This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/_dXE-UR4YRoA9ses5dqlWyYCiIk.roa File: _dXE-UR4YRoA9ses5dqlWyYCiIk.roa (raw, json) Hash identifier: mq7uXlOBNSd5zRdIjUiiLaVvztFPBgtSE6JrvNPES20= Subject key identifier: FD:D5:C4:F9:44:78:61:1A:00:F6:C7:AC:E5:DA:A5:5B:26:02:88:89 Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881 Certificate serial: 019B7B369BB11845CF734BB6AF29A9550164 Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/_dXE-UR4YRoA9ses5dqlWyYCiIk.roa Signing time: Thu 01 Jan 2026 20:18:54 +0000 ROA not before: Thu 01 Jan 2026 20:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50779 IP address blocks: 85.31.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.mft rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:9b:b1:18:45:cf:73:4b:b6:af:29:a9:55:01:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881 Validity Not Before: Jan 1 20:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fdd5c4f94478611a00f6c7ace5daa55b26028889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ec:ca:e2:01:5b:3a:b4:52:23:42:db:aa:13: 76:76:af:0b:2c:51:f2:ff:40:fa:68:2b:f9:f4:66: 92:ae:6e:40:80:ed:78:95:2f:f0:86:02:d1:1a:b6: 86:29:83:37:d8:34:eb:20:cc:3a:a4:aa:2c:12:16: 3a:03:f2:8c:a1:b1:50:11:1f:c7:10:7a:42:5d:e4: c5:d2:58:b3:e6:34:3c:f7:92:fd:0f:94:43:e8:b9: 2a:94:b5:42:ee:fe:75:19:35:f5:7e:c8:f1:79:0f: 34:bf:87:ea:09:e6:3b:35:d0:2f:0f:f8:6a:d7:10: ba:ad:8e:cd:6f:3f:d3:6f:da:e9:d5:4c:37:f8:9d: b4:06:b1:df:3d:89:58:10:19:3c:8a:35:34:79:86: b2:0d:b0:06:7c:47:ae:2e:b6:54:9b:83:20:52:b8: 53:aa:1a:32:c3:bd:81:c9:8d:2e:73:87:f6:c6:a1: 32:de:1f:66:94:3e:20:7f:fd:5e:ad:03:75:19:6c: 5d:48:c1:00:72:40:d9:96:c0:bd:14:3c:b4:84:46: ce:3e:e5:e9:09:a6:0b:8a:77:81:a5:eb:20:55:4a: 6d:1b:61:38:f8:06:37:85:68:3f:cb:7d:11:42:7c: c0:f7:d9:66:7d:05:90:ac:a9:f0:b0:85:38:60:9f: fa:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D5:C4:F9:44:78:61:1A:00:F6:C7:AC:E5:DA:A5:5B:26:02:88:89 X509v3 Authority Key Identifier: keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/_dXE-UR4YRoA9ses5dqlWyYCiIk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.31.220.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:55:62:a8:ff:71:b8:d4:e8:23:4c:3d:cf:c1:50:62:9a:38: 6d:c3:96:95:3f:58:40:6c:05:de:d7:4e:f7:66:8b:bd:da:3c: e9:fb:13:5a:c5:68:a6:a6:ce:37:7d:9b:9d:d3:0a:06:31:81: 0f:49:2c:06:84:60:98:3e:e5:c7:f8:2a:99:36:ae:f3:2c:63: f3:7e:29:86:4a:d7:07:3d:53:53:b0:60:6e:31:ba:56:f8:a7: 60:41:c2:83:98:e3:41:6b:f2:64:ec:3d:d8:d4:c4:7b:34:59: 6f:16:b3:ed:11:2d:f5:0c:45:30:60:96:64:34:8b:60:89:00: fc:b1:5e:ea:48:61:c2:0d:53:94:ca:c9:67:7c:3c:41:67:8d: 7c:47:e2:8c:35:fc:fa:d0:dd:2f:a8:15:f7:39:66:35:0d:ea: c1:0f:58:f2:23:99:d9:11:3c:57:6d:2f:97:58:4f:36:26:4e: 28:0f:3d:0b:6c:12:af:36:95:7c:57:41:2f:3a:37:99:32:0f: 41:ba:b5:7c:b2:55:fd:34:5d:da:31:cc:21:07:98:d7:3f:b8: d4:75:d5:d2:cc:a7:08:e7:cf:62:f1:0d:b3:a3:89:d3:78:1c: c6:75:1b:3e:6e:27:a6:45:2f:ea:e5:e0:63:02:6f:00:50:3b: 50:01:d9:3a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NpuxGEXPc0u2rympVQFkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5MDllZTNkNjE4OTc0ZGEwY2JkODA1YTJkYTgwNDEwYTQ5 ODk4ODEwHhcNMjYwMTAxMjAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZGQ1YzRmOTQ0Nzg2MTFhMDBmNmM3YWNlNWRhYTU1YjI2MDI4ODg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OzK4gFbOrRSI0LbqhN2dq8LLFHy /0D6aCv59GaSrm5AgO14lS/whgLRGraGKYM32DTrIMw6pKosEhY6A/KMobFQER/H EHpCXeTF0liz5jQ895L9D5RD6LkqlLVC7v51GTX1fsjxeQ80v4fqCeY7NdAvD/hq 1xC6rY7Nbz/Tb9rp1Uw3+J20BrHfPYlYEBk8ijU0eYayDbAGfEeuLrZUm4MgUrhT qhoyw72ByY0uc4f2xqEy3h9mlD4gf/1erQN1GWxdSMEAckDZlsC9FDy0hEbOPuXp CaYLineBpesgVUptG2E4+AY3hWg/y30RQnzA99lmfQWQrKnwsIU4YJ/6YwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP3VxPlEeGEaAPbHrOXapVsmAoiJMB8GA1UdIwQY MBaAFOkJ7j1hiXTaDL2AWi2oBBCkmJiBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEt ZGQxMTVmOWUzMzAxLzEvX2RYRS1VUjRZUm9BOXNlczVkcWxXeVlDaUlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEtZGQxMTVmOWUzMzAx LzEvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVR/cMA0G CSqGSIb3DQEBCwUAA4IBAQANVWKo/3G41OgjTD3PwVBimjhtw5aVP1hAbAXe1073 Zou92jzp+xNaxWimps43fZud0woGMYEPSSwGhGCYPuXH+CqZNq7zLGPzfimGStcH PVNTsGBuMbpW+KdgQcKDmONBa/Jk7D3Y1MR7NFlvFrPtES31DEUwYJZkNItgiQD8 sV7qSGHCDVOUyslnfDxBZ418R+KMNfz60N0vqBX3OWY1DerBD1jyI5nZETxXbS+X WE82Jk4oDz0LbBKvNpV8V0EvOjeZMg9BurV8slX9NF3aMcwhB5jXP7jUddXSzKcI 589i8Q2zo4nTeBzGdRs+biemRS/q5eBjAm8AUDtQAdk6 -----END CERTIFICATE-----Generated at Sun Jan 25 19:35:16 2026 by rpki-client