This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/Xm7CSatgWoiFWFoLjdzPyqLwt4Y.roa File: Xm7CSatgWoiFWFoLjdzPyqLwt4Y.roa (raw, json) Hash identifier: ljTW1e8jbhPOBJuEbeNSNc8GJIV6MJTPAjrHkhEAZP8= Subject key identifier: 5E:6E:C2:49:AB:60:5A:88:85:58:5A:0B:8D:DC:CF:CA:A2:F0:B7:86 Certificate issuer: /CN=1486b4a08ace60e670edcd89fadb254011562f53 Certificate serial: 019B7B3566D46F746D000BD1497934B5ED83 Authority key identifier: 14:86:B4:A0:8A:CE:60:E6:70:ED:CD:89:FA:DB:25:40:11:56:2F:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FIa0oIrOYOZw7c2J-tslQBFWL1M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/Xm7CSatgWoiFWFoLjdzPyqLwt4Y.roa Signing time: Thu 01 Jan 2026 20:17:35 +0000 ROA not before: Thu 01 Jan 2026 20:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208377 IP address blocks: 193.242.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/FIa0oIrOYOZw7c2J-tslQBFWL1M.crl rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/FIa0oIrOYOZw7c2J-tslQBFWL1M.mft rsync://rpki.ripe.net/repository/DEFAULT/FIa0oIrOYOZw7c2J-tslQBFWL1M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:66:d4:6f:74:6d:00:0b:d1:49:79:34:b5:ed:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1486b4a08ace60e670edcd89fadb254011562f53 Validity Not Before: Jan 1 20:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e6ec249ab605a8885585a0b8ddccfcaa2f0b786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:74:54:23:c5:57:db:f7:6c:2d:a7:44:e6: 1f:e0:60:8d:10:88:db:35:5d:1d:5a:32:f2:18:10: e8:f7:2c:46:cf:22:c4:53:d4:fb:17:bf:e8:a2:23: 13:a3:f2:a1:4b:ca:5e:66:08:91:98:33:e6:98:43: 4a:d1:51:95:7b:a5:ba:ec:e0:e8:a0:4b:92:18:d7: 0d:48:5f:20:e0:b6:9d:3d:4d:d2:46:e2:cc:0a:b1: a9:ec:5e:75:38:10:49:09:6d:ed:9c:a8:f5:5f:a8: 83:89:ee:4a:20:1b:13:2c:91:02:bd:1d:47:27:31: 65:70:fa:b3:13:9c:09:27:22:73:a2:b5:31:8f:e8: 4e:39:c2:e2:1f:6f:c8:b9:a8:a4:c2:02:a9:57:13: 5d:1b:52:de:3e:73:a2:24:e1:22:d9:3d:54:15:f5: 65:a8:7f:b4:71:ef:21:88:05:f8:2b:5c:58:c9:f0: 26:1b:ee:4a:82:9f:ff:b0:a6:a6:03:81:7d:f8:ae: b1:01:bb:12:a9:cf:bc:1a:ec:fa:aa:62:7a:8c:2f: dd:52:f6:45:fc:89:c0:f1:53:43:8f:17:9a:e2:5c: 30:7b:7e:66:20:d5:00:6b:aa:4d:62:1d:12:fa:21: 9c:2f:0b:56:f4:36:3b:df:4b:41:5a:96:7a:3c:ad: 20:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:6E:C2:49:AB:60:5A:88:85:58:5A:0B:8D:DC:CF:CA:A2:F0:B7:86 X509v3 Authority Key Identifier: keyid:14:86:B4:A0:8A:CE:60:E6:70:ED:CD:89:FA:DB:25:40:11:56:2F:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FIa0oIrOYOZw7c2J-tslQBFWL1M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/Xm7CSatgWoiFWFoLjdzPyqLwt4Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/FIa0oIrOYOZw7c2J-tslQBFWL1M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.242.155.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:db:8e:9e:92:9e:fb:e5:f2:69:4f:16:3f:4f:f2:ee:5c:41: 87:60:4a:95:49:c0:dd:d2:75:ac:e9:2c:91:3e:69:b1:93:1f: ba:d2:74:3f:88:76:19:0b:39:14:f4:b8:7d:94:47:55:06:2d: 76:10:5f:1b:92:7c:8d:49:f2:a6:55:d7:3a:05:4b:cc:c3:bf: 19:b9:25:7a:c1:7e:71:e2:97:29:f1:96:c1:fd:ed:a0:ff:95: 17:05:52:1b:e1:90:53:22:d7:cc:97:24:32:7c:a1:6e:76:73: c4:84:42:c7:27:03:25:57:3e:5d:8b:f1:6a:c8:dc:4a:6e:df: 5e:9f:de:83:10:0f:64:72:45:3d:b8:0f:64:da:8f:be:36:8b: de:79:66:31:be:7f:f4:6f:18:ad:77:ce:a6:ce:54:9f:81:8a: c0:d8:04:8e:0b:12:c3:0a:1d:ce:ab:8f:0e:03:9b:00:0e:8a: 90:94:5b:e5:de:44:c8:f2:e4:14:e1:09:fb:6b:78:18:88:e6: ba:a7:c4:c9:bd:d0:e4:71:c7:13:2d:2e:23:e9:29:7a:5a:1f: c9:2a:6a:31:89:ad:71:ce:b3:32:0f:e7:d9:c4:cd:df:66:05: bc:e5:3d:2f:eb:f8:f8:3b:2c:b2:2d:9c:08:19:50:a4:07:71: 68:02:53:52 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NWbUb3RtAAvRSXk0te2DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0ODZiNGEwOGFjZTYwZTY3MGVkY2Q4OWZhZGIyNTQwMTE1 NjJmNTMwHhcNMjYwMTAxMjAxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTZlYzI0OWFiNjA1YTg4ODU1ODVhMGI4ZGRjY2ZjYWEyZjBiNzg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdN0VCPFV9v3bC2nROYf4GCNEIjb NV0dWjLyGBDo9yxGzyLEU9T7F7/ooiMTo/KhS8peZgiRmDPmmENK0VGVe6W67ODo oEuSGNcNSF8g4LadPU3SRuLMCrGp7F51OBBJCW3tnKj1X6iDie5KIBsTLJECvR1H JzFlcPqzE5wJJyJzorUxj+hOOcLiH2/IuaikwgKpVxNdG1LePnOiJOEi2T1UFfVl qH+0ce8hiAX4K1xYyfAmG+5Kgp//sKamA4F9+K6xAbsSqc+8Guz6qmJ6jC/dUvZF /InA8VNDjxea4lwwe35mINUAa6pNYh0S+iGcLwtW9DY730tBWpZ6PK0gRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF5uwkmrYFqIhVhaC43cz8qi8LeGMB8GA1UdIwQY MBaAFBSGtKCKzmDmcO3NifrbJUARVi9TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRklhMG9Jck9ZT1p3N2MySi10c2xRQkZXTDFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9iYjkxODItY2Q3Ny00ZGQwLWJmMTUt ZTgxODdmMzQ0YzgwLzEvWG03Q1NhdGdXb2lGV0ZvTGpkelB5cUx3dDRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9iYjkxODItY2Q3Ny00ZGQwLWJmMTUtZTgxODdmMzQ0Yzgw LzEvRklhMG9Jck9ZT1p3N2MySi10c2xRQkZXTDFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwfKbMA0G CSqGSIb3DQEBCwUAA4IBAQCN246ekp775fJpTxY/T/LuXEGHYEqVScDd0nWs6SyR Pmmxkx+60nQ/iHYZCzkU9Lh9lEdVBi12EF8bknyNSfKmVdc6BUvMw78ZuSV6wX5x 4pcp8ZbB/e2g/5UXBVIb4ZBTItfMlyQyfKFudnPEhELHJwMlVz5di/FqyNxKbt9e n96DEA9kckU9uA9k2o++NoveeWYxvn/0bxitd86mzlSfgYrA2ASOCxLDCh3Oq48O A5sADoqQlFvl3kTI8uQU4Qn7a3gYiOa6p8TJvdDkcccTLS4j6Sl6Wh/JKmoxia1x zrMyD+fZxM3fZgW85T0v6/j4OyyyLZwIGVCkB3FoAlNS -----END CERTIFICATE-----Generated at Mon Jan 26 03:40:34 2026 by rpki-client