This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Xr5hC74eJ4tLpOJLXrQI1SuodpI.roa File: Xr5hC74eJ4tLpOJLXrQI1SuodpI.roa (raw, json) Hash identifier: b0tDzkqSSuICISoO927icJVVwaWbZe1fSxIZ4s8GDr8= Subject key identifier: 5E:BE:61:0B:BE:1E:27:8B:4B:A4:E2:4B:5E:B4:08:D5:2B:A8:76:92 Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Certificate serial: 019B7F14B6507A9DE306A5B4EFB2C8D616CC Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Xr5hC74eJ4tLpOJLXrQI1SuodpI.roa Signing time: Fri 02 Jan 2026 14:20:22 +0000 ROA not before: Fri 02 Jan 2026 14:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56286 IP address blocks: 195.86.194.0/24 maxlen: 24 195.86.195.0/24 maxlen: 24 195.86.207.0/24 maxlen: 24 195.86.232.0/24 maxlen: 24 195.86.233.0/24 maxlen: 24 195.86.234.0/24 maxlen: 24 195.86.247.0/24 maxlen: 24 195.86.249.0/24 maxlen: 24 195.86.254.0/24 maxlen: 24 195.86.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:b6:50:7a:9d:e3:06:a5:b4:ef:b2:c8:d6:16:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Validity Not Before: Jan 2 14:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ebe610bbe1e278b4ba4e24b5eb408d52ba87692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1c:53:53:68:c8:05:10:1d:02:76:2e:f1:8b: fc:8e:9d:b4:0e:79:18:a7:ee:f3:ca:f5:9b:c5:40: fc:52:ff:1e:9b:47:48:7a:4c:8d:e4:6e:84:9e:26: d6:5c:fd:d6:b4:cd:8f:cc:b6:b7:33:a3:dc:46:12: 7b:34:de:20:9f:e2:8e:73:85:b2:25:a7:1a:6c:e0: 2b:2a:a5:77:9f:12:54:12:90:25:f5:ce:37:d0:bc: ff:02:f1:9c:b7:e3:12:fa:7d:d7:9f:37:f1:99:1a: 20:96:3c:b9:e0:96:a7:ea:f1:d7:ff:b0:b0:bb:b7: f7:5d:ae:b8:90:d3:90:74:5d:b1:a3:94:fb:14:a8: fb:e9:30:e4:10:48:5d:9a:95:57:3e:23:16:da:67: 38:2e:33:d2:bb:e7:b7:27:1e:7c:aa:1a:1c:54:da: e9:d2:cc:56:ce:bb:31:ff:9d:7c:c6:48:13:6e:56: be:3a:dc:5a:d5:ea:d9:65:fc:0f:cf:09:1d:a5:4d: 33:ba:a1:fe:ec:82:77:2b:8f:4f:e1:e7:e0:91:8c: 76:e1:de:de:ae:47:2a:0e:55:5e:f2:07:47:d9:73: cf:46:6d:b6:7a:68:3b:a4:b4:7e:c6:e7:9c:50:fe: 5c:71:fe:f0:4e:53:b4:82:15:95:82:11:ee:87:67: 34:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BE:61:0B:BE:1E:27:8B:4B:A4:E2:4B:5E:B4:08:D5:2B:A8:76:92 X509v3 Authority Key Identifier: keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Xr5hC74eJ4tLpOJLXrQI1SuodpI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.86.194.0/23 195.86.207.0/24 195.86.232.0-195.86.234.255 195.86.247.0/24 195.86.249.0/24 195.86.254.0/23 Signature Algorithm: sha256WithRSAEncryption e1:52:e5:17:ea:1a:36:f2:47:33:05:27:ee:c0:36:72:60:e5: c9:14:ef:31:99:b3:bb:0e:33:2b:2c:51:c0:49:d0:b7:53:d0: 9e:77:64:ad:d9:58:2c:ae:f0:37:da:44:07:f3:f0:cf:ae:9d: bb:5d:0e:54:0f:6d:3a:af:8d:85:62:9c:75:43:a0:d7:b6:f4: 14:a5:1c:46:42:67:c8:db:4a:3c:06:58:9a:36:aa:c2:ca:bf: c0:18:ec:10:02:5d:91:82:42:09:b7:77:3e:17:b6:63:a1:76: d7:cc:3b:5d:57:a7:80:fb:a0:be:92:f5:88:fc:a9:cc:6a:c9: b7:54:1e:0e:7d:c5:59:96:0d:94:68:a0:e5:15:08:d3:c4:6a: 0d:f4:af:57:7d:0a:e7:5a:be:ed:2e:5f:96:76:a5:3e:2b:8a: 00:53:17:7c:88:4c:46:6f:ec:7c:58:16:cb:af:90:8c:9b:ae: 8b:6e:14:d1:24:34:fd:38:63:54:3e:25:38:5d:e4:bf:a9:8a: 46:16:15:f7:4d:e4:3d:5e:7d:19:37:d9:b7:21:dc:b5:53:d5: 36:35:bc:c0:31:9c:45:ea:76:ad:77:3c:fe:80:d6:64:08:5b: 40:d0:c1:94:26:d8:ab:3a:f2:fe:20:b8:a3:c0:86:62:33:03: cc:ee:02:52 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt/FLZQep3jBqW077LI1hbMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0 NmQxNzEwHhcNMjYwMTAyMTQyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWJlNjEwYmJlMWUyNzhiNGJhNGUyNGI1ZWI0MDhkNTJiYTg3NjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xxTU2jIBRAdAnYu8Yv8jp20DnkY p+7zyvWbxUD8Uv8em0dIekyN5G6EnibWXP3WtM2PzLa3M6PcRhJ7NN4gn+KOc4Wy JacabOArKqV3nxJUEpAl9c430Lz/AvGct+MS+n3XnzfxmRogljy54Jan6vHX/7Cw u7f3Xa64kNOQdF2xo5T7FKj76TDkEEhdmpVXPiMW2mc4LjPSu+e3Jx58qhocVNrp 0sxWzrsx/518xkgTbla+Otxa1erZZfwPzwkdpU0zuqH+7IJ3K49P4efgkYx24d7e rkcqDlVe8gdH2XPPRm22emg7pLR+xuecUP5ccf7wTlO0ghWVghHuh2c0GwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFF6+YQu+HieLS6TiS160CNUrqHaSMB8GA1UdIwQY MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt MGNmMTA5M2Q0NTQ4LzEvWHI1aEM3NGVKNHRMcE9KTFhyUUkxU3VvZHBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4 LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQBw1bCAwQA w1bPMAwDBAPDVugDBADDVuoDBADDVvcDBADDVvkDBAHDVv4wDQYJKoZIhvcNAQEL BQADggEBAOFS5RfqGjbyRzMFJ+7ANnJg5ckU7zGZs7sOMyssUcBJ0LdT0J53ZK3Z WCyu8DfaRAfz8M+unbtdDlQPbTqvjYVinHVDoNe29BSlHEZCZ8jbSjwGWJo2qsLK v8AY7BACXZGCQgm3dz4XtmOhdtfMO11Xp4D7oL6S9Yj8qcxqybdUHg59xVmWDZRo oOUVCNPEag30r1d9Cudavu0uX5Z2pT4rigBTF3yITEZv7HxYFsuvkIybrotuFNEk NP04Y1Q+JThd5L+pikYWFfdN5D1efRk32bch3LVT1TY1vMAxnEXqdq13PP6A1mQI W0DQwZQm2Ks68v4guKPAhmIzA8zuAlI= -----END CERTIFICATE-----Generated at Sun Jan 25 12:22:58 2026 by rpki-client