This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/ErNXrycTzph6JSf18PtwwsQoz2w.roa File: ErNXrycTzph6JSf18PtwwsQoz2w.roa (raw, json) Hash identifier: JFPJWJTX9AS74O2qvrW7DFe57VW6uqTN8mG7Rp0yt+w= Subject key identifier: 12:B3:57:AF:27:13:CE:98:7A:25:27:F5:F0:FB:70:C2:C4:28:CF:6C Certificate issuer: /CN=ac5fc6c6aea3f0e4edf7ccb92e6eb2377a7479a5 Certificate serial: 019B7FF2B73425B4A312A581F1B965211023 Authority key identifier: AC:5F:C6:C6:AE:A3:F0:E4:ED:F7:CC:B9:2E:6E:B2:37:7A:74:79:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/ErNXrycTzph6JSf18PtwwsQoz2w.roa Signing time: Fri 02 Jan 2026 18:22:51 +0000 ROA not before: Fri 02 Jan 2026 18:22:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202254 IP address blocks: 185.24.80.0/24 maxlen: 24 185.24.81.0/24 maxlen: 24 185.24.82.0/24 maxlen: 24 185.24.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.mft rsync://rpki.ripe.net/repository/DEFAULT/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:b7:34:25:b4:a3:12:a5:81:f1:b9:65:21:10:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac5fc6c6aea3f0e4edf7ccb92e6eb2377a7479a5 Validity Not Before: Jan 2 18:22:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=12b357af2713ce987a2527f5f0fb70c2c428cf6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:35:b3:9a:56:04:20:75:23:91:a8:40:97:c7: a1:03:f6:e2:16:f5:cc:b1:a7:69:6f:40:44:5b:7f: 4e:83:fa:23:94:57:58:75:8d:0d:53:84:e1:34:83: dc:e0:ec:69:12:43:9d:0b:4f:6e:fd:bb:20:5a:43: 7e:72:41:6a:58:89:6a:ba:d2:7e:cb:09:c2:ef:b4: 36:1b:86:9b:14:f9:1f:a6:0f:b3:ec:35:06:58:c6: 77:a9:63:9d:a5:3d:ad:34:65:16:c7:28:ab:71:a1: 99:00:ec:85:33:d0:05:93:67:00:c2:fd:2b:9c:63: 7a:23:0d:12:cd:36:48:c7:0f:77:a4:e1:cd:54:69: 01:00:75:f7:e4:0f:81:cd:c4:f2:29:7f:b1:1b:a5: 1c:8a:ab:f4:ea:c5:b3:82:c9:ca:53:7d:21:81:f9: 39:82:3d:18:30:de:9d:da:7c:05:56:30:83:86:5d: 31:e0:37:9f:f9:be:50:ba:62:08:71:47:a4:63:7a: ae:3e:66:9f:6d:72:52:19:92:c7:21:7d:0b:fd:fe: 73:d9:3b:6e:cd:b4:8b:23:2e:6d:65:eb:d0:57:c5: 7f:8f:02:fe:20:a9:cf:39:0c:5a:12:ef:8b:73:28: e1:4a:70:3c:a1:5b:d7:0b:be:93:54:a2:11:7e:c6: b1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B3:57:AF:27:13:CE:98:7A:25:27:F5:F0:FB:70:C2:C4:28:CF:6C X509v3 Authority Key Identifier: keyid:AC:5F:C6:C6:AE:A3:F0:E4:ED:F7:CC:B9:2E:6E:B2:37:7A:74:79:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/ErNXrycTzph6JSf18PtwwsQoz2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.24.80.0/22 Signature Algorithm: sha256WithRSAEncryption 51:18:c3:c8:3a:a5:67:63:2f:02:15:c5:b9:96:53:79:19:63: 46:6a:f8:c0:3b:39:7f:62:2d:3d:86:6f:50:00:72:69:c5:38: be:81:02:bf:ec:44:15:8d:f9:88:31:0e:55:c6:f2:dd:17:5c: 97:d9:40:6c:af:b9:75:92:9e:f5:9d:93:28:cc:1b:f1:c1:86: eb:dd:23:9b:c2:36:ba:8c:d0:9e:b3:a7:53:a0:52:7d:ed:17: 15:99:35:12:f2:7a:26:59:99:50:06:53:3d:fe:e1:e9:ef:8f: 2e:f7:1f:4d:bd:88:1c:fb:c8:0e:6b:09:ea:c7:46:70:87:35: 2c:1c:af:29:85:17:ab:cc:03:55:54:31:19:9e:47:2c:77:0e: 31:37:4b:6b:c2:ab:51:bb:6c:e3:8f:4c:ec:3d:b7:cf:b6:3d: 50:62:e0:3c:d8:97:e1:0f:26:e0:16:08:92:19:32:68:a9:24: 5f:b4:4c:3b:be:f9:b6:78:62:a8:4c:3e:5f:d9:64:1e:4f:07: 52:ca:f7:28:de:21:55:5b:4c:df:ee:39:bc:66:b9:6a:e8:ad: 0e:7c:d4:ad:39:47:d7:26:08:ff:ac:f9:03:83:23:6a:50:92: 7e:c7:eb:90:98:3c:9f:e9:90:fc:05:04:5e:ec:e6:bb:29:39: 4c:c3:65:f5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8rc0JbSjEqWB8bllIRAjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNWZjNmM2YWVhM2YwZTRlZGY3Y2NiOTJlNmViMjM3N2E3 NDc5YTUwHhcNMjYwMTAyMTgyMjUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMmIzNTdhZjI3MTNjZTk4N2EyNTI3ZjVmMGZiNzBjMmM0MjhjZjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDWzmlYEIHUjkahAl8ehA/biFvXM sadpb0BEW39Og/ojlFdYdY0NU4ThNIPc4OxpEkOdC09u/bsgWkN+ckFqWIlqutJ+ ywnC77Q2G4abFPkfpg+z7DUGWMZ3qWOdpT2tNGUWxyircaGZAOyFM9AFk2cAwv0r nGN6Iw0SzTZIxw93pOHNVGkBAHX35A+BzcTyKX+xG6Uciqv06sWzgsnKU30hgfk5 gj0YMN6d2nwFVjCDhl0x4Def+b5QumIIcUekY3quPmafbXJSGZLHIX0L/f5z2Ttu zbSLIy5tZevQV8V/jwL+IKnPOQxaEu+LcyjhSnA8oVvXC76TVKIRfsaxKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBKzV68nE86YeiUn9fD7cMLEKM9sMB8GA1UdIwQY MBaAFKxfxsauo/Dk7ffMuS5usjd6dHmlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckZfR3hxNmo4T1R0OTh5NUxtNnlOM3AwZWFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8wODI3ZTAtMzMzMS00MGI0LTk5YjIt OWExMzcwOTJjZGQwLzEvRXJOWHJ5Y1R6cGg2SlNmMThQdHd3c1FvejJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS8wODI3ZTAtMzMzMS00MGI0LTk5YjItOWExMzcwOTJjZGQw LzEvckZfR3hxNmo4T1R0OTh5NUxtNnlOM3AwZWFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuRhQMA0G CSqGSIb3DQEBCwUAA4IBAQBRGMPIOqVnYy8CFcW5llN5GWNGavjAOzl/Yi09hm9Q AHJpxTi+gQK/7EQVjfmIMQ5VxvLdF1yX2UBsr7l1kp71nZMozBvxwYbr3SObwja6 jNCes6dToFJ97RcVmTUS8nomWZlQBlM9/uHp748u9x9NvYgc+8gOawnqx0ZwhzUs HK8phRerzANVVDEZnkcsdw4xN0trwqtRu2zjj0zsPbfPtj1QYuA82JfhDybgFgiS GTJoqSRftEw7vvm2eGKoTD5f2WQeTwdSyvco3iFVW0zf7jm8Zrlq6K0OfNStOUfX Jgj/rPkDgyNqUJJ+x+uQmDyf6ZD8BQRe7Oa7KTlMw2X1 -----END CERTIFICATE-----Generated at Wed Jan 21 16:14:44 2026 by rpki-client