This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/xG9W89NLTMo3zDEcMXWD8-7tuik.roa File: xG9W89NLTMo3zDEcMXWD8-7tuik.roa (raw, json) Hash identifier: z2qG6bl0HluFOz/GCJOPJLYtdHcGTOZW8wletJFCQ5w= Subject key identifier: C4:6F:56:F3:D3:4B:4C:CA:37:CC:31:1C:31:75:83:F3:EE:ED:BA:29 Certificate issuer: /CN=eb500c9002321f03964583710b7baa4597341213 Certificate serial: 019B7EA6F9F2B20BEAF4601CA5DFF0265D99 Authority key identifier: EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/xG9W89NLTMo3zDEcMXWD8-7tuik.roa Signing time: Fri 02 Jan 2026 12:20:30 +0000 ROA not before: Fri 02 Jan 2026 12:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197911 IP address blocks: 188.120.252.0/24 maxlen: 24 2a01:230::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/61AMkAIyHwOWRYNxC3uqRZc0EhM.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/61AMkAIyHwOWRYNxC3uqRZc0EhM.mft rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:f9:f2:b2:0b:ea:f4:60:1c:a5:df:f0:26:5d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eb500c9002321f03964583710b7baa4597341213 Validity Not Before: Jan 2 12:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c46f56f3d34b4cca37cc311c317583f3eeedba29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:50:a6:e4:cb:69:9d:cd:4d:aa:1a:e8:a6:40: 0f:97:61:54:50:1a:8f:29:51:99:d0:87:e1:66:30: 6f:8e:2c:4f:36:e6:94:37:45:cf:8e:f4:4b:93:71: 8e:11:c0:f2:29:c1:6f:78:c7:02:a3:f1:c7:30:94: a6:f3:0f:6e:de:f9:72:16:40:c9:17:7a:8b:e4:99: 80:8b:ce:b5:ec:05:40:d5:fb:d3:b5:0b:19:8f:58: 65:fa:73:c1:d7:49:32:59:0b:b7:f5:53:42:3e:60: 61:5e:fb:bd:a1:d5:56:99:34:32:fa:9b:17:90:fc: bb:11:1b:ab:88:59:bc:06:4c:43:00:bf:1e:36:a7: 58:fc:03:3d:31:e4:c8:d6:64:1b:2b:74:f0:6b:ac: d9:79:27:4b:f3:95:03:fa:6f:6b:16:8d:25:ac:f8: d9:48:4e:ef:76:31:02:58:71:bc:f7:f2:69:fd:75: f9:c2:48:96:b4:2d:b8:de:f0:cc:4b:af:a7:75:48: c3:76:54:a9:5b:46:d8:e5:0f:67:75:93:7e:99:1d: 33:e5:7b:aa:e8:47:c5:4a:51:35:dd:ff:f7:9d:b6: ff:c1:06:7b:cf:38:95:00:3d:93:1d:38:6d:f7:2b: 65:d0:24:db:1d:4c:2f:2f:77:db:c8:e3:e5:52:3c: 5f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6F:56:F3:D3:4B:4C:CA:37:CC:31:1C:31:75:83:F3:EE:ED:BA:29 X509v3 Authority Key Identifier: keyid:EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/xG9W89NLTMo3zDEcMXWD8-7tuik.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/61AMkAIyHwOWRYNxC3uqRZc0EhM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.120.252.0/24 IPv6: 2a01:230::/48 Signature Algorithm: sha256WithRSAEncryption a8:ad:74:9f:17:d7:07:f2:a5:63:11:bd:fb:9f:1b:db:a3:09: de:39:51:d9:78:13:ea:64:78:fd:32:b1:8d:bc:81:82:af:f2: 64:82:c6:93:42:3a:c5:78:b9:90:06:70:9f:b4:79:cb:4e:c6: 83:56:80:4c:ee:e6:4b:25:96:f9:c6:f7:3a:20:7e:ca:19:75: 2a:a7:0b:7f:7e:d1:e9:29:5c:5f:98:fd:73:fd:1a:e2:39:29: af:39:00:c3:e4:10:ee:c0:a5:d1:71:ac:aa:93:e8:bf:d9:37: 22:38:15:5f:ee:7b:5c:b3:07:58:ba:fc:51:2c:e5:bd:1c:e0: 65:06:3e:94:6d:68:55:09:67:3c:a2:4e:7b:1a:df:64:d9:e4: 91:5c:02:4f:39:c2:60:39:fa:80:93:76:7a:8d:82:fe:f0:79: 17:2e:8a:0c:01:11:da:d0:f9:7f:1b:6a:b6:a0:4a:6c:e4:af: b4:21:f0:ec:36:ce:b4:7e:0c:ca:33:96:3b:ae:a2:c1:53:65: e7:f0:ea:03:b7:85:6d:91:ed:81:75:bc:d3:4e:76:ee:38:81: 51:b0:61:d4:5f:d6:03:37:bb:60:78:23:2e:c4:26:29:6c:50: 88:79:02:c6:c5:f4:28:49:2d:13:fa:41:a9:26:04:8e:ff:2e: a5:dd:97:01 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+pvnysgvq9GAcpd/wJl2ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViNTAwYzkwMDIzMjFmMDM5NjQ1ODM3MTBiN2JhYTQ1OTcz NDEyMTMwHhcNMjYwMTAyMTIyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDZmNTZmM2QzNGI0Y2NhMzdjYzMxMWMzMTc1ODNmM2VlZWRiYTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlCm5Mtpnc1NqhropkAPl2FUUBqP KVGZ0IfhZjBvjixPNuaUN0XPjvRLk3GOEcDyKcFveMcCo/HHMJSm8w9u3vlyFkDJ F3qL5JmAi8617AVA1fvTtQsZj1hl+nPB10kyWQu39VNCPmBhXvu9odVWmTQy+psX kPy7ERuriFm8BkxDAL8eNqdY/AM9MeTI1mQbK3Twa6zZeSdL85UD+m9rFo0lrPjZ SE7vdjECWHG89/Jp/XX5wkiWtC243vDMS6+ndUjDdlSpW0bY5Q9ndZN+mR0z5Xuq 6EfFSlE13f/3nbb/wQZ7zziVAD2THTht9ytl0CTbHUwvL3fbyOPlUjxfxQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMRvVvPTS0zKN8wxHDF1g/Pu7bopMB8GA1UdIwQY MBaAFOtQDJACMh8DlkWDcQt7qkWXNBITMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNjFBTWtBSXlId09XUllOeEMzdXFSWmMwRWhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS8xOWMwOWEtZDc5YS00ZGU0LThhODYt NGE2ODU5NjJmM2U4LzEveEc5Vzg5TkxUTW8zekRFY01YV0Q4LTd0dWlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS8xOWMwOWEtZDc5YS00ZGU0LThhODYtNGE2ODU5NjJmM2U4 LzEvNjFBTWtBSXlId09XUllOeEMzdXFSWmMwRWhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAvHj8MA8E AgACMAkDBwAqAQIwAAAwDQYJKoZIhvcNAQELBQADggEBAKitdJ8X1wfypWMRvfuf G9ujCd45Udl4E+pkeP0ysY28gYKv8mSCxpNCOsV4uZAGcJ+0ectOxoNWgEzu5ksl lvnG9zogfsoZdSqnC39+0ekpXF+Y/XP9GuI5Ka85AMPkEO7ApdFxrKqT6L/ZNyI4 FV/ue1yzB1i6/FEs5b0c4GUGPpRtaFUJZzyiTnsa32TZ5JFcAk85wmA5+oCTdnqN gv7weRcuigwBEdrQ+X8baragSmzkr7Qh8Ow2zrR+DMozljuuosFTZefw6gO3hW2R 7YF1vNNOdu44gVGwYdRf1gM3u2B4Iy7EJilsUIh5AsbF9ChJLRP6QakmBI7/LqXd lwE= -----END CERTIFICATE-----Generated at Mon Jan 26 22:59:38 2026 by rpki-client