This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/5ZoEo50_xAHK34okKgd5dDUMiUg.roa File: 5ZoEo50_xAHK34okKgd5dDUMiUg.roa (raw, json) Hash identifier: LIs7cRQu0NuinXWbbRKXMVEwh8Kej14YFA3/Roh92YA= Subject key identifier: E5:9A:04:A3:9D:3F:C4:01:CA:DF:8A:24:2A:07:79:74:35:0C:89:48 Certificate issuer: /CN=aee2f8e53627adc27678063b93d3d9fd6ece9002 Certificate serial: 019B7CED542874A6F5339716E9A5BB2CEF66 Authority key identifier: AE:E2:F8:E5:36:27:AD:C2:76:78:06:3B:93:D3:D9:FD:6E:CE:90:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/5ZoEo50_xAHK34okKgd5dDUMiUg.roa Signing time: Fri 02 Jan 2026 04:18:06 +0000 ROA not before: Fri 02 Jan 2026 04:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61408 IP address blocks: 176.222.27.0/24 maxlen: 24 176.222.29.0/24 maxlen: 24 176.222.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.mft rsync://rpki.ripe.net/repository/DEFAULT/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:54:28:74:a6:f5:33:97:16:e9:a5:bb:2c:ef:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aee2f8e53627adc27678063b93d3d9fd6ece9002 Validity Not Before: Jan 2 04:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e59a04a39d3fc401cadf8a242a077974350c8948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e6:d7:88:6e:6d:a0:3e:cb:b7:a4:2a:e2:bb: 4f:de:28:90:06:1b:dd:a4:04:27:91:fa:57:55:4a: e6:04:e9:1d:2c:da:5b:0b:8c:b4:5b:72:79:b6:c9: b5:dd:b5:a4:e4:ac:70:35:41:6a:7c:29:4d:4b:85: 80:63:8f:17:64:8c:d6:09:b0:b6:24:26:cb:25:c6: 7d:cb:b5:79:65:03:28:02:50:4c:99:96:14:ad:92: 78:99:24:ef:4b:9a:34:79:c7:86:25:a4:f2:47:79: 2c:68:63:b6:d5:b8:af:35:e7:51:6a:28:9c:ec:a5: bd:ca:77:b9:14:0c:78:37:64:ca:ab:85:5f:e1:84: 32:14:d3:75:76:68:7f:37:19:45:e7:d9:c3:56:c7: fc:e8:5f:ff:3c:73:0e:31:a6:99:1e:74:95:ec:85: 38:27:72:e8:61:e4:48:02:c0:ce:75:93:6a:74:00: 5c:ef:f4:d8:c9:c9:33:53:14:06:aa:49:fb:88:d6: db:86:48:75:7a:66:7a:3d:00:e9:1a:a4:b4:50:09: c0:6d:b8:e4:9a:4e:f4:aa:17:15:1d:19:86:b6:5d: d8:14:8a:ca:2c:e0:8a:ca:df:bd:52:36:1a:c8:20: 91:5b:2b:45:3b:82:07:a6:b8:67:c2:2e:74:40:16: 34:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:9A:04:A3:9D:3F:C4:01:CA:DF:8A:24:2A:07:79:74:35:0C:89:48 X509v3 Authority Key Identifier: keyid:AE:E2:F8:E5:36:27:AD:C2:76:78:06:3B:93:D3:D9:FD:6E:CE:90:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/5ZoEo50_xAHK34okKgd5dDUMiUg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.222.27.0/24 176.222.29.0-176.222.30.255 Signature Algorithm: sha256WithRSAEncryption 3f:9e:94:c9:50:c0:3c:a6:08:78:71:92:1b:d1:e1:67:0f:99: 99:97:f4:53:52:74:46:28:74:81:df:e3:bd:b1:d6:da:48:db: 6b:ad:c1:4b:fa:6d:75:ab:c8:b6:03:e3:2e:97:be:74:f2:67: c5:40:7a:9e:4d:a2:b6:27:2a:be:5b:9e:19:f6:f3:aa:a4:bc: ed:6d:90:8a:73:c5:97:26:af:31:e9:48:d8:62:8d:ee:17:dc: 01:63:f6:49:c0:64:a4:aa:ee:c7:ea:b2:ef:1e:92:90:86:f2: ae:55:74:ab:e5:24:41:aa:0a:1a:ee:4d:6e:a2:83:60:d9:ca: b3:ee:13:6f:54:42:59:03:db:9b:ed:42:7e:95:3e:c8:5f:7d: 53:f9:37:da:a8:ce:47:67:9f:6f:0d:19:bb:c4:f2:74:09:b5: e4:a5:06:33:63:0b:b0:00:ba:b4:74:5b:9b:17:42:16:b7:52: 56:99:dc:31:09:ff:27:f2:65:3e:2e:0a:4b:a8:fc:54:ff:56: 75:75:7a:a9:2d:67:71:ea:e0:63:10:d1:fd:34:2d:d0:f5:43: a6:75:e7:57:1e:68:ee:a8:02:bb:8c:58:ea:b0:8f:64:47:15: 67:03:c2:1a:04:39:bd:e1:24:cc:16:8e:22:81:20:fc:c4:97: 09:2f:16:27 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt87VQodKb1M5cW6aW7LO9mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZTJmOGU1MzYyN2FkYzI3Njc4MDYzYjkzZDNkOWZkNmVj ZTkwMDIwHhcNMjYwMTAyMDQxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTlhMDRhMzlkM2ZjNDAxY2FkZjhhMjQyYTA3Nzk3NDM1MGM4OTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ubXiG5toD7Lt6Qq4rtP3iiQBhvd pAQnkfpXVUrmBOkdLNpbC4y0W3J5tsm13bWk5KxwNUFqfClNS4WAY48XZIzWCbC2 JCbLJcZ9y7V5ZQMoAlBMmZYUrZJ4mSTvS5o0eceGJaTyR3ksaGO21bivNedRaiic 7KW9yne5FAx4N2TKq4Vf4YQyFNN1dmh/NxlF59nDVsf86F//PHMOMaaZHnSV7IU4 J3LoYeRIAsDOdZNqdABc7/TYyckzUxQGqkn7iNbbhkh1emZ6PQDpGqS0UAnAbbjk mk70qhcVHRmGtl3YFIrKLOCKyt+9UjYayCCRWytFO4IHprhnwi50QBY02wIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFOWaBKOdP8QByt+KJCoHeXQ1DIlIMB8GA1UdIwQY MBaAFK7i+OU2J63CdngGO5PT2f1uzpACMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnVMNDVUWW5yY0oyZUFZN2s5UFpfVzdPa0FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8xOTNlZDItYjc3NC00MmYwLWFhM2Yt YTQ2NTY0MWE0OGZhLzEvNVpvRW81MF94QUhLMzRva0tnZDVkRFVNaVVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy8xOTNlZDItYjc3NC00MmYwLWFhM2YtYTQ2NTY0MWE0OGZh LzEvcnVMNDVUWW5yY0oyZUFZN2s5UFpfVzdPa0FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAsN4bMAwD BACw3h0DBACw3h4wDQYJKoZIhvcNAQELBQADggEBAD+elMlQwDymCHhxkhvR4WcP mZmX9FNSdEYodIHf472x1tpI22utwUv6bXWryLYD4y6XvnTyZ8VAep5NorYnKr5b nhn286qkvO1tkIpzxZcmrzHpSNhije4X3AFj9knAZKSq7sfqsu8ekpCG8q5VdKvl JEGqChruTW6ig2DZyrPuE29UQlkD25vtQn6VPshffVP5N9qozkdnn28NGbvE8nQJ teSlBjNjC7AAurR0W5sXQha3UlaZ3DEJ/yfyZT4uCkuo/FT/VnV1eqktZ3Hq4GMQ 0f00LdD1Q6Z151ceaO6oAruMWOqwj2RHFWcDwhoEOb3hJMwWjiKBIPzElwkvFic= -----END CERTIFICATE-----Generated at Mon Feb 9 22:28:38 2026 by rpki-client