This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/XvuMMh6_b9Q_-y9zoflvfhhJ8cU.roa File: XvuMMh6_b9Q_-y9zoflvfhhJ8cU.roa (raw, json) Hash identifier: arKO35haYoOypMHOByST819307xwbCJtuXRuiew9430= Subject key identifier: 5E:FB:8C:32:1E:BF:6F:D4:3F:FB:2F:73:A1:F9:6F:7E:18:49:F1:C5 Certificate issuer: /CN=335ca521362226d03c1829003d81d498aa838f33 Certificate serial: 019B7E377F97D8AA8A295F1A30C36E5DC4B1 Authority key identifier: 33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/XvuMMh6_b9Q_-y9zoflvfhhJ8cU.roa Signing time: Fri 02 Jan 2026 10:18:44 +0000 ROA not before: Fri 02 Jan 2026 10:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200393 IP address blocks: 185.186.223.0/24 maxlen: 24 2a11:1e40:5aa5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.mft rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:7f:97:d8:aa:8a:29:5f:1a:30:c3:6e:5d:c4:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=335ca521362226d03c1829003d81d498aa838f33 Validity Not Before: Jan 2 10:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5efb8c321ebf6fd43ffb2f73a1f96f7e1849f1c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1f:66:8a:b1:41:ea:78:28:13:e7:c5:f9:b3: 67:f9:55:5c:ac:88:04:d2:87:b4:d7:45:72:17:3c: ef:3c:d0:10:c2:8e:e8:14:f7:c4:bf:39:bb:41:13: 4c:8b:92:cf:8e:3f:db:41:28:8f:80:8b:ec:c3:2b: fa:0b:1b:1e:cb:6f:d4:9e:34:37:c7:5e:5a:a4:29: ad:3c:95:01:4f:c4:66:d3:18:0b:28:95:d1:36:82: 4a:79:57:c3:0f:9f:93:6b:83:14:ca:9e:98:19:d7: 97:bc:11:d3:17:c4:d4:9e:79:be:c3:43:c4:5f:77: 94:55:9f:ec:5e:83:ae:fb:67:36:21:dd:4c:2c:3e: da:a5:c5:df:3b:80:b9:7e:75:c9:4c:4a:3a:c0:ef: d7:1a:33:dd:83:db:6d:bb:62:b3:51:8f:80:3a:ef: 3e:97:7f:76:60:de:55:c1:db:c7:cf:90:42:3c:c4: 55:52:af:d2:50:a2:0f:18:e0:ad:2b:cf:c4:16:2d: fc:f1:4f:b6:3a:35:3e:41:55:f7:19:d4:70:51:54: 73:a3:29:c4:d7:6b:e8:e8:5a:e4:78:58:7c:61:a7: 4d:11:57:43:1a:48:f9:1b:df:a7:00:ea:95:87:2c: 7f:0c:20:82:89:ff:e1:87:4e:96:83:a7:3f:96:a2: 56:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FB:8C:32:1E:BF:6F:D4:3F:FB:2F:73:A1:F9:6F:7E:18:49:F1:C5 X509v3 Authority Key Identifier: keyid:33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/XvuMMh6_b9Q_-y9zoflvfhhJ8cU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.186.223.0/24 IPv6: 2a11:1e40:5aa5::/48 Signature Algorithm: sha256WithRSAEncryption 86:04:7b:cf:a8:b9:27:df:ee:45:41:84:69:25:e6:c4:81:fc: 15:10:73:41:52:f2:5c:4d:99:61:47:46:7d:2f:cc:a6:7d:0d: c0:3e:f5:84:25:9b:58:a4:73:87:0b:5e:01:50:eb:a4:ec:9b: bf:12:25:46:d5:4e:f5:37:ef:f9:7a:9f:05:38:dd:f3:6a:3d: 53:2c:30:f8:cd:24:5a:e6:e1:6f:03:94:7a:2d:59:01:8c:39: 86:b2:55:a4:71:df:1d:e4:1a:eb:33:ac:f2:63:59:62:73:fd: cb:14:7e:80:df:c4:f9:ca:1d:c4:bb:71:7f:c5:c7:e7:33:65: a8:68:80:19:82:04:29:d8:fe:61:e8:34:f3:11:83:d1:c9:90: b1:78:73:b6:46:88:6c:cc:2a:62:7f:53:76:43:13:12:c1:ff: 24:f6:be:38:83:b1:c0:f4:c1:cb:52:7e:45:9c:7f:0e:62:09: 98:b5:75:f9:86:88:4e:8d:21:88:0d:ce:17:95:46:ec:61:2d: 8c:6e:d9:7f:08:37:61:f7:d5:8c:39:a4:d2:84:37:1a:94:48: 89:0e:cb:54:20:ec:7b:d4:62:9a:8d:80:9c:6f:7d:c5:da:46: d7:42:1a:53:12:4a:6e:b5:2e:42:ea:0e:2d:ab:7a:c0:da:82: bb:0d:32:1c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+N3+X2KqKKV8aMMNuXcSxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNWNhNTIxMzYyMjI2ZDAzYzE4MjkwMDNkODFkNDk4YWE4 MzhmMzMwHhcNMjYwMTAyMTAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWZiOGMzMjFlYmY2ZmQ0M2ZmYjJmNzNhMWY5NmY3ZTE4NDlmMWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0R9mirFB6ngoE+fF+bNn+VVcrIgE 0oe010VyFzzvPNAQwo7oFPfEvzm7QRNMi5LPjj/bQSiPgIvswyv6Cxsey2/UnjQ3 x15apCmtPJUBT8Rm0xgLKJXRNoJKeVfDD5+Ta4MUyp6YGdeXvBHTF8TUnnm+w0PE X3eUVZ/sXoOu+2c2Id1MLD7apcXfO4C5fnXJTEo6wO/XGjPdg9ttu2KzUY+AOu8+ l392YN5VwdvHz5BCPMRVUq/SUKIPGOCtK8/EFi388U+2OjU+QVX3GdRwUVRzoynE 12vo6FrkeFh8YadNEVdDGkj5G9+nAOqVhyx/DCCCif/hh06Wg6c/lqJWcwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFF77jDIev2/UP/svc6H5b34YSfHFMB8GA1UdIwQY MBaAFDNcpSE2IibQPBgpAD2B1Jiqg48zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTF5bElUWWlKdEE4R0NrQVBZSFVtS3FEanpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9kYzYwOGEtMTc1ZS00MmQzLTkzZDgt OTc0YzQ0YWI5Y2ZiLzEvWHZ1TU1oNl9iOVFfLXk5em9mbHZmaGhKOGNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9kYzYwOGEtMTc1ZS00MmQzLTkzZDgtOTc0YzQ0YWI5Y2Zi LzEvTTF5bElUWWlKdEE4R0NrQVBZSFVtS3FEanpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAubrfMA8E AgACMAkDBwAqER5AWqUwDQYJKoZIhvcNAQELBQADggEBAIYEe8+ouSff7kVBhGkl 5sSB/BUQc0FS8lxNmWFHRn0vzKZ9DcA+9YQlm1ikc4cLXgFQ66Tsm78SJUbVTvU3 7/l6nwU43fNqPVMsMPjNJFrm4W8DlHotWQGMOYayVaRx3x3kGuszrPJjWWJz/csU foDfxPnKHcS7cX/Fx+czZahogBmCBCnY/mHoNPMRg9HJkLF4c7ZGiGzMKmJ/U3ZD ExLB/yT2vjiDscD0wctSfkWcfw5iCZi1dfmGiE6NIYgNzheVRuxhLYxu2X8IN2H3 1Yw5pNKENxqUSIkOy1Qg7HvUYpqNgJxvfcXaRtdCGlMSSm61LkLqDi2resDagrsN Mhw= -----END CERTIFICATE-----Generated at Mon Jan 26 15:35:28 2026 by rpki-client