This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/XyBwwk9Rpf2EkG4M9-abdDNCWms.roa File: XyBwwk9Rpf2EkG4M9-abdDNCWms.roa (raw, json) Hash identifier: TZxVKHtjSFLa0T3PPjVjD1cxZHhhNWMZJ+1RNn+t7lk= Subject key identifier: 5F:20:70:C2:4F:51:A5:FD:84:90:6E:0C:F7:E6:9B:74:33:42:5A:6B Certificate issuer: /CN=de6640357ae4ae10fc0b3e9d98f2a0cb0118903c Certificate serial: 019B7BA50D40277DA108340C3476FBB8E9B6 Authority key identifier: DE:66:40:35:7A:E4:AE:10:FC:0B:3E:9D:98:F2:A0:CB:01:18:90:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3mZANXrkrhD8Cz6dmPKgywEYkDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/XyBwwk9Rpf2EkG4M9-abdDNCWms.roa Signing time: Thu 01 Jan 2026 22:19:32 +0000 ROA not before: Thu 01 Jan 2026 22:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 17916 IP address blocks: 194.169.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/3mZANXrkrhD8Cz6dmPKgywEYkDw.crl rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/3mZANXrkrhD8Cz6dmPKgywEYkDw.mft rsync://rpki.ripe.net/repository/DEFAULT/3mZANXrkrhD8Cz6dmPKgywEYkDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:0d:40:27:7d:a1:08:34:0c:34:76:fb:b8:e9:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de6640357ae4ae10fc0b3e9d98f2a0cb0118903c Validity Not Before: Jan 1 22:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f2070c24f51a5fd84906e0cf7e69b7433425a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:ae:fd:0c:98:71:7b:e8:15:1d:10:d6:1d: 20:62:8e:07:72:22:20:e3:72:53:38:42:ec:aa:b7: 33:2a:9c:61:3f:98:65:bb:68:79:8a:de:9f:e9:5f: dd:1c:1f:58:6e:aa:1b:f8:47:fc:aa:e8:32:dc:84: fe:8c:14:e1:26:a2:4d:bb:5d:31:32:9a:4f:37:5c: d8:26:77:c9:43:f1:7e:13:32:3e:bf:11:30:d9:84: 7e:30:b1:f8:28:c0:1a:6d:a8:21:33:7a:c2:04:09: 3a:7a:ad:10:6d:79:52:c6:b1:31:ff:e1:ae:47:16: d0:ec:e2:fc:33:54:36:15:20:ae:87:f5:6c:fa:89: 2f:25:a3:95:a0:30:5c:60:3a:0c:dc:0c:58:ea:ae: df:40:f0:dc:e7:de:4b:4b:6b:fc:d7:fd:68:46:76: c7:0b:7a:a9:0a:9f:bd:94:fd:28:09:c4:85:d3:99: 5e:b4:e8:fc:f9:f9:9b:56:aa:df:c3:d7:4b:dc:7e: 69:44:35:59:c5:12:5e:6b:9a:ce:cc:dc:17:88:d6: 7d:4a:a1:91:d2:5c:20:bb:1a:19:a5:62:ea:22:af: c7:f6:9e:3e:17:81:3c:ff:09:52:ac:3a:e0:c3:01: b1:77:0f:01:6e:72:84:e9:d1:aa:5c:1c:a5:0c:74: 6c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:20:70:C2:4F:51:A5:FD:84:90:6E:0C:F7:E6:9B:74:33:42:5A:6B X509v3 Authority Key Identifier: keyid:DE:66:40:35:7A:E4:AE:10:FC:0B:3E:9D:98:F2:A0:CB:01:18:90:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3mZANXrkrhD8Cz6dmPKgywEYkDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/XyBwwk9Rpf2EkG4M9-abdDNCWms.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/3mZANXrkrhD8Cz6dmPKgywEYkDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.169.22.0/24 Signature Algorithm: sha256WithRSAEncryption 66:e3:73:a7:f6:fe:ab:a7:23:17:1e:5e:e5:aa:6e:1d:a7:2e: 1d:59:a4:a3:dc:a1:bf:ed:9a:d8:0a:c5:b6:d1:eb:6a:40:84: dc:7c:74:cd:9b:50:e8:df:5d:bc:88:9c:d7:ab:0a:48:5c:81: 24:01:85:2e:d2:54:7d:66:00:ea:c0:4a:16:33:ff:f2:4d:9b: 38:56:49:8b:15:90:bf:89:08:58:ec:e4:d6:7c:7e:20:ea:6b: 6d:98:68:3c:9b:65:dd:2b:36:bb:2c:2f:5a:d9:79:7c:31:00: d2:d8:c3:2b:f0:ee:7b:27:46:1d:82:28:6d:2c:99:92:b0:b7: a3:7f:8d:b3:c2:cf:51:13:4f:a0:15:ce:60:b9:04:ee:03:9c: 5a:11:14:0c:3b:94:1f:01:df:75:89:7e:84:8b:8f:b7:18:ec: 13:86:8c:e2:16:3e:40:38:52:7f:d3:10:2a:b3:e4:79:97:60: 80:28:da:aa:27:f1:82:ea:f9:0e:4b:07:0a:b4:f2:dd:d1:e7: 44:53:59:f3:a8:4a:38:e4:58:ea:fb:24:45:86:8f:45:44:c7: 58:7c:93:52:88:0f:72:82:26:ce:8b:33:64:03:e1:a8:c2:a6: 7e:f6:fc:ca:04:dd:1a:58:7b:24:bc:52:47:ef:39:7b:f0:c9: 8a:b2:8c:ff -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pQ1AJ32hCDQMNHb7uOm2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlNjY0MDM1N2FlNGFlMTBmYzBiM2U5ZDk4ZjJhMGNiMDEx ODkwM2MwHhcNMjYwMTAxMjIxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjIwNzBjMjRmNTFhNWZkODQ5MDZlMGNmN2U2OWI3NDMzNDI1YTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCuu/QyYcXvoFR0Q1h0gYo4HciIg 43JTOELsqrczKpxhP5hlu2h5it6f6V/dHB9Ybqob+Ef8qugy3IT+jBThJqJNu10x MppPN1zYJnfJQ/F+EzI+vxEw2YR+MLH4KMAabaghM3rCBAk6eq0QbXlSxrEx/+Gu RxbQ7OL8M1Q2FSCuh/Vs+okvJaOVoDBcYDoM3AxY6q7fQPDc595LS2v81/1oRnbH C3qpCp+9lP0oCcSF05letOj8+fmbVqrfw9dL3H5pRDVZxRJea5rOzNwXiNZ9SqGR 0lwguxoZpWLqIq/H9p4+F4E8/wlSrDrgwwGxdw8BbnKE6dGqXBylDHRsDQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF8gcMJPUaX9hJBuDPfmm3QzQlprMB8GA1UdIwQY MBaAFN5mQDV65K4Q/As+nZjyoMsBGJA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM21aQU5YcmtyaEQ4Q3o2ZG1QS2d5d0VZa0R3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9hZDE5YzAtMDAyNS00YzQ5LTg0ODAt ZmY5N2Y2MmEwOTQ1LzEvWHlCd3drOVJwZjJFa0c0TTktYWJkRE5DV21zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS9hZDE5YzAtMDAyNS00YzQ5LTg0ODAtZmY5N2Y2MmEwOTQ1 LzEvM21aQU5YcmtyaEQ4Q3o2ZG1QS2d5d0VZa0R3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwqkWMA0G CSqGSIb3DQEBCwUAA4IBAQBm43On9v6rpyMXHl7lqm4dpy4dWaSj3KG/7ZrYCsW2 0etqQITcfHTNm1Do3128iJzXqwpIXIEkAYUu0lR9ZgDqwEoWM//yTZs4VkmLFZC/ iQhY7OTWfH4g6mttmGg8m2XdKza7LC9a2Xl8MQDS2MMr8O57J0YdgihtLJmSsLej f42zws9RE0+gFc5guQTuA5xaERQMO5QfAd91iX6Ei4+3GOwThoziFj5AOFJ/0xAq s+R5l2CAKNqqJ/GC6vkOSwcKtPLd0edEU1nzqEo45Fjq+yRFho9FRMdYfJNSiA9y gibOizNkA+GowqZ+9vzKBN0aWHskvFJH7zl78MmKsoz/ -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:41 2026 by rpki-client