This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/ac0950-2273-4ee1-a830-422e6d3fe93e/1/A5XOJbTaPmRGoTvKxuzub_rL6N0.roa File: A5XOJbTaPmRGoTvKxuzub_rL6N0.roa (raw, json) Hash identifier: FAOba0SQ0llUhsUnpDnHyFWPVUFSFyEFJ1WvGVy5f9I= Subject key identifier: 03:95:CE:25:B4:DA:3E:64:46:A1:3B:CA:C6:EC:EE:6F:FA:CB:E8:DD Certificate issuer: /CN=499f03e48ed62a96840eb2f2d79c3ec21a27f1ce Certificate serial: 019B7BA3E20AFFCD440CEE1292784EE93315 Authority key identifier: 49:9F:03:E4:8E:D6:2A:96:84:0E:B2:F2:D7:9C:3E:C2:1A:27:F1:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SZ8D5I7WKpaEDrLy15w-whon8c4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/ac0950-2273-4ee1-a830-422e6d3fe93e/1/A5XOJbTaPmRGoTvKxuzub_rL6N0.roa Signing time: Thu 01 Jan 2026 22:18:16 +0000 ROA not before: Thu 01 Jan 2026 22:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15930 IP address blocks: 89.18.128.0/19 maxlen: 19 89.18.128.0/21 maxlen: 21 89.18.136.0/21 maxlen: 21 89.18.143.0/24 maxlen: 24 89.18.144.0/21 maxlen: 21 89.18.152.0/21 maxlen: 21 89.18.156.0/24 maxlen: 24 89.18.159.0/24 maxlen: 24 185.24.180.0/22 maxlen: 22 185.24.180.0/24 maxlen: 24 2a00:65a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/ac0950-2273-4ee1-a830-422e6d3fe93e/1/SZ8D5I7WKpaEDrLy15w-whon8c4.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/ac0950-2273-4ee1-a830-422e6d3fe93e/1/SZ8D5I7WKpaEDrLy15w-whon8c4.mft rsync://rpki.ripe.net/repository/DEFAULT/SZ8D5I7WKpaEDrLy15w-whon8c4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:e2:0a:ff:cd:44:0c:ee:12:92:78:4e:e9:33:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=499f03e48ed62a96840eb2f2d79c3ec21a27f1ce Validity Not Before: Jan 1 22:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0395ce25b4da3e6446a13bcac6ecee6ffacbe8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d2:14:42:8b:83:f3:8c:28:50:f9:0b:14:15: 3d:6b:80:44:71:b9:4a:b3:9e:01:4d:4b:68:02:0b: b6:e3:bb:5f:bb:0f:9e:ab:ce:75:c7:ee:03:5f:48: 62:1e:0f:6d:65:ec:bc:c7:cb:d0:83:c7:36:a7:fd: 98:bd:68:56:a5:24:a5:9f:12:46:3e:09:d7:d1:37: b2:f0:b9:21:bd:69:db:d1:7c:e5:2f:32:05:dd:e9: 99:a3:3a:a0:6a:5d:61:42:30:23:da:f3:7e:75:39: 71:ff:d6:1e:60:6e:9d:53:18:73:5e:46:09:62:21: 3a:dd:42:4a:e8:7f:24:6f:5e:66:b5:86:c3:9f:7e: c9:3c:f4:54:49:2c:ce:db:e4:3c:12:cc:1e:e4:69: 35:e8:eb:b3:26:3a:db:75:1f:e0:d8:8a:78:d8:78: e9:a9:e8:52:89:89:f3:a6:24:c2:c0:fb:c7:c5:a7: 37:4f:25:cd:57:23:6f:eb:d4:f4:15:8a:8a:2a:bb: 47:bd:e5:48:79:12:81:e9:9b:14:13:da:71:51:aa: 6f:e3:68:98:c9:b6:d0:02:3f:32:c0:dc:9a:43:79: f6:c6:4b:5f:c7:fb:8e:e8:8a:e3:07:71:c1:20:bc: 11:dc:1b:99:a8:ec:d5:03:cc:96:78:c4:86:0b:b7: 45:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:95:CE:25:B4:DA:3E:64:46:A1:3B:CA:C6:EC:EE:6F:FA:CB:E8:DD X509v3 Authority Key Identifier: keyid:49:9F:03:E4:8E:D6:2A:96:84:0E:B2:F2:D7:9C:3E:C2:1A:27:F1:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SZ8D5I7WKpaEDrLy15w-whon8c4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ac0950-2273-4ee1-a830-422e6d3fe93e/1/A5XOJbTaPmRGoTvKxuzub_rL6N0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ac0950-2273-4ee1-a830-422e6d3fe93e/1/SZ8D5I7WKpaEDrLy15w-whon8c4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.18.128.0/19 185.24.180.0/22 IPv6: 2a00:65a0::/32 Signature Algorithm: sha256WithRSAEncryption b1:7d:39:4c:ba:0b:f8:5f:1f:dd:54:85:7b:18:c3:44:ea:f9: 95:5e:5f:0b:f5:e9:29:be:c9:7f:78:d7:9e:1a:ba:0e:47:a1: dc:f5:74:f3:07:be:16:75:55:33:f9:d5:8c:96:0f:9e:16:f7: 86:52:20:33:ce:a9:ba:d8:a5:18:e1:48:58:ad:2a:3f:2c:3f: 29:a1:7b:01:6d:31:ec:70:25:6b:e2:15:95:5d:9e:04:c4:27: 33:4c:e4:d2:56:58:a1:0f:ec:91:52:6c:8a:7f:29:60:16:93: e6:b4:90:e7:dc:37:73:4f:df:fe:29:32:10:85:82:f8:55:47: 6b:dc:6c:f7:64:58:12:75:62:ae:04:06:4c:77:94:cd:fa:b2: 8c:45:c2:46:12:48:ff:2b:0b:51:c7:73:ca:87:40:aa:ce:ae: 9a:40:71:79:06:f8:a4:49:75:80:46:c9:6f:39:ae:c7:69:d1: 74:23:8e:e9:60:af:1d:16:a8:32:44:57:c4:16:9a:8a:28:73: 7d:db:da:5a:ff:2b:fa:9d:e8:a0:a1:df:9a:bd:ad:bc:79:59: 61:43:4e:19:59:ca:97:83:17:3c:b0:f7:cb:d1:4a:39:7f:22: 5a:1c:22:e8:aa:96:17:d3:76:23:cc:bb:f6:d3:cb:05:51:77: 46:fa:cb:95 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7o+IK/81EDO4SknhO6TMVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5OWYwM2U0OGVkNjJhOTY4NDBlYjJmMmQ3OWMzZWMyMWEy N2YxY2UwHhcNMjYwMTAxMjIxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzk1Y2UyNWI0ZGEzZTY0NDZhMTNiY2FjNmVjZWU2ZmZhY2JlOGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNIUQouD84woUPkLFBU9a4BEcblK s54BTUtoAgu247tfuw+eq851x+4DX0hiHg9tZey8x8vQg8c2p/2YvWhWpSSlnxJG PgnX0Tey8LkhvWnb0XzlLzIF3emZozqgal1hQjAj2vN+dTlx/9YeYG6dUxhzXkYJ YiE63UJK6H8kb15mtYbDn37JPPRUSSzO2+Q8Eswe5Gk16OuzJjrbdR/g2Ip42Hjp qehSiYnzpiTCwPvHxac3TyXNVyNv69T0FYqKKrtHveVIeRKB6ZsUE9pxUapv42iY ybbQAj8ywNyaQ3n2xktfx/uO6IrjB3HBILwR3BuZqOzVA8yWeMSGC7dFRwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFAOVziW02j5kRqE7ysbs7m/6y+jdMB8GA1UdIwQY MBaAFEmfA+SO1iqWhA6y8tecPsIaJ/HOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1o4RDVJN1dLcGFFRHJMeTE1dy13aG9uOGM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9hYzA5NTAtMjI3My00ZWUxLWE4MzAt NDIyZTZkM2ZlOTNlLzEvQTVYT0piVGFQbVJHb1R2S3h1enViX3JMNk4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9hYzA5NTAtMjI3My00ZWUxLWE4MzAtNDIyZTZkM2ZlOTNl LzEvU1o4RDVJN1dLcGFFRHJMeTE1dy13aG9uOGM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQFWRKAAwQC uRi0MA0EAgACMAcDBQAqAGWgMA0GCSqGSIb3DQEBCwUAA4IBAQCxfTlMugv4Xx/d VIV7GMNE6vmVXl8L9ekpvsl/eNeeGroOR6Hc9XTzB74WdVUz+dWMlg+eFveGUiAz zqm62KUY4UhYrSo/LD8poXsBbTHscCVr4hWVXZ4ExCczTOTSVlihD+yRUmyKfylg FpPmtJDn3DdzT9/+KTIQhYL4VUdr3Gz3ZFgSdWKuBAZMd5TN+rKMRcJGEkj/KwtR x3PKh0Cqzq6aQHF5BvikSXWARslvOa7HadF0I47pYK8dFqgyRFfEFpqKKHN929pa /yv6neigod+ava28eVlhQ04ZWcqXgxc8sPfL0Uo5fyJaHCLoqpYX03YjzLv208sF UXdG+suV -----END CERTIFICATE-----Generated at Tue Feb 10 04:48:50 2026 by rpki-client