This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/_XjBVcAxw5EpqMjyij8I-ToToaQ.roa File: _XjBVcAxw5EpqMjyij8I-ToToaQ.roa (raw, json) Hash identifier: +1oHFraLo6Z8PZNhtZgJrurxCoBzuYB7PUKpQ5nbWFQ= Subject key identifier: FD:78:C1:55:C0:31:C3:91:29:A8:C8:F2:8A:3F:08:F9:3A:13:A1:A4 Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364 Certificate serial: 019B797E317811358A366CD5B83BCF89F837 Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/_XjBVcAxw5EpqMjyij8I-ToToaQ.roa Signing time: Thu 01 Jan 2026 12:17:51 +0000 ROA not before: Thu 01 Jan 2026 12:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16278 IP address blocks: 89.30.224.0/22 maxlen: 24 2a02:20b2::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:31:78:11:35:8a:36:6c:d5:b8:3b:cf:89:f8:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364 Validity Not Before: Jan 1 12:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd78c155c031c39129a8c8f28a3f08f93a13a1a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:9d:03:ce:1d:1f:0c:34:e1:9a:34:93:05: 33:4e:2b:5c:79:4a:74:c0:12:ba:4c:18:84:85:38: 87:c1:08:fb:ae:bb:7b:9f:9a:69:0f:56:6f:77:75: cc:6a:cd:80:96:54:e2:f7:0c:af:77:6d:50:ed:31: 14:5c:e1:32:96:a9:72:ab:2b:61:1f:e4:3d:33:86: d6:23:d5:a7:f9:9d:b4:bc:c9:3c:68:be:35:6b:23: fe:c7:08:2d:d5:f0:fe:35:15:13:db:fb:72:ab:2a: f6:80:b1:64:ca:29:4c:d2:5a:73:eb:97:04:ed:7f: e8:c9:c9:69:fc:ce:1d:a7:05:88:7d:2d:9d:c1:01: a5:0c:8e:a5:93:4b:01:45:5f:bb:bf:9a:93:bf:2f: 7c:77:6c:0d:ee:f7:bb:e1:21:9a:cf:5b:5c:76:89: 08:d0:0d:20:f5:ce:f1:e2:9d:d3:7b:c5:0d:40:4f: d8:e4:e4:7c:93:0c:54:36:89:12:f6:cb:5c:a8:69: 4f:10:99:2d:87:2a:c8:65:66:7f:cb:a4:64:da:d1: 9e:c4:d8:98:3a:fb:33:cc:2b:f8:5e:b5:80:2c:0e: a6:1d:bc:fd:74:3e:a3:d0:c5:f2:66:b5:02:bf:c3: c4:94:2f:ba:bb:6f:91:e6:a7:d7:ac:0a:19:7c:c4: 0e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:78:C1:55:C0:31:C3:91:29:A8:C8:F2:8A:3F:08:F9:3A:13:A1:A4 X509v3 Authority Key Identifier: keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/_XjBVcAxw5EpqMjyij8I-ToToaQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.30.224.0/22 IPv6: 2a02:20b2::/32 Signature Algorithm: sha256WithRSAEncryption a8:b5:0f:ce:77:09:aa:99:93:d3:3a:38:c5:bb:ac:91:04:a1: 20:34:9f:b6:07:9b:14:57:b8:83:e3:90:c6:b7:2f:33:75:84: 4f:83:e3:0f:4d:07:ce:f2:58:4f:e3:5d:db:21:61:91:ac:a2: 7b:e1:fd:58:82:02:56:6f:ef:47:4e:99:20:09:59:59:a6:ad: 10:69:cd:f9:cc:be:d8:16:31:bd:1c:ef:ba:a2:55:08:fc:12: a7:60:9b:5d:6e:a1:a0:90:80:18:38:82:ba:70:85:1f:65:39: a3:1f:7a:16:27:ab:4b:49:3e:d7:e6:5a:eb:46:cf:d0:8e:7e: a6:06:6d:76:f5:43:57:f2:b4:f4:ed:c6:7d:06:3a:53:96:e4: bb:86:8a:4a:02:dd:29:a9:7e:64:1d:6e:d2:8c:49:cc:92:f8: 14:06:40:01:a1:d4:27:0b:a2:cf:f1:41:c4:44:8b:4f:9d:e3: 8b:b7:03:c3:35:44:83:7b:41:9b:3e:73:69:e4:07:59:74:65: 56:ee:f5:09:45:6d:0b:91:b2:1f:7b:1d:16:44:8c:c7:64:3e: 7e:2d:c0:ef:01:1a:13:aa:99:cd:4d:34:9f:92:a2:64:cf:2f: 63:68:28:14:e0:73:3b:93:13:b4:8e:a3:45:49:8f:1c:33:50: 21:c7:aa:d9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fjF4ETWKNmzVuDvPifg3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNjI2ZmZkODAwZWFmYTMzNmJkZjM0MzE0MWYwM2Y3YzM5 M2MzNjQwHhcNMjYwMTAxMTIxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDc4YzE1NWMwMzFjMzkxMjlhOGM4ZjI4YTNmMDhmOTNhMTNhMWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxK+dA84dHww04Zo0kwUzTitceUp0 wBK6TBiEhTiHwQj7rrt7n5ppD1Zvd3XMas2AllTi9wyvd21Q7TEUXOEylqlyqyth H+Q9M4bWI9Wn+Z20vMk8aL41ayP+xwgt1fD+NRUT2/tyqyr2gLFkyilM0lpz65cE 7X/oyclp/M4dpwWIfS2dwQGlDI6lk0sBRV+7v5qTvy98d2wN7ve74SGaz1tcdokI 0A0g9c7x4p3Te8UNQE/Y5OR8kwxUNokS9stcqGlPEJkthyrIZWZ/y6Rk2tGexNiY OvszzCv4XrWALA6mHbz9dD6j0MXyZrUCv8PElC+6u2+R5qfXrAoZfMQOzwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFP14wVXAMcORKajI8oo/CPk6E6GkMB8GA1UdIwQY MBaAFAFib/2ADq+jNr3zQxQfA/fDk8NkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVdKdl9ZQU9yNk0ydmZOREZCOEQ5OE9UdzJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jNGU1YTAtODIxOS00ZmY5LTgyODct MWY0YmVhMjNlNGM3LzEvX1hqQlZjQXh3NUVwcU1qeWlqOEktVG9Ub2FRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jNGU1YTAtODIxOS00ZmY5LTgyODctMWY0YmVhMjNlNGM3 LzEvQVdKdl9ZQU9yNk0ydmZOREZCOEQ5OE9UdzJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCWR7gMA0E AgACMAcDBQAqAiCyMA0GCSqGSIb3DQEBCwUAA4IBAQCotQ/OdwmqmZPTOjjFu6yR BKEgNJ+2B5sUV7iD45DGty8zdYRPg+MPTQfO8lhP413bIWGRrKJ74f1YggJWb+9H TpkgCVlZpq0Qac35zL7YFjG9HO+6olUI/BKnYJtdbqGgkIAYOIK6cIUfZTmjH3oW J6tLST7X5lrrRs/Qjn6mBm129UNX8rT07cZ9BjpTluS7hopKAt0pqX5kHW7SjEnM kvgUBkABodQnC6LP8UHERItPneOLtwPDNUSDe0GbPnNp5AdZdGVW7vUJRW0LkbIf ex0WRIzHZD5+LcDvARoTqpnNTTSfkqJkzy9jaCgU4HM7kxO0jqNFSY8cM1Ahx6rZ -----END CERTIFICATE-----Generated at Mon Jan 26 05:02:19 2026 by rpki-client