This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/xPkbn4OlcIK24Dk05s3tKNxfltw.roa File: xPkbn4OlcIK24Dk05s3tKNxfltw.roa (raw, json) Hash identifier: 5hfcgvaH6mGfDiDwbts8ZNMTK/b6pnlt88GqAb0Uf+k= Subject key identifier: C4:F9:1B:9F:83:A5:70:82:B6:E0:39:34:E6:CD:ED:28:DC:5F:96:DC Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Certificate serial: 019B797F3DA122D98E65747B0CE9DB45BDF9 Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/xPkbn4OlcIK24Dk05s3tKNxfltw.roa Signing time: Thu 01 Jan 2026 12:19:00 +0000 ROA not before: Thu 01 Jan 2026 12:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211620 IP address blocks: 170.168.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.mft rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:3d:a1:22:d9:8e:65:74:7b:0c:e9:db:45:bd:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Validity Not Before: Jan 1 12:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4f91b9f83a57082b6e03934e6cded28dc5f96dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2e:90:66:95:bd:67:db:09:66:44:76:a5:bb: 66:36:f8:ca:14:05:b0:d1:53:c7:5c:ac:75:88:c9: ee:4b:24:0a:79:76:62:6e:50:43:68:dd:c4:8b:0e: bb:f4:32:1e:99:af:c3:46:46:40:06:bd:5f:3a:41: f9:36:d1:32:79:86:b1:fb:ad:25:cd:a8:ab:d1:05: 8f:74:bd:e6:9c:fb:41:2a:83:a8:29:8a:2a:f0:6d: 9d:86:83:ed:88:55:17:78:10:02:56:e0:f0:12:3d: f5:d8:1a:f0:bc:9e:c0:6c:13:41:8d:83:ba:30:6e: 29:88:40:7e:cf:4f:f0:64:b3:e7:bd:c1:d2:a2:7a: 49:d8:54:94:c5:e9:67:68:fe:c9:ff:d0:f5:5d:24: e6:50:34:2d:d8:16:d4:be:fb:13:61:ad:a3:ce:bc: 07:57:f7:a1:ad:86:62:03:1c:8f:85:ff:fc:d1:65: df:94:fc:3a:f7:cc:8f:59:50:f1:eb:81:fc:c6:0d: 29:04:02:3e:bb:01:2f:d4:1e:c5:55:22:d5:46:30: 22:42:b5:38:fe:4b:b7:5f:28:34:13:f2:46:bc:b8: f3:49:b6:02:31:7d:51:c9:c7:8e:da:06:00:93:d1: b0:73:ac:86:8f:0c:4d:33:a5:96:73:49:4b:88:4b: cf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F9:1B:9F:83:A5:70:82:B6:E0:39:34:E6:CD:ED:28:DC:5F:96:DC X509v3 Authority Key Identifier: keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/xPkbn4OlcIK24Dk05s3tKNxfltw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.168.79.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:7c:84:e5:2e:d0:86:39:33:b4:25:99:d5:05:0a:40:4e:8b: 55:b1:24:0e:d5:93:90:85:3b:2f:df:6a:66:e3:d7:a2:5e:c2: 24:e9:c2:1b:ee:2f:1e:35:64:d7:30:77:37:13:a1:69:c8:75: 13:16:7c:93:23:ea:b1:19:7f:df:92:4a:12:13:47:f3:04:6a: b0:de:1b:a6:36:74:07:f6:9d:31:66:b9:f1:23:75:d7:48:0f: 61:f4:c3:09:a9:d5:97:c7:69:33:77:1e:09:da:0e:f7:43:6b: 62:cc:d3:b5:97:2b:26:7a:19:bd:52:eb:62:78:26:21:c3:42: b2:fe:a3:9c:64:58:8e:5a:60:0f:0f:92:f2:0e:96:d9:2c:3c: 99:b7:00:00:6a:65:7f:14:bf:31:27:6e:65:0c:18:cf:d0:4d: 77:d1:fd:e4:42:bf:48:d6:c5:b1:ce:93:bf:76:e3:a8:82:7d: cb:9f:2f:51:f6:74:8b:ee:7c:07:74:d3:32:df:5e:3a:fe:47: 9e:a8:62:0f:da:c9:f0:cd:75:ee:c2:9d:18:1e:0f:04:5e:50: 0c:d4:16:4a:e1:3f:9f:22:b6:bd:af:ea:ad:3e:33:b4:13:fd: fa:ac:24:66:81:ac:b4:83:1d:dd:ac:5d:11:a5:49:fa:11:f4: eb:03:e4:63 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fz2hItmOZXR7DOnbRb35MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlNmE4NmU2MmYwY2U5OGUwMmU5ODA4NjlmZjQ0MTRlZTJh MGYwY2UwHhcNMjYwMTAxMTIxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGY5MWI5ZjgzYTU3MDgyYjZlMDM5MzRlNmNkZWQyOGRjNWY5NmRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvC6QZpW9Z9sJZkR2pbtmNvjKFAWw 0VPHXKx1iMnuSyQKeXZiblBDaN3Eiw679DIema/DRkZABr1fOkH5NtEyeYax+60l zair0QWPdL3mnPtBKoOoKYoq8G2dhoPtiFUXeBACVuDwEj312BrwvJ7AbBNBjYO6 MG4piEB+z0/wZLPnvcHSonpJ2FSUxelnaP7J/9D1XSTmUDQt2BbUvvsTYa2jzrwH V/ehrYZiAxyPhf/80WXflPw698yPWVDx64H8xg0pBAI+uwEv1B7FVSLVRjAiQrU4 /ku3Xyg0E/JGvLjzSbYCMX1RyceO2gYAk9Gwc6yGjwxNM6WWc0lLiEvPuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMT5G5+DpXCCtuA5NObN7SjcX5bcMB8GA1UdIwQY MBaAFC5qhuYvDOmOAumAhp/0QU7ioPDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2Et YTY2N2JiNzY1MDYwLzEveFBrYm40T2xjSUsyNERrMDVzM3RLTnhmbHR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2EtYTY2N2JiNzY1MDYw LzEvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqqhPMA0G CSqGSIb3DQEBCwUAA4IBAQBKfITlLtCGOTO0JZnVBQpATotVsSQO1ZOQhTsv32pm 49eiXsIk6cIb7i8eNWTXMHc3E6FpyHUTFnyTI+qxGX/fkkoSE0fzBGqw3humNnQH 9p0xZrnxI3XXSA9h9MMJqdWXx2kzdx4J2g73Q2tizNO1lysmehm9UutieCYhw0Ky /qOcZFiOWmAPD5LyDpbZLDyZtwAAamV/FL8xJ25lDBjP0E130f3kQr9I1sWxzpO/ duOogn3Lny9R9nSL7nwHdNMy3146/keeqGIP2snwzXXuwp0YHg8EXlAM1BZK4T+f Ira9r+qtPjO0E/36rCRmgay0gx3drF0RpUn6EfTrA+Rj -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:19 2026 by rpki-client