This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/162560-b4c5-4f0d-9c06-18bdf8847418/1/l5mP-Fm1NetsfAlEdX_lmjpQoXU.roa File: l5mP-Fm1NetsfAlEdX_lmjpQoXU.roa (raw, json) Hash identifier: TgrkS8N1S8Ck615gk15sSxKWPZHU7gKSYaKnDDznY4k= Subject key identifier: 97:99:8F:F8:59:B5:35:EB:6C:7C:09:44:75:7F:E5:9A:3A:50:A1:75 Certificate issuer: /CN=f674f0c8d16cbb510bba1fe3ac4685eee356f8e7 Certificate serial: 019B76EB86320065044B1BA398DF3B19F520 Authority key identifier: F6:74:F0:C8:D1:6C:BB:51:0B:BA:1F:E3:AC:46:85:EE:E3:56:F8:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9nTwyNFsu1ELuh_jrEaF7uNW-Oc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/162560-b4c5-4f0d-9c06-18bdf8847418/1/l5mP-Fm1NetsfAlEdX_lmjpQoXU.roa Signing time: Thu 01 Jan 2026 00:18:25 +0000 ROA not before: Thu 01 Jan 2026 00:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215667 IP address blocks: 2a05:fd00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/162560-b4c5-4f0d-9c06-18bdf8847418/1/9nTwyNFsu1ELuh_jrEaF7uNW-Oc.crl rsync://rpki.ripe.net/repository/DEFAULT/61/162560-b4c5-4f0d-9c06-18bdf8847418/1/9nTwyNFsu1ELuh_jrEaF7uNW-Oc.mft rsync://rpki.ripe.net/repository/DEFAULT/9nTwyNFsu1ELuh_jrEaF7uNW-Oc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 17:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:86:32:00:65:04:4b:1b:a3:98:df:3b:19:f5:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f674f0c8d16cbb510bba1fe3ac4685eee356f8e7 Validity Not Before: Jan 1 00:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97998ff859b535eb6c7c0944757fe59a3a50a175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:36:b5:b3:72:6f:4a:eb:e2:63:f5:9f:0f:8c: da:ca:e1:d2:ad:1f:75:92:92:1d:86:24:9e:1c:3b: d0:0d:09:72:53:81:79:40:55:d9:03:21:75:b9:81: 91:b3:29:0f:df:bf:8b:a3:67:ff:82:bb:59:bc:54: e5:a9:4f:d8:f9:be:d7:0d:1e:8c:d4:de:1b:c3:28: 08:40:a6:f5:4f:d7:a9:33:c3:71:6c:16:ef:5d:05: e0:13:b9:01:f7:ba:f5:cf:c3:01:8a:66:da:77:3d: 2d:20:9f:f0:6b:75:4d:a1:63:40:b1:3a:b2:09:1b: cb:c3:86:26:3e:2c:a7:60:45:07:6a:cd:80:e4:8d: 5a:bf:e4:19:70:4f:98:29:35:98:ed:24:73:43:ff: b2:c1:2d:3c:a9:ad:e1:ff:46:ce:00:49:b9:04:16: cb:97:e9:cd:bc:ee:fd:52:2d:e2:c7:6e:0b:69:49: b4:16:72:7b:f5:bc:1c:d2:c6:42:f4:db:08:7b:6d: f7:59:df:60:28:2f:ee:58:ea:8f:d3:fa:d2:bb:1e: ed:e8:47:79:37:68:89:02:0c:b8:03:ff:5c:34:48: 0e:9f:72:ba:69:47:7a:5d:0c:8b:60:22:0a:ac:3d: ff:70:54:a1:25:85:c1:2b:99:7b:06:53:75:e3:dd: 85:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:99:8F:F8:59:B5:35:EB:6C:7C:09:44:75:7F:E5:9A:3A:50:A1:75 X509v3 Authority Key Identifier: keyid:F6:74:F0:C8:D1:6C:BB:51:0B:BA:1F:E3:AC:46:85:EE:E3:56:F8:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9nTwyNFsu1ELuh_jrEaF7uNW-Oc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/162560-b4c5-4f0d-9c06-18bdf8847418/1/l5mP-Fm1NetsfAlEdX_lmjpQoXU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/162560-b4c5-4f0d-9c06-18bdf8847418/1/9nTwyNFsu1ELuh_jrEaF7uNW-Oc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:fd00::/29 Signature Algorithm: sha256WithRSAEncryption 3e:0c:b2:a6:8b:ec:9b:5e:5c:c6:6b:54:70:fb:6c:d2:a5:d6: 63:74:2a:99:f4:cf:7c:ba:34:e4:81:3b:be:ee:48:85:66:30: f9:1a:ff:47:d5:5d:68:c9:47:ff:06:cb:73:68:3e:ec:1f:14: 21:9e:78:9f:2b:a5:65:d5:c8:cb:b8:38:06:a5:8a:64:9e:eb: 36:9e:93:72:04:a9:08:11:32:e0:41:30:11:5c:9d:dc:a8:51: 43:d9:fb:c9:a6:ce:24:57:31:bc:4b:cd:9a:e8:0c:83:07:1c: 81:96:b4:2d:21:b8:33:8c:2a:29:d5:e6:62:39:d9:e9:f1:d5: 19:8a:3c:9a:da:46:a7:ea:56:2c:2b:42:96:1e:bc:93:e8:c4: f4:08:24:5d:ea:05:fb:26:02:50:24:44:8a:4b:1a:25:93:22: ef:07:ae:e0:88:6f:7e:a4:c4:b1:06:cd:ce:08:74:53:51:f6: ec:f0:12:e4:cd:96:0a:42:47:11:88:cf:42:a9:cc:6b:46:49: 2a:6c:9b:77:b2:61:06:2c:8a:0b:59:51:5a:45:a0:24:8b:4b: 21:d3:45:f9:9d:bd:bc:b4:f7:97:76:1e:a0:eb:f1:4e:2c:31: 01:82:80:e6:95:2d:b0:53:79:92:fb:9d:e8:53:83:ae:63:f8: 75:21:36:71 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt264YyAGUESxujmN87GfUgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2NzRmMGM4ZDE2Y2JiNTEwYmJhMWZlM2FjNDY4NWVlZTM1 NmY4ZTcwHhcNMjYwMTAxMDAxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Nzk5OGZmODU5YjUzNWViNmM3YzA5NDQ3NTdmZTU5YTNhNTBhMTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTa1s3JvSuviY/WfD4zayuHSrR91 kpIdhiSeHDvQDQlyU4F5QFXZAyF1uYGRsykP37+Lo2f/grtZvFTlqU/Y+b7XDR6M 1N4bwygIQKb1T9epM8NxbBbvXQXgE7kB97r1z8MBimbadz0tIJ/wa3VNoWNAsTqy CRvLw4YmPiynYEUHas2A5I1av+QZcE+YKTWY7SRzQ/+ywS08qa3h/0bOAEm5BBbL l+nNvO79Ui3ix24LaUm0FnJ79bwc0sZC9NsIe233Wd9gKC/uWOqP0/rSux7t6Ed5 N2iJAgy4A/9cNEgOn3K6aUd6XQyLYCIKrD3/cFShJYXBK5l7BlN1492FXwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJeZj/hZtTXrbHwJRHV/5Zo6UKF1MB8GA1UdIwQY MBaAFPZ08MjRbLtRC7of46xGhe7jVvjnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOW5Ud3lORnN1MUVMdWhfanJFYUY3dU5XLU9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8xNjI1NjAtYjRjNS00ZjBkLTljMDYt MThiZGY4ODQ3NDE4LzEvbDVtUC1GbTFOZXRzZkFsRWRYX2xtanBRb1hVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8xNjI1NjAtYjRjNS00ZjBkLTljMDYtMThiZGY4ODQ3NDE4 LzEvOW5Ud3lORnN1MUVMdWhfanJFYUY3dU5XLU9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgX9ADAN BgkqhkiG9w0BAQsFAAOCAQEAPgyypovsm15cxmtUcPts0qXWY3QqmfTPfLo05IE7 vu5IhWYw+Rr/R9VdaMlH/wbLc2g+7B8UIZ54nyulZdXIy7g4BqWKZJ7rNp6TcgSp CBEy4EEwEVyd3KhRQ9n7yabOJFcxvEvNmugMgwccgZa0LSG4M4wqKdXmYjnZ6fHV GYo8mtpGp+pWLCtClh68k+jE9AgkXeoF+yYCUCREiksaJZMi7weu4IhvfqTEsQbN zgh0U1H27PAS5M2WCkJHEYjPQqnMa0ZJKmybd7JhBiyKC1lRWkWgJItLIdNF+Z29 vLT3l3YeoOvxTiwxAYKA5pUtsFN5kvud6FODrmP4dSE2cQ== -----END CERTIFICATE-----Generated at Thu Jan 1 19:50:33 2026 by rpki-client