This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/GRUm5GfHveJTzU1B2lLlNjHppf0.roa File: GRUm5GfHveJTzU1B2lLlNjHppf0.roa (raw, json) Hash identifier: HpFsl8NX4L5xu5KdGRgJKlork7owVsbMFMY53HnY6Sw= Subject key identifier: 19:15:26:E4:67:C7:BD:E2:53:CD:4D:41:DA:52:E5:36:31:E9:A5:FD Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2 Certificate serial: 019B7AC955EF594B2835CD2861BD18EFEA0B Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/GRUm5GfHveJTzU1B2lLlNjHppf0.roa Signing time: Thu 01 Jan 2026 18:19:33 +0000 ROA not before: Thu 01 Jan 2026 18:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212109 IP address blocks: 5.59.182.0/24 maxlen: 24 5.59.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.mft rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:55:ef:59:4b:28:35:cd:28:61:bd:18:ef:ea:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2 Validity Not Before: Jan 1 18:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=191526e467c7bde253cd4d41da52e53631e9a5fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:01:3a:92:ec:96:ab:35:87:65:84:4f:2d:18: 90:67:f6:0d:c0:16:00:48:80:a8:13:e5:b7:91:0f: 11:4b:97:48:a6:28:d9:7f:9b:c3:ec:b8:98:ae:73: b0:50:6c:f4:21:5e:41:c8:58:51:a2:46:8c:b3:94: ae:b9:95:f3:fb:6b:cd:53:05:c9:34:af:b2:14:71: 0a:df:a4:61:96:60:6b:7a:63:21:29:07:25:d5:0f: 3a:45:25:1e:cc:50:f5:90:23:35:e1:0c:d7:28:04: be:bf:36:10:5f:4b:c8:b2:a1:38:b6:88:ed:ff:12: 25:13:d0:58:77:09:0b:52:a7:ed:e1:fb:52:6f:5c: 89:2c:8b:25:95:50:c0:c4:58:fd:0c:de:12:85:22: 00:89:3c:d0:17:8b:62:10:10:cf:22:17:a0:1c:19: 23:23:d8:d1:85:68:41:44:b7:c5:6f:f9:41:c9:9f: d7:f9:8a:88:fd:e8:d7:9d:39:c2:80:04:b0:6a:56: b9:ca:80:4d:c8:24:5a:c4:a5:19:89:bb:91:29:cc: cc:e1:d4:76:4e:54:57:e3:a1:75:98:63:88:54:76: a7:aa:41:4a:20:63:5d:34:4a:f5:ab:c1:40:2b:e5: 6f:e8:86:5c:c9:e1:32:bf:8e:2e:f8:d7:69:a7:d3: 35:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:15:26:E4:67:C7:BD:E2:53:CD:4D:41:DA:52:E5:36:31:E9:A5:FD X509v3 Authority Key Identifier: keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/GRUm5GfHveJTzU1B2lLlNjHppf0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.59.182.0/24 5.59.241.0/24 Signature Algorithm: sha256WithRSAEncryption b8:83:48:26:91:41:9f:cf:c0:2e:b1:3a:99:ca:c9:f5:c8:f4: d5:64:a4:62:4a:a4:df:73:00:39:6a:7a:d9:9b:40:03:37:bc: f5:7f:3a:c8:a2:57:c5:b8:f6:da:e2:0a:db:50:3a:61:e6:1d: 80:ff:de:03:23:0e:f9:71:08:bb:ca:fc:e2:5f:60:1a:ff:67: c6:94:b3:a5:2d:d7:b2:1b:68:bf:7f:a2:e1:10:d1:08:d8:d3: 51:0e:e8:84:fa:3e:64:56:a5:ed:da:d5:24:7d:5a:d2:54:59: 94:8c:17:df:80:84:10:42:1c:19:db:bb:e7:54:53:68:9e:3d: 73:69:7e:3d:e8:d9:4f:b0:c3:e1:cd:2d:b9:78:49:50:b5:64: 47:28:b1:19:1d:12:63:ba:b8:5a:e4:55:60:e3:ad:e4:02:14: 4f:b2:ec:fc:96:92:15:53:c4:2f:26:8e:bd:f3:ce:95:fb:12: 58:fa:84:58:58:57:12:d9:ac:8a:5b:b2:1e:8b:d7:96:48:34: cf:b9:c4:20:50:6a:d6:f4:b3:c3:50:29:00:d2:8e:01:31:dc: 2b:b0:f9:c0:9e:99:45:cd:e2:21:24:55:2c:20:d9:56:db:8e: 6d:0d:fe:69:12:33:fe:68:21:83:4f:c4:42:7b:ea:1f:0a:5c: 89:05:5e:71 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yVXvWUsoNc0oYb0Y7+oLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5NDgxMTE5YWZlMWJmZjIyOWZhY2Q0ZWY5YzhjNjFiMGZh YmVhZjIwHhcNMjYwMTAxMTgxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOTE1MjZlNDY3YzdiZGUyNTNjZDRkNDFkYTUyZTUzNjMxZTlhNWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgE6kuyWqzWHZYRPLRiQZ/YNwBYA SICoE+W3kQ8RS5dIpijZf5vD7LiYrnOwUGz0IV5ByFhRokaMs5SuuZXz+2vNUwXJ NK+yFHEK36RhlmBremMhKQcl1Q86RSUezFD1kCM14QzXKAS+vzYQX0vIsqE4tojt /xIlE9BYdwkLUqft4ftSb1yJLIsllVDAxFj9DN4ShSIAiTzQF4tiEBDPIhegHBkj I9jRhWhBRLfFb/lByZ/X+YqI/ejXnTnCgASwala5yoBNyCRaxKUZibuRKczM4dR2 TlRX46F1mGOIVHanqkFKIGNdNEr1q8FAK+Vv6IZcyeEyv44u+Ndpp9M1nQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBkVJuRnx73iU81NQdpS5TYx6aX9MB8GA1UdIwQY MBaAFLlIERmv4b/yKfrNTvnIxhsPq+ryMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAt OWI5YmNlMTVlMGM2LzEvR1JVbTVHZkh2ZUpUelUxQjJsTGxOakhwcGYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAtOWI5YmNlMTVlMGM2 LzEvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABTu2AwQA BTvxMA0GCSqGSIb3DQEBCwUAA4IBAQC4g0gmkUGfz8AusTqZysn1yPTVZKRiSqTf cwA5anrZm0ADN7z1fzrIolfFuPba4grbUDph5h2A/94DIw75cQi7yvziX2Aa/2fG lLOlLdeyG2i/f6LhENEI2NNRDuiE+j5kVqXt2tUkfVrSVFmUjBffgIQQQhwZ27vn VFNonj1zaX496NlPsMPhzS25eElQtWRHKLEZHRJjurha5FVg463kAhRPsuz8lpIV U8QvJo69886V+xJY+oRYWFcS2ayKW7Iei9eWSDTPucQgUGrW9LPDUCkA0o4BMdwr sPnAnplFzeIhJFUsINlW245tDf5pEjP+aCGDT8RCe+ofClyJBV5x -----END CERTIFICATE-----Generated at Mon Jan 12 00:47:54 2026 by rpki-client