This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Xl0PTm3JOeepqm7PpEKOrsgz5BY.roa File: Xl0PTm3JOeepqm7PpEKOrsgz5BY.roa (raw, json) Hash identifier: BPoKqXdhzg2jKwrXcpxncMe9DwHyFv2acVYXyMmOj6k= Subject key identifier: 5E:5D:0F:4E:6D:C9:39:E7:A9:AA:6E:CF:A4:42:8E:AE:C8:33:E4:16 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A2E238B6A57564D3AB7B65E48B1DDB Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Xl0PTm3JOeepqm7PpEKOrsgz5BY.roa Signing time: Thu 01 Jan 2026 08:18:19 +0000 ROA not before: Thu 01 Jan 2026 08:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20326 IP address blocks: 194.55.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:e2:38:b6:a5:75:64:d3:ab:7b:65:e4:8b:1d:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e5d0f4e6dc939e7a9aa6ecfa4428eaec833e416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c9:cc:f2:84:ee:a5:fe:c8:c9:01:cc:b2:37: bb:21:5c:94:54:16:01:80:df:69:f3:49:5d:92:bc: 89:9a:88:59:51:e1:b1:25:e5:bd:a7:65:40:71:ab: 46:de:35:1a:56:e2:c6:a9:19:d6:e1:d9:27:0d:06: aa:43:d9:0a:2f:e5:95:79:74:a1:8a:8a:9e:5d:e7: 3c:a6:2b:bf:d0:de:f4:56:7f:29:d3:4c:6c:9f:d2: 1d:e6:24:29:5c:65:0f:9e:b5:07:3e:8e:e4:a8:f9: b3:9b:97:42:fa:a6:9e:5a:06:3c:c1:3c:aa:07:72: 79:9c:78:91:c4:9b:31:5b:50:44:a4:08:b3:d0:d4: b7:94:8a:50:bd:04:e3:79:db:f3:af:0b:db:c6:98: bb:b4:f0:6c:b5:75:46:bd:85:45:e8:be:28:74:80: 93:58:15:d0:8a:43:9a:96:44:41:d4:cb:68:f2:ea: a9:39:16:93:f4:5f:ef:ae:63:a5:6d:a3:0d:e5:15: a7:26:80:c6:81:fd:0b:26:86:2e:cf:51:e0:e4:03: a2:4d:72:23:58:d8:3f:39:35:6c:f2:bd:0c:d3:0b: 23:09:dc:e0:8d:c7:ed:a7:7b:8d:91:d0:60:56:7d: 3b:27:d1:7c:55:fe:0d:76:a9:2d:bf:b7:0c:91:e6: 57:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5D:0F:4E:6D:C9:39:E7:A9:AA:6E:CF:A4:42:8E:AE:C8:33:E4:16 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Xl0PTm3JOeepqm7PpEKOrsgz5BY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.55.224.0/24 Signature Algorithm: sha256WithRSAEncryption 96:e0:93:e6:be:50:36:2a:b3:b1:3c:a6:60:73:43:18:51:2b: e4:6a:0c:df:ab:2b:c5:03:25:c5:2c:fe:04:14:b0:60:e4:e3: 02:ea:ec:e0:49:43:4a:4f:06:f1:74:cb:e0:a5:e6:c5:21:c6: 1b:9a:ca:c8:e9:3e:ee:a0:83:d5:f3:a8:c8:ab:27:02:5b:09: 5a:ce:39:54:44:84:27:5e:d5:45:d1:71:08:56:fc:78:bd:eb: 0e:28:79:e2:a8:b6:98:1d:a0:24:67:e3:cc:5e:b7:01:3c:9e: 78:63:e5:63:c1:e7:6a:1a:ce:e7:42:d8:18:e1:b3:5d:8c:9f: 83:5a:ae:14:59:8c:fe:5d:b1:48:23:01:d6:c9:49:53:ce:fd: 75:02:2b:c0:f2:41:94:68:be:3c:11:c4:31:f7:a2:59:3c:ff: 75:94:20:08:ee:72:b6:55:59:9e:4d:a1:87:01:21:cb:81:d8: b8:eb:8d:90:59:2b:8a:da:ec:f2:51:c8:59:16:85:2e:45:66: 7c:a4:c1:41:44:cc:6d:e1:97:30:c0:8d:e3:6b:93:3f:38:bf: 92:08:f8:d7:51:14:ec:cb:70:64:ed:19:66:a0:3c:1b:cc:0b: fe:83:d8:d4:3e:27:a3:ad:4d:b9:cf:f2:ed:df:e5:99:55:c0: 65:27:23:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ouI4tqV1ZNOre2Xkix3bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTVkMGY0ZTZkYzkzOWU3YTlhYTZlY2ZhNDQyOGVhZWM4MzNlNDE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMnM8oTupf7IyQHMsje7IVyUVBYB gN9p80ldkryJmohZUeGxJeW9p2VAcatG3jUaVuLGqRnW4dknDQaqQ9kKL+WVeXSh ioqeXec8piu/0N70Vn8p00xsn9Id5iQpXGUPnrUHPo7kqPmzm5dC+qaeWgY8wTyq B3J5nHiRxJsxW1BEpAiz0NS3lIpQvQTjedvzrwvbxpi7tPBstXVGvYVF6L4odICT WBXQikOalkRB1Mto8uqpORaT9F/vrmOlbaMN5RWnJoDGgf0LJoYuz1Hg5AOiTXIj WNg/OTVs8r0M0wsjCdzgjcftp3uNkdBgVn07J9F8Vf4Ndqktv7cMkeZXuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF5dD05tyTnnqapuz6RCjq7IM+QWMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvWGwwUFRtM0pPZWVwcW03UHBFS09yc2d6NUJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjfgMA0G CSqGSIb3DQEBCwUAA4IBAQCW4JPmvlA2KrOxPKZgc0MYUSvkagzfqyvFAyXFLP4E FLBg5OMC6uzgSUNKTwbxdMvgpebFIcYbmsrI6T7uoIPV86jIqycCWwlazjlURIQn XtVF0XEIVvx4vesOKHniqLaYHaAkZ+PMXrcBPJ54Y+VjwedqGs7nQtgY4bNdjJ+D Wq4UWYz+XbFIIwHWyUlTzv11AivA8kGUaL48EcQx96JZPP91lCAI7nK2VVmeTaGH ASHLgdi4642QWSuK2uzyUchZFoUuRWZ8pMFBRMxt4ZcwwI3ja5M/OL+SCPjXURTs y3Bk7RlmoDwbzAv+g9jUPiejrU25z/Lt3+WZVcBlJyPs -----END CERTIFICATE-----Generated at Fri Jan 2 12:07:56 2026 by rpki-client