This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/XYkTKb88A7GMt6eSGiiYDzXdEJ8.roa File: XYkTKb88A7GMt6eSGiiYDzXdEJ8.roa (raw, json) Hash identifier: qG0786n6I1oNBTt+C+PP6dQZhp9k3oP1rLbenFZrzms= Subject key identifier: 5D:89:13:29:BF:3C:03:B1:8C:B7:A7:92:1A:28:98:0F:35:DD:10:9F Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Certificate serial: 019B7D5B20536129BE1605A4184D3BF81B3B Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/XYkTKb88A7GMt6eSGiiYDzXdEJ8.roa Signing time: Fri 02 Jan 2026 06:18:02 +0000 ROA not before: Fri 02 Jan 2026 06:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205454 IP address blocks: 82.118.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.mft rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:20:53:61:29:be:16:05:a4:18:4d:3b:f8:1b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Validity Not Before: Jan 2 06:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d891329bf3c03b18cb7a7921a28980f35dd109f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3c:0d:02:f7:c2:8f:16:93:07:f2:dd:96:43: d3:e4:82:cb:39:7a:84:ce:27:6c:42:97:48:d2:fe: 87:91:1c:4b:9d:94:42:47:f7:aa:6b:31:03:f2:28: 61:3c:0a:c4:03:34:de:23:b5:26:98:13:b6:a1:92: 9f:64:24:c2:bb:fd:53:23:f0:59:80:dc:5f:87:fb: 62:5e:a6:55:79:a3:12:6a:fb:b4:74:3b:b6:1c:5e: 43:14:2c:92:89:7f:c2:b1:eb:44:eb:cf:fd:39:1a: fc:52:19:a1:37:5b:7c:01:f8:5f:c0:3b:c4:d2:62: dd:7c:91:38:d9:5f:c1:1d:76:42:94:70:e6:98:f4: 51:0f:cf:a5:a3:29:08:22:31:a4:cb:1d:aa:ad:30: 4c:75:f4:ee:57:8a:bb:13:4a:a3:6e:22:fa:88:e4: 8f:0c:9d:8e:8c:95:d7:bc:b9:d5:c9:09:95:6a:59: 3d:76:85:45:67:05:42:c7:70:d2:b8:79:63:77:b5: ad:27:e1:17:e6:5e:4c:10:6f:16:0c:0c:07:3b:37: 6e:25:25:9e:5a:12:d4:eb:1e:49:ad:34:e1:a5:99: dd:d6:64:7a:5f:a5:6c:4b:d0:ab:55:b1:65:5a:64: 25:f2:48:92:6f:e6:6b:bb:4e:86:a9:f3:44:80:e5: 1d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:89:13:29:BF:3C:03:B1:8C:B7:A7:92:1A:28:98:0F:35:DD:10:9F X509v3 Authority Key Identifier: keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/XYkTKb88A7GMt6eSGiiYDzXdEJ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.118.237.0/24 Signature Algorithm: sha256WithRSAEncryption 41:b3:f9:77:5e:50:6e:fa:1d:52:a6:2c:7f:b9:90:9e:33:99: 59:b5:25:7f:af:d3:39:2b:3e:65:11:cf:77:e2:70:a0:9d:86: 1f:4d:4e:04:57:8c:64:4b:0a:50:56:58:f7:33:76:f9:1a:9f: 9b:7c:56:c1:82:f8:c1:f7:06:66:66:6f:0a:e3:89:d3:58:db: 89:2b:98:93:f2:d2:f1:f7:2c:1c:7d:88:72:26:5a:80:6b:f1: 64:5a:10:a7:88:4f:76:5c:03:4e:a9:b8:bb:08:7a:f7:c7:5f: 64:3d:c4:ea:e5:24:91:57:81:ea:62:c5:49:00:0b:b9:f1:94: d4:3b:0b:92:38:f1:5c:c3:ba:11:70:96:ef:59:68:e5:e7:dc: 89:8a:d2:be:3e:55:6d:a7:dd:7a:76:d0:d5:55:e0:3b:29:2c: 60:33:b1:1b:55:6e:a6:ab:8c:1c:a7:4d:15:35:4b:6f:7f:ef: 58:af:02:ec:55:30:fb:cf:21:d6:69:4d:8c:e8:39:a7:0a:f7: 33:69:a9:8a:70:f6:cb:16:ac:1b:54:2c:2e:94:6f:8b:6c:33: 01:ff:1c:56:44:78:26:9e:66:c3:13:3d:ce:a8:ea:22:c6:01: de:a4:6c:cc:ce:c9:09:6d:83:93:c7:ee:2d:bb:02:24:48:01: 91:05:c5:62 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9WyBTYSm+FgWkGE07+Bs7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1 Y2IyYWEwHhcNMjYwMTAyMDYxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDg5MTMyOWJmM2MwM2IxOGNiN2E3OTIxYTI4OTgwZjM1ZGQxMDlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjwNAvfCjxaTB/LdlkPT5ILLOXqE zidsQpdI0v6HkRxLnZRCR/eqazED8ihhPArEAzTeI7UmmBO2oZKfZCTCu/1TI/BZ gNxfh/tiXqZVeaMSavu0dDu2HF5DFCySiX/CsetE68/9ORr8UhmhN1t8AfhfwDvE 0mLdfJE42V/BHXZClHDmmPRRD8+loykIIjGkyx2qrTBMdfTuV4q7E0qjbiL6iOSP DJ2OjJXXvLnVyQmValk9doVFZwVCx3DSuHljd7WtJ+EX5l5MEG8WDAwHOzduJSWe WhLU6x5JrTThpZnd1mR6X6VsS9CrVbFlWmQl8kiSb+Zru06GqfNEgOUdvwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF2JEym/PAOxjLenkhoomA813RCfMB8GA1UdIwQY MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt ZGFjYjVmMzU2ZWEzLzEvWFlrVEtiODhBN0dNdDZlU0dpaVlEelhkRUo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUnbtMA0G CSqGSIb3DQEBCwUAA4IBAQBBs/l3XlBu+h1Spix/uZCeM5lZtSV/r9M5Kz5lEc93 4nCgnYYfTU4EV4xkSwpQVlj3M3b5Gp+bfFbBgvjB9wZmZm8K44nTWNuJK5iT8tLx 9ywcfYhyJlqAa/FkWhCniE92XANOqbi7CHr3x19kPcTq5SSRV4HqYsVJAAu58ZTU OwuSOPFcw7oRcJbvWWjl59yJitK+PlVtp916dtDVVeA7KSxgM7EbVW6mq4wcp00V NUtvf+9YrwLsVTD7zyHWaU2M6DmnCvczaamKcPbLFqwbVCwulG+LbDMB/xxWRHgm nmbDEz3OqOoixgHepGzMzskJbYOTx+4tuwIkSAGRBcVi -----END CERTIFICATE-----Generated at Fri Jan 23 18:50:46 2026 by rpki-client