This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/xbEhOdTGtK79EP0Hua6zp2g53GY.roa File: xbEhOdTGtK79EP0Hua6zp2g53GY.roa (raw, json) Hash identifier: UhufiohNKNchaGiqQq0NBGvPLk1S1fa3tNlXBIgXEyA= Subject key identifier: C5:B1:21:39:D4:C6:B4:AE:FD:10:FD:07:B9:AE:B3:A7:68:39:DC:66 Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0 Certificate serial: 019B76EACAA480A748925D6351F515F9F7CF Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/xbEhOdTGtK79EP0Hua6zp2g53GY.roa Signing time: Thu 01 Jan 2026 00:17:37 +0000 ROA not before: Thu 01 Jan 2026 00:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202623 IP address blocks: 141.101.64.0/24 maxlen: 24 141.101.91.0/24 maxlen: 24 2a06:98c0:1400::/48 maxlen: 48 2a06:98c0:1401::/48 maxlen: 48 2a06:98c0:3602::/48 maxlen: 48 2a06:98c0:3603::/48 maxlen: 48 2a06:98c0:3604::/48 maxlen: 48 2a06:98c0:3605::/48 maxlen: 48 2a06:98c0:3606::/48 maxlen: 48 2a06:98c0:3607::/48 maxlen: 48 2a06:98c0:360e::/48 maxlen: 48 2a06:98c0:3612::/48 maxlen: 48 2a06:98c0:3616::/48 maxlen: 48 2a06:98c0:3622::/48 maxlen: 48 2a06:98c0:3626::/48 maxlen: 48 2a06:98c0:3627::/48 maxlen: 48 2a06:98c0:362b::/48 maxlen: 48 2a06:98c0:362c::/48 maxlen: 48 2a06:98c0:362d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.mft rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:ca:a4:80:a7:48:92:5d:63:51:f5:15:f9:f7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0 Validity Not Before: Jan 1 00:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5b12139d4c6b4aefd10fd07b9aeb3a76839dc66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:89:46:fe:2c:8a:cd:3f:cb:d8:c1:9e:a7:58: a5:28:af:ca:26:a6:41:c8:29:33:c3:c6:73:b2:77: c5:30:0d:2b:6e:13:ab:ec:e0:d9:62:e7:1b:c1:e9: e2:fe:38:9f:94:b6:2b:6d:6d:53:c7:d1:5d:71:00: a2:c2:d3:70:5b:8a:ad:02:45:9f:10:17:a2:54:86: 82:c3:10:9b:48:0e:9f:ba:2c:4a:e0:6e:32:29:3a: cc:c2:cd:b7:c6:2f:e7:d2:5c:71:f5:b3:0c:77:0d: d0:70:1c:1f:82:4c:92:29:02:67:1e:9a:24:3f:3c: d6:f2:be:8f:46:1f:5d:77:1c:73:36:f9:cd:23:e4: 9e:c7:a8:11:e2:ab:54:11:be:2d:7e:d8:fc:6e:02: b1:20:a4:b3:d7:08:55:37:11:c8:c9:47:b8:2e:2a: c8:79:33:c9:25:19:3b:9f:d5:f8:b2:46:70:0f:51: 6d:86:b2:3b:3e:49:93:35:fb:c3:5f:6e:02:f3:2b: 3d:d0:41:31:5a:77:00:9b:c6:61:1d:cd:0a:39:d5: 68:e3:9a:86:b4:3a:32:cd:d1:ba:1d:74:a0:3c:91: 11:3e:73:29:e8:5e:6c:7d:cf:96:b5:a8:33:86:fc: 92:e8:25:ea:04:0f:20:6f:dc:a0:47:6f:f2:6e:ab: a2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B1:21:39:D4:C6:B4:AE:FD:10:FD:07:B9:AE:B3:A7:68:39:DC:66 X509v3 Authority Key Identifier: keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/xbEhOdTGtK79EP0Hua6zp2g53GY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.101.64.0/24 141.101.91.0/24 IPv6: 2a06:98c0:1400::/47 2a06:98c0:3602::-2a06:98c0:3607:ffff:ffff:ffff:ffff:ffff 2a06:98c0:360e::/48 2a06:98c0:3612::/48 2a06:98c0:3616::/48 2a06:98c0:3622::/48 2a06:98c0:3626::/47 2a06:98c0:362b::-2a06:98c0:362d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 39:ec:14:e5:71:21:11:17:06:4a:4b:4e:38:22:cb:90:1a:c2: 91:c6:97:31:ec:75:28:c8:24:f5:ce:01:4a:62:b2:19:31:bb: a2:a4:27:07:fb:3c:ac:0a:c8:39:39:6b:63:7b:7a:d6:84:1c: 7b:68:17:79:14:6f:38:0d:d4:16:77:1d:fa:c0:2e:ce:0b:29: 6a:c5:33:aa:94:3e:4c:17:12:0d:35:1d:2e:80:e2:f3:2c:73: d1:8f:34:07:95:a9:e4:cc:b4:56:0d:bd:2b:91:c3:ae:93:67: 0e:01:1a:0b:6f:8d:ed:ef:50:42:ad:f2:e3:36:59:0c:8f:95: 61:09:11:15:26:6e:a3:68:8e:cc:1f:25:73:e3:f1:ff:62:46: 85:28:0f:5d:3c:7f:bd:41:0e:67:b4:d4:e3:a0:ee:69:57:92: 69:2b:6e:f2:9f:ee:b3:cb:ed:9f:77:c9:29:4f:0b:02:88:2f: 83:4b:ea:2b:be:78:b1:45:47:6c:5e:6c:83:54:3d:18:e8:6a: 58:4d:20:b2:7a:89:d8:24:aa:fb:9b:16:b1:f6:c9:e4:f0:a1: 7c:84:a6:36:6a:92:4a:65:a2:3f:5a:66:76:fd:85:37:d0:c0: fd:bc:38:65:0b:db:56:af:0a:df:8d:dc:4c:38:79:c4:f5:d6: de:b2:6a:bf -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgISAZt26sqkgKdIkl1jUfUV+ffPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZDViZmFkNDVkN2M2NWE2ZTM0MzAyODUwOWZkMTg5MmU5 N2I5ZDAwHhcNMjYwMTAxMDAxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNWIxMjEzOWQ0YzZiNGFlZmQxMGZkMDdiOWFlYjNhNzY4MzlkYzY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqolG/iyKzT/L2MGep1ilKK/KJqZB yCkzw8ZzsnfFMA0rbhOr7ODZYucbweni/jiflLYrbW1Tx9FdcQCiwtNwW4qtAkWf EBeiVIaCwxCbSA6fuixK4G4yKTrMws23xi/n0lxx9bMMdw3QcBwfgkySKQJnHpok PzzW8r6PRh9ddxxzNvnNI+Sex6gR4qtUEb4tftj8bgKxIKSz1whVNxHIyUe4LirI eTPJJRk7n9X4skZwD1FthrI7PkmTNfvDX24C8ys90EExWncAm8ZhHc0KOdVo45qG tDoyzdG6HXSgPJERPnMp6F5sfc+WtagzhvyS6CXqBA8gb9ygR2/ybquimQIDAQAB o4ICdjCCAnIwHQYDVR0OBBYEFMWxITnUxrSu/RD9B7mus6doOdxmMB8GA1UdIwQY MBaAFJnVv61F18ZabjQwKFCf0Ykul7nQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQt NzU1MTgwOWNiNzMxLzEveGJFaE9kVEd0Szc5RVAwSHVhNnpwMmc1M0dZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQtNzU1MTgwOWNiNzMx LzEvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHowEgQCAAEwDAMEAI1lQAME AI1lWzBkBAIAAjBeAwcBKgaYwBQAMBIDBwEqBpjANgIDBwMqBpjANgADBwAqBpjA Ng4DBwAqBpjANhIDBwAqBpjANhYDBwAqBpjANiIDBwEqBpjANiYwEgMHACoGmMA2 KwMHASoGmMA2LDANBgkqhkiG9w0BAQsFAAOCAQEAOewU5XEhERcGSktOOCLLkBrC kcaXMex1KMgk9c4BSmKyGTG7oqQnB/s8rArIOTlrY3t61oQce2gXeRRvOA3UFncd +sAuzgspasUzqpQ+TBcSDTUdLoDi8yxz0Y80B5Wp5My0Vg29K5HDrpNnDgEaC2+N 7e9QQq3y4zZZDI+VYQkRFSZuo2iOzB8lc+Px/2JGhSgPXTx/vUEOZ7TU46DuaVeS aStu8p/us8vtn3fJKU8LAogvg0vqK754sUVHbF5sg1Q9GOhqWE0gsnqJ2CSq+5sW sfbJ5PChfISmNmqSSmWiP1pmdv2FN9DA/bw4ZQvbVq8K343cTDh5xPXW3rJqvw== -----END CERTIFICATE-----Generated at Sun Jan 25 13:54:06 2026 by rpki-client