This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/XXDxWPYvJwQEEoD1ZkxghR4ET40.roa File: XXDxWPYvJwQEEoD1ZkxghR4ET40.roa (raw, json) Hash identifier: kPDCqZ/ABCjh6D3pWOnBRlSEdw9IBPT/5sVK336dTdg= Subject key identifier: 5D:70:F1:58:F6:2F:27:04:04:12:80:F5:66:4C:60:85:1E:04:4F:8D Certificate issuer: /CN=04268ae40737536a464c28493eaf503db9a18f20 Certificate serial: 019B79ED2CF74272D11A301611A30BA6DD76 Authority key identifier: 04:26:8A:E4:07:37:53:6A:46:4C:28:49:3E:AF:50:3D:B9:A1:8F:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCaK5Ac3U2pGTChJPq9QPbmhjyA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/XXDxWPYvJwQEEoD1ZkxghR4ET40.roa Signing time: Thu 01 Jan 2026 14:19:05 +0000 ROA not before: Thu 01 Jan 2026 14:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50754 IP address blocks: 185.134.76.0/22 maxlen: 24 2a06:ebc0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/BCaK5Ac3U2pGTChJPq9QPbmhjyA.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/BCaK5Ac3U2pGTChJPq9QPbmhjyA.mft rsync://rpki.ripe.net/repository/DEFAULT/BCaK5Ac3U2pGTChJPq9QPbmhjyA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:2c:f7:42:72:d1:1a:30:16:11:a3:0b:a6:dd:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04268ae40737536a464c28493eaf503db9a18f20 Validity Not Before: Jan 1 14:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d70f158f62f2704041280f5664c60851e044f8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d9:47:4e:96:1f:3e:1d:3a:89:f1:ba:cc:e2: 0e:5a:59:82:3e:19:fc:f2:71:0a:20:93:01:f3:1f: 5b:6c:28:7f:f8:45:fd:51:44:29:46:8f:08:28:14: 3d:bb:44:9f:f9:3a:b6:47:97:70:f3:44:8b:8f:33: 99:3f:19:f8:80:81:2f:a3:6c:af:41:c0:61:25:c4: 58:a5:f1:10:d1:fc:6d:d4:85:5f:41:a4:89:eb:1f: c8:6c:c8:35:5a:5d:3a:8e:36:c4:20:b5:5f:da:cb: e3:fe:16:28:28:ab:5d:43:e1:98:b7:b9:c5:56:08: 92:6c:d1:bd:ed:9b:08:09:97:c4:ac:df:22:fc:40: 69:ba:e7:d6:44:4f:9e:88:14:39:82:5c:71:28:32: b7:cb:ce:d8:69:83:a2:c1:1a:8d:9d:ac:43:d9:e2: fc:4f:45:59:ba:56:19:65:78:8f:8c:81:e8:c1:07: 24:94:54:fa:5d:d1:7b:6f:63:7d:7f:bf:de:65:82: af:1e:a8:54:b5:11:fd:f1:81:45:18:36:f1:a2:8b: c0:ad:56:07:da:f7:36:40:55:9c:14:57:ad:17:27: 4c:72:e3:8c:19:b8:34:0f:15:8d:3a:9f:65:28:20: 96:a9:ad:52:6b:e5:0d:db:cd:47:bb:d6:97:94:ed: c5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:70:F1:58:F6:2F:27:04:04:12:80:F5:66:4C:60:85:1E:04:4F:8D X509v3 Authority Key Identifier: keyid:04:26:8A:E4:07:37:53:6A:46:4C:28:49:3E:AF:50:3D:B9:A1:8F:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCaK5Ac3U2pGTChJPq9QPbmhjyA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/XXDxWPYvJwQEEoD1ZkxghR4ET40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/BCaK5Ac3U2pGTChJPq9QPbmhjyA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.134.76.0/22 IPv6: 2a06:ebc0::/29 Signature Algorithm: sha256WithRSAEncryption cb:e0:51:d6:2a:54:83:87:22:62:c9:95:2f:13:80:37:92:cf: 9d:1b:18:86:83:bf:b9:eb:e7:f2:0d:12:ad:b1:2f:30:aa:5a: 2d:d5:2c:ab:10:d6:ef:6a:a3:d7:05:4f:4a:f7:a9:79:e2:51: 30:25:9b:83:1d:a6:d4:84:26:97:1a:30:9c:a4:39:04:cd:9a: 0d:5f:69:cd:b7:be:42:f7:f3:f2:fd:8b:a5:ad:48:b4:5b:49: 2c:5f:13:da:42:33:69:81:bf:48:e9:08:13:6f:f1:ef:fc:54: 4e:d6:c6:c4:bb:20:df:cd:43:d8:7f:db:78:d5:a6:ff:07:93: ef:8a:31:6a:74:19:2b:ea:71:f4:e6:a3:f1:6c:3f:89:f9:bd: 5e:7a:cb:ac:f5:aa:cf:2a:1e:57:55:13:d1:bc:27:40:60:7f: 44:17:b5:90:41:fb:15:df:3f:db:4c:c5:c0:4b:02:9c:36:90: f9:be:fd:0f:df:ce:e3:33:64:75:7f:ff:02:d7:24:55:1e:87: 6d:fc:11:8f:3b:b7:19:5a:fc:d2:fa:f3:22:68:d2:e4:c3:8b: 0a:bd:cb:6f:c1:e8:53:61:a4:16:36:71:ca:23:2e:4b:26:69: 9c:20:ee:67:39:40:56:39:35:f2:7c:69:6a:ff:10:d4:a5:28: bb:3c:f7:f1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57Sz3QnLRGjAWEaMLpt12MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0MjY4YWU0MDczNzUzNmE0NjRjMjg0OTNlYWY1MDNkYjlh MThmMjAwHhcNMjYwMTAxMTQxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDcwZjE1OGY2MmYyNzA0MDQxMjgwZjU2NjRjNjA4NTFlMDQ0ZjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdlHTpYfPh06ifG6zOIOWlmCPhn8 8nEKIJMB8x9bbCh/+EX9UUQpRo8IKBQ9u0Sf+Tq2R5dw80SLjzOZPxn4gIEvo2yv QcBhJcRYpfEQ0fxt1IVfQaSJ6x/IbMg1Wl06jjbEILVf2svj/hYoKKtdQ+GYt7nF VgiSbNG97ZsICZfErN8i/EBpuufWRE+eiBQ5glxxKDK3y87YaYOiwRqNnaxD2eL8 T0VZulYZZXiPjIHowQcklFT6XdF7b2N9f7/eZYKvHqhUtRH98YFFGDbxoovArVYH 2vc2QFWcFFetFydMcuOMGbg0DxWNOp9lKCCWqa1Sa+UN281Hu9aXlO3F2wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFF1w8Vj2LycEBBKA9WZMYIUeBE+NMB8GA1UdIwQY MBaAFAQmiuQHN1NqRkwoST6vUD25oY8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkNhSzVBYzNVMnBHVENoSlBxOVFQYm1oanlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy83OTY4MjMtNmQ4MS00ZDkxLWI2NjQt ZTBhYmQ0ZDg0NTcxLzEvWFhEeFdQWXZKd1FFRW9EMVpreGdoUjRFVDQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy83OTY4MjMtNmQ4MS00ZDkxLWI2NjQtZTBhYmQ0ZDg0NTcx LzEvQkNhSzVBYzNVMnBHVENoSlBxOVFQYm1oanlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuYZMMA0E AgACMAcDBQMqBuvAMA0GCSqGSIb3DQEBCwUAA4IBAQDL4FHWKlSDhyJiyZUvE4A3 ks+dGxiGg7+56+fyDRKtsS8wqlot1SyrENbvaqPXBU9K96l54lEwJZuDHabUhCaX GjCcpDkEzZoNX2nNt75C9/Py/YulrUi0W0ksXxPaQjNpgb9I6QgTb/Hv/FRO1sbE uyDfzUPYf9t41ab/B5PvijFqdBkr6nH05qPxbD+J+b1eesus9arPKh5XVRPRvCdA YH9EF7WQQfsV3z/bTMXASwKcNpD5vv0P387jM2R1f/8C1yRVHodt/BGPO7cZWvzS +vMiaNLkw4sKvctvwehTYaQWNnHKIy5LJmmcIO5nOUBWOTXyfGlq/xDUpSi7PPfx -----END CERTIFICATE-----Generated at Sun Jan 25 15:36:40 2026 by rpki-client