This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/XE1kOIB75TvdzQX6XL4UIF1VSVU.roa File: XE1kOIB75TvdzQX6XL4UIF1VSVU.roa (raw, json) Hash identifier: m19jT0n9FXKgSHyXS7xQh4IgY66LSF6KAUB6MwLyHjw= Subject key identifier: 5C:4D:64:38:80:7B:E5:3B:DD:CD:05:FA:5C:BE:14:20:5D:55:49:55 Certificate issuer: /CN=7699c189027e25ecc53f98b52ea65ae725d2a730 Certificate serial: 019B7910B7FA847785E459307F379DF3EF6B Authority key identifier: 76:99:C1:89:02:7E:25:EC:C5:3F:98:B5:2E:A6:5A:E7:25:D2:A7:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpnBiQJ-JezFP5i1LqZa5yXSpzA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/XE1kOIB75TvdzQX6XL4UIF1VSVU.roa Signing time: Thu 01 Jan 2026 10:18:17 +0000 ROA not before: Thu 01 Jan 2026 10:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60126 IP address blocks: 185.46.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/dpnBiQJ-JezFP5i1LqZa5yXSpzA.crl rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/dpnBiQJ-JezFP5i1LqZa5yXSpzA.mft rsync://rpki.ripe.net/repository/DEFAULT/dpnBiQJ-JezFP5i1LqZa5yXSpzA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b7:fa:84:77:85:e4:59:30:7f:37:9d:f3:ef:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7699c189027e25ecc53f98b52ea65ae725d2a730 Validity Not Before: Jan 1 10:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c4d6438807be53bddcd05fa5cbe14205d554955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:53:81:0b:de:e5:c6:9a:70:66:5b:b1:2a:cb: f0:c3:b4:b2:40:be:fc:2b:5b:cd:71:b3:c2:ee:cb: 10:5b:7a:90:4a:3f:cc:9c:40:7b:52:ff:d7:09:4f: c9:6c:cc:69:71:a9:f1:a8:9e:a8:89:a1:0b:9f:45: bd:8c:e5:7f:80:bd:c3:94:70:e5:f1:d3:ef:91:a8: a2:8d:f0:02:e6:5a:82:1b:52:b9:5b:9a:d7:9b:13: 34:04:11:20:a2:17:50:d5:d9:6d:f1:4b:4a:d2:15: 62:3a:73:30:0e:30:7f:32:19:53:fd:63:c6:4a:11: 5e:47:07:24:8e:38:2a:46:d1:98:e8:86:d2:a1:b5: dd:6e:5d:e1:67:9b:6a:05:72:0a:c3:5f:f9:e8:7a: a4:bb:3b:8a:fa:7b:97:cb:d0:77:ba:a8:0c:d5:a6: 4f:f3:52:04:c9:0c:3a:fe:ed:be:c3:5e:93:66:71: 0f:82:ad:e8:af:92:94:ef:58:c8:18:9f:17:53:70: b3:fa:ee:1f:c6:5d:1e:83:aa:2a:6d:c1:e4:04:9e: 8e:d5:ff:c0:f3:fd:ce:01:ad:32:ff:eb:c3:62:8b: ac:f2:86:5a:0e:7b:41:8d:54:0f:a2:9b:58:9a:86: f0:54:d0:8f:f2:33:25:3b:2a:69:8c:2d:26:0d:02: 6f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4D:64:38:80:7B:E5:3B:DD:CD:05:FA:5C:BE:14:20:5D:55:49:55 X509v3 Authority Key Identifier: keyid:76:99:C1:89:02:7E:25:EC:C5:3F:98:B5:2E:A6:5A:E7:25:D2:A7:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpnBiQJ-JezFP5i1LqZa5yXSpzA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/XE1kOIB75TvdzQX6XL4UIF1VSVU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/dpnBiQJ-JezFP5i1LqZa5yXSpzA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.46.234.0/23 Signature Algorithm: sha256WithRSAEncryption 52:4e:cc:82:4c:9a:aa:bb:3c:25:c7:56:57:8b:47:29:2f:1f: d3:11:6a:b5:d5:26:0b:d8:c0:ca:a7:48:10:f3:3b:88:14:be: 6d:5f:2a:93:ee:59:d0:eb:d6:4d:f7:78:51:74:d0:b3:d8:e2: 8a:26:7d:4b:7c:ac:9b:e2:fd:a8:8c:bf:91:59:63:1b:70:0e: 7c:bf:bf:c1:19:2e:04:30:56:3b:3b:65:76:cc:c9:2c:45:63: d4:db:52:61:84:0a:cf:8a:a7:86:65:3b:af:f8:66:9a:ea:d4: c7:cb:13:96:8b:21:fe:88:6c:72:3f:87:20:e5:3d:7c:2a:df: c8:6f:f4:5e:b4:bc:bb:2b:0b:12:35:b7:d5:09:46:2a:09:24: a6:a7:34:98:80:36:8f:82:de:2d:8b:86:fe:5c:3d:50:e0:a4: e1:de:8f:67:8e:22:1d:e1:56:1c:dc:71:da:65:ea:a9:2e:8e: ad:4e:67:6e:b9:c5:b8:21:7b:75:0e:9a:ea:1f:05:44:33:f9: c8:0b:77:76:89:4e:4b:30:06:4d:28:be:2c:22:1a:a3:96:cb: 03:36:51:67:b1:06:74:21:d9:d1:a9:f3:08:1a:ff:d4:eb:48: ea:35:43:ba:dd:f7:d0:ad:a8:44:a6:8c:07:de:40:ca:bb:26: 16:e9:f5:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ELf6hHeF5Fkwfzed8+9rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OTljMTg5MDI3ZTI1ZWNjNTNmOThiNTJlYTY1YWU3MjVk MmE3MzAwHhcNMjYwMTAxMTAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzRkNjQzODgwN2JlNTNiZGRjZDA1ZmE1Y2JlMTQyMDVkNTU0OTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulOBC97lxppwZluxKsvww7SyQL78 K1vNcbPC7ssQW3qQSj/MnEB7Uv/XCU/JbMxpcanxqJ6oiaELn0W9jOV/gL3DlHDl 8dPvkaiijfAC5lqCG1K5W5rXmxM0BBEgohdQ1dlt8UtK0hViOnMwDjB/MhlT/WPG ShFeRwckjjgqRtGY6IbSobXdbl3hZ5tqBXIKw1/56HqkuzuK+nuXy9B3uqgM1aZP 81IEyQw6/u2+w16TZnEPgq3or5KU71jIGJ8XU3Cz+u4fxl0eg6oqbcHkBJ6O1f/A 8/3OAa0y/+vDYous8oZaDntBjVQPoptYmobwVNCP8jMlOyppjC0mDQJv7QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFxNZDiAe+U73c0F+ly+FCBdVUlVMB8GA1UdIwQY MBaAFHaZwYkCfiXsxT+YtS6mWucl0qcwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHBuQmlRSi1KZXpGUDVpMUxxWmE1eVhTcHpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83MTc1NTUtMzU0Zi00YjM3LThhNmEt MDk0MDQzNjY5MWJkLzEvWEUxa09JQjc1VHZkelFYNlhMNFVJRjFWU1ZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS83MTc1NTUtMzU0Zi00YjM3LThhNmEtMDk0MDQzNjY5MWJk LzEvZHBuQmlRSi1KZXpGUDVpMUxxWmE1eVhTcHpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuS7qMA0G CSqGSIb3DQEBCwUAA4IBAQBSTsyCTJqquzwlx1ZXi0cpLx/TEWq11SYL2MDKp0gQ 8zuIFL5tXyqT7lnQ69ZN93hRdNCz2OKKJn1LfKyb4v2ojL+RWWMbcA58v7/BGS4E MFY7O2V2zMksRWPU21JhhArPiqeGZTuv+Gaa6tTHyxOWiyH+iGxyP4cg5T18Kt/I b/RetLy7KwsSNbfVCUYqCSSmpzSYgDaPgt4ti4b+XD1Q4KTh3o9njiId4VYc3HHa ZeqpLo6tTmduucW4IXt1DprqHwVEM/nIC3d2iU5LMAZNKL4sIhqjlssDNlFnsQZ0 IdnRqfMIGv/U60jqNUO63ffQrahEpowH3kDKuyYW6fXO -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:23 2026 by rpki-client