This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/XSUEp2ewELHmYwH52rXsSNXdWOw.roa File: XSUEp2ewELHmYwH52rXsSNXdWOw.roa (raw, json) Hash identifier: YFKsQwoEE2JksK5/us9CiKgJv/xGESxAM1454M2S6rE= Subject key identifier: 5D:25:04:A7:67:B0:10:B1:E6:63:01:F9:DA:B5:EC:48:D5:DD:58:EC Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e Certificate serial: 019B79ECF8A70DA0A424916364792F122FB0 Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/XSUEp2ewELHmYwH52rXsSNXdWOw.roa Signing time: Thu 01 Jan 2026 14:18:51 +0000 ROA not before: Thu 01 Jan 2026 14:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44716 IP address blocks: 87.225.128.0/17 maxlen: 17 212.21.64.0/19 maxlen: 24 212.42.224.0/19 maxlen: 24 212.42.225.0/24 maxlen: 24 212.42.226.0/24 maxlen: 24 212.42.231.0/24 maxlen: 24 212.42.232.0/24 maxlen: 24 212.42.244.0/24 maxlen: 24 212.42.247.0/24 maxlen: 24 2001:bf0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.mft rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:f8:a7:0d:a0:a4:24:91:63:64:79:2f:12:2f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e Validity Not Before: Jan 1 14:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d2504a767b010b1e66301f9dab5ec48d5dd58ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3f:3d:62:38:8b:21:0a:82:7a:03:1d:3a:ca: c5:d6:43:1b:40:80:7d:81:55:b7:96:04:eb:e7:a6: 9d:52:d7:a7:a0:c2:6f:a4:c3:11:f1:b4:94:c9:14: a7:4c:e6:8e:9d:14:4e:04:d0:e9:e4:1e:b3:39:4d: ab:b4:3a:45:a8:ac:8a:1f:94:ea:59:51:05:cc:af: 3d:35:b3:3c:e3:41:4a:02:ae:84:ca:74:ae:53:5b: c7:c5:11:42:1c:b8:16:74:05:85:d5:72:9f:d0:0b: e2:fe:eb:8e:b4:86:35:6b:d6:e8:6a:50:81:8a:ba: a8:e4:8d:4a:86:6b:4e:4a:66:75:1b:2e:ff:1a:29: b1:94:b9:2d:13:58:2c:a1:c5:0e:3f:bc:36:a2:23: c8:a7:93:c2:b0:16:33:36:18:ee:40:88:2d:9e:4f: e7:71:6d:35:a8:06:b3:52:d5:f4:5b:0f:29:13:02: 70:c5:70:e8:7b:3c:97:b9:d9:b3:76:e7:0c:23:26: 05:42:46:c5:16:f1:16:5d:1a:77:f2:15:28:bb:8c: 69:a0:8c:70:1c:41:25:08:d2:55:d2:12:c9:f4:61: f5:20:d7:08:5e:69:de:0d:01:bc:b5:c7:19:e0:5f: d4:fe:d1:54:4e:8c:f3:4a:3d:58:83:7d:69:c5:df: cb:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:25:04:A7:67:B0:10:B1:E6:63:01:F9:DA:B5:EC:48:D5:DD:58:EC X509v3 Authority Key Identifier: keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/XSUEp2ewELHmYwH52rXsSNXdWOw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.225.128.0/17 212.21.64.0/19 212.42.224.0/19 IPv6: 2001:bf0::/29 Signature Algorithm: sha256WithRSAEncryption 91:21:70:0c:4b:87:2b:cf:90:c2:65:aa:25:cc:0f:19:75:d2: 04:f5:3a:5c:c5:bd:3c:e6:3b:fc:6b:d2:f9:cd:18:8c:52:31: f6:ea:e0:4a:78:07:47:0b:a0:58:5d:97:f8:5f:5d:80:4b:35: 4d:54:af:bc:47:d1:e8:bc:0b:5b:e8:20:71:d7:94:5d:6a:50: 77:32:9c:14:20:1e:d0:10:24:03:38:40:5a:81:2f:ac:30:b4: 7e:75:50:06:47:e5:a6:e0:1e:b6:b2:78:c5:b3:af:04:43:3d: d5:d0:fd:e7:7f:4c:5e:69:fd:40:f0:dd:c7:53:2d:c5:d8:7b: 53:ba:c7:8a:48:a6:a1:d5:00:78:91:9c:7e:b6:d1:57:dd:a4: c2:0e:c4:0b:6e:68:23:37:ee:53:d9:76:f0:25:ed:67:29:13: d7:be:f8:2a:b1:20:b0:bc:e9:01:97:b7:5f:64:4e:97:a2:9f: f6:7d:9e:65:2b:6e:f6:3b:4e:73:3f:d5:c1:94:e8:45:fb:0a: 5c:b5:5d:10:41:98:58:e8:c2:19:bd:5e:09:c2:b8:56:01:f0: ee:12:49:df:13:1f:b9:75:d0:c1:e9:c5:db:df:a8:5e:47:01: 19:cc:63:49:2d:bd:2e:70:5c:69:7a:f7:ff:72:bd:8b:36:30: 25:a7:f8:71 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt57PinDaCkJJFjZHkvEi+wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMzE0OTI0NzNhNzhjNmZlOWY1MzlmOWZhN2QyMjUyNTYw YTJiN2UwHhcNMjYwMTAxMTQxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDI1MDRhNzY3YjAxMGIxZTY2MzAxZjlkYWI1ZWM0OGQ1ZGQ1OGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxj89YjiLIQqCegMdOsrF1kMbQIB9 gVW3lgTr56adUtenoMJvpMMR8bSUyRSnTOaOnRROBNDp5B6zOU2rtDpFqKyKH5Tq WVEFzK89NbM840FKAq6EynSuU1vHxRFCHLgWdAWF1XKf0Avi/uuOtIY1a9boalCB irqo5I1KhmtOSmZ1Gy7/GimxlLktE1gsocUOP7w2oiPIp5PCsBYzNhjuQIgtnk/n cW01qAazUtX0Ww8pEwJwxXDoezyXudmzducMIyYFQkbFFvEWXRp38hUou4xpoIxw HEElCNJV0hLJ9GH1INcIXmneDQG8tccZ4F/U/tFUTozzSj1Yg31pxd/LjwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFF0lBKdnsBCx5mMB+dq17EjV3VjsMB8GA1UdIwQY MBaAFP8xSSRzp4xv6fU5+fp9IlJWCit+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDct NzNmZDNiYzE5YWE3LzEvWFNVRXAyZXdFTEhtWXdINTJyWHNTTlhkV093LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDctNzNmZDNiYzE5YWE3 LzEvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQHV+GAAwQF 1BVAAwQF1CrgMA0EAgACMAcDBQMgAQvwMA0GCSqGSIb3DQEBCwUAA4IBAQCRIXAM S4crz5DCZaolzA8ZddIE9Tpcxb085jv8a9L5zRiMUjH26uBKeAdHC6BYXZf4X12A SzVNVK+8R9HovAtb6CBx15RdalB3MpwUIB7QECQDOEBagS+sMLR+dVAGR+Wm4B62 snjFs68EQz3V0P3nf0xeaf1A8N3HUy3F2HtTuseKSKah1QB4kZx+ttFX3aTCDsQL bmgjN+5T2XbwJe1nKRPXvvgqsSCwvOkBl7dfZE6Xop/2fZ5lK272O05zP9XBlOhF +wpctV0QQZhY6MIZvV4JwrhWAfDuEknfEx+5ddDB6cXb36heRwEZzGNJLb0ucFxp evf/cr2LNjAlp/hx -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:11 2026 by rpki-client