This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/xVSYIeWG0RS0SjxsrbtuJp_bfgk.roa File: xVSYIeWG0RS0SjxsrbtuJp_bfgk.roa (raw, json) Hash identifier: GQ98f780YYtoGUy/E9Ug5SQ8AVDbvSt13GpiJ/31jD8= Subject key identifier: C5:54:98:21:E5:86:D1:14:B4:4A:3C:6C:AD:BB:6E:26:9F:DB:7E:09 Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Certificate serial: 019BE76E18BFD9A43E54026F91625E2DC982 Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/xVSYIeWG0RS0SjxsrbtuJp_bfgk.roa Signing time: Thu 22 Jan 2026 20:38:30 +0000 ROA not before: Thu 22 Jan 2026 20:38:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215096 IP address blocks: 171.22.180.0/24 maxlen: 24 171.22.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.mft rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e7:6e:18:bf:d9:a4:3e:54:02:6f:91:62:5e:2d:c9:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Validity Not Before: Jan 22 20:38:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5549821e586d114b44a3c6cadbb6e269fdb7e09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:be:30:ba:3a:07:59:31:6e:5d:6f:8a:59:c1: 78:80:36:e3:9d:31:e6:b2:60:19:ef:1b:d0:2d:35: 7d:5f:56:b8:79:de:6e:36:de:96:d1:96:23:6c:88: 1f:88:39:2c:a4:fe:27:26:62:cc:53:49:8b:0b:ad: 79:f6:d7:c4:24:49:be:dd:3d:d3:a2:85:78:20:c2: d6:4a:d5:5e:e5:fa:e4:31:88:74:d7:7f:57:f0:c6: bb:09:59:7a:f4:c5:42:64:14:8a:45:83:d2:7b:6c: 59:d7:63:5a:1f:57:4b:d4:b9:3b:8c:ab:1a:e2:9c: 47:9c:0c:ed:55:e1:4d:82:d0:2e:95:de:ac:0c:4c: f5:70:07:a8:16:4a:51:12:d3:6f:d5:c8:59:00:c8: c1:f9:80:93:5a:3f:b1:20:dd:7c:69:d6:3e:05:7d: 56:b6:63:a6:fc:c5:f8:c5:9f:39:7b:11:06:60:78: 1a:62:fe:76:61:e3:54:2f:94:d5:25:61:38:ba:94: 76:f9:1d:e6:2d:be:51:65:81:95:4c:f9:19:82:f6: a3:9c:2a:84:84:04:c6:5d:11:f4:84:b3:3b:c9:57: 8f:6c:75:42:dc:d6:fb:f3:94:55:b1:d1:a4:36:29: 60:c2:73:28:8f:0c:eb:2b:a2:52:7a:6b:c7:3d:d1: 9d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:54:98:21:E5:86:D1:14:B4:4A:3C:6C:AD:BB:6E:26:9F:DB:7E:09 X509v3 Authority Key Identifier: keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/xVSYIeWG0RS0SjxsrbtuJp_bfgk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 171.22.180.0/23 Signature Algorithm: sha256WithRSAEncryption d6:c7:43:0d:ea:ef:0e:4d:6b:dc:d4:6f:41:5d:58:74:bf:fa: e4:66:a2:c0:01:a2:5a:f9:d0:9a:0e:7d:4f:a8:51:6d:72:1b: cf:7e:6c:1b:4c:b0:0a:20:f0:97:48:db:61:95:27:d7:3b:cc: f7:c8:63:c5:6a:c6:10:c1:1f:af:e9:c0:90:47:d5:92:ec:16: 0b:c7:32:54:a7:2d:10:0c:51:f6:62:1d:19:84:be:ae:8c:be: eb:bb:48:af:6d:11:13:d9:2d:3e:58:c6:2a:14:33:a4:6e:4c: c8:71:e9:e4:bb:ba:64:dd:81:99:83:d6:f2:33:0b:b5:ff:f8: a2:b7:9d:76:87:16:89:b7:e3:77:19:0e:c0:ba:35:9d:4d:1a: e0:ce:26:19:8e:f3:24:10:12:6b:63:8c:cc:b0:67:8b:e7:c2: 57:d8:33:81:d2:20:00:56:25:d6:08:db:03:cf:35:19:0b:f9: fa:92:1f:87:d0:37:e0:87:03:08:38:1e:f1:cd:ff:5f:89:2e: 3d:ec:82:d4:eb:42:8c:eb:71:f7:aa:16:c9:56:6b:71:0e:e4: 66:88:c5:f3:cc:ad:6f:1b:30:ef:60:40:4c:df:87:b6:0e:c0: c3:d3:d8:ba:41:dd:15:63:e5:b7:0a:59:94:73:e8:41:9c:8b: 74:53:1e:d9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvnbhi/2aQ+VAJvkWJeLcmCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm MWM3ZTgwHhcNMjYwMTIyMjAzODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTU0OTgyMWU1ODZkMTE0YjQ0YTNjNmNhZGJiNmUyNjlmZGI3ZTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0r4wujoHWTFuXW+KWcF4gDbjnTHm smAZ7xvQLTV9X1a4ed5uNt6W0ZYjbIgfiDkspP4nJmLMU0mLC6159tfEJEm+3T3T ooV4IMLWStVe5frkMYh0139X8Ma7CVl69MVCZBSKRYPSe2xZ12NaH1dL1Lk7jKsa 4pxHnAztVeFNgtAuld6sDEz1cAeoFkpREtNv1chZAMjB+YCTWj+xIN18adY+BX1W tmOm/MX4xZ85exEGYHgaYv52YeNUL5TVJWE4upR2+R3mLb5RZYGVTPkZgvajnCqE hATGXRH0hLM7yVePbHVC3Nb785RVsdGkNilgwnMojwzrK6JSemvHPdGdtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMVUmCHlhtEUtEo8bK27biaf234JMB8GA1UdIwQY MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt ZWU3NDY1NzU0ZmY2LzEveFZTWUllV0cwUlMwU2p4c3JidHVKcF9iZmdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2 LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqxa0MA0G CSqGSIb3DQEBCwUAA4IBAQDWx0MN6u8OTWvc1G9BXVh0v/rkZqLAAaJa+dCaDn1P qFFtchvPfmwbTLAKIPCXSNthlSfXO8z3yGPFasYQwR+v6cCQR9WS7BYLxzJUpy0Q DFH2Yh0ZhL6ujL7ru0ivbRET2S0+WMYqFDOkbkzIcenku7pk3YGZg9byMwu1//ii t512hxaJt+N3GQ7AujWdTRrgziYZjvMkEBJrY4zMsGeL58JX2DOB0iAAViXWCNsD zzUZC/n6kh+H0DfghwMIOB7xzf9fiS497ILU60KM63H3qhbJVmtxDuRmiMXzzK1v GzDvYEBM34e2DsDD09i6Qd0VY+W3ClmUc+hBnIt0Ux7Z -----END CERTIFICATE-----Generated at Sun Jan 25 23:51:00 2026 by rpki-client