This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/XDb_iHx6cbmPH43dgWvVsJfW0ac.roa File: XDb_iHx6cbmPH43dgWvVsJfW0ac.roa (raw, json) Hash identifier: KYVtB3eABE3zJB5eum5E3Ki0/gdZxjvbmsEaduK+J14= Subject key identifier: 5C:36:FF:88:7C:7A:71:B9:8F:1F:8D:DD:81:6B:D5:B0:97:D6:D1:A7 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37BD41D2E070D156E743AC7C995AF8 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/XDb_iHx6cbmPH43dgWvVsJfW0ac.roa Signing time: Fri 02 Jan 2026 10:19:00 +0000 ROA not before: Fri 02 Jan 2026 10:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60798 IP address blocks: 62.169.133.0/24 maxlen: 24 124.198.130.0/24 maxlen: 24 155.2.213.0/24 maxlen: 24 158.173.132.0/24 maxlen: 24 185.102.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:bd:41:d2:e0:70:d1:56:e7:43:ac:7c:99:5a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c36ff887c7a71b98f1f8ddd816bd5b097d6d1a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:07:b6:16:0b:48:e3:13:9b:a1:ad:de:f5:59: e3:a2:b8:bb:3a:78:05:70:a2:ef:99:e7:69:12:56: 84:dd:d7:2c:1b:6c:7a:8f:5e:d5:e0:a4:cc:f4:ec: 64:dd:1a:6f:00:2b:b6:23:15:45:05:03:e6:85:48: 13:ab:e5:8c:cf:cf:d7:d3:f2:56:87:73:2d:4c:11: f0:ba:d5:32:43:c4:e5:59:45:f3:b4:d4:1a:01:55: f8:cd:7e:cc:29:86:4a:c6:33:df:c1:a6:fb:a4:ca: 78:1b:2b:fc:67:6e:05:3e:84:97:dd:e9:64:c6:58: dd:bc:8c:95:2b:6c:6d:c6:c9:d7:f0:18:b3:85:38: 6f:5b:a7:f6:b0:40:07:22:e7:06:ec:3d:fb:88:48: 86:a8:ca:1c:1c:b6:fb:67:62:3b:c2:06:53:3e:31: 0c:ca:02:1c:3f:1a:3e:ea:4d:f2:07:3a:02:44:79: 8c:33:e7:30:e0:14:20:f7:9d:79:b0:be:d5:47:e7: 50:23:27:0b:78:2a:74:a8:20:fa:09:21:55:26:b4: 23:92:3d:e7:5c:48:ad:3d:ae:82:42:b9:76:c8:19: 7c:a5:51:54:5a:66:7d:79:a4:6a:df:3b:cf:9f:b2: fb:0d:f9:52:3b:17:f3:8e:da:42:4f:1f:1c:5a:40: bf:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:36:FF:88:7C:7A:71:B9:8F:1F:8D:DD:81:6B:D5:B0:97:D6:D1:A7 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/XDb_iHx6cbmPH43dgWvVsJfW0ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.169.133.0/24 124.198.130.0/24 155.2.213.0/24 158.173.132.0/24 185.102.169.0/24 Signature Algorithm: sha256WithRSAEncryption 56:89:10:14:20:d4:05:9a:36:37:06:f2:e2:51:74:be:f7:50: d4:30:0e:95:02:b5:49:66:43:b5:b5:71:16:b9:9f:57:af:f4: 4b:7a:35:04:2e:42:6b:63:c3:96:b9:1a:4b:c8:7a:1c:33:08: d5:e2:88:ef:e4:23:ee:b6:38:7b:84:9b:94:98:0f:66:17:c2: 6d:5a:df:6e:b4:78:1f:55:50:fd:89:1e:14:21:f9:e8:e2:fa: 65:4a:af:1d:eb:5b:04:3e:43:ab:ea:db:47:fe:a3:bb:3a:cf: ce:3b:57:a3:f0:52:3f:1a:56:ce:6c:ef:b5:b9:bd:df:7b:71: 83:ba:06:af:e3:75:7d:fd:5c:66:e4:6f:26:58:5e:b3:8b:f8: cf:1b:f9:80:16:d0:38:ea:6d:68:8c:cb:00:04:6e:55:58:26: bf:04:56:6f:91:a9:91:5a:ed:08:ef:14:6c:d7:1a:e6:b7:29: 56:bf:13:e6:4a:e0:6a:04:f5:fa:a9:b2:8a:ef:ef:c9:b2:82: fb:9a:ab:94:ea:5b:e2:5c:62:bd:57:d5:1c:49:1f:a2:a2:50: 4e:cb:9a:86:96:e3:bb:31:31:42:82:e5:23:5c:14:e7:e1:b6: d4:de:b4:29:05:9e:47:d8:ae:1b:e1:4f:5f:dc:55:1c:a1:d2: bc:6d:3b:86 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt+N71B0uBw0VbnQ6x8mVr4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzM2ZmY4ODdjN2E3MWI5OGYxZjhkZGQ4MTZiZDViMDk3ZDZkMWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAe2FgtI4xOboa3e9Vnjori7OngF cKLvmedpElaE3dcsG2x6j17V4KTM9Oxk3RpvACu2IxVFBQPmhUgTq+WMz8/X0/JW h3MtTBHwutUyQ8TlWUXztNQaAVX4zX7MKYZKxjPfwab7pMp4Gyv8Z24FPoSX3elk xljdvIyVK2xtxsnX8BizhThvW6f2sEAHIucG7D37iEiGqMocHLb7Z2I7wgZTPjEM ygIcPxo+6k3yBzoCRHmMM+cw4BQg9515sL7VR+dQIycLeCp0qCD6CSFVJrQjkj3n XEitPa6CQrl2yBl8pVFUWmZ9eaRq3zvPn7L7DflSOxfzjtpCTx8cWkC/4wIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFFw2/4h8enG5jx+N3YFr1bCX1tGnMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvWERiX2lIeDZjYm1QSDQzZGdXdlZzSmZXMGFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAPqmFAwQA fMaCAwQAmwLVAwQAnq2EAwQAuWapMA0GCSqGSIb3DQEBCwUAA4IBAQBWiRAUINQF mjY3BvLiUXS+91DUMA6VArVJZkO1tXEWuZ9Xr/RLejUELkJrY8OWuRpLyHocMwjV 4ojv5CPutjh7hJuUmA9mF8JtWt9utHgfVVD9iR4UIfno4vplSq8d61sEPkOr6ttH /qO7Os/OO1ej8FI/GlbObO+1ub3fe3GDugav43V9/Vxm5G8mWF6zi/jPG/mAFtA4 6m1ojMsABG5VWCa/BFZvkamRWu0I7xRs1xrmtylWvxPmSuBqBPX6qbKK7+/JsoL7 mquU6lviXGK9V9UcSR+iolBOy5qGluO7MTFCguUjXBTn4bbU3rQpBZ5H2K4b4U9f 3FUcodK8bTuG -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:15 2026 by rpki-client