This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Cg5-4-MPHdR8rHLYCSeMDcuN3WA.roa File: Cg5-4-MPHdR8rHLYCSeMDcuN3WA.roa (raw, json) Hash identifier: Cib4HxTsrIRtaj55BTF6+WAR6MahtZRAFeprgaqN1EU= Subject key identifier: 0A:0E:7E:E3:E3:0F:1D:D4:7C:AC:72:D8:09:27:8C:0D:CB:8D:DD:60 Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Certificate serial: 019B7D5CD245CE826472B4C9B963E83EDDCD Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Cg5-4-MPHdR8rHLYCSeMDcuN3WA.roa Signing time: Fri 02 Jan 2026 06:19:53 +0000 ROA not before: Fri 02 Jan 2026 06:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64493 IP address blocks: 195.128.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:d2:45:ce:82:64:72:b4:c9:b9:63:e8:3e:dd:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Validity Not Before: Jan 2 06:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a0e7ee3e30f1dd47cac72d809278c0dcb8ddd60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0e:b5:c9:fb:0b:a6:c7:a7:fd:fc:66:72:9d: 9a:24:32:47:2e:50:e7:23:4c:93:0a:2b:3c:c8:7f: 0b:2c:e3:a1:8d:af:b2:ed:46:b7:25:ee:52:55:29: 46:47:ee:9c:58:be:ee:c4:d1:ee:30:39:8e:17:7c: d6:66:9d:f9:2c:a7:06:84:c8:62:81:de:47:78:aa: c7:16:76:d2:75:a2:1d:88:be:14:e9:d2:c0:6f:34: 19:8c:f1:32:0a:6f:57:a5:1a:48:af:1b:6d:49:0f: 8d:4d:81:12:f1:91:74:8e:fc:ab:39:78:63:3d:fa: 86:c7:35:ef:7e:c5:38:87:55:88:58:a8:1c:5a:82: e0:62:30:a3:6a:e6:80:71:90:ab:3c:25:3f:e3:8c: 3c:d1:04:34:f8:ec:4c:06:7c:e2:33:58:2f:d4:86: 1a:bf:2e:e6:24:a3:e9:b5:d1:72:eb:68:bb:8e:3c: 92:bd:96:bc:fc:2a:f8:b9:9b:70:90:ec:af:21:59: b7:47:34:0a:ab:0f:97:6f:48:49:a2:ab:9a:ce:64: 26:4c:de:ad:57:09:a1:d3:89:8f:15:e3:f0:56:31: 39:09:f6:2b:03:44:98:8a:eb:a3:7d:0f:6c:1a:14: d0:85:65:23:ae:18:4d:7c:87:02:f7:c0:a0:88:9d: 00:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0E:7E:E3:E3:0F:1D:D4:7C:AC:72:D8:09:27:8C:0D:CB:8D:DD:60 X509v3 Authority Key Identifier: keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Cg5-4-MPHdR8rHLYCSeMDcuN3WA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.128.133.0/24 Signature Algorithm: sha256WithRSAEncryption d2:8d:96:ea:3b:16:cd:28:4b:e4:d9:cd:cf:bf:0a:23:1d:9b: b5:f3:c7:a0:c4:be:0b:b6:cd:e1:d7:98:70:0c:d1:cc:86:c3: 47:30:4c:d9:86:3f:6c:6d:c0:a9:42:87:1e:8e:7e:74:88:f3: c6:58:20:e7:55:71:9b:53:19:28:ae:eb:27:3f:74:27:8a:4e: 52:b4:bb:a4:5c:5a:c0:0f:49:25:a1:c7:33:fb:0f:2a:3e:3b: 55:01:f0:91:e7:fb:31:ca:6c:fd:30:1b:70:8e:37:e0:7f:81: 0b:42:ed:89:a4:87:91:f2:a1:4f:c2:c4:4d:b0:c0:c0:3c:7d: 4d:97:fa:81:c8:65:54:db:58:78:eb:72:4f:f3:54:5e:f5:38: 15:34:4c:31:97:a5:7d:bc:a9:b3:fa:e4:55:d2:99:93:8e:e2: 6f:c2:c6:43:b9:ad:0a:a5:d5:f5:51:b1:2c:70:bf:e7:fb:cd: 68:ed:52:00:10:7d:16:b6:97:f3:9c:be:88:54:80:e9:88:c3: 29:32:f8:12:68:d5:fb:9c:a8:4c:0a:06:f9:7f:d4:f0:d7:e9: 9d:c9:f9:8f:2e:13:8d:dd:ea:13:ae:3a:24:67:30:2f:d6:16: c0:6d:21:4b:2d:5d:e4:da:77:66:e9:41:12:1d:f5:da:dd:71: 60:1e:37:09 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XNJFzoJkcrTJuWPoPt3NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl NWVjZjIwHhcNMjYwMTAyMDYxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTBlN2VlM2UzMGYxZGQ0N2NhYzcyZDgwOTI3OGMwZGNiOGRkZDYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsA61yfsLpsen/fxmcp2aJDJHLlDn I0yTCis8yH8LLOOhja+y7Ua3Je5SVSlGR+6cWL7uxNHuMDmOF3zWZp35LKcGhMhi gd5HeKrHFnbSdaIdiL4U6dLAbzQZjPEyCm9XpRpIrxttSQ+NTYES8ZF0jvyrOXhj PfqGxzXvfsU4h1WIWKgcWoLgYjCjauaAcZCrPCU/44w80QQ0+OxMBnziM1gv1IYa vy7mJKPptdFy62i7jjySvZa8/Cr4uZtwkOyvIVm3RzQKqw+Xb0hJoquazmQmTN6t Vwmh04mPFePwVjE5CfYrA0SYiuujfQ9sGhTQhWUjrhhNfIcC98CgiJ0AeQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAoOfuPjDx3UfKxy2AknjA3Ljd1gMB8GA1UdIwQY MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt MTcxYzM2N2JlNzgyLzEvQ2c1LTQtTVBIZFI4ckhMWUNTZU1EY3VOM1dBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4CFMA0G CSqGSIb3DQEBCwUAA4IBAQDSjZbqOxbNKEvk2c3PvwojHZu188egxL4Lts3h15hw DNHMhsNHMEzZhj9sbcCpQocejn50iPPGWCDnVXGbUxkorusnP3Qnik5StLukXFrA D0kloccz+w8qPjtVAfCR5/sxymz9MBtwjjfgf4ELQu2JpIeR8qFPwsRNsMDAPH1N l/qByGVU21h463JP81Re9TgVNEwxl6V9vKmz+uRV0pmTjuJvwsZDua0KpdX1UbEs cL/n+81o7VIAEH0WtpfznL6IVIDpiMMpMvgSaNX7nKhMCgb5f9Tw1+mdyfmPLhON 3eoTrjokZzAv1hbAbSFLLV3k2ndm6UESHfXa3XFgHjcJ -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:13 2026 by rpki-client