This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/7c4e32-6c20-41c1-a85f-fdd3a815abb8/1/t4FfWGGXtTRUFxZwz8cMn71DIVM.roa File: t4FfWGGXtTRUFxZwz8cMn71DIVM.roa (raw, json) Hash identifier: 1Te86c70kCA9A6/qMvPRifJboyGJc6UFcW+d55LKuf0= Subject key identifier: B7:81:5F:58:61:97:B5:34:54:17:16:70:CF:C7:0C:9F:BD:43:21:53 Certificate issuer: /CN=c5338efce4494f5b925f0e9af73651c1cbf1e04c Certificate serial: 019B77C6AB591C5A56BE904C71ACA7B87E53 Authority key identifier: C5:33:8E:FC:E4:49:4F:5B:92:5F:0E:9A:F7:36:51:C1:CB:F1:E0:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTOO_ORJT1uSXw6a9zZRwcvx4Ew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/7c4e32-6c20-41c1-a85f-fdd3a815abb8/1/t4FfWGGXtTRUFxZwz8cMn71DIVM.roa Signing time: Thu 01 Jan 2026 04:17:47 +0000 ROA not before: Thu 01 Jan 2026 04:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20804 IP address blocks: 195.137.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/7c4e32-6c20-41c1-a85f-fdd3a815abb8/1/xTOO_ORJT1uSXw6a9zZRwcvx4Ew.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/7c4e32-6c20-41c1-a85f-fdd3a815abb8/1/xTOO_ORJT1uSXw6a9zZRwcvx4Ew.mft rsync://rpki.ripe.net/repository/DEFAULT/xTOO_ORJT1uSXw6a9zZRwcvx4Ew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ab:59:1c:5a:56:be:90:4c:71:ac:a7:b8:7e:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5338efce4494f5b925f0e9af73651c1cbf1e04c Validity Not Before: Jan 1 04:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7815f586197b53454171670cfc70c9fbd432153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:36:02:90:80:5f:7a:4d:3e:6f:ec:7b:12:f4: 19:68:e6:ba:da:24:91:16:0c:43:43:17:5f:5c:06: 67:8d:f4:b9:07:16:d2:34:df:68:52:f4:a8:b1:b0: 1e:1a:28:7e:9b:c9:80:08:88:84:4f:c3:75:fd:46: d0:14:8f:5f:51:e6:51:e8:2d:7d:b8:ac:ce:24:72: 9c:22:02:fb:fb:3c:dc:71:3e:0d:b3:82:49:2c:a7: ec:ba:24:7d:15:d3:1b:bf:2b:23:91:fe:06:f7:d8: 8a:8d:50:f4:a1:fc:76:f4:ea:d3:36:18:5f:6f:45: ed:a5:cb:7b:d2:7c:87:15:95:86:2a:d7:ac:90:f6: c4:88:12:08:a4:b9:6b:9b:2b:bd:c9:24:30:eb:3b: a6:72:4b:8f:1c:1e:93:bf:8e:dd:e5:8f:f4:2a:cb: 79:e0:27:2a:6b:63:f3:af:ae:3f:cc:ce:31:5e:68: 68:88:13:51:f3:e0:f9:cb:63:41:bd:4d:3f:9e:a8: 8e:43:7a:98:81:36:53:26:39:83:7d:b2:e2:e0:74: fa:32:fa:4c:51:b1:93:8a:09:db:f9:cb:af:20:02: 7b:84:e6:09:78:5e:c3:dc:cc:ca:9c:70:1b:06:33: a9:0f:39:5f:b5:aa:a1:f6:10:68:75:79:9b:62:5a: d0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:81:5F:58:61:97:B5:34:54:17:16:70:CF:C7:0C:9F:BD:43:21:53 X509v3 Authority Key Identifier: keyid:C5:33:8E:FC:E4:49:4F:5B:92:5F:0E:9A:F7:36:51:C1:CB:F1:E0:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTOO_ORJT1uSXw6a9zZRwcvx4Ew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7c4e32-6c20-41c1-a85f-fdd3a815abb8/1/t4FfWGGXtTRUFxZwz8cMn71DIVM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7c4e32-6c20-41c1-a85f-fdd3a815abb8/1/xTOO_ORJT1uSXw6a9zZRwcvx4Ew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.137.162.0/24 Signature Algorithm: sha256WithRSAEncryption 94:c4:32:1c:4c:f4:40:14:f5:d1:fc:52:42:bf:15:c1:75:d0: da:14:df:71:d1:72:b8:aa:ea:82:22:d4:ee:cd:92:c0:5d:5a: 02:a8:7e:bc:99:09:81:69:59:4d:89:da:c7:14:34:98:1f:d0: b4:fc:0c:36:69:78:92:69:26:78:21:0c:f7:37:77:b9:b3:e1: a7:4f:ac:d6:83:d6:16:32:e0:8e:e3:e7:cb:e0:4b:0e:c6:16: bf:a5:a8:a7:a6:63:dc:25:c8:e9:26:2c:a6:12:94:c4:54:48: 07:eb:47:34:83:38:69:a8:ac:ac:5e:de:70:07:ff:5c:0c:c1: 58:35:bb:bc:d8:05:34:56:c1:c4:2e:65:1b:8a:d9:ba:85:be: ce:58:40:a6:88:dd:bf:0d:66:54:07:c4:70:93:59:17:a1:83: fb:ec:23:1f:86:e4:32:1c:18:98:bb:79:a6:8c:ac:ec:09:14: 13:01:a9:98:1b:58:44:56:de:10:8f:91:44:fd:c6:0e:c4:40: c3:ef:03:38:e2:87:00:d2:4d:fd:19:ed:37:00:ef:38:5d:60: a4:50:95:73:92:f8:de:40:60:a5:75:48:2d:2a:5e:cc:49:92: 2a:29:f3:59:0c:66:a1:7c:d9:92:79:2f:6c:8a:3a:a4:11:5f: b9:17:ff:81 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xqtZHFpWvpBMcaynuH5TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1MzM4ZWZjZTQ0OTRmNWI5MjVmMGU5YWY3MzY1MWMxY2Jm MWUwNGMwHhcNMjYwMTAxMDQxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzgxNWY1ODYxOTdiNTM0NTQxNzE2NzBjZmM3MGM5ZmJkNDMyMTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTYCkIBfek0+b+x7EvQZaOa62iSR FgxDQxdfXAZnjfS5BxbSNN9oUvSosbAeGih+m8mACIiET8N1/UbQFI9fUeZR6C19 uKzOJHKcIgL7+zzccT4Ns4JJLKfsuiR9FdMbvysjkf4G99iKjVD0ofx29OrTNhhf b0Xtpct70nyHFZWGKteskPbEiBIIpLlrmyu9ySQw6zumckuPHB6Tv47d5Y/0Kst5 4Ccqa2Pzr64/zM4xXmhoiBNR8+D5y2NBvU0/nqiOQ3qYgTZTJjmDfbLi4HT6MvpM UbGTignb+cuvIAJ7hOYJeF7D3MzKnHAbBjOpDzlftaqh9hBodXmbYlrQNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLeBX1hhl7U0VBcWcM/HDJ+9QyFTMB8GA1UdIwQY MBaAFMUzjvzkSU9bkl8Omvc2UcHL8eBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFRPT19PUkpUMXVTWHc2YTl6WlJ3Y3Z4NEV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS83YzRlMzItNmMyMC00MWMxLWE4NWYt ZmRkM2E4MTVhYmI4LzEvdDRGZldHR1h0VFJVRnhad3o4Y01uNzFESVZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS83YzRlMzItNmMyMC00MWMxLWE4NWYtZmRkM2E4MTVhYmI4 LzEveFRPT19PUkpUMXVTWHc2YTl6WlJ3Y3Z4NEV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4miMA0G CSqGSIb3DQEBCwUAA4IBAQCUxDIcTPRAFPXR/FJCvxXBddDaFN9x0XK4quqCItTu zZLAXVoCqH68mQmBaVlNidrHFDSYH9C0/Aw2aXiSaSZ4IQz3N3e5s+GnT6zWg9YW MuCO4+fL4EsOxha/painpmPcJcjpJiymEpTEVEgH60c0gzhpqKysXt5wB/9cDMFY Nbu82AU0VsHELmUbitm6hb7OWECmiN2/DWZUB8Rwk1kXoYP77CMfhuQyHBiYu3mm jKzsCRQTAamYG1hEVt4Qj5FE/cYOxEDD7wM44ocA0k39Ge03AO84XWCkUJVzkvje QGCldUgtKl7MSZIqKfNZDGahfNmSeS9sijqkEV+5F/+B -----END CERTIFICATE-----Generated at Mon Jan 26 05:54:09 2026 by rpki-client