This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/rxh464Q5WmKf8fpfEDFQtyxC8Ak.roa File: rxh464Q5WmKf8fpfEDFQtyxC8Ak.roa (raw, json) Hash identifier: wSIDCxUi6l3CwLgE6LzQTfu3GG3jihp0aUhhGCo4BtM= Subject key identifier: AF:18:78:EB:84:39:5A:62:9F:F1:FA:5F:10:31:50:B7:2C:42:F0:09 Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Certificate serial: 019B797E71AF6B0739A634FF7D1D3DCA45BB Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/rxh464Q5WmKf8fpfEDFQtyxC8Ak.roa Signing time: Thu 01 Jan 2026 12:18:08 +0000 ROA not before: Thu 01 Jan 2026 12:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 150770 IP address blocks: 212.23.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.mft rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:71:af:6b:07:39:a6:34:ff:7d:1d:3d:ca:45:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Validity Not Before: Jan 1 12:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af1878eb84395a629ff1fa5f103150b72c42f009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9e:54:a8:a3:de:cc:90:f6:43:c5:d6:71:d2: d1:59:64:c9:08:fb:1d:84:3d:8b:81:cc:ed:21:4f: a7:8e:28:40:47:4d:13:25:23:6a:4d:58:86:fa:fa: 38:90:16:9d:2a:15:cb:3a:72:6a:58:33:cf:fd:ca: b9:5c:9c:e1:c2:2a:12:44:fc:59:31:8e:8d:d8:b6: 78:c8:ec:9a:3b:9f:5f:3c:af:ca:e3:1e:0c:56:71: ca:cc:fe:ca:e3:09:0b:9a:0b:fa:53:bd:25:55:42: 3a:84:33:3f:6d:c7:72:4c:f8:b9:f1:54:11:c6:f5: 2d:df:f4:32:1b:d9:54:4f:45:3b:e4:9a:7a:1f:9d: ee:e4:96:66:ee:1a:f9:e7:8b:c9:57:05:89:7c:48: ce:c0:5c:5c:7e:65:33:05:d9:11:b9:ea:af:e5:df: fc:53:ba:a1:11:bc:47:b8:9c:c8:1d:69:84:60:b1: af:8d:84:52:ce:a6:ef:53:56:d0:46:7f:5b:8a:ec: 01:91:ea:5b:d5:a0:e3:e5:ba:a9:c9:5b:d0:47:75: 97:ba:f1:fa:1c:7c:dc:08:09:9f:07:73:73:f2:02: cb:f8:9f:38:d0:71:5b:88:24:2c:19:94:69:4e:a4: 99:31:3c:e3:ee:27:a4:63:e8:8e:46:02:27:55:36: f4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:18:78:EB:84:39:5A:62:9F:F1:FA:5F:10:31:50:B7:2C:42:F0:09 X509v3 Authority Key Identifier: keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/rxh464Q5WmKf8fpfEDFQtyxC8Ak.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.23.206.0/24 Signature Algorithm: sha256WithRSAEncryption 02:15:00:89:5d:77:9c:b2:75:27:61:a1:4a:bc:b4:4d:32:9b: f6:36:f6:9b:23:9c:77:d9:5e:30:8d:ad:35:c1:fe:57:e7:66: 89:ad:46:76:13:bf:a9:ea:eb:ca:92:01:0d:c0:65:6a:dd:66: 9e:00:2d:d4:3e:1f:fc:86:0f:93:a0:03:00:e9:92:f9:2c:a6: 98:e5:31:2d:df:e3:65:90:a8:bb:9a:d5:91:ac:be:6d:bd:4e: 72:7b:ab:0e:04:4f:fb:0c:d2:8f:45:1b:f2:27:a9:b3:5a:f6: 8e:3c:21:d1:9f:70:bb:35:2d:28:47:76:df:23:bd:a6:90:b8: 15:a5:9b:8f:b2:cd:99:a3:5f:87:95:12:fb:60:b5:74:f6:5e: 83:da:29:c6:16:a7:ca:5d:70:f5:2f:21:3b:d6:83:9c:25:3e: 9a:52:31:14:7a:fa:c3:29:93:16:66:e1:d8:63:6e:95:33:f3: 6f:37:f4:13:60:8e:02:c6:9d:f2:fa:ae:8f:ab:ed:3b:22:73: 8f:48:66:2a:f5:ae:90:19:4b:0a:cf:43:3c:31:9d:f1:96:20: 4e:66:06:38:bc:a8:9b:f3:19:c7:3a:51:57:a8:87:5b:7b:cd: 67:55:66:7d:d8:6e:42:e4:82:41:30:a6:2b:57:d9:29:11:d4: ac:75:b9:30 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fnGvawc5pjT/fR09ykW7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj NWFjOGQwHhcNMjYwMTAxMTIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjE4NzhlYjg0Mzk1YTYyOWZmMWZhNWYxMDMxNTBiNzJjNDJmMDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArp5UqKPezJD2Q8XWcdLRWWTJCPsd hD2LgcztIU+njihAR00TJSNqTViG+vo4kBadKhXLOnJqWDPP/cq5XJzhwioSRPxZ MY6N2LZ4yOyaO59fPK/K4x4MVnHKzP7K4wkLmgv6U70lVUI6hDM/bcdyTPi58VQR xvUt3/QyG9lUT0U75Jp6H53u5JZm7hr554vJVwWJfEjOwFxcfmUzBdkRueqv5d/8 U7qhEbxHuJzIHWmEYLGvjYRSzqbvU1bQRn9biuwBkepb1aDj5bqpyVvQR3WXuvH6 HHzcCAmfB3Nz8gLL+J840HFbiCQsGZRpTqSZMTzj7iekY+iORgInVTb01wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK8YeOuEOVpin/H6XxAxULcsQvAJMB8GA1UdIwQY MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt MzE4YTI2ZDRhOGM5LzEvcnhoNDY0UTVXbUtmOGZwZkVERlF0eXhDOEFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5 LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfOMA0G CSqGSIb3DQEBCwUAA4IBAQACFQCJXXecsnUnYaFKvLRNMpv2NvabI5x32V4wja01 wf5X52aJrUZ2E7+p6uvKkgENwGVq3WaeAC3UPh/8hg+ToAMA6ZL5LKaY5TEt3+Nl kKi7mtWRrL5tvU5ye6sOBE/7DNKPRRvyJ6mzWvaOPCHRn3C7NS0oR3bfI72mkLgV pZuPss2Zo1+HlRL7YLV09l6D2inGFqfKXXD1LyE71oOcJT6aUjEUevrDKZMWZuHY Y26VM/NvN/QTYI4Cxp3y+q6Pq+07InOPSGYq9a6QGUsKz0M8MZ3xliBOZgY4vKib 8xnHOlFXqIdbe81nVWZ92G5C5IJBMKYrV9kpEdSsdbkw -----END CERTIFICATE-----Generated at Mon Jan 19 13:53:25 2026 by rpki-client