This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/XT2ZxiNyPl8rn_wjT4dSEsrv2FQ.roa File: XT2ZxiNyPl8rn_wjT4dSEsrv2FQ.roa (raw, json) Hash identifier: j9Z9JJ3f8apoIT6KOvwGf6DjWw4/5A4w3HMpiPuUfAs= Subject key identifier: 5D:3D:99:C6:23:72:3E:5F:2B:9F:FC:23:4F:87:52:12:CA:EF:D8:54 Certificate issuer: /CN=1662cfd26eccf289757399cc99c17d1cb4357535 Certificate serial: 019B7AC7D9E5EA04F09595FC45CC8AFD4F6A Authority key identifier: 16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/XT2ZxiNyPl8rn_wjT4dSEsrv2FQ.roa Signing time: Thu 01 Jan 2026 18:17:56 +0000 ROA not before: Thu 01 Jan 2026 18:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15945 IP address blocks: 45.148.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.crl rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.mft rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d9:e5:ea:04:f0:95:95:fc:45:cc:8a:fd:4f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1662cfd26eccf289757399cc99c17d1cb4357535 Validity Not Before: Jan 1 18:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d3d99c623723e5f2b9ffc234f875212caefd854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:88:c7:d1:94:17:3e:fb:d0:80:7e:a9:52: d1:5f:8d:8a:a7:1c:8f:16:16:e1:78:32:99:79:d1: 15:69:19:05:61:25:c3:4e:e2:0a:51:71:a6:b3:ba: f8:07:7f:48:aa:4b:34:47:88:9e:5b:c0:70:22:ee: ee:38:01:8a:be:c5:63:dc:a4:ac:f9:9b:84:28:06: a8:01:92:29:5a:e3:16:21:3e:b1:06:4d:f6:e2:36: 87:01:7a:99:b6:42:7d:84:60:e5:97:12:f0:ab:e1: fb:a4:ff:98:86:68:4e:ec:9d:7c:b8:a9:98:72:6c: 2e:94:b8:ec:f3:29:18:06:98:9a:60:b5:cc:d5:08: 36:36:b3:f6:85:b8:00:80:fd:a1:6b:ef:43:3e:fa: c4:e3:9f:29:11:0a:48:b9:5a:e6:62:98:e1:34:86: d3:e1:a4:50:4c:c6:ff:d8:ef:fe:6d:28:b9:24:0a: aa:28:6d:6b:02:7f:1b:3b:de:59:c4:92:ea:ae:42: 92:60:50:95:2c:a7:52:9a:39:33:f1:b8:76:68:c9: 8e:93:24:de:08:72:36:af:c6:9c:51:ed:5f:75:25: a9:bc:e1:0a:d2:8d:b2:37:09:11:da:ee:59:37:85: 52:cb:69:aa:5d:f9:8d:66:a1:ed:4a:2f:b9:20:60: e8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3D:99:C6:23:72:3E:5F:2B:9F:FC:23:4F:87:52:12:CA:EF:D8:54 X509v3 Authority Key Identifier: keyid:16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/XT2ZxiNyPl8rn_wjT4dSEsrv2FQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.148.216.0/23 Signature Algorithm: sha256WithRSAEncryption 99:e1:7b:0f:b1:f4:41:22:0e:4a:f3:65:39:8c:0f:d2:f5:e3: a2:bc:20:35:54:b6:01:7b:dd:bf:cd:5d:39:c5:88:a2:5d:50: d8:84:27:69:0f:c6:41:6d:11:1b:df:6d:8c:3d:6b:a3:77:32: c5:87:61:bb:34:f5:62:92:b0:e0:18:31:49:ca:fc:ee:2d:ca: 11:0a:ac:1a:a4:78:fd:6e:ba:4a:e4:04:cb:47:0e:02:ed:49: 45:90:ff:ce:97:5f:93:0d:a9:01:0a:6f:92:ab:66:1d:f9:e2: f3:3b:53:4c:de:9f:c6:e6:d7:d4:91:68:b5:79:2d:7f:b6:31: 3b:63:75:72:a0:e6:e8:4e:2c:dd:23:a8:d8:82:4a:03:08:67: 0e:42:64:f9:7b:54:52:4e:a8:5d:63:00:88:96:e0:88:18:43: 89:b4:73:05:28:2e:f2:d5:f3:77:a8:8f:1d:76:23:7d:58:a2: 5a:96:1a:1d:62:44:24:c3:8d:68:72:94:43:95:7c:a8:c8:27: 83:8f:c3:10:e6:2e:2b:21:88:16:b5:a0:5f:cb:d4:50:6d:16: 2b:30:f6:c6:58:11:24:3b:04:8e:20:03:5f:cf:d2:88:73:4d: de:af:05:31:1a:f0:57:2f:95:71:fd:60:f6:d2:64:b5:91:2d: 63:ee:2d:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x9nl6gTwlZX8RcyK/U9qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2NjJjZmQyNmVjY2YyODk3NTczOTljYzk5YzE3ZDFjYjQz NTc1MzUwHhcNMjYwMTAxMTgxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDNkOTljNjIzNzIzZTVmMmI5ZmZjMjM0Zjg3NTIxMmNhZWZkODU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1GIx9GUFz770IB+qVLRX42KpxyP FhbheDKZedEVaRkFYSXDTuIKUXGms7r4B39Iqks0R4ieW8BwIu7uOAGKvsVj3KSs +ZuEKAaoAZIpWuMWIT6xBk324jaHAXqZtkJ9hGDllxLwq+H7pP+YhmhO7J18uKmY cmwulLjs8ykYBpiaYLXM1Qg2NrP2hbgAgP2ha+9DPvrE458pEQpIuVrmYpjhNIbT 4aRQTMb/2O/+bSi5JAqqKG1rAn8bO95ZxJLqrkKSYFCVLKdSmjkz8bh2aMmOkyTe CHI2r8acUe1fdSWpvOEK0o2yNwkR2u5ZN4VSy2mqXfmNZqHtSi+5IGDoxwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF09mcYjcj5fK5/8I0+HUhLK79hUMB8GA1UdIwQY MBaAFBZiz9JuzPKJdXOZzJnBfRy0NXU1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRm1MUDBtN004b2wxYzVuTW1jRjlITFExZFRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My81Yjk4NzgtMjA4MC00MzU0LTk1OTIt YjcyMzE5NDFmYzNhLzEvWFQyWnhpTnlQbDhybl93alQ0ZFNFc3J2MkZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My81Yjk4NzgtMjA4MC00MzU0LTk1OTItYjcyMzE5NDFmYzNh LzEvRm1MUDBtN004b2wxYzVuTW1jRjlITFExZFRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZTYMA0G CSqGSIb3DQEBCwUAA4IBAQCZ4XsPsfRBIg5K82U5jA/S9eOivCA1VLYBe92/zV05 xYiiXVDYhCdpD8ZBbREb322MPWujdzLFh2G7NPVikrDgGDFJyvzuLcoRCqwapHj9 brpK5ATLRw4C7UlFkP/Ol1+TDakBCm+Sq2Yd+eLzO1NM3p/G5tfUkWi1eS1/tjE7 Y3VyoOboTizdI6jYgkoDCGcOQmT5e1RSTqhdYwCIluCIGEOJtHMFKC7y1fN3qI8d diN9WKJalhodYkQkw41ocpRDlXyoyCeDj8MQ5i4rIYgWtaBfy9RQbRYrMPbGWBEk OwSOIANfz9KIc03erwUxGvBXL5Vx/WD20mS1kS1j7i2L -----END CERTIFICATE-----Generated at Mon Jan 26 05:31:38 2026 by rpki-client