This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/XTxevz1p55E6MXkUWpAA6leZNbw.roa File: XTxevz1p55E6MXkUWpAA6leZNbw.roa (raw, json) Hash identifier: 9+ZeJEHHm5NRQbkIiB7hcaKwfupyZc9wFisuoKdir6c= Subject key identifier: 5D:3C:5E:BF:3D:69:E7:91:3A:31:79:14:5A:90:00:EA:57:99:35:BC Certificate issuer: /CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb Certificate serial: 019BE02DCA446152324E765D5005C0DCFEB8 Authority key identifier: 30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/XTxevz1p55E6MXkUWpAA6leZNbw.roa Signing time: Wed 21 Jan 2026 10:50:55 +0000 ROA not before: Wed 21 Jan 2026 10:50:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214025 IP address blocks: 185.56.45.0/24 maxlen: 24 185.56.46.0/24 maxlen: 24 185.87.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.mft rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:2d:ca:44:61:52:32:4e:76:5d:50:05:c0:dc:fe:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb Validity Not Before: Jan 21 10:50:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d3c5ebf3d69e7913a3179145a9000ea579935bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:95:9e:b9:c6:f2:eb:04:ff:07:05:7b:47:87: 94:f7:85:8d:f2:f8:50:73:fc:e0:54:a4:21:81:99: 8f:8f:f7:0c:64:73:09:88:8e:a0:5d:fb:46:11:69: 6c:ea:3e:94:79:bf:f8:42:43:63:b0:67:47:96:d8: 47:9e:9f:e7:b2:92:a2:db:34:da:eb:45:ab:ff:4e: 27:c2:e9:64:31:ab:ef:28:38:f9:08:a4:05:27:ac: 55:c9:cd:56:6f:fa:be:1b:17:a8:8e:1c:a0:ae:d0: 5b:39:e7:b7:b6:76:dc:be:86:46:8c:10:5e:55:08: 74:80:60:55:8a:4f:a2:33:4d:2c:bb:01:a9:cc:14: 85:57:ea:6a:73:c8:df:bb:f9:b1:db:09:32:c8:d8: cf:4d:14:2c:21:4f:e7:56:f2:5d:f3:76:b0:5f:87: 81:f7:fb:56:41:d9:7f:ef:c5:63:98:3d:a1:12:5d: 35:63:ef:56:79:99:c4:9d:76:0b:42:40:cf:10:cd: 6e:43:90:6c:93:3e:a9:a0:2e:8f:bc:39:49:05:99: a0:b8:5b:48:97:c9:e7:3f:d4:16:6d:52:9a:8f:ce: 4f:79:f9:87:a2:58:d3:b2:ee:7f:82:51:b4:fc:0c: 74:dc:e2:8d:ca:e0:2d:63:cc:97:51:e9:38:71:3c: 91:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3C:5E:BF:3D:69:E7:91:3A:31:79:14:5A:90:00:EA:57:99:35:BC X509v3 Authority Key Identifier: keyid:30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/XTxevz1p55E6MXkUWpAA6leZNbw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.45.0-185.56.46.255 185.87.59.0/24 Signature Algorithm: sha256WithRSAEncryption 83:68:af:aa:2d:fa:ac:c7:ba:84:cf:4e:f9:69:dc:cb:52:1e: 40:b5:b3:a6:52:0c:74:86:dd:54:16:81:e1:b2:62:b0:91:85: f9:e0:fa:56:5b:0a:92:68:d5:d1:f5:03:c1:93:32:43:3b:cd: 03:2c:f1:51:f3:cf:10:c8:e0:cc:cd:2a:7c:77:1b:ed:35:60: 60:9e:05:f9:f6:de:99:9d:98:35:e6:31:0f:90:53:f5:f3:c2: 5d:82:34:7f:91:87:3d:f4:40:ad:ec:a6:22:2c:cc:7e:ad:e7: 1e:f7:3f:f4:5f:35:d1:22:42:bf:04:be:58:d1:6a:f5:3e:62: f4:62:fe:13:94:9f:fb:48:a3:a3:02:f8:a1:cc:a8:94:ee:54: ac:a3:34:bd:85:2c:84:15:3d:93:36:55:5a:33:d3:b5:62:92: 04:6a:45:b9:99:7d:2a:ba:62:74:0a:31:41:f8:bd:17:01:d2: 0e:ea:3c:7f:eb:9c:63:5a:8e:6c:ff:c0:5d:ba:61:7f:cf:0c: 32:bb:e1:c0:cf:0e:bc:78:7f:bf:3b:5c:cd:39:c6:c7:96:54: 92:57:1a:cc:3a:25:70:5b:67:59:0d:64:39:0d:ba:e3:3e:76: 9a:e3:6b:e7:72:7b:24:d6:05:8e:b2:49:11:19:fb:12:66:23: 11:31:e9:0d -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZvgLcpEYVIyTnZdUAXA3P64MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwMjdhNjMxYmI2NzM4ZWI2OGJiNmVhNmM0MjRlZjRhN2Qx NGMzY2IwHhcNMjYwMTIxMTA1MDU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDNjNWViZjNkNjllNzkxM2EzMTc5MTQ1YTkwMDBlYTU3OTkzNWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ZWeucby6wT/BwV7R4eU94WN8vhQ c/zgVKQhgZmPj/cMZHMJiI6gXftGEWls6j6Ueb/4QkNjsGdHlthHnp/nspKi2zTa 60Wr/04nwulkMavvKDj5CKQFJ6xVyc1Wb/q+GxeojhygrtBbOee3tnbcvoZGjBBe VQh0gGBVik+iM00suwGpzBSFV+pqc8jfu/mx2wkyyNjPTRQsIU/nVvJd83awX4eB 9/tWQdl/78VjmD2hEl01Y+9WeZnEnXYLQkDPEM1uQ5Bskz6poC6PvDlJBZmguFtI l8nnP9QWbVKaj85PefmHoljTsu5/glG0/Ax03OKNyuAtY8yXUek4cTyRfQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFF08Xr89aeeROjF5FFqQAOpXmTW8MB8GA1UdIwQY MBaAFDAnpjG7ZzjraLtupsQk70p9FMPLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUNlbU1idG5PT3RvdTI2bXhDVHZTbjBVdzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS84ZDc4ZWItMjgzMi00MDgzLWFlMWYt MWRkNmQyODFjODhhLzEvWFR4ZXZ6MXA1NUU2TVhrVVdwQUE2bGVaTmJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS84ZDc4ZWItMjgzMi00MDgzLWFlMWYtMWRkNmQyODFjODhh LzEvTUNlbU1idG5PT3RvdTI2bXhDVHZTbjBVdzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAC5OC0D BAC5OC4DBAC5VzswDQYJKoZIhvcNAQELBQADggEBAINor6ot+qzHuoTPTvlp3MtS HkC1s6ZSDHSG3VQWgeGyYrCRhfng+lZbCpJo1dH1A8GTMkM7zQMs8VHzzxDI4MzN Knx3G+01YGCeBfn23pmdmDXmMQ+QU/Xzwl2CNH+Rhz30QK3spiIszH6t5x73P/Rf NdEiQr8EvljRavU+YvRi/hOUn/tIo6MC+KHMqJTuVKyjNL2FLIQVPZM2VVoz07Vi kgRqRbmZfSq6YnQKMUH4vRcB0g7qPH/rnGNajmz/wF26YX/PDDK74cDPDrx4f787 XM05xseWVJJXGsw6JXBbZ1kNZDkNuuM+dprja+dyeyTWBY6ySREZ+xJmIxEx6Q0= -----END CERTIFICATE-----Generated at Sun Jan 25 17:36:25 2026 by rpki-client