This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pXDmEq6dIE-N_74kJecQmJDuKX4.roa File: pXDmEq6dIE-N_74kJecQmJDuKX4.roa (raw, json) Hash identifier: 6/v4CSJa6Q/846mDUcyNt3gPC5FS5lLJw6dRQXOcqW0= Subject key identifier: A5:70:E6:12:AE:9D:20:4F:8D:FF:BE:24:25:E7:10:98:90:EE:29:7E Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A34FF8011F7CE9624165B33993E22E Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pXDmEq6dIE-N_74kJecQmJDuKX4.roa Signing time: Thu 01 Jan 2026 08:18:47 +0000 ROA not before: Thu 01 Jan 2026 08:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215540 IP address blocks: 5.253.59.0/24 maxlen: 24 85.208.139.0/24 maxlen: 24 87.120.219.0/24 maxlen: 24 87.120.219.0/32 maxlen: 32 87.120.222.0/24 maxlen: 24 87.121.47.0/24 maxlen: 24 171.22.16.0/24 maxlen: 24 212.87.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:4f:f8:01:1f:7c:e9:62:41:65:b3:39:93:e2:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a570e612ae9d204f8dffbe2425e7109890ee297e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:71:9e:a4:01:d9:58:50:77:31:5a:e1:6b:89: ff:fb:3f:d5:51:99:de:60:ed:fd:0e:2e:f5:9a:f6: e5:d9:ee:be:e0:12:4c:35:0a:8b:a5:5f:a3:9f:41: e1:81:fa:eb:cf:60:03:b6:f9:ce:25:16:f1:d0:4a: d8:63:b5:0c:cb:61:d6:1b:31:92:29:53:27:28:2e: 61:03:d8:47:a1:b8:45:cd:87:5e:4d:02:92:03:40: 2e:a1:08:22:4b:fd:9a:91:6a:6a:23:c2:5e:0a:27: 81:8a:c2:bb:62:e4:27:53:4c:56:07:55:9c:fd:1c: 32:29:d0:de:26:f5:67:ee:6f:52:46:9b:ec:eb:4c: dc:c1:51:39:73:97:3c:2e:2b:67:d4:61:f5:41:3b: 25:56:99:b0:c7:e5:b3:a7:aa:fd:f3:fc:e3:59:8e: 05:65:e4:ee:43:67:47:6b:da:bf:8e:14:c1:73:7a: f7:99:24:b4:eb:aa:a4:58:32:87:3e:17:c8:7a:82: 28:db:08:70:2d:97:2e:99:04:91:50:5e:19:2a:3a: 75:36:f4:e0:3b:90:34:ec:86:11:fd:4e:eb:ff:0e: 14:c8:ed:e1:50:d8:8c:8c:7f:f1:30:f9:89:c7:4d: d3:0c:86:ce:20:ed:89:36:6e:f7:42:e4:a8:98:cb: fd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:70:E6:12:AE:9D:20:4F:8D:FF:BE:24:25:E7:10:98:90:EE:29:7E X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pXDmEq6dIE-N_74kJecQmJDuKX4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.59.0/24 85.208.139.0/24 87.120.219.0/24 87.120.222.0/24 87.121.47.0/24 171.22.16.0/24 212.87.222.0/24 Signature Algorithm: sha256WithRSAEncryption 64:44:2d:54:fa:72:22:b3:73:85:1b:58:d0:a7:6e:13:47:af: 4d:c3:6e:f4:88:2f:aa:2d:5f:92:6a:ce:21:65:03:8d:67:9e: a6:46:1a:a7:3f:ae:92:83:2e:01:31:7b:6c:e5:ab:7c:4b:ec: 09:c9:8a:e7:3d:f9:b1:f9:01:f4:c4:1d:47:18:72:1c:a5:26: d7:81:29:57:6b:e8:8e:46:c6:18:7d:67:a9:87:d6:27:b9:09: 8d:5a:5e:9e:43:94:1c:d7:e4:08:5f:f0:52:d8:6b:c0:49:3c: 3d:08:87:90:48:a7:b6:3f:44:5d:84:70:8e:15:54:b3:a7:40: 1c:7f:d9:dc:e8:bb:31:d0:d8:03:42:38:46:18:5e:5b:a8:fc: e0:f7:e4:b5:ad:2f:4c:52:75:f6:e0:4a:63:f2:e7:6b:99:44: a5:74:69:b3:c1:1f:8b:c7:2d:3b:d9:a9:7c:43:b8:07:a9:14: 34:0e:18:ed:e7:ee:49:da:05:16:2d:a6:5e:b3:1e:68:e7:0a: 0a:56:b9:f5:86:99:6d:d2:7a:35:ea:32:48:8f:90:78:00:69: f8:84:7a:a5:b9:20:5c:80:e7:da:df:05:13:f0:5d:8c:63:54: 38:78:8c:8f:70:e5:33:52:f4:fd:06:ee:77:16:94:93:08:06: 7a:fc:09:66 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt4o0/4AR986WJBZbM5k+IuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTcwZTYxMmFlOWQyMDRmOGRmZmJlMjQyNWU3MTA5ODkwZWUyOTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3GepAHZWFB3MVrha4n/+z/VUZne YO39Di71mvbl2e6+4BJMNQqLpV+jn0Hhgfrrz2ADtvnOJRbx0ErYY7UMy2HWGzGS KVMnKC5hA9hHobhFzYdeTQKSA0AuoQgiS/2akWpqI8JeCieBisK7YuQnU0xWB1Wc /RwyKdDeJvVn7m9SRpvs60zcwVE5c5c8Litn1GH1QTslVpmwx+Wzp6r98/zjWY4F ZeTuQ2dHa9q/jhTBc3r3mSS066qkWDKHPhfIeoIo2whwLZcumQSRUF4ZKjp1NvTg O5A07IYR/U7r/w4UyO3hUNiMjH/xMPmJx03TDIbOIO2JNm73QuSomMv9mQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFKVw5hKunSBPjf++JCXnEJiQ7il+MB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvcFhEbUVxNmRJRS1OXzc0a0plY1FtSkR1S1g0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQABf07AwQA VdCLAwQAV3jbAwQAV3jeAwQAV3kvAwQAqxYQAwQA1FfeMA0GCSqGSIb3DQEBCwUA A4IBAQBkRC1U+nIis3OFG1jQp24TR69Nw270iC+qLV+Sas4hZQONZ56mRhqnP66S gy4BMXts5at8S+wJyYrnPfmx+QH0xB1HGHIcpSbXgSlXa+iORsYYfWeph9YnuQmN Wl6eQ5Qc1+QIX/BS2GvASTw9CIeQSKe2P0RdhHCOFVSzp0Acf9nc6Lsx0NgDQjhG GF5bqPzg9+S1rS9MUnX24Epj8udrmUSldGmzwR+Lxy072al8Q7gHqRQ0Dhjt5+5J 2gUWLaZesx5o5woKVrn1hplt0no16jJIj5B4AGn4hHqluSBcgOfa3wUT8F2MY1Q4 eIyPcOUzUvT9Bu53FpSTCAZ6/Alm -----END CERTIFICATE-----Generated at Fri Jan 2 12:05:04 2026 by rpki-client