This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/108967-686a-4322-85b3-516eac469053/1/xPQBc7eZ2R1OmzVk_QznLDcH24Y.roa File: xPQBc7eZ2R1OmzVk_QznLDcH24Y.roa (raw, json) Hash identifier: EfDW7rBbqgixbRFm/O3kOxDuO6fhmyskTYvpF7yhzcM= Subject key identifier: C4:F4:01:73:B7:99:D9:1D:4E:9B:35:64:FD:0C:E7:2C:37:07:DB:86 Certificate issuer: /CN=94f519c4ecf15f5fc1e06eaa6e03f9cb03956caa Certificate serial: 019B7EA564EB08015E5ACC77CDAEED3CF726 Authority key identifier: 94:F5:19:C4:EC:F1:5F:5F:C1:E0:6E:AA:6E:03:F9:CB:03:95:6C:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPUZxOzxX1_B4G6qbgP5ywOVbKo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/108967-686a-4322-85b3-516eac469053/1/xPQBc7eZ2R1OmzVk_QznLDcH24Y.roa Signing time: Fri 02 Jan 2026 12:18:47 +0000 ROA not before: Fri 02 Jan 2026 12:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215639 IP address blocks: 45.10.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/108967-686a-4322-85b3-516eac469053/1/lPUZxOzxX1_B4G6qbgP5ywOVbKo.crl rsync://rpki.ripe.net/repository/DEFAULT/11/108967-686a-4322-85b3-516eac469053/1/lPUZxOzxX1_B4G6qbgP5ywOVbKo.mft rsync://rpki.ripe.net/repository/DEFAULT/lPUZxOzxX1_B4G6qbgP5ywOVbKo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:64:eb:08:01:5e:5a:cc:77:cd:ae:ed:3c:f7:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94f519c4ecf15f5fc1e06eaa6e03f9cb03956caa Validity Not Before: Jan 2 12:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4f40173b799d91d4e9b3564fd0ce72c3707db86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a2:c0:72:aa:e5:78:f8:ca:e2:9b:94:6b:2c: 78:5e:2f:65:ed:f4:0c:ca:94:80:f4:66:2c:5e:b1: 76:43:df:ee:39:cf:d8:d8:a1:da:ec:e3:33:ac:2c: 96:b7:85:46:32:d3:d9:be:f5:14:28:1f:57:c6:0d: 77:e0:34:ae:de:8b:5e:66:0f:0f:c8:08:2b:bd:07: 5b:2f:1d:ca:1e:8e:92:ef:77:ea:0e:b7:2a:4d:d3: a4:e5:bc:19:98:9e:f2:c0:9c:ec:35:7f:af:2e:55: 36:e4:e7:8c:04:29:7a:2b:a3:d5:da:94:15:91:5b: cb:80:6a:2d:84:46:10:c5:61:1b:e8:21:23:b0:48: 8c:c2:45:c7:c5:23:33:3c:4e:43:ef:77:ad:dc:f0: 47:6f:a0:65:e6:b4:3d:45:e0:a6:74:68:76:0a:8c: 19:9b:86:b5:03:19:a3:55:e1:40:4a:22:f6:31:69: 0c:32:a6:81:69:bf:98:ac:e0:b5:25:6c:83:77:80: 40:9b:57:f4:c2:87:b1:53:4f:bd:eb:26:d1:e7:75: 62:37:02:8e:e3:33:55:c1:3a:44:5d:92:88:5a:14: 8e:03:c4:0a:9b:d0:a0:f1:19:2e:b2:91:b2:50:f7: ea:a3:95:f8:a5:79:c6:a3:a5:e6:9a:99:f7:2a:3d: c3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F4:01:73:B7:99:D9:1D:4E:9B:35:64:FD:0C:E7:2C:37:07:DB:86 X509v3 Authority Key Identifier: keyid:94:F5:19:C4:EC:F1:5F:5F:C1:E0:6E:AA:6E:03:F9:CB:03:95:6C:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPUZxOzxX1_B4G6qbgP5ywOVbKo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/108967-686a-4322-85b3-516eac469053/1/xPQBc7eZ2R1OmzVk_QznLDcH24Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/108967-686a-4322-85b3-516eac469053/1/lPUZxOzxX1_B4G6qbgP5ywOVbKo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.36.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:4a:b7:d3:45:da:c5:09:0c:8b:2d:02:23:4e:93:a1:6f:59: 73:82:fe:7f:f4:06:58:0e:12:ab:55:d1:4a:89:91:b4:26:5b: a2:5f:ce:97:fc:bc:ef:fd:66:ad:a3:2d:ed:23:b4:18:ed:7d: 15:29:fd:0b:82:f6:b2:5b:26:02:a4:bb:0c:af:55:68:46:79: cd:6f:bb:93:9d:35:79:39:a6:54:44:41:37:f2:24:10:11:a3: 7f:0e:eb:fb:79:8e:2f:9a:bc:c9:d7:1b:a8:a7:33:cd:07:13: 0c:23:9c:f9:8c:4b:3d:f5:64:ae:6b:c1:65:ef:23:0a:55:4e: 32:de:1b:f9:93:57:6f:5a:6d:eb:62:19:3b:eb:43:1d:f2:1c: 0c:8c:e1:5b:05:26:40:ac:24:22:d5:f6:eb:9d:18:b0:07:8c: 84:1c:8d:24:2d:e5:ec:26:a4:f8:19:e5:c6:2d:42:59:b6:1e: d3:bb:37:6a:e8:fe:ea:42:dc:38:82:bf:21:b5:8c:5f:b6:1b: 4e:e1:b8:8a:6f:4b:8d:26:eb:7f:42:db:d1:63:ae:ba:ae:ec: 04:c6:e7:be:92:82:ae:11:d3:14:d7:6e:fc:4b:0d:18:60:5a: 78:d2:d3:ce:9f:41:c4:77:56:14:7e:32:e1:8d:52:33:d3:40: 2e:59:3b:24 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pWTrCAFeWsx3za7tPPcmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZjUxOWM0ZWNmMTVmNWZjMWUwNmVhYTZlMDNmOWNiMDM5 NTZjYWEwHhcNMjYwMTAyMTIxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGY0MDE3M2I3OTlkOTFkNGU5YjM1NjRmZDBjZTcyYzM3MDdkYjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaLAcqrlePjK4puUayx4Xi9l7fQM ypSA9GYsXrF2Q9/uOc/Y2KHa7OMzrCyWt4VGMtPZvvUUKB9Xxg134DSu3oteZg8P yAgrvQdbLx3KHo6S73fqDrcqTdOk5bwZmJ7ywJzsNX+vLlU25OeMBCl6K6PV2pQV kVvLgGothEYQxWEb6CEjsEiMwkXHxSMzPE5D73et3PBHb6Bl5rQ9ReCmdGh2CowZ m4a1AxmjVeFASiL2MWkMMqaBab+YrOC1JWyDd4BAm1f0woexU0+96ybR53ViNwKO 4zNVwTpEXZKIWhSOA8QKm9Cg8RkuspGyUPfqo5X4pXnGo6Xmmpn3Kj3DGQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMT0AXO3mdkdTps1ZP0M5yw3B9uGMB8GA1UdIwQY MBaAFJT1GcTs8V9fweBuqm4D+csDlWyqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFBVWnhPenhYMV9CNEc2cWJnUDV5d09WYktvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8xMDg5NjctNjg2YS00MzIyLTg1YjMt NTE2ZWFjNDY5MDUzLzEveFBRQmM3ZVoyUjFPbXpWa19Rem5MRGNIMjRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8xMDg5NjctNjg2YS00MzIyLTg1YjMtNTE2ZWFjNDY5MDUz LzEvbFBVWnhPenhYMV9CNEc2cWJnUDV5d09WYktvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQokMA0G CSqGSIb3DQEBCwUAA4IBAQAPSrfTRdrFCQyLLQIjTpOhb1lzgv5/9AZYDhKrVdFK iZG0JluiX86X/Lzv/Watoy3tI7QY7X0VKf0LgvayWyYCpLsMr1VoRnnNb7uTnTV5 OaZUREE38iQQEaN/Duv7eY4vmrzJ1xuopzPNBxMMI5z5jEs99WSua8Fl7yMKVU4y 3hv5k1dvWm3rYhk760Md8hwMjOFbBSZArCQi1fbrnRiwB4yEHI0kLeXsJqT4GeXG LUJZth7Tuzdq6P7qQtw4gr8htYxfthtO4biKb0uNJut/QtvRY666ruwExue+koKu EdMU1278Sw0YYFp40tPOn0HEd1YUfjLhjVIz00AuWTsk -----END CERTIFICATE-----Generated at Mon Feb 9 18:43:38 2026 by rpki-client