This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/XsmD7LEAI6pZoeMk3oZHhwn_dYg.roa File: XsmD7LEAI6pZoeMk3oZHhwn_dYg.roa (raw, json) Hash identifier: GHaT6kjXh7U5OzHr0z91LoZmJkdMKuqoPMm1YY79vbA= Subject key identifier: 5E:C9:83:EC:B1:00:23:AA:59:A1:E3:24:DE:86:47:87:09:FF:75:88 Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861 Certificate serial: 019B7F1373EC5156120E1709B89049DC8720 Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/XsmD7LEAI6pZoeMk3oZHhwn_dYg.roa Signing time: Fri 02 Jan 2026 14:18:59 +0000 ROA not before: Fri 02 Jan 2026 14:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210022 IP address blocks: 188.72.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.mft rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:73:ec:51:56:12:0e:17:09:b8:90:49:dc:87:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861 Validity Not Before: Jan 2 14:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ec983ecb10023aa59a1e324de86478709ff7588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cc:06:6f:79:9a:50:1f:77:89:70:c5:c5:6a: 95:8c:31:d8:40:6b:96:05:52:16:c3:83:7e:77:bf: f7:70:dc:04:45:69:cf:01:00:84:27:e6:47:90:a7: 80:71:d2:7f:8b:ac:52:26:15:18:7e:a8:0c:2b:f8: 89:94:9b:8b:eb:3c:3f:c4:04:d6:d6:8e:44:0e:6b: a3:74:f9:c1:5c:b5:bb:92:fe:af:1e:68:87:e9:82: d5:24:55:d7:df:b8:2f:6b:77:63:52:64:b3:09:44: 82:45:81:b4:a2:8f:3b:16:b7:18:d5:9e:e4:76:85: 06:e2:4f:01:20:6a:5d:83:f7:88:6d:4e:32:2c:5a: 0b:ee:b4:58:6c:52:cf:69:d6:46:ed:a0:c2:77:93: 93:64:9d:01:b4:f0:e7:87:79:7d:80:bd:17:5b:17: 4a:f8:ed:90:22:26:54:90:0a:77:08:7b:f6:a2:89: 2f:f2:49:74:da:48:c2:8a:c1:ca:05:23:96:8b:4b: c4:6b:d9:45:6f:18:53:8f:69:b4:b2:4c:8c:63:d1: d2:42:cb:97:6f:5d:1f:c8:8c:3b:3b:ac:93:a2:69: 97:c3:8f:00:43:51:bf:d3:71:1a:6d:57:11:4b:8e: 9d:31:d9:d1:b5:70:e8:6e:5d:5d:9c:8e:e7:d0:b6: 33:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C9:83:EC:B1:00:23:AA:59:A1:E3:24:DE:86:47:87:09:FF:75:88 X509v3 Authority Key Identifier: keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/XsmD7LEAI6pZoeMk3oZHhwn_dYg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.72.2.0/24 Signature Algorithm: sha256WithRSAEncryption a4:17:01:be:83:ec:89:4e:20:7f:3d:21:f3:1d:4e:5f:f4:90: d5:7c:b3:17:58:62:93:c7:38:a1:81:b7:d6:35:1f:34:d2:3c: c9:63:ee:7c:dc:1d:0c:db:bd:66:35:64:4a:ae:11:51:bd:c1: e0:51:bb:25:48:89:81:e1:e8:84:3a:ef:ee:90:c9:ce:55:38: 44:80:28:61:d6:b2:af:97:cb:6a:8a:3c:1d:d0:2e:80:9b:88: 84:89:cf:ea:81:99:80:b3:d5:cb:13:15:bb:75:8c:63:79:25: 1c:14:0c:78:46:20:ef:79:38:ae:54:cd:00:a2:16:bd:75:1a: e1:90:52:59:a7:79:68:b2:09:63:17:78:24:ed:e5:a7:30:6c: f5:bb:11:94:32:00:3b:09:5b:55:64:79:66:c5:b9:6f:01:f5: bc:39:f8:f0:1e:69:2c:5a:01:21:38:f4:59:85:bb:08:9f:2f: 63:14:88:e0:11:f9:82:21:ac:e3:a7:b9:d6:fb:a0:b0:ad:51: 27:42:af:b7:b8:c2:4c:73:53:14:88:9b:f8:88:17:d1:28:26: 49:86:cb:22:c4:9b:bf:6c:ef:07:d1:ce:55:35:f3:52:7b:64: cd:cd:83:71:7a:78:04:70:95:ef:1a:9c:a2:7a:28:7f:37:4e: 60:8a:4a:e8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E3PsUVYSDhcJuJBJ3IcgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjNTE0MDI4MjU5MWY5OTEyZjk2MzllZTE0MTJiNmQxZGNm ZjA4NjEwHhcNMjYwMTAyMTQxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWM5ODNlY2IxMDAyM2FhNTlhMWUzMjRkZTg2NDc4NzA5ZmY3NTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8wGb3maUB93iXDFxWqVjDHYQGuW BVIWw4N+d7/3cNwERWnPAQCEJ+ZHkKeAcdJ/i6xSJhUYfqgMK/iJlJuL6zw/xATW 1o5EDmujdPnBXLW7kv6vHmiH6YLVJFXX37gva3djUmSzCUSCRYG0oo87FrcY1Z7k doUG4k8BIGpdg/eIbU4yLFoL7rRYbFLPadZG7aDCd5OTZJ0BtPDnh3l9gL0XWxdK +O2QIiZUkAp3CHv2ookv8kl02kjCisHKBSOWi0vEa9lFbxhTj2m0skyMY9HSQsuX b10fyIw7O6yTommXw48AQ1G/03EabVcRS46dMdnRtXDobl1dnI7n0LYzwQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF7Jg+yxACOqWaHjJN6GR4cJ/3WIMB8GA1UdIwQY MBaAFAxRQCglkfmRL5Y57hQSttHc/whhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREZGQUtDV1ItWkV2bGpudUZCSzIwZHpfQ0dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wNTU0YTItZDNkOS00ZmM0LThlZDUt ZGU5MTQ2OWQzNzcyLzEvWHNtRDdMRUFJNnBab2VNazNvWkhod25fZFlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wNTU0YTItZDNkOS00ZmM0LThlZDUtZGU5MTQ2OWQzNzcy LzEvREZGQUtDV1ItWkV2bGpudUZCSzIwZHpfQ0dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvEgCMA0G CSqGSIb3DQEBCwUAA4IBAQCkFwG+g+yJTiB/PSHzHU5f9JDVfLMXWGKTxzihgbfW NR800jzJY+583B0M271mNWRKrhFRvcHgUbslSImB4eiEOu/ukMnOVThEgChh1rKv l8tqijwd0C6Am4iEic/qgZmAs9XLExW7dYxjeSUcFAx4RiDveTiuVM0Aoha9dRrh kFJZp3losgljF3gk7eWnMGz1uxGUMgA7CVtVZHlmxblvAfW8OfjwHmksWgEhOPRZ hbsIny9jFIjgEfmCIazjp7nW+6CwrVEnQq+3uMJMc1MUiJv4iBfRKCZJhssixJu/ bO8H0c5VNfNSe2TNzYNxengEcJXvGpyieih/N05gikro -----END CERTIFICATE-----Generated at Sun Jan 25 07:17:46 2026 by rpki-client