This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/5pjm21HKetM46w6qM9uy-i6WybY.roa File: 5pjm21HKetM46w6qM9uy-i6WybY.roa (raw, json) Hash identifier: 3eNVlKLJuRP0y0hZciHBdm9TPYgKCSF9C2o8FyAPzb8= Subject key identifier: E6:98:E6:DB:51:CA:7A:D3:38:EB:0E:AA:33:DB:B2:FA:2E:96:C9:B6 Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40 Certificate serial: 019B7DCB40D5C2ACB1BBD5BE57E70B85F6F5 Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/5pjm21HKetM46w6qM9uy-i6WybY.roa Signing time: Fri 02 Jan 2026 08:20:30 +0000 ROA not before: Fri 02 Jan 2026 08:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8434 IP address blocks: 2001:67c:21e4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 06:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:40:d5:c2:ac:b1:bb:d5:be:57:e7:0b:85:f6:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40 Validity Not Before: Jan 2 08:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e698e6db51ca7ad338eb0eaa33dbb2fa2e96c9b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3e:1f:77:bf:09:1d:b1:e8:58:3f:b8:aa:11: 32:b7:71:5e:2d:ab:9a:63:1b:23:62:4a:e5:09:8c: c9:b7:93:cc:f5:42:81:25:01:fb:d1:f8:e6:fe:b1: 8b:a5:9b:e3:98:e7:8c:c2:ad:e4:20:62:b6:2a:e3: b7:1e:a0:e9:cc:4c:f4:cc:c7:c3:9e:8e:49:02:91: 7c:1e:91:4d:68:00:fd:71:2a:3a:27:31:25:26:d5: 6d:46:4c:4b:74:45:76:b1:15:16:8a:c3:1c:9f:e1: 30:70:c1:e4:af:7f:87:3c:08:36:4f:37:f5:38:21: e2:3d:a6:00:2c:b4:07:a5:76:97:96:70:d0:f4:c7: 2e:5d:d1:d1:bf:bf:01:c6:28:99:1e:fc:02:77:bd: 88:d1:8f:2a:46:c3:ad:ce:b8:f6:0d:6e:23:fd:a7: 69:25:ef:a8:9c:f4:25:7f:d2:4c:8b:31:5b:d4:59: b3:68:8f:d7:c8:5a:b1:53:b8:e4:d3:06:7f:b0:11: b2:cb:00:03:98:78:0e:50:32:10:86:74:e2:78:e6: 85:5f:94:fc:f4:4b:70:e9:26:25:f3:ec:2c:9f:80: c6:75:d5:b7:7d:ba:de:0b:e3:79:7b:89:91:79:71: 7d:06:1e:f3:1f:84:b1:d7:08:db:7f:4e:aa:6b:28: df:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:98:E6:DB:51:CA:7A:D3:38:EB:0E:AA:33:DB:B2:FA:2E:96:C9:B6 X509v3 Authority Key Identifier: keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/5pjm21HKetM46w6qM9uy-i6WybY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:21e4::/48 Signature Algorithm: sha256WithRSAEncryption 6b:22:0c:cc:90:ac:c4:5f:58:3d:21:3f:61:d6:24:09:ef:73: ba:0b:a0:b8:a3:6a:28:6d:1f:5f:b4:ec:d1:10:5f:3d:4c:99: 25:ee:d3:9e:62:6e:94:20:55:75:9c:93:c1:63:16:80:6c:c0: e3:7f:5b:f0:e9:79:5c:08:68:61:17:e3:23:f6:73:f1:6c:ee: 8d:22:00:7f:f7:69:a6:51:bf:5a:95:95:42:d6:93:54:de:f3: 90:7b:5a:6d:68:fb:86:3b:eb:85:95:32:d6:bc:f1:a6:8e:78: 5c:c9:32:bd:2c:90:f4:95:d2:8b:ad:6b:6a:02:e3:84:0f:7d: 04:cb:c6:be:38:6d:3e:4a:4d:5f:26:99:92:1a:c9:0c:cc:47: 98:79:5c:da:48:49:3e:f8:a3:4d:3b:42:b6:fc:96:5e:5d:73: 8b:d4:53:8d:2e:34:8c:66:19:39:3c:de:25:82:9b:3e:01:97: ef:dc:4b:fc:a7:13:e6:08:2c:60:34:4f:50:9a:75:12:84:6d: df:e2:38:ef:72:1a:37:eb:10:78:df:3f:bf:81:e1:e9:3f:03: a8:05:8b:28:8c:74:5f:fb:b4:6f:78:1a:3e:94:57:e8:ae:b3: 47:71:13:1b:cb:24:f3:99:c8:b6:50:41:a5:b9:c7:e4:9c:a9: 59:21:09:99 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9y0DVwqyxu9W+V+cLhfb1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNDMyMmIyZDBhNzk0ZmQwNzZiODVlOGRjNTc4YWJiMGQw M2VjNDAwHhcNMjYwMTAyMDgyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjk4ZTZkYjUxY2E3YWQzMzhlYjBlYWEzM2RiYjJmYTJlOTZjOWI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnj4fd78JHbHoWD+4qhEyt3FeLaua YxsjYkrlCYzJt5PM9UKBJQH70fjm/rGLpZvjmOeMwq3kIGK2KuO3HqDpzEz0zMfD no5JApF8HpFNaAD9cSo6JzElJtVtRkxLdEV2sRUWisMcn+EwcMHkr3+HPAg2Tzf1 OCHiPaYALLQHpXaXlnDQ9McuXdHRv78BxiiZHvwCd72I0Y8qRsOtzrj2DW4j/adp Je+onPQlf9JMizFb1FmzaI/XyFqxU7jk0wZ/sBGyywADmHgOUDIQhnTieOaFX5T8 9Etw6SYl8+wsn4DGddW3fbreC+N5e4mReXF9Bh7zH4Sx1wjbf06qayjf5wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOaY5ttRynrTOOsOqjPbsvoulsm2MB8GA1UdIwQY MBaAFNJDIrLQp5T9B2uF6NxXirsNA+xAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy85N2MzNTMtMGMzNi00MDY2LWE1NmIt MTM5YTQ5NmNkNTljLzEvNXBqbTIxSEtldE00Nnc2cU05dXktaTZXeWJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy85N2MzNTMtMGMzNi00MDY2LWE1NmItMTM5YTQ5NmNkNTlj LzEvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCHk MA0GCSqGSIb3DQEBCwUAA4IBAQBrIgzMkKzEX1g9IT9h1iQJ73O6C6C4o2oobR9f tOzREF89TJkl7tOeYm6UIFV1nJPBYxaAbMDjf1vw6XlcCGhhF+Mj9nPxbO6NIgB/ 92mmUb9alZVC1pNU3vOQe1ptaPuGO+uFlTLWvPGmjnhcyTK9LJD0ldKLrWtqAuOE D30Ey8a+OG0+Sk1fJpmSGskMzEeYeVzaSEk++KNNO0K2/JZeXXOL1FONLjSMZhk5 PN4lgps+AZfv3Ev8pxPmCCxgNE9QmnUShG3f4jjvcho36xB43z+/geHpPwOoBYso jHRf+7RveBo+lFforrNHcRMbyyTzmci2UEGlucfknKlZIQmZ -----END CERTIFICATE-----Generated at Mon Jan 26 14:15:28 2026 by rpki-client