This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/XzpLOyyVemQ6RelT4l5NRJSoZY8.roa File: XzpLOyyVemQ6RelT4l5NRJSoZY8.roa (raw, json) Hash identifier: 7T31BDFOxFp2/Pv8ShUq1oXNZxQJBzRZFs2H/DMrRxs= Subject key identifier: 5F:3A:4B:3B:2C:95:7A:64:3A:45:E9:53:E2:5E:4D:44:94:A8:65:8F Certificate issuer: /CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078 Certificate serial: 019B78A366129E1C9A53704C0FAF1C950229 Authority key identifier: 60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/XzpLOyyVemQ6RelT4l5NRJSoZY8.roa Signing time: Thu 01 Jan 2026 08:18:53 +0000 ROA not before: Thu 01 Jan 2026 08:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59441 IP address blocks: 109.95.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:66:12:9e:1c:9a:53:70:4c:0f:af:1c:95:02:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078 Validity Not Before: Jan 1 08:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f3a4b3b2c957a643a45e953e25e4d4494a8658f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:09:fe:e9:cc:9c:28:59:11:1e:f4:86:4f:d6: b5:b0:b0:fc:36:90:fb:7f:97:34:22:38:20:a9:40: 72:91:9c:2f:45:a9:da:2a:e6:6c:4a:0b:8b:09:83: fa:e2:fc:9c:ea:b7:90:24:a4:83:1a:e9:9a:32:1a: 73:2d:f5:0f:31:d8:2f:27:3d:63:59:ce:d2:c5:af: 24:f2:7c:ae:8f:4c:95:f9:95:6b:0c:f8:53:cc:e8: 0e:c7:fa:32:41:6c:b4:13:f8:1c:74:b1:08:35:e2: de:d7:10:1f:ad:8f:e2:4b:c6:c5:d8:36:4e:94:09: 1f:fd:f6:2e:a6:ef:c3:dc:f7:76:2b:4c:c6:77:fc: 57:fe:b2:cc:18:40:ab:af:48:8d:73:6c:1a:22:a8: dc:62:a3:6e:30:0e:78:f1:5e:18:44:36:69:14:25: 2a:43:39:cc:f3:95:8c:6d:30:eb:56:16:e5:db:43: 24:b7:40:d5:96:5f:7c:06:3b:f9:fd:d3:cf:54:3d: ea:d5:60:a7:87:86:71:83:d4:bc:99:58:e7:f3:6b: c0:68:d3:e7:50:ad:c2:84:19:95:82:07:b0:b7:a2: eb:a7:e0:db:57:bb:a0:62:85:16:9f:f6:67:c3:7f: 64:5b:bd:69:db:d1:fa:97:f0:67:d4:f6:da:85:d7: fa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3A:4B:3B:2C:95:7A:64:3A:45:E9:53:E2:5E:4D:44:94:A8:65:8F X509v3 Authority Key Identifier: keyid:60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/XzpLOyyVemQ6RelT4l5NRJSoZY8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.95.66.0/24 Signature Algorithm: sha256WithRSAEncryption da:61:9e:cb:d2:a8:7a:c4:97:9a:03:7d:50:de:5b:c4:60:c9: 14:d8:9a:0a:3a:6f:be:b2:3a:87:7a:8c:ae:cc:6b:b8:11:0e: 85:a0:b5:53:95:fe:2a:5a:9b:b7:21:9a:1f:e7:52:3d:ea:83: b8:af:fd:b4:43:96:4c:c5:26:6d:12:9e:35:b4:1a:e7:9c:12: 2b:90:b9:05:08:0f:9a:d2:a5:ec:6c:6b:6f:83:73:ce:eb:7f: b7:da:1b:55:b4:b8:de:04:92:2b:b5:e7:e5:7a:7a:83:eb:ef: 58:e4:53:e1:0e:b8:79:cd:91:53:d1:ca:82:ee:1e:60:f6:6b: 0a:be:d6:89:ea:08:08:3a:2b:4b:a1:44:da:eb:f1:e3:b0:2e: 86:ae:6b:98:87:46:ba:01:b8:d6:2c:69:a8:ad:2a:e7:e4:52: 83:b6:77:4a:30:49:ec:f9:e2:82:ca:21:66:c2:f6:39:8d:d1: c0:8e:71:68:17:2e:b0:30:bb:1d:fd:5b:38:b1:9f:67:b8:e6: a9:3b:25:ee:f8:32:b1:42:ff:0d:2f:8a:e9:71:94:ba:3d:71: 52:55:44:2e:58:4b:bf:50:73:a9:63:a3:0a:4c:c1:d1:c5:da: 23:7f:61:db:2c:88:a4:b0:51:bc:af:35:b1:14:a9:de:e5:2f: ce:23:5c:cf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o2YSnhyaU3BMD68clQIpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZWJkNGY3YWMzZDI0OTIwZGUxYzFmZjExODVkOTUwN2U5 YWQwNzgwHhcNMjYwMTAxMDgxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjNhNGIzYjJjOTU3YTY0M2E0NWU5NTNlMjVlNGQ0NDk0YTg2NThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwn+6cycKFkRHvSGT9a1sLD8NpD7 f5c0IjggqUBykZwvRanaKuZsSguLCYP64vyc6reQJKSDGumaMhpzLfUPMdgvJz1j Wc7Sxa8k8nyuj0yV+ZVrDPhTzOgOx/oyQWy0E/gcdLEINeLe1xAfrY/iS8bF2DZO lAkf/fYupu/D3Pd2K0zGd/xX/rLMGECrr0iNc2waIqjcYqNuMA548V4YRDZpFCUq QznM85WMbTDrVhbl20Mkt0DVll98Bjv5/dPPVD3q1WCnh4Zxg9S8mVjn82vAaNPn UK3ChBmVggewt6Lrp+DbV7ugYoUWn/Znw39kW71p29H6l/Bn1Pbahdf63QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF86SzsslXpkOkXpU+JeTUSUqGWPMB8GA1UdIwQY MBaAFGDr1PesPSSSDeHB/xGF2VB+mtB4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU92VTk2dzlKSklONGNIX0VZWFpVSDZhMEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi85MDUzNzgtMjI4YS00MWI0LWJjZTgt ODdkM2IwMjNkOTE5LzEvWHpwTE95eVZlbVE2UmVsVDRsNU5SSlNvWlk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi85MDUzNzgtMjI4YS00MWI0LWJjZTgtODdkM2IwMjNkOTE5 LzEvWU92VTk2dzlKSklONGNIX0VZWFpVSDZhMEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbV9CMA0G CSqGSIb3DQEBCwUAA4IBAQDaYZ7L0qh6xJeaA31Q3lvEYMkU2JoKOm++sjqHeoyu zGu4EQ6FoLVTlf4qWpu3IZof51I96oO4r/20Q5ZMxSZtEp41tBrnnBIrkLkFCA+a 0qXsbGtvg3PO63+32htVtLjeBJIrteflenqD6+9Y5FPhDrh5zZFT0cqC7h5g9msK vtaJ6ggIOitLoUTa6/HjsC6GrmuYh0a6AbjWLGmorSrn5FKDtndKMEns+eKCyiFm wvY5jdHAjnFoFy6wMLsd/Vs4sZ9nuOapOyXu+DKxQv8NL4rpcZS6PXFSVUQuWEu/ UHOpY6MKTMHRxdojf2HbLIiksFG8rzWxFKne5S/OI1zP -----END CERTIFICATE-----Generated at Sun Jan 25 22:31:33 2026 by rpki-client