This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/X1QUPUOF4tV54plhF2_u5LSjURI.roa File: X1QUPUOF4tV54plhF2_u5LSjURI.roa (raw, json) Hash identifier: clnxlY4CuaOzSpARYUZerQTWC9Y8i99sNzE5VhkafSQ= Subject key identifier: 5F:54:14:3D:43:85:E2:D5:79:E2:99:61:17:6F:EE:E4:B4:A3:51:12 Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019B7F16061434F568BF5B4AFBE72E3611EE Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/X1QUPUOF4tV54plhF2_u5LSjURI.roa Signing time: Fri 02 Jan 2026 14:21:48 +0000 ROA not before: Fri 02 Jan 2026 14:21:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50124 IP address blocks: 178.239.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:16:06:14:34:f5:68:bf:5b:4a:fb:e7:2e:36:11:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Jan 2 14:21:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f54143d4385e2d579e29961176feee4b4a35112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:79:cc:88:83:fb:9b:66:e3:6c:19:90:1a:6c: 12:06:7e:8d:a5:c5:65:15:4f:3b:77:8b:b8:06:dc: 55:3b:a7:a0:c0:96:ea:21:0c:be:5e:da:a4:c6:fd: 9b:6d:d1:51:bc:31:cd:29:26:1b:68:55:15:6c:a3: b0:75:cc:27:e1:1c:89:8a:d6:a6:8f:89:db:44:12: b0:04:3c:e0:50:e3:a9:e2:c1:fe:f8:41:4a:23:91: c1:25:ec:cb:63:fb:27:b7:b9:16:f9:a7:16:bb:22: 79:ba:b6:33:2d:d7:25:d1:90:b6:c4:cd:fe:9b:e8: a1:9a:85:cd:59:a4:e1:36:70:32:b5:3c:36:d3:0b: d6:fe:de:1c:b6:96:b2:7c:52:f1:48:37:b3:ae:bf: dc:32:19:05:24:39:4c:ca:e5:62:d9:f4:3e:ac:c1: 07:03:27:40:31:59:23:94:a2:ea:08:f7:4b:b2:95: fd:54:ff:b6:5a:b9:2a:79:67:34:e3:31:bd:cc:8b: 8c:1e:92:10:f9:9a:31:da:b9:c5:13:55:b7:70:fe: 8e:15:f0:05:30:54:fa:38:25:85:6b:6e:7e:d9:bf: b7:7e:75:2d:bd:e5:0a:42:fe:21:41:3f:7a:c7:2a: a8:e5:d4:f6:b4:ff:e9:c8:ce:b5:ad:c5:16:4e:8c: d2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:54:14:3D:43:85:E2:D5:79:E2:99:61:17:6F:EE:E4:B4:A3:51:12 X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/X1QUPUOF4tV54plhF2_u5LSjURI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.239.114.0/24 Signature Algorithm: sha256WithRSAEncryption 26:ea:f4:9f:3e:09:c3:1f:59:29:1b:30:db:b1:5f:08:69:59: f0:b3:2d:8d:89:53:5a:99:f4:fd:0f:56:31:29:f4:7a:a7:14: 32:ab:6c:d5:98:7d:4a:e7:b4:3e:87:61:49:67:ac:06:46:96: 87:86:3e:b8:d8:d2:c0:2c:11:38:0f:21:3e:b9:cf:91:75:b8: 9c:82:77:41:4c:55:8e:18:fb:b3:22:9e:d3:e8:0a:6a:46:c5: 74:c2:89:2a:5d:5e:9d:c4:10:7e:ae:50:fc:34:f4:3c:4c:02: 03:b6:d7:62:85:1d:c9:3e:b6:cc:f6:b0:1d:8d:bd:8c:54:83: 05:44:c5:c5:95:80:c6:af:69:2a:22:da:0a:7a:62:4f:68:86: f4:cd:39:d1:f1:78:d7:05:d6:f0:2c:a3:5d:17:16:55:fc:f5: d2:7a:4e:20:82:ce:99:4a:6b:42:a3:c1:c7:95:6a:39:11:05: a7:f7:4a:d5:ab:79:a0:4e:9f:20:aa:da:fe:f3:f9:f9:9c:43: 3b:d5:00:79:a0:1e:e7:83:a2:85:7e:28:f7:7f:10:65:08:8d: 8f:8f:b9:a9:32:e2:99:41:1e:75:03:74:1f:e8:c1:9d:4f:81: 54:57:cc:8c:ec:3e:06:4e:9d:17:9e:23:0f:77:fa:a0:a7:eb: 14:87:3f:42 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FgYUNPVov1tK++cuNhHuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjYwMTAyMTQyMTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjU0MTQzZDQzODVlMmQ1NzllMjk5NjExNzZmZWVlNGI0YTM1MTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHnMiIP7m2bjbBmQGmwSBn6NpcVl FU87d4u4BtxVO6egwJbqIQy+Xtqkxv2bbdFRvDHNKSYbaFUVbKOwdcwn4RyJitam j4nbRBKwBDzgUOOp4sH++EFKI5HBJezLY/snt7kW+acWuyJ5urYzLdcl0ZC2xM3+ m+ihmoXNWaThNnAytTw20wvW/t4ctpayfFLxSDezrr/cMhkFJDlMyuVi2fQ+rMEH AydAMVkjlKLqCPdLspX9VP+2WrkqeWc04zG9zIuMHpIQ+Zox2rnFE1W3cP6OFfAF MFT6OCWFa25+2b+3fnUtveUKQv4hQT96xyqo5dT2tP/pyM61rcUWTozSFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF9UFD1DheLVeeKZYRdv7uS0o1ESMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvWDFRVVBVT0Y0dFY1NHBsaEYyX3U1TFNqVVJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsu9yMA0G CSqGSIb3DQEBCwUAA4IBAQAm6vSfPgnDH1kpGzDbsV8IaVnwsy2NiVNamfT9D1Yx KfR6pxQyq2zVmH1K57Q+h2FJZ6wGRpaHhj642NLALBE4DyE+uc+RdbicgndBTFWO GPuzIp7T6ApqRsV0wokqXV6dxBB+rlD8NPQ8TAIDttdihR3JPrbM9rAdjb2MVIMF RMXFlYDGr2kqItoKemJPaIb0zTnR8XjXBdbwLKNdFxZV/PXSek4ggs6ZSmtCo8HH lWo5EQWn90rVq3mgTp8gqtr+8/n5nEM71QB5oB7ng6KFfij3fxBlCI2Pj7mpMuKZ QR51A3Qf6MGdT4FUV8yM7D4GTp0XniMPd/qgp+sUhz9C -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:05 2026 by rpki-client