This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/rpXQzYMi2LaNrk065am7U1-g2SA.roa File: rpXQzYMi2LaNrk065am7U1-g2SA.roa (raw, json) Hash identifier: /ykY3CvF0oXXdlRqhSK0Ui83N9HzCRWvebrOuzZmzOI= Subject key identifier: AE:95:D0:CD:83:22:D8:B6:8D:AE:4D:3A:E5:A9:BB:53:5F:A0:D9:20 Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4 Certificate serial: 019BFAE75F7E2323CFFE889942045A559009 Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/rpXQzYMi2LaNrk065am7U1-g2SA.roa Signing time: Mon 26 Jan 2026 15:23:45 +0000 ROA not before: Mon 26 Jan 2026 15:23:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9204 IP address blocks: 89.36.174.0/24 maxlen: 24 89.44.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:e7:5f:7e:23:23:cf:fe:88:99:42:04:5a:55:90:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4 Validity Not Before: Jan 26 15:23:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae95d0cd8322d8b68dae4d3ae5a9bb535fa0d920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f1:2d:08:0f:0e:40:61:00:1f:67:bf:5c:78: c0:de:08:86:6d:d4:f6:c8:5a:0f:37:61:09:65:35: 5f:38:a3:34:47:f2:48:c9:37:62:04:87:55:8d:41: ee:76:de:27:17:55:65:6a:31:15:bb:bc:39:2e:e3: cf:6b:8c:ab:63:a2:72:c9:c0:8f:1c:17:55:a8:98: 45:b2:37:47:2c:85:b8:45:c5:42:b4:b2:3f:2d:58: 9c:e9:c3:3f:80:4a:28:e8:81:1c:1e:75:c5:4c:f9: 98:29:1a:50:a6:b2:61:65:76:11:1b:e2:ae:51:cc: 60:4e:a0:bf:a1:6f:0e:f9:95:f2:59:21:df:89:25: 18:66:a3:0c:4e:31:2b:fa:3f:80:9e:e4:eb:7b:55: fd:43:0a:e0:92:aa:65:ca:ad:17:20:ca:68:56:b5: 23:56:43:d4:66:ae:c2:c5:fa:a8:cb:aa:ff:18:2c: 53:01:d7:f0:88:f9:69:bb:5b:05:4b:db:30:51:61: ea:a8:75:56:ff:0e:62:98:5b:a0:c5:ec:7c:4a:9a: 40:da:1e:0d:61:70:d0:d2:a4:be:5f:69:55:3c:ee: 84:9e:2d:d4:a5:91:db:b1:2f:57:e8:28:71:95:14: 11:67:26:b9:90:23:43:a6:fc:ee:03:b9:78:11:dc: a3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:95:D0:CD:83:22:D8:B6:8D:AE:4D:3A:E5:A9:BB:53:5F:A0:D9:20 X509v3 Authority Key Identifier: keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/rpXQzYMi2LaNrk065am7U1-g2SA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.36.174.0/24 89.44.81.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:48:53:dc:5f:1a:43:ef:3f:7b:21:b5:21:ab:53:83:8a:bd: ef:6e:d7:af:e9:56:e4:f7:70:2b:0f:8c:81:ae:a8:c9:30:7a: 51:d0:6b:d5:98:de:9f:dc:2d:00:94:68:88:b0:75:64:cb:d1: 0c:86:9e:72:f3:07:e8:db:4e:27:e3:fd:12:38:68:8f:f7:90: 1b:6c:cf:a8:7b:f2:a6:b8:39:b4:ea:4b:f0:70:a0:2e:dd:ea: c2:b2:4a:ed:b4:52:d8:ec:51:63:73:93:c6:70:05:df:4d:e8: 6f:ec:03:e8:1a:c4:3d:db:a6:50:94:f1:af:9b:14:3a:02:ed: 36:21:30:c9:dd:1e:9b:67:0e:09:61:7f:3a:ed:20:55:ed:f4: 4e:48:96:e1:97:d6:ab:63:62:53:2e:d1:af:05:e6:53:d6:67: cd:34:be:71:f8:05:88:0f:b0:fc:8f:a7:05:1a:27:41:a6:9d: e9:4f:e0:29:4b:e1:cf:d1:ef:78:2f:60:f8:e1:5f:cf:c2:79: 88:03:b1:8c:5f:12:8a:a0:a0:8e:d0:dd:37:fd:c9:b0:62:cf: 6d:ed:40:07:97:0b:6a:0b:ee:90:5e:d4:b7:4a:21:f6:4e:30: 2e:c6:47:32:33:3c:ee:1b:da:23:66:d2:c8:a1:a4:17:bc:4f: 57:ec:de:81 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZv6519+IyPP/oiZQgRaVZAJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViZjQyZTgwNjAyYWVkZjU4YTNjN2E4MTg4M2MxYTM0ZjY5 ZDJmYjQwHhcNMjYwMTI2MTUyMzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTk1ZDBjZDgzMjJkOGI2OGRhZTRkM2FlNWE5YmI1MzVmYTBkOTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvEtCA8OQGEAH2e/XHjA3giGbdT2 yFoPN2EJZTVfOKM0R/JIyTdiBIdVjUHudt4nF1VlajEVu7w5LuPPa4yrY6JyycCP HBdVqJhFsjdHLIW4RcVCtLI/LVic6cM/gEoo6IEcHnXFTPmYKRpQprJhZXYRG+Ku UcxgTqC/oW8O+ZXyWSHfiSUYZqMMTjEr+j+AnuTre1X9Qwrgkqplyq0XIMpoVrUj VkPUZq7Cxfqoy6r/GCxTAdfwiPlpu1sFS9swUWHqqHVW/w5imFugxex8SppA2h4N YXDQ0qS+X2lVPO6Eni3UpZHbsS9X6ChxlRQRZya5kCNDpvzuA7l4EdyjUQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFK6V0M2DIti2ja5NOuWpu1NfoNkgMB8GA1UdIwQY MBaAFOv0LoBgKu31ijx6gYg8GjT2nS+0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNl9RdWdHQXE3ZldLUEhxQmlEd2FOUGFkTDdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8wOTUyZDQtNGE0OS00NDdkLWFkM2Mt MTkwM2VkYWZhOGJmLzEvcnBYUXpZTWkyTGFOcmswNjVhbTdVMS1nMlNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8wOTUyZDQtNGE0OS00NDdkLWFkM2MtMTkwM2VkYWZhOGJm LzEvNl9RdWdHQXE3ZldLUEhxQmlEd2FOUGFkTDdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWSSuAwQA WSxRMA0GCSqGSIb3DQEBCwUAA4IBAQAfSFPcXxpD7z97IbUhq1ODir3vbtev6Vbk 93ArD4yBrqjJMHpR0GvVmN6f3C0AlGiIsHVky9EMhp5y8wfo204n4/0SOGiP95Ab bM+oe/KmuDm06kvwcKAu3erCskrttFLY7FFjc5PGcAXfTehv7APoGsQ926ZQlPGv mxQ6Au02ITDJ3R6bZw4JYX867SBV7fROSJbhl9arY2JTLtGvBeZT1mfNNL5x+AWI D7D8j6cFGidBpp3pT+ApS+HP0e94L2D44V/PwnmIA7GMXxKKoKCO0N03/cmwYs9t 7UAHlwtqC+6QXtS3SiH2TjAuxkcyMzzuG9ojZtLIoaQXvE9X7N6B -----END CERTIFICATE-----Generated at Tue Feb 10 00:29:14 2026 by rpki-client