This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/Xn3cZdoc1oZaLWywlmWWyAyOfWE.roa File: Xn3cZdoc1oZaLWywlmWWyAyOfWE.roa (raw, json) Hash identifier: 551kHSptW/6M3u7HIciWUsHuNYgd69T++wpfoLJomDU= Subject key identifier: 5E:7D:DC:65:DA:1C:D6:86:5A:2D:6C:B0:96:65:96:C8:0C:8E:7D:61 Certificate issuer: /CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6 Certificate serial: 019B77595C0C6A75B4D832F08A9DDB654732 Authority key identifier: 6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/Xn3cZdoc1oZaLWywlmWWyAyOfWE.roa Signing time: Thu 01 Jan 2026 02:18:23 +0000 ROA not before: Thu 01 Jan 2026 02:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204908 IP address blocks: 185.124.12.0/24 maxlen: 24 185.124.13.0/24 maxlen: 24 185.236.28.0/22 maxlen: 22 185.236.28.0/24 maxlen: 24 185.236.29.0/24 maxlen: 24 185.236.30.0/24 maxlen: 24 185.236.31.0/24 maxlen: 24 2a03:9000::/40 maxlen: 40 2a03:9000:100::/40 maxlen: 40 2a03:9000:200::/40 maxlen: 40 2a03:9000:300::/40 maxlen: 40 2a03:9000:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:5c:0c:6a:75:b4:d8:32:f0:8a:9d:db:65:47:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6 Validity Not Before: Jan 1 02:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e7ddc65da1cd6865a2d6cb0966596c80c8e7d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8a:71:fd:a5:8e:42:58:7a:15:78:60:6e:ee: 54:42:f9:8b:bd:ae:31:f8:e6:57:67:61:b6:21:3f: 80:6a:9d:92:48:8e:80:52:c5:05:ba:fe:ce:a5:78: 8e:7b:80:8d:b4:d6:4c:1b:44:c2:9f:57:00:0e:a8: f5:ba:8d:eb:5a:dd:5b:1f:65:e6:ad:53:af:c0:c4: 3c:7f:81:c2:d3:15:15:35:2a:e4:0d:7d:de:07:36: a9:5d:24:e3:3a:fd:87:15:6d:d6:c3:76:53:3a:47: cd:4c:2b:d7:b8:f6:9c:9f:d8:08:e5:f3:61:98:e2: 4d:bf:02:95:b9:e3:35:e7:6d:af:94:95:a2:5c:87: 87:90:be:11:24:ed:e5:23:38:f9:38:ef:b2:b4:f8: 91:81:8c:fe:c9:ab:89:80:b0:71:74:7c:53:15:2f: 93:19:f7:83:24:31:d1:81:fc:e1:cb:d7:eb:48:4b: ee:9f:6f:63:21:2e:51:8c:2a:28:04:24:f0:69:c9: 84:49:5a:1d:92:c4:b9:cf:13:14:c5:4b:3d:e9:95: 67:56:74:a5:7f:2a:22:13:31:2f:83:e5:9c:de:42: c4:1c:67:c0:e7:c9:94:88:e0:9e:9a:8a:aa:91:4d: 64:39:07:f6:e6:c6:22:4f:f2:cf:f6:55:0a:01:2e: ab:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:7D:DC:65:DA:1C:D6:86:5A:2D:6C:B0:96:65:96:C8:0C:8E:7D:61 X509v3 Authority Key Identifier: keyid:6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/Xn3cZdoc1oZaLWywlmWWyAyOfWE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.124.12.0/23 185.236.28.0/22 IPv6: 2a03:9000::-2a03:9000:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 4e:68:0f:64:52:99:f5:c3:7e:53:b8:f8:19:12:ca:c2:9b:90: 22:99:c4:52:5f:40:23:37:7c:9f:13:84:34:d2:40:06:4e:c3: f6:63:6e:58:fc:a3:64:4d:61:fb:96:e7:ce:d6:74:70:d1:6d: 51:b8:13:a0:6e:c5:c0:e9:0c:48:bb:1d:13:ce:e2:56:eb:20: 8a:6e:1e:01:a3:97:4e:27:21:5c:73:a3:91:a4:45:e6:8c:df: 80:b9:77:6a:83:aa:b1:3b:7f:db:81:5e:ea:a5:7b:e6:13:a2: 16:77:3e:8f:30:d0:88:0f:47:9e:7e:f4:aa:c5:c5:62:8e:af: a6:0f:a2:9e:35:a7:83:70:05:8c:ec:02:77:29:74:7e:2c:31: a9:0d:39:e2:6a:da:a7:60:56:47:a4:19:b9:21:78:58:cc:74: 60:d4:03:a0:53:a5:4f:b9:3b:f1:02:33:c2:28:2a:72:4a:94: 68:f9:24:b6:50:48:d7:93:0b:74:aa:bc:b6:72:f8:42:85:c3: c8:07:31:31:fc:e0:8b:20:45:39:e5:5f:f4:0b:fb:14:e5:05: 04:54:ef:a3:a6:65:f8:87:f7:6c:94:88:9d:d6:a1:e2:c4:b1: 5f:c8:b1:c7:fb:d8:c9:1c:d7:d5:5a:43:c4:65:c0:87:72:84: a0:72:3b:b2 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt3WVwManW02DLwip3bZUcyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMWJhNmUxNGQ4M2E4YjE0YjA1MDI2ZTcxMGM4NmM0NmI3 M2MzYTYwHhcNMjYwMTAxMDIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTdkZGM2NWRhMWNkNjg2NWEyZDZjYjA5NjY1OTZjODBjOGU3ZDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxopx/aWOQlh6FXhgbu5UQvmLva4x +OZXZ2G2IT+Aap2SSI6AUsUFuv7OpXiOe4CNtNZMG0TCn1cADqj1uo3rWt1bH2Xm rVOvwMQ8f4HC0xUVNSrkDX3eBzapXSTjOv2HFW3Ww3ZTOkfNTCvXuPacn9gI5fNh mOJNvwKVueM1522vlJWiXIeHkL4RJO3lIzj5OO+ytPiRgYz+yauJgLBxdHxTFS+T GfeDJDHRgfzhy9frSEvun29jIS5RjCooBCTwacmESVodksS5zxMUxUs96ZVnVnSl fyoiEzEvg+Wc3kLEHGfA58mUiOCemoqqkU1kOQf25sYiT/LP9lUKAS6rtwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFF593GXaHNaGWi1ssJZllsgMjn1hMB8GA1UdIwQY MBaAFG8bpuFNg6ixSwUCbnEMhsRrc8OmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnh1bTRVMkRxTEZMQlFKdWNReUd4R3R6dzZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jZTgxYjYtYmNlYi00N2JjLWFkZmIt ZGFlOWZiOGJmMGIxLzEvWG4zY1pkb2Mxb1phTFd5d2xtV1d5QXlPZldFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9jZTgxYjYtYmNlYi00N2JjLWFkZmItZGFlOWZiOGJmMGIx LzEvYnh1bTRVMkRxTEZMQlFKdWNReUd4R3R6dzZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQBuXwMAwQC uewcMBYEAgACMBAwDgMEBCoDkAMGACoDkAAEMA0GCSqGSIb3DQEBCwUAA4IBAQBO aA9kUpn1w35TuPgZEsrCm5AimcRSX0AjN3yfE4Q00kAGTsP2Y25Y/KNkTWH7lufO 1nRw0W1RuBOgbsXA6QxIux0TzuJW6yCKbh4Bo5dOJyFcc6ORpEXmjN+AuXdqg6qx O3/bgV7qpXvmE6IWdz6PMNCID0eefvSqxcVijq+mD6KeNaeDcAWM7AJ3KXR+LDGp DTniatqnYFZHpBm5IXhYzHRg1AOgU6VPuTvxAjPCKCpySpRo+SS2UEjXkwt0qry2 cvhChcPIBzEx/OCLIEU55V/0C/sU5QUEVO+jpmX4h/dslIid1qHixLFfyLHH+9jJ HNfVWkPEZcCHcoSgcjuy -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:41 2026 by rpki-client