This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/xrOGXANO-eI6vo_q5AzZA2vmCts.roa File: xrOGXANO-eI6vo_q5AzZA2vmCts.roa (raw, json) Hash identifier: rfnpXn0Gdd7aTj+dlxN7lfSWMXw7WlPInx1vrW76fYw= Subject key identifier: C6:B3:86:5C:03:4E:F9:E2:3A:BE:8F:EA:E4:0C:D9:03:6B:E6:0A:DB Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019B76EAF83AC1C2EAD347CB5C314D53B120 Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/xrOGXANO-eI6vo_q5AzZA2vmCts.roa Signing time: Thu 01 Jan 2026 00:17:48 +0000 ROA not before: Thu 01 Jan 2026 00:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 151326 IP address blocks: 185.215.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:f8:3a:c1:c2:ea:d3:47:cb:5c:31:4d:53:b1:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Jan 1 00:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c6b3865c034ef9e23abe8feae40cd9036be60adb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cc:ea:9b:75:d5:77:83:43:7a:6b:03:6a:bc: fd:29:09:52:e8:fb:74:70:3c:7b:0d:9f:a1:32:21: a5:ea:64:69:c3:c8:6b:c6:0e:bd:74:f3:e0:ed:e4: 54:71:59:59:65:9a:ba:d6:ef:86:34:00:4e:f9:cc: 09:65:14:46:85:a8:40:36:61:93:39:3d:4c:ed:be: e9:73:8d:9e:76:e7:eb:c0:f3:e3:a3:a3:4b:fc:70: f9:cd:9e:48:30:78:8a:6b:47:ef:22:54:33:82:55: e0:ae:e9:17:bf:e7:24:bf:69:3e:33:a2:e6:1b:36: 9b:2c:70:0f:67:da:b8:8f:43:15:11:85:54:b7:0a: e4:fa:49:04:d7:a7:df:19:7b:5f:5d:f5:f0:58:ee: 48:40:f5:94:e8:f3:04:01:a9:b8:40:ec:b6:ef:f6: d1:33:07:7b:dd:5a:88:72:83:51:f8:ba:92:b8:a4: b1:2c:e3:e1:81:38:ae:a0:0c:cf:df:01:75:91:5d: 35:f7:3f:42:00:8a:05:10:96:98:f5:55:70:9d:9e: 41:f7:97:ea:d0:92:88:b8:f2:06:91:a2:db:76:b6: 81:d2:ac:29:23:84:38:a6:9e:52:11:5b:69:d2:af: df:f3:56:6d:30:b5:22:25:71:e4:d5:ef:7c:07:dc: 91:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B3:86:5C:03:4E:F9:E2:3A:BE:8F:EA:E4:0C:D9:03:6B:E6:0A:DB X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/xrOGXANO-eI6vo_q5AzZA2vmCts.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.215.245.0/24 Signature Algorithm: sha256WithRSAEncryption c8:9f:17:20:56:ea:1e:12:7a:c1:f1:23:3f:4b:c8:f1:d0:5a: 25:2e:77:cf:8e:88:c6:70:5c:dc:2c:04:7e:ad:1c:05:05:b8: 78:ed:31:ac:37:21:cf:77:fa:3c:b2:07:7f:dc:8c:39:d8:52: 69:82:41:3d:39:9f:55:35:22:ac:72:00:e4:11:c5:a1:0e:44: 18:b5:c9:7d:27:49:7f:0a:81:43:23:ec:49:5d:9c:cf:bd:6d: 5e:c3:a1:99:55:dc:b5:e1:30:61:07:43:1a:d1:2a:f6:b2:86: f3:a8:ba:02:0c:34:b6:42:9e:07:2d:b9:2f:7c:bb:f1:48:cc: 81:bf:43:3a:b7:4f:08:6c:dd:37:1f:98:ec:6b:d8:c7:5e:33: cd:7f:74:2e:e3:d8:9c:eb:96:71:19:a6:59:27:e2:fd:9c:18: c1:7b:34:42:64:87:8e:cd:1e:ac:e7:e7:bb:9b:c0:87:c7:e6: 71:10:a7:e7:9a:67:1a:2b:2f:3b:08:f2:4f:75:72:13:f5:bc: 93:72:c4:d3:15:a3:37:cb:42:58:f3:83:29:ee:b2:d7:e3:5c: 0a:23:52:8a:5c:83:98:15:42:ca:b2:ba:eb:b2:31:57:6b:7e: d1:bb:e3:be:76:66:88:2b:9a:4d:a8:65:e8:b2:3b:e8:d3:c0: 35:f5:79:15 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26vg6wcLq00fLXDFNU7EgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjYwMTAxMDAxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNmIzODY1YzAzNGVmOWUyM2FiZThmZWFlNDBjZDkwMzZiZTYwYWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMzqm3XVd4NDemsDarz9KQlS6Pt0 cDx7DZ+hMiGl6mRpw8hrxg69dPPg7eRUcVlZZZq61u+GNABO+cwJZRRGhahANmGT OT1M7b7pc42edufrwPPjo6NL/HD5zZ5IMHiKa0fvIlQzglXgrukXv+ckv2k+M6Lm GzabLHAPZ9q4j0MVEYVUtwrk+kkE16ffGXtfXfXwWO5IQPWU6PMEAam4QOy27/bR Mwd73VqIcoNR+LqSuKSxLOPhgTiuoAzP3wF1kV019z9CAIoFEJaY9VVwnZ5B95fq 0JKIuPIGkaLbdraB0qwpI4Q4pp5SEVtp0q/f81ZtMLUiJXHk1e98B9yRrwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMazhlwDTvniOr6P6uQM2QNr5grbMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEveHJPR1hBTk8tZUk2dm9fcTVBelpBMnZtQ3RzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudf1MA0G CSqGSIb3DQEBCwUAA4IBAQDInxcgVuoeEnrB8SM/S8jx0FolLnfPjojGcFzcLAR+ rRwFBbh47TGsNyHPd/o8sgd/3Iw52FJpgkE9OZ9VNSKscgDkEcWhDkQYtcl9J0l/ CoFDI+xJXZzPvW1ew6GZVdy14TBhB0Ma0Sr2sobzqLoCDDS2Qp4HLbkvfLvxSMyB v0M6t08IbN03H5jsa9jHXjPNf3Qu49ic65ZxGaZZJ+L9nBjBezRCZIeOzR6s5+e7 m8CHx+ZxEKfnmmcaKy87CPJPdXIT9byTcsTTFaM3y0JY84Mp7rLX41wKI1KKXIOY FULKsrrrsjFXa37Ru+O+dmaIK5pNqGXosjvo08A19XkV -----END CERTIFICATE-----Generated at Sun Jan 25 11:58:46 2026 by rpki-client