This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/96865e-c177-4844-8dc3-9c26b07b718b/1/x58D33wXY03IBALkfNVEewlOjxI.roa File: x58D33wXY03IBALkfNVEewlOjxI.roa (raw, json) Hash identifier: l4BRaOtR+rQZWBsP3tk/LVs3kvHtYkV6QExE7KMTpnc= Subject key identifier: C7:9F:03:DF:7C:17:63:4D:C8:04:02:E4:7C:D5:44:7B:09:4E:8F:12 Certificate issuer: /CN=5dd39e1de18514bac2f5a23910f8c7d4672a0fd8 Certificate serial: 019B7CEE25E5A927BFE0F8DA1B768742005E Authority key identifier: 5D:D3:9E:1D:E1:85:14:BA:C2:F5:A2:39:10:F8:C7:D4:67:2A:0F:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdOeHeGFFLrC9aI5EPjH1GcqD9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/96865e-c177-4844-8dc3-9c26b07b718b/1/x58D33wXY03IBALkfNVEewlOjxI.roa Signing time: Fri 02 Jan 2026 04:19:00 +0000 ROA not before: Fri 02 Jan 2026 04:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197690 IP address blocks: 185.197.36.0/22 maxlen: 22 2a0a:75c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/96865e-c177-4844-8dc3-9c26b07b718b/1/XdOeHeGFFLrC9aI5EPjH1GcqD9g.crl rsync://rpki.ripe.net/repository/DEFAULT/da/96865e-c177-4844-8dc3-9c26b07b718b/1/XdOeHeGFFLrC9aI5EPjH1GcqD9g.mft rsync://rpki.ripe.net/repository/DEFAULT/XdOeHeGFFLrC9aI5EPjH1GcqD9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:25:e5:a9:27:bf:e0:f8:da:1b:76:87:42:00:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dd39e1de18514bac2f5a23910f8c7d4672a0fd8 Validity Not Before: Jan 2 04:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c79f03df7c17634dc80402e47cd5447b094e8f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:d1:28:90:51:c2:53:a4:e4:32:43:1a:55:c7: 95:68:fd:97:07:bf:0a:b6:75:22:81:08:18:d5:8d: bf:28:87:9f:bc:17:02:23:6e:ee:5c:29:88:42:99: 71:06:d1:f9:14:65:3b:62:45:59:88:c6:1c:a8:70: 57:fe:64:dc:d9:55:eb:f1:2b:9a:cd:dd:1d:38:fe: 03:99:25:e7:ea:1b:82:c5:bb:54:2c:e1:0a:61:8e: 76:90:2f:42:ec:39:17:62:c6:15:e8:5d:77:1c:c4: 67:4a:0d:3a:25:4f:4d:86:1d:bc:19:df:1c:2f:37: c9:6b:0b:db:8a:58:72:83:b5:fb:c0:be:de:4a:2a: ee:db:66:6d:ee:eb:94:f1:f3:dc:74:59:7d:2f:0e: 82:fd:0a:e5:1f:a0:04:c0:fa:11:35:af:86:22:f9: 36:f8:34:4a:4a:bb:4c:3c:4a:b9:8d:d1:9a:47:4c: de:52:d8:a6:d7:bd:49:9c:7e:e0:3d:77:67:21:7a: db:43:e1:d4:76:cb:9a:31:8d:1a:90:3f:67:2f:ee: d8:d1:45:5b:91:cd:6e:54:2c:e0:03:c9:6c:4a:2a: f4:03:b7:dd:6f:00:9d:48:ea:d0:1a:0e:95:69:a4: d3:87:d2:18:6a:ce:51:f1:30:99:b1:c3:b0:0d:9b: 5d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9F:03:DF:7C:17:63:4D:C8:04:02:E4:7C:D5:44:7B:09:4E:8F:12 X509v3 Authority Key Identifier: keyid:5D:D3:9E:1D:E1:85:14:BA:C2:F5:A2:39:10:F8:C7:D4:67:2A:0F:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdOeHeGFFLrC9aI5EPjH1GcqD9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/96865e-c177-4844-8dc3-9c26b07b718b/1/x58D33wXY03IBALkfNVEewlOjxI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/96865e-c177-4844-8dc3-9c26b07b718b/1/XdOeHeGFFLrC9aI5EPjH1GcqD9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.197.36.0/22 IPv6: 2a0a:75c0::/32 Signature Algorithm: sha256WithRSAEncryption 01:1b:ec:48:46:17:40:f7:2e:6d:0b:d0:58:e6:52:f3:e0:e9: e5:c4:e0:71:cc:a4:ae:f9:a2:7b:90:43:e0:61:de:2a:fd:8b: 8f:5a:27:c0:48:c5:c2:fe:30:06:d6:cb:08:29:3a:fc:f5:b8: e2:4d:7b:21:9b:38:52:c9:e6:35:89:33:88:36:68:ff:b8:a9: d3:af:9a:f1:d3:5d:e3:cb:4f:78:a7:03:2a:9a:33:d9:3f:d7: f3:d9:ab:c8:1d:3d:8b:24:6d:c4:ff:25:52:60:3f:04:7a:eb: 09:85:67:3e:53:ad:ae:74:af:79:32:81:62:9a:77:bd:49:63: 6b:2a:1d:95:72:c3:44:14:5e:1c:18:59:ec:1f:fd:6e:28:61: fa:08:a1:e4:94:96:a9:d6:86:63:a8:e5:5c:4c:4e:9e:a4:12: 49:6d:cf:c5:6c:f0:06:e3:af:e6:34:c6:75:76:00:f3:22:8b: c7:d3:3f:bb:0b:a5:27:4b:05:b4:8e:e2:a6:b1:db:a9:0b:01: 9d:a8:c4:59:51:57:a9:32:4d:96:69:43:ad:86:f4:41:96:e6: 55:e0:8c:34:15:81:4d:b1:e1:46:4e:32:64:85:ff:c7:2f:08: 86:7d:6b:e1:99:c3:38:90:f5:db:e1:50:b7:df:a3:01:bf:1a: 6a:20:06:43 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87iXlqSe/4PjaG3aHQgBeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZDM5ZTFkZTE4NTE0YmFjMmY1YTIzOTEwZjhjN2Q0Njcy YTBmZDgwHhcNMjYwMTAyMDQxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzlmMDNkZjdjMTc2MzRkYzgwNDAyZTQ3Y2Q1NDQ3YjA5NGU4ZjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjdEokFHCU6TkMkMaVceVaP2XB78K tnUigQgY1Y2/KIefvBcCI27uXCmIQplxBtH5FGU7YkVZiMYcqHBX/mTc2VXr8Sua zd0dOP4DmSXn6huCxbtULOEKYY52kC9C7DkXYsYV6F13HMRnSg06JU9Nhh28Gd8c LzfJawvbilhyg7X7wL7eSiru22Zt7uuU8fPcdFl9Lw6C/QrlH6AEwPoRNa+GIvk2 +DRKSrtMPEq5jdGaR0zeUtim171JnH7gPXdnIXrbQ+HUdsuaMY0akD9nL+7Y0UVb kc1uVCzgA8lsSir0A7fdbwCdSOrQGg6VaaTTh9IYas5R8TCZscOwDZtdnwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMefA998F2NNyAQC5HzVRHsJTo8SMB8GA1UdIwQY MBaAFF3Tnh3hhRS6wvWiORD4x9RnKg/YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGRPZUhlR0ZGTHJDOWFJNUVQakgxR2NxRDlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS85Njg2NWUtYzE3Ny00ODQ0LThkYzMt OWMyNmIwN2I3MThiLzEveDU4RDMzd1hZMDNJQkFMa2ZOVkVld2xPanhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS85Njg2NWUtYzE3Ny00ODQ0LThkYzMtOWMyNmIwN2I3MThi LzEvWGRPZUhlR0ZGTHJDOWFJNUVQakgxR2NxRDlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucUkMA0E AgACMAcDBQAqCnXAMA0GCSqGSIb3DQEBCwUAA4IBAQABG+xIRhdA9y5tC9BY5lLz 4OnlxOBxzKSu+aJ7kEPgYd4q/YuPWifASMXC/jAG1ssIKTr89bjiTXshmzhSyeY1 iTOINmj/uKnTr5rx013jy094pwMqmjPZP9fz2avIHT2LJG3E/yVSYD8EeusJhWc+ U62udK95MoFimne9SWNrKh2VcsNEFF4cGFnsH/1uKGH6CKHklJap1oZjqOVcTE6e pBJJbc/FbPAG46/mNMZ1dgDzIovH0z+7C6UnSwW0juKmsdupCwGdqMRZUVepMk2W aUOthvRBluZV4Iw0FYFNseFGTjJkhf/HLwiGfWvhmcM4kPXb4VC336MBvxpqIAZD -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:20 2026 by rpki-client