This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XyJnnht8Owkc8UbO-3fY13_gwE0.roa File: XyJnnht8Owkc8UbO-3fY13_gwE0.roa (raw, json) Hash identifier: mnZfZ/1wcAfGa5zoF8XDyxnmP2LBkdT/849JqvP6NTI= Subject key identifier: 5F:22:67:9E:1B:7C:3B:09:1C:F1:46:CE:FB:77:D8:D7:7F:E0:C0:4D Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Certificate serial: 019B7E382532262DBF800C0E514E97496C93 Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XyJnnht8Owkc8UbO-3fY13_gwE0.roa Signing time: Fri 02 Jan 2026 10:19:27 +0000 ROA not before: Fri 02 Jan 2026 10:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50509 IP address blocks: 5.188.236.0/23 maxlen: 23 146.185.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:25:32:26:2d:bf:80:0c:0e:51:4e:97:49:6c:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Validity Not Before: Jan 2 10:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f22679e1b7c3b091cf146cefb77d8d77fe0c04d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:91:95:5a:63:ff:8d:d7:01:4a:a9:84:ed: c8:28:3c:c0:18:5f:c2:34:b9:1f:e6:78:ec:f1:e5: e5:b5:24:d7:94:50:dd:69:33:a9:01:f9:95:cc:3c: fa:ad:34:6f:eb:63:bb:e0:5c:d0:59:ce:c8:66:66: c8:9f:53:13:6c:8f:cd:f2:8b:56:28:01:30:ff:f5: 14:1d:e0:44:2f:53:c7:f8:fc:09:dc:50:af:f0:f3: da:54:52:02:9e:f7:0b:cb:5a:a8:e5:5e:0d:47:5c: 85:df:7b:85:55:93:f5:68:dc:8c:37:c1:c9:45:68: 7d:6b:2a:4a:85:03:d3:1c:bf:3e:12:b8:96:80:29: e4:83:5b:af:57:84:21:74:b7:63:62:54:4e:46:ec: 7c:1b:3f:91:11:91:c8:25:56:b7:df:fc:b1:38:c0: 80:0b:48:27:1a:e6:ae:9a:51:25:aa:4a:fc:c8:a6: 81:c7:c7:da:14:9d:3a:d4:e9:a6:42:10:27:26:30: 6c:c0:1c:77:e7:5a:54:95:ff:c4:e3:e5:67:12:4f: 84:bb:c4:35:cb:a0:28:7f:ba:51:b8:8e:95:b5:bd: 47:ac:11:e0:3b:1a:d9:82:2f:68:cc:99:f9:69:50: 5e:3a:4c:4e:59:a6:90:cc:a0:f4:a2:6b:d4:0d:84: bb:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:22:67:9E:1B:7C:3B:09:1C:F1:46:CE:FB:77:D8:D7:7F:E0:C0:4D X509v3 Authority Key Identifier: keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XyJnnht8Owkc8UbO-3fY13_gwE0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.188.236.0/23 146.185.222.0/24 Signature Algorithm: sha256WithRSAEncryption c5:02:95:9a:42:2e:d0:8e:9c:62:19:a3:ac:f9:a3:95:51:19: 99:14:78:f4:22:fd:a5:c6:16:fb:1f:be:0c:8d:7a:c3:55:b0: cb:63:a1:c2:e1:4d:f4:62:8c:09:78:61:c8:9e:1d:50:cd:98: f3:50:43:23:fb:a2:9d:87:b6:6c:59:09:6e:a1:d3:fb:84:49: ab:b9:fb:49:92:56:57:e4:5d:b2:c2:e5:bc:64:44:e7:b6:17: 31:72:5e:dc:81:98:c7:84:47:5b:0b:02:82:27:a3:8d:41:dc: fa:73:5f:0f:89:56:a2:56:26:80:36:6f:dd:49:e7:1f:c4:14: 63:30:43:5f:81:43:b9:b2:bd:30:02:49:15:4f:5c:99:17:e3: 07:e1:55:b1:76:bb:32:70:ba:99:94:3d:01:c5:d5:ec:60:26: 3b:c2:df:bd:e3:b3:85:30:f1:d0:11:30:72:2f:53:66:c1:2e: 14:0c:da:ad:3e:0d:66:b0:38:eb:5a:7c:33:3a:af:da:e9:f7: d9:2e:7b:72:c3:ed:b9:17:43:5f:7c:d4:2a:3b:4f:f4:bc:26: 20:59:13:d6:04:b9:77:6b:bd:f4:c4:b3:5a:e0:12:c6:a5:00: 30:e8:27:2b:b6:2d:ad:47:c8:86:64:8a:bc:d6:9a:4f:5f:08: be:16:6b:55 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OCUyJi2/gAwOUU6XSWyTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl Y2EwNzEwHhcNMjYwMTAyMTAxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjIyNjc5ZTFiN2MzYjA5MWNmMTQ2Y2VmYjc3ZDhkNzdmZTBjMDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwq2RlVpj/43XAUqphO3IKDzAGF/C NLkf5njs8eXltSTXlFDdaTOpAfmVzDz6rTRv62O74FzQWc7IZmbIn1MTbI/N8otW KAEw//UUHeBEL1PH+PwJ3FCv8PPaVFICnvcLy1qo5V4NR1yF33uFVZP1aNyMN8HJ RWh9aypKhQPTHL8+EriWgCnkg1uvV4QhdLdjYlRORux8Gz+REZHIJVa33/yxOMCA C0gnGuaumlElqkr8yKaBx8faFJ061OmmQhAnJjBswBx351pUlf/E4+VnEk+Eu8Q1 y6Aof7pRuI6Vtb1HrBHgOxrZgi9ozJn5aVBeOkxOWaaQzKD0omvUDYS71wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFF8iZ54bfDsJHPFGzvt32Nd/4MBNMB8GA1UdIwQY MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt ODlkMDkyNDBjNDNiLzEvWHlKbm5odDhPd2tjOFViTy0zZlkxM19nd0UwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBBbzsAwQA krneMA0GCSqGSIb3DQEBCwUAA4IBAQDFApWaQi7QjpxiGaOs+aOVURmZFHj0Iv2l xhb7H74MjXrDVbDLY6HC4U30YowJeGHInh1QzZjzUEMj+6Kdh7ZsWQluodP7hEmr uftJklZX5F2ywuW8ZETnthcxcl7cgZjHhEdbCwKCJ6ONQdz6c18PiVaiViaANm/d SecfxBRjMENfgUO5sr0wAkkVT1yZF+MH4VWxdrsycLqZlD0BxdXsYCY7wt+947OF MPHQETByL1NmwS4UDNqtPg1msDjrWnwzOq/a6ffZLntyw+25F0NffNQqO0/0vCYg WRPWBLl3a730xLNa4BLGpQAw6Ccrti2tR8iGZIq81ppPXwi+FmtV -----END CERTIFICATE-----Generated at Tue Jan 20 09:23:10 2026 by rpki-client