This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/xtriZj0E7B6zsRP9XIkIcFpnrqU.roa File: xtriZj0E7B6zsRP9XIkIcFpnrqU.roa (raw, json) Hash identifier: sr6Ahzw03XTlsg1PwbjbJZ0ftk/dptqXUly+PXrigJk= Subject key identifier: C6:DA:E2:66:3D:04:EC:1E:B3:B1:13:FD:5C:89:08:70:5A:67:AE:A5 Certificate issuer: /CN=8810fc3198a0ab99647877dbe5725e05cee013f0 Certificate serial: 019B7CEE5E44DB2AA1907633FE5DBB7B20EF Authority key identifier: 88:10:FC:31:98:A0:AB:99:64:78:77:DB:E5:72:5E:05:CE:E0:13:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBD8MZigq5lkeHfb5XJeBc7gE_A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/xtriZj0E7B6zsRP9XIkIcFpnrqU.roa Signing time: Fri 02 Jan 2026 04:19:15 +0000 ROA not before: Fri 02 Jan 2026 04:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210118 IP address blocks: 217.198.184.0/24 maxlen: 24 2a11:f940::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/iBD8MZigq5lkeHfb5XJeBc7gE_A.crl rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/iBD8MZigq5lkeHfb5XJeBc7gE_A.mft rsync://rpki.ripe.net/repository/DEFAULT/iBD8MZigq5lkeHfb5XJeBc7gE_A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:5e:44:db:2a:a1:90:76:33:fe:5d:bb:7b:20:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8810fc3198a0ab99647877dbe5725e05cee013f0 Validity Not Before: Jan 2 04:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c6dae2663d04ec1eb3b113fd5c8908705a67aea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b1:a2:3e:eb:4b:08:64:2f:57:63:a3:5f:41: e6:0b:7a:a7:dd:99:28:36:2c:aa:54:6a:e5:32:89: ac:af:bf:f0:07:bd:53:af:c2:f7:c9:ca:a3:99:a4: ec:d5:15:c7:be:38:40:ec:ee:6c:81:7c:d8:26:92: 5d:ca:0d:4b:7a:47:a3:bb:37:20:c7:f2:bc:0c:1f: fa:95:17:a4:3c:85:97:c8:09:fd:18:a5:29:11:00: 21:5b:bb:05:99:3c:74:4e:48:e1:c6:b2:84:1c:88: e6:28:26:9c:c0:eb:91:0b:fc:96:61:53:93:e5:4c: 63:e2:8f:00:db:d4:fb:07:d1:ef:5d:78:39:6e:b1: 8b:fb:91:9a:da:c2:c4:a7:e3:98:f3:14:f9:e6:65: 89:29:81:1f:b0:ff:ff:00:c3:cc:c4:3a:f1:e8:4b: 74:04:a7:11:69:d9:62:2b:47:5e:9e:13:ed:89:f6: fb:fd:25:2e:21:b8:47:cc:e3:08:ea:56:fc:50:34: 92:21:7a:7d:ae:a5:60:e2:76:8d:7e:fe:4c:00:c3: b4:f6:f4:fc:18:1c:0c:90:93:22:94:31:96:fc:62: 62:4c:df:6c:d2:a6:40:0c:04:f3:b3:89:93:3d:6c: bc:24:73:a5:a6:0a:e9:17:9a:1e:24:aa:3e:5a:f4: ca:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:DA:E2:66:3D:04:EC:1E:B3:B1:13:FD:5C:89:08:70:5A:67:AE:A5 X509v3 Authority Key Identifier: keyid:88:10:FC:31:98:A0:AB:99:64:78:77:DB:E5:72:5E:05:CE:E0:13:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBD8MZigq5lkeHfb5XJeBc7gE_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/xtriZj0E7B6zsRP9XIkIcFpnrqU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/iBD8MZigq5lkeHfb5XJeBc7gE_A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.198.184.0/24 IPv6: 2a11:f940::/29 Signature Algorithm: sha256WithRSAEncryption 53:2c:d5:b9:af:7a:14:18:e1:1a:3b:b3:10:22:f2:9d:9b:1e: e1:fa:11:ce:31:ed:54:e9:4f:dd:34:52:2f:4a:61:c3:2d:4d: 1b:e0:ec:39:14:6e:00:2e:fd:a8:7b:48:29:78:3e:a2:c6:28: 11:e7:3a:bd:c9:c8:a9:cd:1c:07:46:80:f6:14:92:fb:dc:6b: c1:78:73:c0:f7:96:db:19:cc:f4:31:29:54:2e:fa:9e:0a:f4: 30:19:a6:4d:33:7f:76:3b:2d:b9:53:21:12:14:ab:1b:aa:0f: 9d:bd:58:7e:32:f6:b8:bd:ed:08:15:f4:c2:df:88:f4:6a:e2: 74:e7:65:7f:17:c9:f0:d2:37:86:be:33:25:00:19:2a:16:d9: 15:66:6a:75:3c:17:c9:31:ca:89:34:f3:8e:f1:cb:9d:76:e2: 11:12:fd:21:5b:58:5c:a1:d4:75:6c:b2:8e:61:f6:b2:cb:35: cb:e8:f6:93:33:e2:dc:77:84:24:5f:b2:46:e3:5b:c5:ba:a4: a3:f4:15:ba:35:df:6d:07:ac:e5:d9:1a:c9:c2:ca:16:1d:4c: 35:13:2d:33:5c:20:2e:e6:25:53:32:56:ac:98:05:34:bc:47: 78:a6:5b:ef:32:38:0f:ac:55:2a:93:26:37:54:49:98:41:56: 08:5d:e1:8d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87l5E2yqhkHYz/l27eyDvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MTBmYzMxOThhMGFiOTk2NDc4NzdkYmU1NzI1ZTA1Y2Vl MDEzZjAwHhcNMjYwMTAyMDQxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNmRhZTI2NjNkMDRlYzFlYjNiMTEzZmQ1Yzg5MDg3MDVhNjdhZWE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7GiPutLCGQvV2OjX0HmC3qn3Zko NiyqVGrlMomsr7/wB71Tr8L3ycqjmaTs1RXHvjhA7O5sgXzYJpJdyg1Lekejuzcg x/K8DB/6lRekPIWXyAn9GKUpEQAhW7sFmTx0TkjhxrKEHIjmKCacwOuRC/yWYVOT 5Uxj4o8A29T7B9HvXXg5brGL+5Ga2sLEp+OY8xT55mWJKYEfsP//AMPMxDrx6Et0 BKcRadliK0denhPtifb7/SUuIbhHzOMI6lb8UDSSIXp9rqVg4naNfv5MAMO09vT8 GBwMkJMilDGW/GJiTN9s0qZADATzs4mTPWy8JHOlpgrpF5oeJKo+WvTK2wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMba4mY9BOwes7ET/VyJCHBaZ66lMB8GA1UdIwQY MBaAFIgQ/DGYoKuZZHh32+VyXgXO4BPwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUJEOE1aaWdxNWxrZUhmYjVYSmVCYzdnRV9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9jZjFmZmQtMTM0ZC00MzgyLThlNTkt NGEwOGQ1YTFjNzFmLzEveHRyaVpqMEU3QjZ6c1JQOVhJa0ljRnBucnFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny9jZjFmZmQtMTM0ZC00MzgyLThlNTktNGEwOGQ1YTFjNzFm LzEvaUJEOE1aaWdxNWxrZUhmYjVYSmVCYzdnRV9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA2ca4MA0E AgACMAcDBQMqEflAMA0GCSqGSIb3DQEBCwUAA4IBAQBTLNW5r3oUGOEaO7MQIvKd mx7h+hHOMe1U6U/dNFIvSmHDLU0b4Ow5FG4ALv2oe0gpeD6ixigR5zq9ycipzRwH RoD2FJL73GvBeHPA95bbGcz0MSlULvqeCvQwGaZNM392Oy25UyESFKsbqg+dvVh+ Mva4ve0IFfTC34j0auJ052V/F8nw0jeGvjMlABkqFtkVZmp1PBfJMcqJNPOO8cud duIREv0hW1hcodR1bLKOYfayyzXL6PaTM+Lcd4QkX7JG41vFuqSj9BW6Nd9tB6zl 2RrJwsoWHUw1Ey0zXCAu5iVTMlasmAU0vEd4plvvMjgPrFUqkyY3VEmYQVYIXeGN -----END CERTIFICATE-----Generated at Mon Jan 26 14:53:53 2026 by rpki-client