This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/2yaXAAUSdtsPMaSBJFquEdDTT6k.roa File: 2yaXAAUSdtsPMaSBJFquEdDTT6k.roa (raw, json) Hash identifier: judwS/WZsJiXUyPGTQqvtLBMK0N9HxSeMb7YxOm0ElY= Subject key identifier: DB:26:97:00:05:12:76:DB:0F:31:A4:81:24:5A:AE:11:D0:D3:4F:A9 Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba Certificate serial: 019B7AC79629D7A06969D45EC504A3FCE298 Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/2yaXAAUSdtsPMaSBJFquEdDTT6k.roa Signing time: Thu 01 Jan 2026 18:17:39 +0000 ROA not before: Thu 01 Jan 2026 18:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200370 IP address blocks: 5.202.224.0/24 maxlen: 24 5.202.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.mft rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:96:29:d7:a0:69:69:d4:5e:c5:04:a3:fc:e2:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba Validity Not Before: Jan 1 18:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db269700051276db0f31a481245aae11d0d34fa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:99:93:33:4e:5f:e3:c1:8a:b8:90:5d:17:bd: 11:07:ee:99:f8:be:29:22:c5:de:e9:c5:d0:95:a1: e4:9d:b1:2f:65:5b:b4:8e:e6:65:41:43:86:91:0e: e8:c4:5a:14:3a:f1:10:8a:e1:86:64:bd:08:3f:1b: 25:5b:25:58:1c:bb:bb:de:b6:27:1c:f5:0b:a2:12: 0d:37:4a:89:0e:fb:3c:8d:7c:2d:69:de:ac:92:b9: 5b:8d:f9:fd:fc:bc:6f:fb:69:71:a9:34:63:45:d7: df:78:59:a5:03:79:25:0e:3f:92:42:46:16:16:ca: a0:4c:44:36:86:3c:12:c3:a7:27:87:12:d6:9f:a2: 5f:1d:36:16:26:4c:99:12:e5:74:94:06:2e:38:18: 86:03:87:35:44:84:e2:fb:77:06:e0:c1:64:47:dd: d6:a6:fb:8e:1d:49:93:97:18:5d:12:d1:83:f1:4f: f9:40:e4:8a:db:26:7f:21:aa:66:58:94:37:0c:56: de:3e:46:25:74:d1:69:50:a7:e0:a0:c9:89:72:c7: 67:f7:b1:5c:77:64:2a:da:55:e0:96:0d:4a:f0:b4: 3d:3b:d0:91:96:6e:32:fe:9c:60:04:b4:3b:74:be: 68:f9:22:c9:90:c9:e6:17:8a:bf:41:28:70:fb:3d: ff:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:26:97:00:05:12:76:DB:0F:31:A4:81:24:5A:AE:11:D0:D3:4F:A9 X509v3 Authority Key Identifier: keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/2yaXAAUSdtsPMaSBJFquEdDTT6k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.202.224.0/23 Signature Algorithm: sha256WithRSAEncryption 94:97:31:bb:f3:5c:cd:13:f1:55:ca:7b:3f:d5:0b:81:7a:7e: 4e:c8:60:97:c2:b1:8b:b1:32:95:51:8a:4c:80:12:24:24:9d: e6:bf:d3:23:f2:d2:6c:57:37:7c:a5:8b:e7:23:22:b1:bc:0d: 0f:16:88:06:78:06:b4:a2:cc:e4:da:09:10:52:7a:1b:06:1b: aa:63:eb:91:b9:24:72:d1:cd:a8:20:b6:01:40:8d:28:ef:96: e2:95:99:64:9b:02:a1:03:a7:4c:46:f5:5e:33:3a:bc:eb:16: 00:2a:02:40:3d:64:44:81:e2:e1:bc:da:e4:fd:72:3c:2a:9c: 6f:b0:ab:2e:cb:1f:3f:37:cb:3c:24:49:4a:14:7d:7c:cf:ea: 3c:22:d6:aa:60:e3:67:0e:84:db:5a:95:0c:6b:d4:c7:c1:c7: 8c:e3:7e:0d:de:f5:0d:42:83:6d:42:32:4d:f8:57:e6:a1:82: b8:6d:e1:0a:f5:88:2e:83:f1:40:53:ea:d7:54:d9:cc:9e:a0: 43:f8:cf:a0:81:0f:3f:6b:f1:c0:33:6f:63:fe:ed:c3:d0:7e: 56:87:1f:fc:f1:0e:62:ca:d2:61:a2:f5:06:ea:e5:c5:e4:ad: e4:bc:52:54:9b:30:93:c8:75:17:2a:a0:aa:0f:ca:c1:c2:bc: 9d:8a:a4:e3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x5Yp16BpadRexQSj/OKYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1 OTVlYmEwHhcNMjYwMTAxMTgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjI2OTcwMDA1MTI3NmRiMGYzMWE0ODEyNDVhYWUxMWQwZDM0ZmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZmTM05f48GKuJBdF70RB+6Z+L4p IsXe6cXQlaHknbEvZVu0juZlQUOGkQ7oxFoUOvEQiuGGZL0IPxslWyVYHLu73rYn HPULohINN0qJDvs8jXwtad6skrlbjfn9/Lxv+2lxqTRjRdffeFmlA3klDj+SQkYW FsqgTEQ2hjwSw6cnhxLWn6JfHTYWJkyZEuV0lAYuOBiGA4c1RITi+3cG4MFkR93W pvuOHUmTlxhdEtGD8U/5QOSK2yZ/IapmWJQ3DFbePkYldNFpUKfgoMmJcsdn97Fc d2Qq2lXglg1K8LQ9O9CRlm4y/pxgBLQ7dL5o+SLJkMnmF4q/QShw+z3/vQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNsmlwAFEnbbDzGkgSRarhHQ00+pMB8GA1UdIwQY MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt MTA5ODJlMDQwZDUzLzEvMnlhWEFBVVNkdHNQTWFTQkpGcXVFZERUVDZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBcrgMA0G CSqGSIb3DQEBCwUAA4IBAQCUlzG781zNE/FVyns/1QuBen5OyGCXwrGLsTKVUYpM gBIkJJ3mv9Mj8tJsVzd8pYvnIyKxvA0PFogGeAa0oszk2gkQUnobBhuqY+uRuSRy 0c2oILYBQI0o75bilZlkmwKhA6dMRvVeMzq86xYAKgJAPWREgeLhvNrk/XI8Kpxv sKsuyx8/N8s8JElKFH18z+o8ItaqYONnDoTbWpUMa9THwceM434N3vUNQoNtQjJN +FfmoYK4beEK9Ygug/FAU+rXVNnMnqBD+M+ggQ8/a/HAM29j/u3D0H5Whx/88Q5i ytJhovUG6uXF5K3kvFJUmzCTyHUXKqCqD8rBwrydiqTj -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:58 2026 by rpki-client