This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/123124-ef66-48d1-91d0-f0d119c527ff/1/X4nLSwxemzqRH1kyXDwHvH3EiTU.roa File: X4nLSwxemzqRH1kyXDwHvH3EiTU.roa (raw, json) Hash identifier: +Qy7lKARLAZMeGLelLZC+SCNzPCoqizejVBLza4FRHk= Subject key identifier: 5F:89:CB:4B:0C:5E:9B:3A:91:1F:59:32:5C:3C:07:BC:7D:C4:89:35 Certificate issuer: /CN=3adea4b7af8cce5cfd3775cb01fb97c4f951a9a2 Certificate serial: 019B7FF2C094E391B508465F352E38E321B2 Authority key identifier: 3A:DE:A4:B7:AF:8C:CE:5C:FD:37:75:CB:01:FB:97:C4:F9:51:A9:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot6kt6-Mzlz9N3XLAfuXxPlRqaI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/123124-ef66-48d1-91d0-f0d119c527ff/1/X4nLSwxemzqRH1kyXDwHvH3EiTU.roa Signing time: Fri 02 Jan 2026 18:22:53 +0000 ROA not before: Fri 02 Jan 2026 18:22:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 5.180.38.0/24 maxlen: 24 5.180.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/123124-ef66-48d1-91d0-f0d119c527ff/1/Ot6kt6-Mzlz9N3XLAfuXxPlRqaI.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/123124-ef66-48d1-91d0-f0d119c527ff/1/Ot6kt6-Mzlz9N3XLAfuXxPlRqaI.mft rsync://rpki.ripe.net/repository/DEFAULT/Ot6kt6-Mzlz9N3XLAfuXxPlRqaI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:c0:94:e3:91:b5:08:46:5f:35:2e:38:e3:21:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3adea4b7af8cce5cfd3775cb01fb97c4f951a9a2 Validity Not Before: Jan 2 18:22:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f89cb4b0c5e9b3a911f59325c3c07bc7dc48935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:56:8f:50:53:8e:03:18:79:2f:d7:e1:f9:71: 08:99:d2:fc:40:53:70:a2:5b:07:0d:45:a2:65:2c: 46:93:1c:41:b8:c1:27:92:82:50:96:96:de:fc:36: a6:e8:24:7c:98:3f:38:1a:d0:d5:11:dd:a9:33:63: 47:00:00:45:6f:fe:74:e7:64:7e:c0:13:49:05:66: 2b:a3:4e:4b:80:3b:78:e9:27:07:1f:3c:24:85:4e: 49:20:58:5b:b4:cc:10:17:57:5a:16:6d:c0:1d:0a: 6d:9d:c1:8e:70:9b:42:af:44:26:92:5b:43:17:92: 15:8b:5a:ce:4b:f7:24:7a:9c:e2:16:6e:d0:71:21: b4:e9:c7:00:d1:6d:13:97:ef:f6:13:0a:de:bc:30: 09:32:eb:60:64:5c:eb:a9:ee:42:13:99:93:2b:0b: 1d:9e:92:e2:d4:db:d6:39:32:68:a0:27:6d:b6:48: c6:fc:03:1d:a9:4c:c0:e0:97:68:cd:cf:3c:c0:71: cb:f9:70:7f:62:04:60:72:8d:73:db:2c:60:ef:2c: b0:bc:8c:55:1d:5a:fa:56:13:74:94:e0:dc:b5:ac: 94:83:89:c2:1f:11:17:49:f7:c7:cf:c0:5e:d0:a7: 8b:f1:b6:2e:aa:0d:73:a3:4f:9c:96:f4:74:80:13: ab:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:89:CB:4B:0C:5E:9B:3A:91:1F:59:32:5C:3C:07:BC:7D:C4:89:35 X509v3 Authority Key Identifier: keyid:3A:DE:A4:B7:AF:8C:CE:5C:FD:37:75:CB:01:FB:97:C4:F9:51:A9:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot6kt6-Mzlz9N3XLAfuXxPlRqaI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/123124-ef66-48d1-91d0-f0d119c527ff/1/X4nLSwxemzqRH1kyXDwHvH3EiTU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/123124-ef66-48d1-91d0-f0d119c527ff/1/Ot6kt6-Mzlz9N3XLAfuXxPlRqaI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.38.0/23 Signature Algorithm: sha256WithRSAEncryption a1:25:34:6d:32:78:63:a2:a2:77:25:68:6c:b7:f8:51:2e:42: c3:0f:91:b4:a3:1b:e8:01:50:89:f2:32:a7:a8:28:3b:8e:50: 82:b5:21:a8:6c:56:ac:d1:4c:3e:7d:2e:ec:30:4b:80:88:63: 32:5d:eb:cf:d9:a9:f7:8d:44:55:f6:83:b3:36:b6:74:44:52: d5:1d:82:ea:72:f8:27:00:9f:87:d7:01:e2:32:cf:19:27:f7: 32:ab:6e:1c:2b:3f:02:9b:e6:e0:f1:df:88:4a:ff:47:37:7d: 87:26:b2:83:c1:4f:a7:d1:bf:76:0b:4c:0a:bf:f5:78:3c:44: c1:37:b4:6e:99:f3:e2:89:98:75:d8:fb:33:9c:0f:d3:7b:55: d3:fa:e3:04:f7:4b:cd:4d:f5:42:d4:7b:09:d2:4d:cb:1c:85: e1:a6:7d:38:89:9c:06:7f:a8:44:1c:fb:cf:5b:c4:3e:5e:43: 20:2a:84:f2:5c:86:7f:b6:47:c4:08:ed:6f:0c:86:0a:30:10: c5:3d:90:3e:ce:88:46:d9:21:dc:40:d6:e3:81:f6:eb:ee:19: a3:b9:ae:5a:f5:32:5a:be:22:c6:e4:60:d1:a1:62:a7:f2:d5: 7d:32:1e:75:a2:0f:36:fd:2c:ca:b0:a9:dc:ed:e9:22:20:2b: dd:90:ee:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8sCU45G1CEZfNS444yGyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZGVhNGI3YWY4Y2NlNWNmZDM3NzVjYjAxZmI5N2M0Zjk1 MWE5YTIwHhcNMjYwMTAyMTgyMjUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Zjg5Y2I0YjBjNWU5YjNhOTExZjU5MzI1YzNjMDdiYzdkYzQ4OTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlaPUFOOAxh5L9fh+XEImdL8QFNw olsHDUWiZSxGkxxBuMEnkoJQlpbe/Dam6CR8mD84GtDVEd2pM2NHAABFb/5052R+ wBNJBWYro05LgDt46ScHHzwkhU5JIFhbtMwQF1daFm3AHQptncGOcJtCr0QmkltD F5IVi1rOS/ckepziFm7QcSG06ccA0W0Tl+/2EwrevDAJMutgZFzrqe5CE5mTKwsd npLi1NvWOTJooCdttkjG/AMdqUzA4Jdozc88wHHL+XB/YgRgco1z2yxg7yywvIxV HVr6VhN0lODctayUg4nCHxEXSffHz8Be0KeL8bYuqg1zo0+clvR0gBOrGQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF+Jy0sMXps6kR9ZMlw8B7x9xIk1MB8GA1UdIwQY MBaAFDrepLevjM5c/Td1ywH7l8T5UamiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3Q2a3Q2LU16bHo5TjNYTEFmdVh4UGxScWFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8xMjMxMjQtZWY2Ni00OGQxLTkxZDAt ZjBkMTE5YzUyN2ZmLzEvWDRuTFN3eGVtenFSSDFreVhEd0h2SDNFaVRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8xMjMxMjQtZWY2Ni00OGQxLTkxZDAtZjBkMTE5YzUyN2Zm LzEvT3Q2a3Q2LU16bHo5TjNYTEFmdVh4UGxScWFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBbQmMA0G CSqGSIb3DQEBCwUAA4IBAQChJTRtMnhjoqJ3JWhst/hRLkLDD5G0oxvoAVCJ8jKn qCg7jlCCtSGobFas0Uw+fS7sMEuAiGMyXevP2an3jURV9oOzNrZ0RFLVHYLqcvgn AJ+H1wHiMs8ZJ/cyq24cKz8Cm+bg8d+ISv9HN32HJrKDwU+n0b92C0wKv/V4PETB N7RumfPiiZh12PsznA/Te1XT+uME90vNTfVC1HsJ0k3LHIXhpn04iZwGf6hEHPvP W8Q+XkMgKoTyXIZ/tkfECO1vDIYKMBDFPZA+zohG2SHcQNbjgfbr7hmjua5a9TJa viLG5GDRoWKn8tV9Mh51og82/SzKsKnc7ekiICvdkO75 -----END CERTIFICATE-----Generated at Mon Jan 12 09:56:06 2026 by rpki-client