This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/XVl9Jn76mWQ8ncaJ_wDuumCSFsA.roa File: XVl9Jn76mWQ8ncaJ_wDuumCSFsA.roa (raw, json) Hash identifier: Hs6XsuXHPXeVRFbGDUcPFLc6y5U4gwmlkZ/AR7/NeXE= Subject key identifier: 5D:59:7D:26:7E:FA:99:64:3C:9D:C6:89:FF:00:EE:BA:60:92:16:C0 Certificate issuer: /CN=25e4aed3ef72bee3141660d1149e16d079205f3c Certificate serial: 019B7F8363BD43AA5C1DC16B08EFA400B49B Authority key identifier: 25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/XVl9Jn76mWQ8ncaJ_wDuumCSFsA.roa Signing time: Fri 02 Jan 2026 16:21:15 +0000 ROA not before: Fri 02 Jan 2026 16:21:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213252 IP address blocks: 89.252.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.mft rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:63:bd:43:aa:5c:1d:c1:6b:08:ef:a4:00:b4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25e4aed3ef72bee3141660d1149e16d079205f3c Validity Not Before: Jan 2 16:21:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d597d267efa99643c9dc689ff00eeba609216c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e1:6e:ca:8c:c7:55:42:6a:a8:12:87:77:3c: 20:9a:22:05:64:7b:a1:b7:fc:8a:9f:9c:f8:06:63: 00:ab:03:d6:69:a2:5d:3b:86:1e:2e:23:f5:54:3a: d0:f5:f7:61:04:81:e2:48:8d:15:8b:4c:18:12:07: ce:6a:32:8f:55:28:d8:25:9f:6d:e8:76:d2:6a:a4: e9:d4:f2:d1:49:85:49:01:8d:87:ad:90:ff:89:d3: ec:82:e7:95:0d:f9:09:d2:de:a0:ca:5c:90:a7:b6: 6d:b1:6b:47:52:64:76:8e:15:e0:64:91:a6:1e:bf: 67:be:02:91:2a:8c:9c:5c:42:0c:31:97:3d:05:e8: d5:13:cc:e5:c2:f7:8b:c3:b3:10:74:63:31:91:7a: 52:c2:ea:49:90:89:74:43:3b:be:8d:93:9e:58:2d: f2:f3:e6:9f:b1:cf:da:f9:cb:4b:e6:aa:38:0c:8d: 70:f7:79:cf:fb:b0:46:42:5d:f9:bb:33:91:5e:07: 22:e3:82:60:1f:76:de:79:df:e6:52:0f:14:c7:28: bd:c7:b2:75:ad:21:b3:a9:c8:37:0b:a6:1b:dc:d5: b3:dd:6e:e3:dc:0e:15:5e:08:66:76:00:a9:8d:df: a1:47:02:42:3f:a2:3a:0f:3f:57:9f:7b:00:62:e2: 86:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:59:7D:26:7E:FA:99:64:3C:9D:C6:89:FF:00:EE:BA:60:92:16:C0 X509v3 Authority Key Identifier: keyid:25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/XVl9Jn76mWQ8ncaJ_wDuumCSFsA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.252.153.0/24 Signature Algorithm: sha256WithRSAEncryption 86:b3:58:c0:0e:8b:11:b0:2f:f8:6f:3f:35:34:5f:05:8b:f0: d6:f3:35:01:9f:62:b6:e7:75:b2:84:5b:18:56:68:18:d0:88: 0f:e8:dd:e7:39:d0:cc:2b:9f:79:6a:24:da:3c:68:0c:9a:82: 42:f1:fc:a0:72:e1:c8:fc:09:eb:13:b0:55:b9:95:d0:c0:1a: ab:3c:3c:f4:eb:51:e8:c0:4f:55:56:65:a9:9a:b6:0c:9a:72: 57:13:3e:8a:16:c0:3e:5f:f4:76:bf:7f:12:b4:a9:d5:24:e6: 00:72:19:13:7a:6c:00:ec:55:48:ed:63:0f:5d:b7:76:d6:48: 84:31:73:de:c9:62:c4:23:95:9e:c0:ce:a7:84:13:17:e9:c3: a4:bf:14:ed:b3:1f:1d:c6:b9:63:ec:c2:dd:70:1b:49:32:91: e1:bf:7f:5c:7e:08:f5:d1:4e:b1:e1:f7:ee:31:e5:62:9e:c6: 71:57:0b:af:da:6b:87:22:ac:28:83:8e:10:c7:5a:0f:80:a4: 31:21:a8:94:01:e8:01:03:c4:9b:5f:07:aa:ea:7a:c4:91:24: 45:3f:e8:a7:1c:04:67:08:88:9d:9f:7d:e2:ca:2b:ff:fd:84: be:52:88:3e:2f:ba:c4:9e:56:e5:af:43:0f:3e:7f:44:29:9e: fa:c8:49:9a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g2O9Q6pcHcFrCO+kALSbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1ZTRhZWQzZWY3MmJlZTMxNDE2NjBkMTE0OWUxNmQwNzky MDVmM2MwHhcNMjYwMTAyMTYyMTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDU5N2QyNjdlZmE5OTY0M2M5ZGM2ODlmZjAwZWViYTYwOTIxNmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeFuyozHVUJqqBKHdzwgmiIFZHuh t/yKn5z4BmMAqwPWaaJdO4YeLiP1VDrQ9fdhBIHiSI0Vi0wYEgfOajKPVSjYJZ9t 6HbSaqTp1PLRSYVJAY2HrZD/idPsgueVDfkJ0t6gylyQp7ZtsWtHUmR2jhXgZJGm Hr9nvgKRKoycXEIMMZc9BejVE8zlwveLw7MQdGMxkXpSwupJkIl0Qzu+jZOeWC3y 8+afsc/a+ctL5qo4DI1w93nP+7BGQl35uzORXgci44JgH3beed/mUg8Uxyi9x7J1 rSGzqcg3C6Yb3NWz3W7j3A4VXghmdgCpjd+hRwJCP6I6Dz9Xn3sAYuKGdQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF1ZfSZ++plkPJ3Gif8A7rpgkhbAMB8GA1UdIwQY MBaAFCXkrtPvcr7jFBZg0RSeFtB5IF88MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmVTdTAtOXl2dU1VRm1EUkZKNFcwSGtnWHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82MzM2ZDAtOTQ5NC00NmQzLTk4NjEt ZWQzZTM4Zjk1NzdmLzEvWFZsOUpuNzZtV1E4bmNhSl93RHV1bUNTRnNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82MzM2ZDAtOTQ5NC00NmQzLTk4NjEtZWQzZTM4Zjk1Nzdm LzEvSmVTdTAtOXl2dU1VRm1EUkZKNFcwSGtnWHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfyZMA0G CSqGSIb3DQEBCwUAA4IBAQCGs1jADosRsC/4bz81NF8Fi/DW8zUBn2K253WyhFsY VmgY0IgP6N3nOdDMK595aiTaPGgMmoJC8fygcuHI/AnrE7BVuZXQwBqrPDz061Ho wE9VVmWpmrYMmnJXEz6KFsA+X/R2v38StKnVJOYAchkTemwA7FVI7WMPXbd21kiE MXPeyWLEI5WewM6nhBMX6cOkvxTtsx8dxrlj7MLdcBtJMpHhv39cfgj10U6x4ffu MeVinsZxVwuv2muHIqwog44Qx1oPgKQxIaiUAegBA8SbXweq6nrEkSRFP+inHARn CIidn33iyiv//YS+Uog+L7rEnlblr0MPPn9EKZ76yEma -----END CERTIFICATE-----Generated at Sun Jan 25 21:19:42 2026 by rpki-client