This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/_X4eAftjp_R6giU6rV2GZ0FQz9k.roa File: _X4eAftjp_R6giU6rV2GZ0FQz9k.roa (raw, json) Hash identifier: VsMljmTZjJFOFhFmrTsEwtE5iJWXUJLVzyxqYH1Mkto= Subject key identifier: FD:7E:1E:01:FB:63:A7:F4:7A:82:25:3A:AD:5D:86:67:41:50:CF:D9 Certificate issuer: /CN=e3ac635fd45f5471c6c2c3fe45ef1bb4338bc279 Certificate serial: 019B7F836600F2FACFE1CCDD4A2187CF5EA3 Authority key identifier: E3:AC:63:5F:D4:5F:54:71:C6:C2:C3:FE:45:EF:1B:B4:33:8B:C2:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/46xjX9RfVHHGwsP-Re8btDOLwnk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/_X4eAftjp_R6giU6rV2GZ0FQz9k.roa Signing time: Fri 02 Jan 2026 16:21:16 +0000 ROA not before: Fri 02 Jan 2026 16:21:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 553 IP address blocks: 141.69.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/46xjX9RfVHHGwsP-Re8btDOLwnk.crl rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/46xjX9RfVHHGwsP-Re8btDOLwnk.mft rsync://rpki.ripe.net/repository/DEFAULT/46xjX9RfVHHGwsP-Re8btDOLwnk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 19:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:66:00:f2:fa:cf:e1:cc:dd:4a:21:87:cf:5e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3ac635fd45f5471c6c2c3fe45ef1bb4338bc279 Validity Not Before: Jan 2 16:21:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd7e1e01fb63a7f47a82253aad5d86674150cfd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3b:18:68:eb:47:7b:b6:8a:4c:73:ad:24:1d: 8e:ed:77:c3:7c:3e:30:80:85:95:46:83:ed:15:3d: 60:d9:46:33:32:25:6c:dc:c3:c6:a8:c6:f3:20:8e: 48:08:bf:a4:19:06:9a:30:5a:56:db:a3:8b:c7:ea: 54:a9:c1:b2:c3:f7:b1:23:14:1f:5d:db:01:95:29: 34:42:28:83:9d:60:39:8a:49:6b:cf:3e:fc:aa:b9: 14:2b:b5:f0:49:ca:03:f1:d8:ad:09:72:2f:fb:8d: 21:7d:85:96:d0:04:47:b8:87:83:95:de:9e:f4:d8: 7a:70:9a:ca:5d:7e:97:1f:81:74:80:ea:3e:4c:79: c7:c6:67:6b:42:94:b7:ea:cb:cb:d0:10:fb:ff:4b: c1:29:bf:69:9d:76:8a:0c:4c:3e:18:f5:66:fb:ae: 97:43:b6:83:4a:96:9a:ce:10:ca:ce:d5:f7:28:5b: a9:7e:18:67:41:b6:a2:49:bd:4a:c3:94:ba:33:20: 34:e4:86:3d:9e:25:c6:78:5c:a5:b2:2d:9c:c7:d2: 4d:98:70:0b:07:c3:74:f4:c0:5e:eb:ba:2b:af:34: 9a:6b:44:ba:fd:95:c6:5d:05:26:e7:4e:ee:12:40: 5b:bb:02:8b:8c:a3:15:fc:d6:86:8f:91:a2:18:a8: 41:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7E:1E:01:FB:63:A7:F4:7A:82:25:3A:AD:5D:86:67:41:50:CF:D9 X509v3 Authority Key Identifier: keyid:E3:AC:63:5F:D4:5F:54:71:C6:C2:C3:FE:45:EF:1B:B4:33:8B:C2:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/46xjX9RfVHHGwsP-Re8btDOLwnk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/_X4eAftjp_R6giU6rV2GZ0FQz9k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/46xjX9RfVHHGwsP-Re8btDOLwnk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.69.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:43:05:fa:a9:aa:d3:86:ef:db:cd:3d:72:45:75:91:ef:3e: 82:d3:af:ed:b9:2c:a5:74:8a:01:d6:99:a4:b2:77:99:81:5d: db:c2:30:a9:2d:09:d9:37:8f:b3:4e:03:f3:e1:ed:5d:88:b9: b5:24:21:6e:1c:36:ec:60:5d:97:3a:2b:ea:28:e7:e0:4f:65: b6:ca:89:c6:f7:3d:9d:9b:8a:49:a3:5f:94:e6:8b:ec:69:65: df:ea:48:58:4c:9e:f1:16:fa:08:dc:c2:26:cc:d3:ed:e6:66: a5:f8:9f:7e:2f:fe:8f:d9:51:ec:6e:62:07:21:27:c1:0c:f7: 2a:ca:6c:89:3c:a2:0f:f9:ef:02:08:f9:a1:61:6e:c2:69:44: 36:37:43:c8:f6:3c:79:21:21:ac:94:20:55:1a:f9:29:0a:1c: d1:5d:51:66:a3:57:0d:b2:64:fb:43:4e:45:d5:c6:ac:87:17: ed:fa:e4:6a:73:ae:a6:d8:a3:29:31:f5:80:77:7b:a4:e9:7e: 2d:38:42:dd:a9:90:4b:c1:d6:01:4a:1c:18:4f:95:23:a3:c5: 16:c4:3f:a7:80:ab:20:58:9a:c7:7c:fe:7e:f2:c7:05:e2:e5: ff:56:92:fd:5e:d0:ce:e1:a3:a2:53:c3:cb:aa:ea:db:b9:5c: 54:1e:18:57 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt/g2YA8vrP4czdSiGHz16jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYWM2MzVmZDQ1ZjU0NzFjNmMyYzNmZTQ1ZWYxYmI0MzM4 YmMyNzkwHhcNMjYwMTAyMTYyMTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDdlMWUwMWZiNjNhN2Y0N2E4MjI1M2FhZDVkODY2NzQxNTBjZmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3TsYaOtHe7aKTHOtJB2O7XfDfD4w gIWVRoPtFT1g2UYzMiVs3MPGqMbzII5ICL+kGQaaMFpW26OLx+pUqcGyw/exIxQf XdsBlSk0QiiDnWA5iklrzz78qrkUK7XwScoD8ditCXIv+40hfYWW0ARHuIeDld6e 9Nh6cJrKXX6XH4F0gOo+THnHxmdrQpS36svL0BD7/0vBKb9pnXaKDEw+GPVm+66X Q7aDSpaazhDKztX3KFupfhhnQbaiSb1Kw5S6MyA05IY9niXGeFylsi2cx9JNmHAL B8N09MBe67orrzSaa0S6/ZXGXQUm507uEkBbuwKLjKMV/NaGj5GiGKhBSwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFP1+HgH7Y6f0eoIlOq1dhmdBUM/ZMB8GA1UdIwQY MBaAFOOsY1/UX1RxxsLD/kXvG7Qzi8J5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDZ4alg5UmZWSEhHd3NQLVJlOGJ0RE9Md25rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8yZjg3MGUtMmJhNS00Yjg4LTkxYTAt MWQyMzQ4ZGJkMDM2LzEvX1g0ZUFmdGpwX1I2Z2lVNnJWMkdaMEZRejlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8yZjg3MGUtMmJhNS00Yjg4LTkxYTAtMWQyMzQ4ZGJkMDM2 LzEvNDZ4alg5UmZWSEhHd3NQLVJlOGJ0RE9Md25rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjUUwDQYJ KoZIhvcNAQELBQADggEBAHNDBfqpqtOG79vNPXJFdZHvPoLTr+25LKV0igHWmaSy d5mBXdvCMKktCdk3j7NOA/Ph7V2IubUkIW4cNuxgXZc6K+oo5+BPZbbKicb3PZ2b ikmjX5Tmi+xpZd/qSFhMnvEW+gjcwibM0+3mZqX4n34v/o/ZUexuYgchJ8EM9yrK bIk8og/57wII+aFhbsJpRDY3Q8j2PHkhIayUIFUa+SkKHNFdUWajVw2yZPtDTkXV xqyHF+365GpzrqbYoykx9YB3e6Tpfi04Qt2pkEvB1gFKHBhPlSOjxRbEP6eAqyBY msd8/n7yxwXi5f9Wkv1e0M7ho6JTw8uq6tu5XFQeGFc= -----END CERTIFICATE-----Generated at Mon Feb 2 06:19:00 2026 by rpki-client