This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vxHiN8XYZlqNx9pegdEwtdXJzX4.roa File: vxHiN8XYZlqNx9pegdEwtdXJzX4.roa (raw, json) Hash identifier: DRRytWcqFbSlVtkcmI8YNqgxFW5pXUdMhy1Q5V9THDo= Subject key identifier: BF:11:E2:37:C5:D8:66:5A:8D:C7:DA:5E:81:D1:30:B5:D5:C9:CD:7E Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B7F84DB67876EC00B077C82C88ADCEA77 Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vxHiN8XYZlqNx9pegdEwtdXJzX4.roa Signing time: Fri 02 Jan 2026 16:22:51 +0000 ROA not before: Fri 02 Jan 2026 16:22:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9087 IP address blocks: 5.182.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:db:67:87:6e:c0:0b:07:7c:82:c8:8a:dc:ea:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Jan 2 16:22:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf11e237c5d8665a8dc7da5e81d130b5d5c9cd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:44:77:07:c3:d4:fd:21:cd:0b:df:9d:86:1b: 65:d7:0f:fd:aa:f2:40:7b:dd:db:be:f5:12:d9:23: 71:b7:e3:19:31:81:25:a1:ad:39:6f:5c:f6:dc:6d: c6:7e:2e:51:87:23:bf:be:68:3c:65:5d:5e:e0:69: b5:ff:0e:1d:e5:22:6e:77:fa:90:ce:c9:87:bd:fd: 1b:dc:b4:af:48:86:34:84:93:20:e4:b4:a6:a0:3d: 5b:c1:af:07:5f:ea:f4:f7:c1:cb:bb:1a:87:73:a0: 62:4c:ab:34:91:93:92:aa:0d:40:04:19:8a:f4:97: ed:73:38:07:4f:17:c7:3d:e9:9f:9d:70:80:f6:ec: ee:6f:25:d3:a9:c6:f6:fd:4d:fb:45:cc:93:aa:95: 90:e5:49:5a:e9:53:90:f7:2e:56:c2:14:a4:91:f0: 5b:d8:98:4e:6e:e9:1f:c3:d3:10:1e:00:d0:50:be: 71:6c:c5:cd:53:3e:52:be:54:2f:79:37:e3:08:34: 03:53:47:16:50:22:e0:0b:1f:75:97:73:2e:08:a9: e9:84:d1:1e:3f:3f:0c:42:53:89:fc:df:59:2a:f6: 11:ef:73:9d:2d:e6:7d:a5:fe:19:f3:46:e5:93:34: 64:52:4d:ae:f0:42:64:2c:85:25:04:a7:37:8a:01: 1a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:11:E2:37:C5:D8:66:5A:8D:C7:DA:5E:81:D1:30:B5:D5:C9:CD:7E X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vxHiN8XYZlqNx9pegdEwtdXJzX4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.113.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:fc:c6:b1:d8:d3:dd:c7:71:ca:d3:53:58:30:e2:ab:e0:54: 20:01:e0:19:10:dc:5f:4a:01:27:4c:63:72:a6:77:bc:f7:67: 18:af:6e:c9:5d:69:95:56:2e:27:67:2c:67:a7:e5:0e:01:13: d2:12:21:67:58:26:0e:f8:fd:41:03:96:ff:9c:8f:16:1d:38: e9:6a:02:9f:74:2e:a8:40:3b:42:d4:37:64:d6:2b:4e:b5:93: 8e:52:19:97:fc:d4:55:f6:d6:60:7b:64:7e:78:84:35:f3:d9: da:09:95:5a:ec:16:01:52:7b:2b:e5:1d:86:4e:57:33:e5:47: a2:37:d9:15:35:05:06:da:ff:08:86:c2:61:af:00:8d:1f:30: b3:19:20:88:cf:13:cb:b7:f7:b5:5a:ba:07:30:1a:7a:7f:a4: 0c:d1:5c:ee:05:91:3f:60:bb:0e:44:5b:e6:14:d0:53:c5:20: ec:d6:20:56:52:0c:d0:56:58:65:96:92:a8:c1:7a:1d:f8:a7: 75:a6:8f:15:87:a7:50:7a:29:c8:ce:4d:28:ae:58:46:61:3a: b9:c4:3b:1a:d8:68:31:86:83:cc:31:74:fe:19:1d:43:79:f9: de:70:5f:ac:e3:24:e6:b1:aa:c0:f0:f9:6a:df:6d:06:a7:aa: d2:76:7b:03 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hNtnh27ACwd8gsiK3Op3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjYwMTAyMTYyMjUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjExZTIzN2M1ZDg2NjVhOGRjN2RhNWU4MWQxMzBiNWQ1YzljZDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUR3B8PU/SHNC9+dhhtl1w/9qvJA e93bvvUS2SNxt+MZMYEloa05b1z23G3Gfi5RhyO/vmg8ZV1e4Gm1/w4d5SJud/qQ zsmHvf0b3LSvSIY0hJMg5LSmoD1bwa8HX+r098HLuxqHc6BiTKs0kZOSqg1ABBmK 9JftczgHTxfHPemfnXCA9uzubyXTqcb2/U37RcyTqpWQ5Ula6VOQ9y5WwhSkkfBb 2JhObukfw9MQHgDQUL5xbMXNUz5SvlQveTfjCDQDU0cWUCLgCx91l3MuCKnphNEe Pz8MQlOJ/N9ZKvYR73OdLeZ9pf4Z80blkzRkUk2u8EJkLIUlBKc3igEakwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL8R4jfF2GZajcfaXoHRMLXVyc1+MB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvdnhIaU44WFlabHFOeDlwZWdkRXd0ZFhKelg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbZxMA0G CSqGSIb3DQEBCwUAA4IBAQBr/Max2NPdx3HK01NYMOKr4FQgAeAZENxfSgEnTGNy pne892cYr27JXWmVVi4nZyxnp+UOARPSEiFnWCYO+P1BA5b/nI8WHTjpagKfdC6o QDtC1Ddk1itOtZOOUhmX/NRV9tZge2R+eIQ189naCZVa7BYBUnsr5R2GTlcz5Uei N9kVNQUG2v8IhsJhrwCNHzCzGSCIzxPLt/e1WroHMBp6f6QM0VzuBZE/YLsORFvm FNBTxSDs1iBWUgzQVlhllpKowXod+Kd1po8Vh6dQeinIzk0orlhGYTq5xDsa2Ggx hoPMMXT+GR1DefnecF+s4yTmsarA8Plq320Gp6rSdnsD -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:02 2026 by rpki-client