This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xh0brVbeA7z-fnakb_MYCMsI0Yc.roa File: Xh0brVbeA7z-fnakb_MYCMsI0Yc.roa (raw, json) Hash identifier: 9p/Qtqrrqvm2t1Kk91QxxwtXrXiKmUJok8VCp4Y4kD4= Subject key identifier: 5E:1D:1B:AD:56:DE:03:BC:FE:7E:76:A4:6F:F3:18:08:CB:08:D1:87 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F848F85A74D08BF9F970F778118C7ED Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xh0brVbeA7z-fnakb_MYCMsI0Yc.roa Signing time: Fri 02 Jan 2026 16:22:32 +0000 ROA not before: Fri 02 Jan 2026 16:22:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15428 IP address blocks: 146.158.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:8f:85:a7:4d:08:bf:9f:97:0f:77:81:18:c7:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e1d1bad56de03bcfe7e76a46ff31808cb08d187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:42:9b:8f:72:dd:b4:16:5b:e1:64:5b:95:05: 26:48:e6:05:5a:ca:aa:2d:eb:2a:d5:83:6e:4e:f6: 04:77:d8:d3:6b:75:30:5f:79:24:74:cc:bc:90:ce: ba:39:e8:a3:8a:ad:68:c9:b2:0b:f5:99:52:f9:62: 93:a8:42:d7:aa:25:9e:fe:a6:d1:80:7c:12:bb:4c: 60:13:41:7e:ae:06:4a:a8:59:be:ed:94:21:1f:83: e6:17:61:f3:f3:4c:0b:e7:34:13:b0:e2:ed:ab:59: 53:1b:f0:ec:f0:a9:a4:9f:0b:46:20:28:e1:9e:44: 51:04:81:af:21:64:5e:e3:00:16:89:68:9f:ca:06: 40:f9:ca:ff:46:e4:68:91:23:ea:b1:f0:0a:70:02: 50:af:7b:ec:7c:8a:46:e2:da:a5:86:d6:21:4e:75: da:c7:65:98:61:4b:3e:6b:b2:0b:4f:32:13:51:d9: 6c:88:7b:ce:9c:8b:2d:18:7b:0a:4f:63:21:74:6a: d1:22:5a:1f:d4:bb:fb:bd:20:3b:71:86:e4:28:a0: 13:66:e4:12:e4:f4:10:69:50:c2:3e:5e:e2:13:da: 81:a7:8c:9b:20:17:96:a8:99:b3:a6:6e:e0:17:69: 8d:8d:b5:41:8b:eb:53:0c:1f:e0:6b:df:1a:08:0a: e2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:1D:1B:AD:56:DE:03:BC:FE:7E:76:A4:6F:F3:18:08:CB:08:D1:87 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xh0brVbeA7z-fnakb_MYCMsI0Yc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.158.95.0/24 Signature Algorithm: sha256WithRSAEncryption 89:e4:15:2a:c1:9f:c9:f4:f8:8d:f5:90:cf:a4:4c:85:03:e8: 66:bb:73:e4:17:42:32:42:59:72:c3:92:41:30:db:6b:f9:c2: e6:7a:e1:f2:af:82:b7:bf:94:fd:a9:ba:b8:ae:64:db:35:52: 3a:82:04:e7:33:22:60:af:c5:09:80:03:28:63:9b:bf:58:32: 42:ed:7d:85:9f:4b:3e:05:18:45:fd:a3:22:50:46:37:69:53: d9:35:fa:c3:01:a3:24:e5:23:e4:c6:44:bb:e2:3c:e5:84:8a: f4:6c:91:d9:0d:62:fb:e0:65:27:73:48:22:8e:1e:e3:48:c1: 55:06:2b:7c:ea:44:51:46:52:30:1a:63:f9:3e:d2:e5:19:20: 20:10:82:1e:47:0b:c9:2c:08:b1:53:53:8d:67:81:87:e3:69: 03:5b:f4:2b:11:89:e4:c0:72:6e:c5:b3:21:da:db:47:9e:3f: 74:8b:d3:2f:6f:9d:fc:a7:5f:63:e4:ff:9b:52:49:02:e4:15: 63:b9:e4:c9:5e:96:ae:d0:8e:70:7a:25:ea:24:c8:e9:c1:8c: 86:df:87:eb:82:3a:61:be:00:d7:59:04:62:2e:4a:4f:f9:3a: 1e:fd:68:97:07:52:73:72:0f:74:c4:85:bc:bc:50:ef:9c:4e: d0:c7:82:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hI+Fp00Iv5+XD3eBGMftMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTFkMWJhZDU2ZGUwM2JjZmU3ZTc2YTQ2ZmYzMTgwOGNiMDhkMTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkKbj3LdtBZb4WRblQUmSOYFWsqq Lesq1YNuTvYEd9jTa3UwX3kkdMy8kM66Oeijiq1oybIL9ZlS+WKTqELXqiWe/qbR gHwSu0xgE0F+rgZKqFm+7ZQhH4PmF2Hz80wL5zQTsOLtq1lTG/Ds8KmknwtGICjh nkRRBIGvIWRe4wAWiWifygZA+cr/RuRokSPqsfAKcAJQr3vsfIpG4tqlhtYhTnXa x2WYYUs+a7ILTzITUdlsiHvOnIstGHsKT2MhdGrRIlof1Lv7vSA7cYbkKKATZuQS 5PQQaVDCPl7iE9qBp4ybIBeWqJmzpm7gF2mNjbVBi+tTDB/ga98aCAriAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF4dG61W3gO8/n52pG/zGAjLCNGHMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvWGgwYnJWYmVBN3otZm5ha2JfTVlDTXNJMFljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkp5fMA0G CSqGSIb3DQEBCwUAA4IBAQCJ5BUqwZ/J9PiN9ZDPpEyFA+hmu3PkF0IyQllyw5JB MNtr+cLmeuHyr4K3v5T9qbq4rmTbNVI6ggTnMyJgr8UJgAMoY5u/WDJC7X2Fn0s+ BRhF/aMiUEY3aVPZNfrDAaMk5SPkxkS74jzlhIr0bJHZDWL74GUnc0gijh7jSMFV Bit86kRRRlIwGmP5PtLlGSAgEIIeRwvJLAixU1ONZ4GH42kDW/QrEYnkwHJuxbMh 2ttHnj90i9Mvb538p19j5P+bUkkC5BVjueTJXpau0I5weiXqJMjpwYyG34frgjph vgDXWQRiLkpP+Toe/WiXB1Jzcg90xIW8vFDvnE7Qx4Iz -----END CERTIFICATE-----Generated at Sun Jan 25 22:12:33 2026 by rpki-client