This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/sxE81xLDEQT0P-TPsy-WofGvQHg.roa File: sxE81xLDEQT0P-TPsy-WofGvQHg.roa (raw, json) Hash identifier: DGA+4dzkewtJxSyfNRDqxt+xT7jcUam8PPEoRnh0nXE= Subject key identifier: B3:11:3C:D7:12:C3:11:04:F4:3F:E4:CF:B3:2F:96:A1:F1:AF:40:78 Certificate issuer: /CN=dbc144ce154eee9dbb3562ce4cd3228338641333 Certificate serial: 019B7EA63DAEAA528237D46995EC16024759 Authority key identifier: DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/sxE81xLDEQT0P-TPsy-WofGvQHg.roa Signing time: Fri 02 Jan 2026 12:19:42 +0000 ROA not before: Fri 02 Jan 2026 12:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42853 IP address blocks: 185.25.244.0/23 maxlen: 23 185.25.244.0/24 maxlen: 24 185.25.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.mft rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:3d:ae:aa:52:82:37:d4:69:95:ec:16:02:47:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbc144ce154eee9dbb3562ce4cd3228338641333 Validity Not Before: Jan 2 12:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3113cd712c31104f43fe4cfb32f96a1f1af4078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cb:aa:1e:9a:2c:30:4d:59:0b:c1:7c:e6:8f: 9f:d3:7f:34:61:db:1a:7b:5f:89:ae:27:33:b8:48: fb:b8:cd:61:27:eb:5a:47:43:be:22:b6:b9:cf:fb: a1:b0:97:c3:50:2b:2d:94:76:a6:f4:bc:a4:c0:a5: 5f:d9:da:20:43:9a:3d:11:68:f8:94:13:7b:88:12: fc:3b:ad:14:87:ce:fb:4b:c3:f0:fb:4f:d1:b5:6d: bc:7d:f2:4f:1e:8c:81:bc:b7:df:10:ff:24:1e:ba: 04:b4:4c:51:d7:04:bc:b2:be:ca:c7:08:80:04:37: 2a:6e:93:ac:c3:88:bc:81:1c:51:82:5b:cb:3d:70: af:3c:c3:c4:63:08:b8:1e:6b:04:d2:51:20:93:39: 19:3e:94:f4:36:dd:5a:67:34:b9:cd:1e:fb:82:01: ae:ae:d9:2e:04:71:99:00:ff:e9:1d:5a:e5:6d:7f: 89:81:07:6b:04:14:34:3a:ec:a6:f5:bd:a0:50:bc: 49:20:98:dd:8d:0a:10:04:4c:78:f4:7e:c2:2c:7a: 51:c9:89:34:c1:53:de:43:12:e3:5d:35:1d:e9:2e: 6a:8e:47:dd:93:c8:2c:57:18:f2:65:d9:a0:7c:71: 51:9b:aa:e9:d4:d4:fe:82:af:6c:04:5b:6d:89:fd: be:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:11:3C:D7:12:C3:11:04:F4:3F:E4:CF:B3:2F:96:A1:F1:AF:40:78 X509v3 Authority Key Identifier: keyid:DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/sxE81xLDEQT0P-TPsy-WofGvQHg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.25.244.0/23 Signature Algorithm: sha256WithRSAEncryption 05:d6:b3:2f:6c:ff:0f:4a:ae:6e:ba:a6:e3:0a:8e:22:84:78: 02:a7:65:4a:29:5c:15:51:55:8f:a0:97:85:6b:f8:9b:71:6c: 7a:c9:e0:f6:dc:02:4c:33:2d:ee:9b:00:15:ae:91:a6:75:7b: 22:79:18:dc:52:09:c3:e7:88:1a:8c:5e:96:8f:03:45:8b:8b: 64:74:a1:a6:43:cc:3c:5d:4c:89:10:a5:f0:33:5f:5b:84:b3: f6:9f:f1:ed:a3:b2:aa:38:bd:96:82:58:34:2d:e0:7c:27:ec: 11:52:eb:b3:33:4e:2f:d7:aa:8a:c6:16:c8:f0:7c:0b:be:70: 71:37:c5:ea:4d:bb:62:24:05:df:e4:78:ed:06:69:a3:f6:8a: b1:54:57:f2:72:4b:00:39:c0:59:a5:bd:b7:18:f5:6c:a4:7d: d9:dd:c7:d4:74:ca:55:87:db:c2:25:26:b4:99:22:1b:90:e2: 47:8b:ed:67:df:bf:17:81:7c:3d:47:39:be:11:f5:dc:fe:e8: 63:7b:d4:a6:ec:42:4a:e7:e9:60:5b:76:85:d9:3a:68:ba:8b: 7a:8c:02:6a:2b:80:84:dc:83:1d:bb:87:ba:93:ce:d8:10:e3: 66:5e:2e:1b:15:07:b9:ff:d1:0e:b0:1d:86:3b:fd:93:19:2d: 45:0c:9e:8f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pj2uqlKCN9RplewWAkdZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiYzE0NGNlMTU0ZWVlOWRiYjM1NjJjZTRjZDMyMjgzMzg2 NDEzMzMwHhcNMjYwMTAyMTIxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzExM2NkNzEyYzMxMTA0ZjQzZmU0Y2ZiMzJmOTZhMWYxYWY0MDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMuqHposME1ZC8F85o+f0380Ydsa e1+JriczuEj7uM1hJ+taR0O+Ira5z/uhsJfDUCstlHam9LykwKVf2dogQ5o9EWj4 lBN7iBL8O60Uh877S8Pw+0/RtW28ffJPHoyBvLffEP8kHroEtExR1wS8sr7KxwiA BDcqbpOsw4i8gRxRglvLPXCvPMPEYwi4HmsE0lEgkzkZPpT0Nt1aZzS5zR77ggGu rtkuBHGZAP/pHVrlbX+JgQdrBBQ0Ouym9b2gULxJIJjdjQoQBEx49H7CLHpRyYk0 wVPeQxLjXTUd6S5qjkfdk8gsVxjyZdmgfHFRm6rp1NT+gq9sBFttif2+NQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLMRPNcSwxEE9D/kz7MvlqHxr0B4MB8GA1UdIwQY MBaAFNvBRM4VTu6duzVizkzTIoM4ZBMzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjhGRXpoVk83cDI3TldMT1ROTWlnemhrRXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9hMjJjZmEtMDFmMy00ZjEyLWI2ZmQt NDg5NGY4OGJlZGRjLzEvc3hFODF4TERFUVQwUC1UUHN5LVdvZkd2UUhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9hMjJjZmEtMDFmMy00ZjEyLWI2ZmQtNDg5NGY4OGJlZGRj LzEvMjhGRXpoVk83cDI3TldMT1ROTWlnemhrRXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuRn0MA0G CSqGSIb3DQEBCwUAA4IBAQAF1rMvbP8PSq5uuqbjCo4ihHgCp2VKKVwVUVWPoJeF a/ibcWx6yeD23AJMMy3umwAVrpGmdXsieRjcUgnD54gajF6WjwNFi4tkdKGmQ8w8 XUyJEKXwM19bhLP2n/Hto7KqOL2Wglg0LeB8J+wRUuuzM04v16qKxhbI8HwLvnBx N8XqTbtiJAXf5HjtBmmj9oqxVFfycksAOcBZpb23GPVspH3Z3cfUdMpVh9vCJSa0 mSIbkOJHi+1n378XgXw9Rzm+EfXc/uhje9Sm7EJK5+lgW3aF2Tpouot6jAJqK4CE 3IMdu4e6k87YEONmXi4bFQe5/9EOsB2GO/2TGS1FDJ6P -----END CERTIFICATE-----Generated at Sun Jan 25 15:36:37 2026 by rpki-client