This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/XXTLAzTN8ORt_-RYCj2-8C6GR00.roa File: XXTLAzTN8ORt_-RYCj2-8C6GR00.roa (raw, json) Hash identifier: 6BDh84FsMhXUtXLJgFo0Xh10o5gPmpg2C2PNspUTVCk= Subject key identifier: 5D:74:CB:03:34:CD:F0:E4:6D:FF:E4:58:0A:3D:BE:F0:2E:86:47:4D Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Certificate serial: 019B7A5AB78A58290AE1C661369288D90F1D Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/XXTLAzTN8ORt_-RYCj2-8C6GR00.roa Signing time: Thu 01 Jan 2026 16:18:44 +0000 ROA not before: Thu 01 Jan 2026 16:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216314 IP address blocks: 94.137.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:b7:8a:58:29:0a:e1:c6:61:36:92:88:d9:0f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Validity Not Before: Jan 1 16:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d74cb0334cdf0e46dffe4580a3dbef02e86474d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:60:20:4d:46:2a:0a:35:6c:67:02:ce:b3:07: ed:4a:59:cc:d7:f5:da:2f:c0:66:1e:82:49:b7:34: 5d:d7:28:a8:04:12:f0:96:0d:d1:e5:82:de:6a:ae: 86:fa:59:4d:b9:04:8d:67:8f:c9:9b:b1:0e:28:cb: ab:67:3f:b8:e9:4b:be:88:80:7a:ce:df:85:cf:c5: b7:1f:23:6b:b1:8b:5d:99:02:77:8e:2b:58:86:f3: 00:5f:16:34:e3:f3:10:c2:3a:6e:0a:73:c5:13:0b: a3:92:9e:29:64:2b:37:34:dc:1a:aa:b2:d0:54:78: b8:cd:64:ab:b2:b8:3e:41:99:df:15:ee:b2:66:7b: 47:67:32:87:f7:54:4f:68:cd:6f:ef:2e:1f:48:59: 4b:8f:0e:88:aa:a5:50:af:28:49:21:6c:c3:c9:8f: 97:db:ae:fd:3b:34:a0:74:33:cc:26:6e:8a:3b:21: 94:56:81:62:c1:1b:d2:ff:22:7c:67:bd:1a:c4:da: cd:1a:69:ef:9b:70:00:e1:e3:c0:54:69:b3:b7:e0: 54:84:2d:22:bf:ce:f1:ea:fb:0f:90:e6:3b:2e:27: 74:7e:f9:9e:6b:5f:fa:15:b0:4e:9b:4e:a8:38:ad: df:fe:85:38:c1:f0:c2:39:3e:e7:fb:ba:42:6f:b0: b9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:74:CB:03:34:CD:F0:E4:6D:FF:E4:58:0A:3D:BE:F0:2E:86:47:4D X509v3 Authority Key Identifier: keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/XXTLAzTN8ORt_-RYCj2-8C6GR00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.137.93.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:dd:32:19:43:f1:67:31:39:45:ee:63:16:34:e9:60:a0:20: 0a:82:2e:2f:4a:67:16:07:77:00:83:96:f4:f2:4d:6b:76:7a: a4:af:f6:4c:37:53:8c:39:03:fc:7d:00:49:6d:1d:ce:ac:34: 15:30:ed:c4:57:f0:d8:4f:f5:07:fc:4b:ac:34:f5:eb:7b:0d: fb:ff:a3:b7:97:b6:2b:54:c1:be:9e:27:59:c3:98:90:34:32: f6:67:76:98:0f:40:1d:54:b0:74:7b:1f:1b:5b:4e:e1:a6:00: 20:2a:a8:99:40:f7:5f:52:b4:ff:10:bf:2e:a1:df:35:53:40: c3:88:a5:d7:fb:5e:49:36:f1:99:e8:56:26:19:a4:87:47:4d: e5:63:c4:44:e6:95:d7:05:3d:7e:32:d5:2b:59:69:e9:ce:9d: 47:5d:8c:6f:26:bd:4f:96:89:ca:ac:e3:30:67:ba:48:46:1b: 61:4a:83:87:36:4e:0d:b3:9e:90:d1:f9:e9:5c:53:3c:a0:26: 57:3d:e5:40:84:94:09:ee:fc:51:08:ff:ee:3d:5e:c9:d3:a9: 91:b7:75:12:c2:12:98:f7:e0:03:c8:f5:69:3e:e2:de:2c:98: 2f:b3:5d:9a:1d:7e:92:ae:14:46:87:df:62:74:6b:17:92:af: ed:aa:e8:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WreKWCkK4cZhNpKI2Q8dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWMwYWNiZmRiN2EyNzRlZjM2YzE2ZjU4NjBhZGEyYTI0 NzA2OTcwHhcNMjYwMTAxMTYxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDc0Y2IwMzM0Y2RmMGU0NmRmZmU0NTgwYTNkYmVmMDJlODY0NzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4GAgTUYqCjVsZwLOswftSlnM1/Xa L8BmHoJJtzRd1yioBBLwlg3R5YLeaq6G+llNuQSNZ4/Jm7EOKMurZz+46Uu+iIB6 zt+Fz8W3HyNrsYtdmQJ3jitYhvMAXxY04/MQwjpuCnPFEwujkp4pZCs3NNwaqrLQ VHi4zWSrsrg+QZnfFe6yZntHZzKH91RPaM1v7y4fSFlLjw6IqqVQryhJIWzDyY+X 2679OzSgdDPMJm6KOyGUVoFiwRvS/yJ8Z70axNrNGmnvm3AA4ePAVGmzt+BUhC0i v87x6vsPkOY7Lid0fvmea1/6FbBOm06oOK3f/oU4wfDCOT7n+7pCb7C5XQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF10ywM0zfDkbf/kWAo9vvAuhkdNMB8GA1UdIwQY MBaAFImsCsv9t6J07zbBb1hgraKiRwaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMt ZDRkYmY3MDY2ZmQzLzEvWFhUTEF6VE44T1J0Xy1SWUNqMi04QzZHUjAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMtZDRkYmY3MDY2ZmQz LzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXoldMA0G CSqGSIb3DQEBCwUAA4IBAQBP3TIZQ/FnMTlF7mMWNOlgoCAKgi4vSmcWB3cAg5b0 8k1rdnqkr/ZMN1OMOQP8fQBJbR3OrDQVMO3EV/DYT/UH/EusNPXrew37/6O3l7Yr VMG+nidZw5iQNDL2Z3aYD0AdVLB0ex8bW07hpgAgKqiZQPdfUrT/EL8uod81U0DD iKXX+15JNvGZ6FYmGaSHR03lY8RE5pXXBT1+MtUrWWnpzp1HXYxvJr1PlonKrOMw Z7pIRhthSoOHNk4Ns56Q0fnpXFM8oCZXPeVAhJQJ7vxRCP/uPV7J06mRt3USwhKY 9+ADyPVpPuLeLJgvs12aHX6SrhRGh99idGsXkq/tquhI -----END CERTIFICATE-----Generated at Sun Jan 25 23:49:11 2026 by rpki-client