaok1LJGyVGrh+mir3IXlQIkgPdByLjZB6fTVlWfOBBlyZGDWuOVQA1BQy BW4AMnq+QoBMCGcB9ZWyyR1OAqCSzs4tBFPsTgmPZ9Gu7C6afJlD2hRTQkEeJFCi zaC02wd8ZW3fLi4VrFwb+ppuk2H2XHfHaSBA/M3DHcWI -----END CERTIFICATE-----Generated at Mon Feb 2 09:39:29 2026 by rpki-client