This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/xiXKqk3tGFwKj2r6-VSmJj7eq_k.roa File: xiXKqk3tGFwKj2r6-VSmJj7eq_k.roa (raw, json) Hash identifier: 1zP1wd86zOnUvyVaHLe0E+PkkU2X/81i9Nla1ulLn0A= Subject key identifier: C6:25:CA:AA:4D:ED:18:5C:0A:8F:6A:FA:F9:54:A6:26:3E:DE:AB:F9 Certificate issuer: /CN=472694d8a399a3a66f442ec72295c754acbbad41 Certificate serial: 019B7AC88690591A4928F0425410BEACD511 Authority key identifier: 47:26:94:D8:A3:99:A3:A6:6F:44:2E:C7:22:95:C7:54:AC:BB:AD:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/xiXKqk3tGFwKj2r6-VSmJj7eq_k.roa Signing time: Thu 01 Jan 2026 18:18:40 +0000 ROA not before: Thu 01 Jan 2026 18:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9085 IP address blocks: 185.83.232.0/24 maxlen: 24 2a03:6e60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.crl rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.mft rsync://rpki.ripe.net/repository/DEFAULT/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:86:90:59:1a:49:28:f0:42:54:10:be:ac:d5:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=472694d8a399a3a66f442ec72295c754acbbad41 Validity Not Before: Jan 1 18:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c625caaa4ded185c0a8f6afaf954a6263edeabf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bc:a0:87:6d:0d:8e:ff:7c:2a:33:58:44:6b: 11:51:23:51:df:29:07:92:16:f4:d3:e1:bd:e2:0e: 7f:1f:eb:b8:c5:4b:7b:a6:d8:26:16:90:55:df:17: 21:28:24:b7:b1:27:48:02:0f:46:f1:99:0b:b7:19: 06:37:ca:95:bf:47:3e:61:17:ed:5e:7a:e9:22:97: 0c:41:8e:9a:38:d5:26:98:6c:38:14:55:b9:aa:13: b2:56:8e:8f:90:85:d7:ce:bd:65:8c:13:7a:7a:9f: 3b:28:91:66:07:e5:7b:d4:60:79:f4:1b:c1:09:fc: b3:51:2a:40:68:59:70:49:df:d8:27:b7:3f:ae:24: 57:28:fb:96:39:e5:f2:11:ca:6b:54:49:9a:e0:55: 9e:00:3c:a4:90:e3:9d:bb:ba:08:16:e0:61:d4:f2: 3f:06:08:88:19:b9:db:6d:4c:14:ba:3d:cc:b1:e9: f6:9a:11:04:15:71:d6:35:64:28:ff:3e:5f:2c:af: d9:98:ec:71:80:8a:ad:1f:b9:50:66:d4:e0:be:25: d7:d3:d0:79:94:b1:ee:7e:32:ff:5a:06:91:2d:2c: 38:76:af:60:a7:de:a3:21:86:ca:2b:6a:d6:87:cb: 39:be:77:d1:95:fa:13:d7:ff:02:d8:42:c2:c1:24: 8e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:25:CA:AA:4D:ED:18:5C:0A:8F:6A:FA:F9:54:A6:26:3E:DE:AB:F9 X509v3 Authority Key Identifier: keyid:47:26:94:D8:A3:99:A3:A6:6F:44:2E:C7:22:95:C7:54:AC:BB:AD:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/xiXKqk3tGFwKj2r6-VSmJj7eq_k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.83.232.0/24 IPv6: 2a03:6e60::/48 Signature Algorithm: sha256WithRSAEncryption 4a:35:a2:0c:a6:e0:e4:09:50:40:cc:35:be:dd:a4:45:31:b7: 57:9f:4d:b6:02:8b:95:57:24:3b:6f:2e:78:61:bf:18:3e:a1: b0:78:3e:8a:5f:fb:2f:88:25:84:b8:36:c1:96:07:9f:ab:54: 00:dc:2c:fb:31:75:b2:89:60:03:66:d4:28:86:73:bf:67:bb: e2:11:b0:5d:4c:e6:bb:40:74:7b:7e:01:c4:a8:9d:0b:c0:4b: f1:fc:92:9e:91:08:82:f2:a7:6b:45:f8:41:1a:8d:2f:11:41: ed:64:6e:70:c7:b6:b0:bc:8e:06:6d:d8:da:8a:3c:d0:76:4f: 30:22:84:a8:51:41:fa:e8:85:53:e7:43:07:b9:75:4e:e1:91: 0c:da:ab:f2:3b:50:cf:a5:37:f0:94:21:00:98:1b:44:e5:33: 30:a2:b3:09:56:2f:2f:3a:80:d2:2d:a9:ee:7f:80:33:95:3e: 30:ce:07:89:f9:ae:93:24:96:6e:54:80:5e:c4:7f:32:0a:2d: f1:ff:3c:62:8f:19:0b:2e:49:57:5a:48:ac:09:f8:ec:da:cb: b4:96:09:e1:bd:ae:98:86:ed:2d:c1:ce:9e:de:93:f4:50:c9: 94:40:99:d0:9f:ce:bd:7f:a2:f1:8f:84:73:48:90:50:d6:7a: a6:a5:ac:84 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6yIaQWRpJKPBCVBC+rNURMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MjY5NGQ4YTM5OWEzYTY2ZjQ0MmVjNzIyOTVjNzU0YWNi YmFkNDEwHhcNMjYwMTAxMTgxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjI1Y2FhYTRkZWQxODVjMGE4ZjZhZmFmOTU0YTYyNjNlZGVhYmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrygh20Njv98KjNYRGsRUSNR3ykH khb00+G94g5/H+u4xUt7ptgmFpBV3xchKCS3sSdIAg9G8ZkLtxkGN8qVv0c+YRft XnrpIpcMQY6aONUmmGw4FFW5qhOyVo6PkIXXzr1ljBN6ep87KJFmB+V71GB59BvB CfyzUSpAaFlwSd/YJ7c/riRXKPuWOeXyEcprVEma4FWeADykkOOdu7oIFuBh1PI/ BgiIGbnbbUwUuj3Msen2mhEEFXHWNWQo/z5fLK/ZmOxxgIqtH7lQZtTgviXX09B5 lLHufjL/WgaRLSw4dq9gp96jIYbKK2rWh8s5vnfRlfoT1/8C2ELCwSSOmwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMYlyqpN7RhcCo9q+vlUpiY+3qv5MB8GA1UdIwQY MBaAFEcmlNijmaOmb0QuxyKVx1Ssu61BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnlhVTJLT1pvNlp2UkM3SElwWEhWS3k3clVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9kZGMyNmUtMzFkYS00M2RkLWI0ZDEt MDYzYTA4ODFhNmQyLzEveGlYS3FrM3RHRndLajJyNi1WU21KajdlcV9rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9kZGMyNmUtMzFkYS00M2RkLWI0ZDEtMDYzYTA4ODFhNmQy LzEvUnlhVTJLT1pvNlp2UkM3SElwWEhWS3k3clVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuVPoMA8E AgACMAkDBwAqA25gAAAwDQYJKoZIhvcNAQELBQADggEBAEo1ogym4OQJUEDMNb7d pEUxt1efTbYCi5VXJDtvLnhhvxg+obB4Popf+y+IJYS4NsGWB5+rVADcLPsxdbKJ YANm1CiGc79nu+IRsF1M5rtAdHt+AcSonQvAS/H8kp6RCILyp2tF+EEajS8RQe1k bnDHtrC8jgZt2NqKPNB2TzAihKhRQfrohVPnQwe5dU7hkQzaq/I7UM+lN/CUIQCY G0TlMzCiswlWLy86gNItqe5/gDOVPjDOB4n5rpMklm5UgF7EfzIKLfH/PGKPGQsu SVdaSKwJ+Ozay7SWCeG9rpiG7S3Bzp7ek/RQyZRAmdCfzr1/ovGPhHNIkFDWeqal rIQ= -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:15 2026 by rpki-client