This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/6708aa-f6df-4c4d-92bd-e9f1c591cedc/1/Xw0tG7wkuJ53SwbNc0cLbPMmcp4.roa File: Xw0tG7wkuJ53SwbNc0cLbPMmcp4.roa (raw, json) Hash identifier: Q04fJI0pywOQvv0zS/yBZaHryv+3l7wVIcVq1qKuHZI= Subject key identifier: 5F:0D:2D:1B:BC:24:B8:9E:77:4B:06:CD:73:47:0B:6C:F3:26:72:9E Certificate issuer: /CN=97492ecc37bae2b9f81da029385817d433c50467 Certificate serial: 019B7EA68F7E349686E5E40D4AE06996B625 Authority key identifier: 97:49:2E:CC:37:BA:E2:B9:F8:1D:A0:29:38:58:17:D4:33:C5:04:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0kuzDe64rn4HaApOFgX1DPFBGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/6708aa-f6df-4c4d-92bd-e9f1c591cedc/1/Xw0tG7wkuJ53SwbNc0cLbPMmcp4.roa Signing time: Fri 02 Jan 2026 12:20:03 +0000 ROA not before: Fri 02 Jan 2026 12:20:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202371 IP address blocks: 2.56.131.0/24 maxlen: 24 185.133.127.0/24 maxlen: 24 2a0e:ff00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/6708aa-f6df-4c4d-92bd-e9f1c591cedc/1/l0kuzDe64rn4HaApOFgX1DPFBGc.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/6708aa-f6df-4c4d-92bd-e9f1c591cedc/1/l0kuzDe64rn4HaApOFgX1DPFBGc.mft rsync://rpki.ripe.net/repository/DEFAULT/l0kuzDe64rn4HaApOFgX1DPFBGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:8f:7e:34:96:86:e5:e4:0d:4a:e0:69:96:b6:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97492ecc37bae2b9f81da029385817d433c50467 Validity Not Before: Jan 2 12:20:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f0d2d1bbc24b89e774b06cd73470b6cf326729e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:37:9b:80:21:c7:a2:5a:10:08:01:12:10:c4: a1:40:fd:64:c3:23:84:b8:d7:22:aa:8d:33:35:3d: 25:22:6a:5b:69:f7:00:1a:8e:47:80:5d:13:df:a3: 43:3b:3b:52:7e:34:db:f9:ff:66:31:67:60:45:16: dc:42:33:13:60:c8:a0:67:d2:15:a4:2f:91:e2:f1: e1:a8:b2:99:2e:c9:25:d1:aa:8c:db:70:d0:7d:41: 32:e8:b6:14:b9:c3:1c:5a:67:31:b9:80:80:cc:26: a1:43:11:7e:72:4d:56:77:0e:c5:df:46:21:75:23: b9:4e:50:9b:09:c3:64:1b:b0:5e:6e:e6:ad:c7:b4: 08:4c:14:9b:a9:50:b0:52:3e:54:2e:da:42:34:4c: be:a6:68:14:4a:08:47:ca:83:a1:5d:3a:c1:e4:07: d1:a0:18:d0:8b:92:9d:f3:97:74:d4:d0:0d:47:f2: 17:08:b6:42:ce:b0:f2:a6:7f:ce:d3:5d:d6:af:e7: 7f:03:b8:7e:33:0d:6e:a6:1a:de:63:c6:4c:86:e3: c5:02:f6:53:81:39:1f:8d:04:47:ff:a2:5b:4e:9e: 47:7b:f9:04:8a:d2:b2:20:96:eb:63:15:92:61:d8: 5f:36:bf:39:18:23:1c:a3:09:3d:2a:f0:35:65:7d: a4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:0D:2D:1B:BC:24:B8:9E:77:4B:06:CD:73:47:0B:6C:F3:26:72:9E X509v3 Authority Key Identifier: keyid:97:49:2E:CC:37:BA:E2:B9:F8:1D:A0:29:38:58:17:D4:33:C5:04:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0kuzDe64rn4HaApOFgX1DPFBGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6708aa-f6df-4c4d-92bd-e9f1c591cedc/1/Xw0tG7wkuJ53SwbNc0cLbPMmcp4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6708aa-f6df-4c4d-92bd-e9f1c591cedc/1/l0kuzDe64rn4HaApOFgX1DPFBGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.131.0/24 185.133.127.0/24 IPv6: 2a0e:ff00::/29 Signature Algorithm: sha256WithRSAEncryption 48:19:95:4d:32:9d:51:30:ea:84:94:f3:6d:33:28:0f:7c:c6: 67:10:75:2e:65:0f:8f:3a:cb:75:d8:d9:9a:62:90:e2:3e:6b: 90:1b:56:31:1e:ed:9a:d8:0c:69:1f:32:33:2b:f5:f4:44:11: 52:84:6c:5a:03:98:45:a5:a7:0c:8c:2f:fc:cb:b3:50:10:df: 32:5f:62:15:32:f3:2e:6f:01:9d:1e:8f:3c:2d:61:da:68:9e: 51:3b:94:04:44:2c:3c:ee:c0:86:d8:7f:f0:bf:98:7b:45:82: 87:04:1f:63:d6:75:17:fd:94:3b:e5:ce:8d:c7:ce:75:bb:e7: 30:b0:20:97:5a:4d:d5:59:95:ad:d7:d5:b0:9a:9c:ef:fd:65: ab:eb:82:79:ec:3a:1c:b3:7b:df:8f:f3:30:8f:ee:9d:7d:c0: 5a:6c:f5:f3:11:d4:f1:9a:79:0e:3f:5a:d6:4f:34:88:86:ec: 34:6a:65:a8:c8:9e:6d:b5:c5:da:75:61:c1:4e:70:fe:86:cb: 25:1f:96:a3:c5:04:1b:c4:df:23:e6:f6:d0:db:fa:f5:4d:db: ca:08:47:44:2f:34:f0:50:c1:86:f0:b0:af:9e:94:79:04:d5: 4a:21:d6:48:f3:b6:3a:37:a5:80:3d:01:c7:7b:42:82:b4:17: 7c:78:7c:6e -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt+po9+NJaG5eQNSuBplrYlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3NDkyZWNjMzdiYWUyYjlmODFkYTAyOTM4NTgxN2Q0MzNj NTA0NjcwHhcNMjYwMTAyMTIyMDAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjBkMmQxYmJjMjRiODllNzc0YjA2Y2Q3MzQ3MGI2Y2YzMjY3MjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjebgCHHoloQCAESEMShQP1kwyOE uNciqo0zNT0lImpbafcAGo5HgF0T36NDOztSfjTb+f9mMWdgRRbcQjMTYMigZ9IV pC+R4vHhqLKZLskl0aqM23DQfUEy6LYUucMcWmcxuYCAzCahQxF+ck1Wdw7F30Yh dSO5TlCbCcNkG7Bebuatx7QITBSbqVCwUj5ULtpCNEy+pmgUSghHyoOhXTrB5AfR oBjQi5Kd85d01NANR/IXCLZCzrDypn/O013Wr+d/A7h+Mw1uphreY8ZMhuPFAvZT gTkfjQRH/6JbTp5He/kEitKyIJbrYxWSYdhfNr85GCMcowk9KvA1ZX2k1wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFF8NLRu8JLied0sGzXNHC2zzJnKeMB8GA1UdIwQY MBaAFJdJLsw3uuK5+B2gKThYF9QzxQRnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDBrdXpEZTY0cm40SGFBcE9GZ1gxRFBGQkdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS82NzA4YWEtZjZkZi00YzRkLTkyYmQt ZTlmMWM1OTFjZWRjLzEvWHcwdEc3d2t1SjUzU3diTmMwY0xiUE1tY3A0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS82NzA4YWEtZjZkZi00YzRkLTkyYmQtZTlmMWM1OTFjZWRj LzEvbDBrdXpEZTY0cm40SGFBcE9GZ1gxRFBGQkdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAAjiDAwQA uYV/MA0EAgACMAcDBQMqDv8AMA0GCSqGSIb3DQEBCwUAA4IBAQBIGZVNMp1RMOqE lPNtMygPfMZnEHUuZQ+POst12NmaYpDiPmuQG1YxHu2a2AxpHzIzK/X0RBFShGxa A5hFpacMjC/8y7NQEN8yX2IVMvMubwGdHo88LWHaaJ5RO5QERCw87sCG2H/wv5h7 RYKHBB9j1nUX/ZQ75c6Nx851u+cwsCCXWk3VWZWt19Wwmpzv/WWr64J57Docs3vf j/Mwj+6dfcBabPXzEdTxmnkOP1rWTzSIhuw0amWoyJ5ttcXadWHBTnD+hsslH5aj xQQbxN8j5vbQ2/r1TdvKCEdELzTwUMGG8LCvnpR5BNVKIdZI87Y6N6WAPQHHe0KC tBd8eHxu -----END CERTIFICATE-----Generated at Mon Jan 26 07:07:24 2026 by rpki-client