This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XRDx9IaBGvtBLB6UKuveoNA2sLk.roa File: XRDx9IaBGvtBLB6UKuveoNA2sLk.roa (raw, json) Hash identifier: ffF5+6PoTFLDoWyd5Gk22pMMylVfb4oOD+4wHkStCio= Subject key identifier: 5D:10:F1:F4:86:81:1A:FB:41:2C:1E:94:2A:EB:DE:A0:D0:36:B0:B9 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84AA598A4AB41DA07B4D9897CC7720 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XRDx9IaBGvtBLB6UKuveoNA2sLk.roa Signing time: Fri 02 Jan 2026 16:22:39 +0000 ROA not before: Fri 02 Jan 2026 16:22:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44405 IP address blocks: 146.120.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:aa:59:8a:4a:b4:1d:a0:7b:4d:98:97:cc:77:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d10f1f486811afb412c1e942aebdea0d036b0b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3e:2b:be:ed:9b:8f:a4:dc:1a:d6:e2:7b:69: 99:57:06:2e:91:fd:a8:7d:c4:b1:9b:87:a8:3c:10: 7c:0d:4c:06:0c:97:e5:02:6b:35:7f:59:1d:6b:76: 79:d2:e7:95:1a:05:21:3c:e9:6c:63:e6:55:c4:9d: b9:0a:77:5f:57:dc:15:d2:b8:3f:5a:4f:be:23:7f: 58:d4:8d:92:de:dd:a2:1c:1e:16:38:97:71:53:25: aa:b9:af:4d:5c:37:82:e2:83:11:86:d6:4d:d1:ca: d9:87:02:4b:ff:d5:b3:58:7b:67:0a:b8:81:10:4d: 28:ed:9f:bb:e2:57:5c:de:4f:b8:90:34:9c:3f:33: 44:06:5f:1a:26:2f:22:c6:51:09:55:9e:93:47:e7: 76:3e:7b:29:1d:f8:33:43:fe:c1:bc:ff:16:29:5a: 69:e4:09:40:08:3c:41:ee:86:31:d5:df:69:28:01: 4c:3a:ab:46:3e:a4:fa:1d:df:c9:03:17:47:e4:ec: ca:0b:be:a4:bf:ea:af:6b:96:9a:02:a0:be:48:c1: 5f:f6:22:08:34:e1:15:79:80:5f:60:7b:4d:45:55: 46:07:d2:76:0a:9e:10:41:eb:b3:2a:a6:0f:69:10: 54:5a:af:f3:3b:4b:3a:60:8b:cb:e3:d0:88:46:4e: ed:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:10:F1:F4:86:81:1A:FB:41:2C:1E:94:2A:EB:DE:A0:D0:36:B0:B9 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XRDx9IaBGvtBLB6UKuveoNA2sLk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.120.184.0/24 Signature Algorithm: sha256WithRSAEncryption 01:94:0a:a2:56:d7:4a:61:ad:f3:5d:4f:3f:f8:46:68:5d:b2: a7:f6:62:c8:da:65:a4:5a:a3:32:21:3b:67:35:6e:79:46:df: 37:1d:0c:a6:40:19:19:42:fa:45:42:62:f8:e9:ee:d1:b6:e8: ca:48:a9:a2:d3:86:58:5f:46:b7:69:c6:41:a7:d3:c8:d1:81: 02:21:68:c3:d9:97:09:a1:3c:7d:a7:67:40:9d:6e:53:90:fe: 43:76:55:92:74:3f:09:e7:6c:0a:8b:71:44:14:25:81:40:27: ad:d6:15:99:8a:9c:67:b8:b1:37:86:34:12:b5:a8:34:71:c4: b6:84:70:9b:73:86:d7:ad:20:57:cf:6a:a9:18:c8:42:67:68: 3c:ed:71:b8:70:e7:f4:d3:f5:31:99:5b:10:e9:b0:4f:00:f6: d7:ab:aa:e8:7d:4f:b8:15:6a:bb:40:a5:08:a8:4b:45:dc:29: f3:88:14:5e:91:2d:57:f7:66:d4:59:b2:8f:da:00:ec:6c:69: 76:37:ad:81:ad:60:1a:52:e7:de:28:03:01:e5:b3:39:67:a1: 5a:06:b3:a5:f3:89:f6:3f:2e:22:2b:55:11:05:d6:3e:85:0c: bc:2e:fb:7e:02:ea:2a:55:be:10:af:01:b5:10:21:d5:16:0a: c8:87:0e:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hKpZikq0HaB7TZiXzHcgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDEwZjFmNDg2ODExYWZiNDEyYzFlOTQyYWViZGVhMGQwMzZiMGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApT4rvu2bj6TcGtbie2mZVwYukf2o fcSxm4eoPBB8DUwGDJflAms1f1kda3Z50ueVGgUhPOlsY+ZVxJ25CndfV9wV0rg/ Wk++I39Y1I2S3t2iHB4WOJdxUyWqua9NXDeC4oMRhtZN0crZhwJL/9WzWHtnCriB EE0o7Z+74ldc3k+4kDScPzNEBl8aJi8ixlEJVZ6TR+d2PnspHfgzQ/7BvP8WKVpp 5AlACDxB7oYx1d9pKAFMOqtGPqT6Hd/JAxdH5OzKC76kv+qva5aaAqC+SMFf9iII NOEVeYBfYHtNRVVGB9J2Cp4QQeuzKqYPaRBUWq/zO0s6YIvL49CIRk7tgwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF0Q8fSGgRr7QSwelCrr3qDQNrC5MB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvWFJEeDlJYUJHdnRCTEI2VUt1dmVvTkEyc0xrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkni4MA0G CSqGSIb3DQEBCwUAA4IBAQABlAqiVtdKYa3zXU8/+EZoXbKn9mLI2mWkWqMyITtn NW55Rt83HQymQBkZQvpFQmL46e7RtujKSKmi04ZYX0a3acZBp9PI0YECIWjD2ZcJ oTx9p2dAnW5TkP5DdlWSdD8J52wKi3FEFCWBQCet1hWZipxnuLE3hjQStag0ccS2 hHCbc4bXrSBXz2qpGMhCZ2g87XG4cOf00/UxmVsQ6bBPAPbXq6rofU+4FWq7QKUI qEtF3CnziBRekS1X92bUWbKP2gDsbGl2N62BrWAaUufeKAMB5bM5Z6FaBrOl84n2 Py4iK1URBdY+hQy8Lvt+AuoqVb4QrwG1ECHVFgrIhw5M -----END CERTIFICATE-----Generated at Mon Jan 26 01:16:20 2026 by rpki-client