This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/986fe9-87cc-4d29-886e-d0ac1e048f67/1/XHsv6tidd9i-2RRz-dH5aTG8xDM.roa File: XHsv6tidd9i-2RRz-dH5aTG8xDM.roa (raw, json) Hash identifier: mc5VNfZqvrFRMc92AfbsJY+NZvDvOSGlYFhOV1FglZU= Subject key identifier: 5C:7B:2F:EA:D8:9D:77:D8:BE:D9:14:73:F9:D1:F9:69:31:BC:C4:33 Certificate issuer: /CN=ec24a826202091ac8319f0f06eb796fd82422b0f Certificate serial: 019B7B356DE77CE08348872CAAAD12397BCF Authority key identifier: EC:24:A8:26:20:20:91:AC:83:19:F0:F0:6E:B7:96:FD:82:42:2B:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7CSoJiAgkayDGfDwbreW_YJCKw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/986fe9-87cc-4d29-886e-d0ac1e048f67/1/XHsv6tidd9i-2RRz-dH5aTG8xDM.roa Signing time: Thu 01 Jan 2026 20:17:37 +0000 ROA not before: Thu 01 Jan 2026 20:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61337 IP address blocks: 45.153.132.0/23 maxlen: 23 45.153.134.0/24 maxlen: 24 85.199.212.0/22 maxlen: 22 91.230.243.0/24 maxlen: 24 194.55.0.0/24 maxlen: 24 194.55.40.0/24 maxlen: 24 194.55.43.0/24 maxlen: 24 194.60.198.0/23 maxlen: 23 195.66.148.0/23 maxlen: 23 2001:67c:504::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/986fe9-87cc-4d29-886e-d0ac1e048f67/1/7CSoJiAgkayDGfDwbreW_YJCKw8.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/986fe9-87cc-4d29-886e-d0ac1e048f67/1/7CSoJiAgkayDGfDwbreW_YJCKw8.mft rsync://rpki.ripe.net/repository/DEFAULT/7CSoJiAgkayDGfDwbreW_YJCKw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:6d:e7:7c:e0:83:48:87:2c:aa:ad:12:39:7b:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec24a826202091ac8319f0f06eb796fd82422b0f Validity Not Before: Jan 1 20:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c7b2fead89d77d8bed91473f9d1f96931bcc433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:90:5b:c4:3e:99:84:d5:19:cf:25:d0:f4:48: f8:4d:8b:ae:38:8a:ba:b6:c9:df:ac:e1:ec:a7:80: 17:00:95:7b:5b:2a:fe:db:7f:7e:48:5f:5a:c4:9a: bf:41:18:61:ed:69:4e:53:80:82:7e:62:18:97:a8: de:b7:06:34:ce:d3:fa:e3:d7:5f:ca:de:a8:6b:95: 88:41:12:c9:38:7a:6e:0f:1c:8d:86:08:bb:64:d4: f2:b3:a6:91:2e:26:91:11:8f:7c:8d:87:7f:19:5f: c3:a3:73:64:bc:47:8e:db:f9:7a:83:79:5d:1f:f2: 19:61:4a:88:61:14:ae:67:9e:54:66:49:4a:49:d4: f6:64:1b:21:b2:69:f2:67:67:74:bc:6b:90:03:df: 85:b2:9a:a3:f1:a0:86:84:50:2f:87:51:3d:fd:a5: de:7b:75:00:d8:e3:14:45:fe:f6:73:50:df:4f:e5: 47:76:d1:35:f6:9c:a9:df:70:41:ba:23:af:6a:d8: 7e:5e:aa:00:51:6f:59:22:d1:03:9c:63:13:11:11: f2:cb:f0:61:d6:64:43:50:a4:52:7f:3d:65:50:10: 8f:de:2d:3a:fc:2f:e7:9b:e4:3f:13:39:1c:98:7b: 21:aa:a8:7f:a3:6a:ac:43:68:97:7d:b6:a9:83:ab: 7f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7B:2F:EA:D8:9D:77:D8:BE:D9:14:73:F9:D1:F9:69:31:BC:C4:33 X509v3 Authority Key Identifier: keyid:EC:24:A8:26:20:20:91:AC:83:19:F0:F0:6E:B7:96:FD:82:42:2B:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7CSoJiAgkayDGfDwbreW_YJCKw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/986fe9-87cc-4d29-886e-d0ac1e048f67/1/XHsv6tidd9i-2RRz-dH5aTG8xDM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/986fe9-87cc-4d29-886e-d0ac1e048f67/1/7CSoJiAgkayDGfDwbreW_YJCKw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.153.132.0-45.153.134.255 85.199.212.0/22 91.230.243.0/24 194.55.0.0/24 194.55.40.0/24 194.55.43.0/24 194.60.198.0/23 195.66.148.0/23 IPv6: 2001:67c:504::/48 Signature Algorithm: sha256WithRSAEncryption 10:7d:0f:b8:40:a3:30:d2:72:01:55:b9:77:15:b0:90:74:e1: 73:69:7f:30:90:cf:f6:97:51:21:a0:01:db:c1:62:6b:8c:7f: d0:d6:93:c5:67:df:51:01:8d:74:ad:da:a8:0b:37:c0:10:3e: b3:5b:72:f0:55:b3:85:c7:11:0c:33:1c:32:20:a2:9c:b3:06: 9f:58:5b:03:1f:8e:d5:fa:6e:70:29:c5:c2:07:fd:47:f2:7e: c3:2a:a2:7d:11:98:d1:8f:e9:82:14:5a:8d:4f:2b:b3:8e:8a: 7a:cf:18:46:4b:e8:d5:db:a0:1d:01:79:d6:4c:84:fe:cd:c7: 78:28:d1:3e:8e:92:16:9b:32:89:50:35:c7:36:65:6e:22:67: f1:6d:65:6f:63:ba:40:92:b4:6a:cc:8e:42:9b:fa:51:09:ff: 40:04:97:5a:12:94:94:0c:c6:a5:7a:94:bd:50:16:88:42:b0: ff:29:a1:24:01:56:15:91:7a:04:3e:ec:30:50:5a:8a:c0:c2: 29:2d:67:3c:2f:92:a8:1d:3c:85:01:12:e1:94:ee:49:85:7a: af:f8:e8:8d:19:51:27:e6:c7:9d:71:53:4a:07:62:f8:5c:2c: 95:43:56:17:18:e2:a8:2f:40:16:72:19:8c:cb:34:24:88:64: 57:7e:9a:a5 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgISAZt7NW3nfOCDSIcsqq0SOXvPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjMjRhODI2MjAyMDkxYWM4MzE5ZjBmMDZlYjc5NmZkODI0 MjJiMGYwHhcNMjYwMTAxMjAxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzdiMmZlYWQ4OWQ3N2Q4YmVkOTE0NzNmOWQxZjk2OTMxYmNjNDMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpBbxD6ZhNUZzyXQ9Ej4TYuuOIq6 tsnfrOHsp4AXAJV7Wyr+239+SF9axJq/QRhh7WlOU4CCfmIYl6jetwY0ztP649df yt6oa5WIQRLJOHpuDxyNhgi7ZNTys6aRLiaREY98jYd/GV/Do3NkvEeO2/l6g3ld H/IZYUqIYRSuZ55UZklKSdT2ZBshsmnyZ2d0vGuQA9+Fspqj8aCGhFAvh1E9/aXe e3UA2OMURf72c1DfT+VHdtE19pyp33BBuiOvath+XqoAUW9ZItEDnGMTERHyy/Bh 1mRDUKRSfz1lUBCP3i06/C/nm+Q/EzkcmHshqqh/o2qsQ2iXfbapg6t/zwIDAQAB o4ICTDCCAkgwHQYDVR0OBBYEFFx7L+rYnXfYvtkUc/nR+WkxvMQzMB8GA1UdIwQY MBaAFOwkqCYgIJGsgxnw8G63lv2CQisPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0NTb0ppQWdrYXlER2ZEd2JyZVdfWUpDS3c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS85ODZmZTktODdjYy00ZDI5LTg4NmUt ZDBhYzFlMDQ4ZjY3LzEvWEhzdjZ0aWRkOWktMlJSei1kSDVhVEc4eERNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS85ODZmZTktODdjYy00ZDI5LTg4NmUtZDBhYzFlMDQ4ZjY3 LzEvN0NTb0ppQWdrYXlER2ZEd2JyZVdfWUpDS3c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGIGCCsGAQUFBwEHAQH/BFMwUTA+BAIAATA4MAwDBAItmYQD BAAtmYYDBAJVx9QDBABb5vMDBADCNwADBADCNygDBADCNysDBAHCPMYDBAHDQpQw DwQCAAIwCQMHACABBnwFBDANBgkqhkiG9w0BAQsFAAOCAQEAEH0PuECjMNJyAVW5 dxWwkHThc2l/MJDP9pdRIaAB28Fia4x/0NaTxWffUQGNdK3aqAs3wBA+s1ty8FWz hccRDDMcMiCinLMGn1hbAx+O1fpucCnFwgf9R/J+wyqifRGY0Y/pghRajU8rs46K es8YRkvo1dugHQF51kyE/s3HeCjRPo6SFpsyiVA1xzZlbiJn8W1lb2O6QJK0asyO Qpv6UQn/QASXWhKUlAzGpXqUvVAWiEKw/ymhJAFWFZF6BD7sMFBaisDCKS1nPC+S qB08hQES4ZTuSYV6r/jojRlRJ+bHnXFTSgdi+FwslUNWFxjiqC9AFnIZjMs0JIhk V36apQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:03 2026 by rpki-client