This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ac9cf6-1bec-424b-aa51-a0962d998e60/1/XGUIHnWF_LunuxvNcMmR57_WKzo.roa File: XGUIHnWF_LunuxvNcMmR57_WKzo.roa (raw, json) Hash identifier: Gg+yICFewOrJllU9keGQjZ8+O9tNzguLLKLqMVLJpjs= Subject key identifier: 5C:65:08:1E:75:85:FC:BB:A7:BB:1B:CD:70:C9:91:E7:BF:D6:2B:3A Certificate issuer: /CN=1216abcc44c9a95540cdf5b1dc542ec7d11fe07a Certificate serial: 019B7BA465C95DCABD4A89340AA764675A0E Authority key identifier: 12:16:AB:CC:44:C9:A9:55:40:CD:F5:B1:DC:54:2E:C7:D1:1F:E0:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EharzETJqVVAzfWx3FQux9Ef4Ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ac9cf6-1bec-424b-aa51-a0962d998e60/1/XGUIHnWF_LunuxvNcMmR57_WKzo.roa Signing time: Thu 01 Jan 2026 22:18:50 +0000 ROA not before: Thu 01 Jan 2026 22:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210000 IP address blocks: 31.41.34.0/24 maxlen: 24 2a12:3fc1:1001::/48 maxlen: 48 2a12:3fc1:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ac9cf6-1bec-424b-aa51-a0962d998e60/1/EharzETJqVVAzfWx3FQux9Ef4Ho.crl rsync://rpki.ripe.net/repository/DEFAULT/69/ac9cf6-1bec-424b-aa51-a0962d998e60/1/EharzETJqVVAzfWx3FQux9Ef4Ho.mft rsync://rpki.ripe.net/repository/DEFAULT/EharzETJqVVAzfWx3FQux9Ef4Ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:65:c9:5d:ca:bd:4a:89:34:0a:a7:64:67:5a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1216abcc44c9a95540cdf5b1dc542ec7d11fe07a Validity Not Before: Jan 1 22:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c65081e7585fcbba7bb1bcd70c991e7bfd62b3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:49:55:13:21:a3:17:e3:4c:74:e3:d8:98:4e: 22:e6:ed:4a:27:4b:a3:fb:67:40:1f:8a:43:4a:a1: 50:b4:b2:ba:75:20:4a:74:46:92:24:27:6f:09:87: ed:4e:9c:a9:2f:4b:9c:d7:7d:4f:94:25:92:48:1e: 2b:2e:1b:82:1c:5c:ad:6f:2c:6a:aa:68:f8:5e:f4: a9:a2:d1:e1:ba:ea:7e:25:e7:ee:78:70:4a:24:e7: ab:fd:a1:45:a5:4c:c0:3a:91:76:38:be:62:fb:65: 97:65:c2:8e:6c:af:31:2b:74:8f:ad:dc:93:bb:12: 42:d3:34:c2:f1:67:be:05:ea:f4:3d:59:b9:52:82: 48:b7:0c:f0:cf:48:76:bb:24:72:77:24:18:16:0c: 44:b1:31:f6:9c:88:06:8a:86:fb:75:3e:e8:ac:3b: b4:c7:fd:00:70:13:6f:0c:ba:b3:93:33:dc:a5:6c: c3:59:a0:c5:53:dd:e0:9a:5d:d6:f9:9c:d0:46:a8: fe:29:7c:69:bc:28:67:dc:f9:1a:11:82:6b:6a:1a: f7:af:ff:87:97:94:cf:1a:37:39:f4:b1:fe:cc:02: ef:7c:a3:79:89:0b:a2:f9:1d:8e:cb:d4:e6:5d:10: 6f:e5:83:b0:b2:23:bf:c5:0a:8a:1c:cd:31:08:5b: 8c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:65:08:1E:75:85:FC:BB:A7:BB:1B:CD:70:C9:91:E7:BF:D6:2B:3A X509v3 Authority Key Identifier: keyid:12:16:AB:CC:44:C9:A9:55:40:CD:F5:B1:DC:54:2E:C7:D1:1F:E0:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EharzETJqVVAzfWx3FQux9Ef4Ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ac9cf6-1bec-424b-aa51-a0962d998e60/1/XGUIHnWF_LunuxvNcMmR57_WKzo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ac9cf6-1bec-424b-aa51-a0962d998e60/1/EharzETJqVVAzfWx3FQux9Ef4Ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.41.34.0/24 IPv6: 2a12:3fc1:1001::-2a12:3fc1:1002:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 25:90:74:06:56:ad:da:a6:6c:7e:e2:cb:ab:6a:08:2c:5e:a0: 4b:cc:d3:df:f4:5d:7c:b2:01:6b:c7:e0:3b:e4:23:28:2b:4f: b2:95:a8:70:20:25:4f:b8:77:0d:f1:30:f0:8a:ae:27:55:b1: 78:b0:32:fb:0e:42:cf:ed:8a:db:f8:c9:88:1d:aa:06:67:f3: 82:ac:c9:aa:96:20:57:70:8f:ef:c8:b9:de:19:74:9a:8e:a5: 2d:3b:03:81:37:54:c8:8c:c4:eb:a4:94:e3:4c:22:70:bd:95: 41:92:4d:5c:08:85:b2:5c:ea:1e:0a:4f:41:ef:5b:3b:1b:24: 74:1b:92:2f:48:b5:3b:6d:a4:f8:8a:86:c3:00:c9:b5:77:17: 70:7f:2a:78:38:cd:d8:78:07:78:16:4f:27:59:94:69:13:e7: 3d:11:34:fa:4a:e2:86:64:7d:e1:ee:dd:1c:78:d7:7e:3c:d4: 8a:92:fb:d2:fc:ca:3a:eb:88:27:7a:8f:27:98:aa:bf:88:8d: d3:cc:97:42:d2:c2:d0:5e:d5:fe:6e:18:39:60:18:8a:6e:70: 64:12:e7:97:2d:75:50:f4:76:2d:c1:90:81:aa:65:98:cb:93: 99:b3:cb:a1:b9:c4:68:8a:30:7b:29:e7:c2:c7:89:8f:39:2f: 11:36:f1:b5 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt7pGXJXcq9Sok0CqdkZ1oOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyMTZhYmNjNDRjOWE5NTU0MGNkZjViMWRjNTQyZWM3ZDEx ZmUwN2EwHhcNMjYwMTAxMjIxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzY1MDgxZTc1ODVmY2JiYTdiYjFiY2Q3MGM5OTFlN2JmZDYyYjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqElVEyGjF+NMdOPYmE4i5u1KJ0uj +2dAH4pDSqFQtLK6dSBKdEaSJCdvCYftTpypL0uc131PlCWSSB4rLhuCHFytbyxq qmj4XvSpotHhuup+JefueHBKJOer/aFFpUzAOpF2OL5i+2WXZcKObK8xK3SPrdyT uxJC0zTC8We+Ber0PVm5UoJItwzwz0h2uyRydyQYFgxEsTH2nIgGiob7dT7orDu0 x/0AcBNvDLqzkzPcpWzDWaDFU93gml3W+ZzQRqj+KXxpvChn3PkaEYJrahr3r/+H l5TPGjc59LH+zALvfKN5iQui+R2Oy9TmXRBv5YOwsiO/xQqKHM0xCFuMawIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFFxlCB51hfy7p7sbzXDJkee/1is6MB8GA1UdIwQY MBaAFBIWq8xEyalVQM31sdxULsfRH+B6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWhhcnpFVEpxVlZBemZXeDNGUXV4OUVmNEhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hYzljZjYtMWJlYy00MjRiLWFhNTEt YTA5NjJkOTk4ZTYwLzEvWEdVSUhuV0ZfTHVudXh2TmNNbVI1N19XS3pvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9hYzljZjYtMWJlYy00MjRiLWFhNTEtYTA5NjJkOTk4ZTYw LzEvRWhhcnpFVEpxVlZBemZXeDNGUXV4OUVmNEhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAMBAIAATAGAwQAHykiMBoE AgACMBQwEgMHACoSP8EQAQMHACoSP8EQAjANBgkqhkiG9w0BAQsFAAOCAQEAJZB0 Blat2qZsfuLLq2oILF6gS8zT3/RdfLIBa8fgO+QjKCtPspWocCAlT7h3DfEw8Iqu J1WxeLAy+w5Cz+2K2/jJiB2qBmfzgqzJqpYgV3CP78i53hl0mo6lLTsDgTdUyIzE 66SU40wicL2VQZJNXAiFslzqHgpPQe9bOxskdBuSL0i1O22k+IqGwwDJtXcXcH8q eDjN2HgHeBZPJ1mUaRPnPRE0+krihmR94e7dHHjXfjzUipL70vzKOuuIJ3qPJ5iq v4iN08yXQtLC0F7V/m4YOWAYim5wZBLnly11UPR2LcGQgaplmMuTmbPLobnEaIow eynnwseJjzkvETbxtQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:50:39 2026 by rpki-client