This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/xMiDA7uuRCcWzBnQjMU1cUXcoLc.roa File: xMiDA7uuRCcWzBnQjMU1cUXcoLc.roa (raw, json) Hash identifier: 5dmso3IrpYxSnMbNzob1ZQb189IzqVbbdnmbtENfrFg= Subject key identifier: C4:C8:83:03:BB:AE:44:27:16:CC:19:D0:8C:C5:35:71:45:DC:A0:B7 Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3 Certificate serial: 019B7CED3116ECB79A9442C4AF2A6CCEAC41 Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/xMiDA7uuRCcWzBnQjMU1cUXcoLc.roa Signing time: Fri 02 Jan 2026 04:17:57 +0000 ROA not before: Fri 02 Jan 2026 04:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57288 IP address blocks: 176.97.8.0/21 maxlen: 21 2001:67c:1138::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:31:16:ec:b7:9a:94:42:c4:af:2a:6c:ce:ac:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3 Validity Not Before: Jan 2 04:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4c88303bbae442716cc19d08cc5357145dca0b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:a9:bf:8a:1a:c8:10:fd:2f:34:db:6a:fa: 76:0f:c5:d6:b0:a3:71:0f:f8:50:77:79:a6:e4:9c: d9:0e:d0:ad:1e:17:f7:c1:6c:5d:fb:87:31:d9:2e: 12:b8:fc:15:94:ee:ce:fc:44:14:2f:bb:ef:b1:12: 05:a5:38:19:e6:2c:ed:10:6c:b0:5c:83:8c:44:57: 17:e8:43:67:b8:43:91:77:a4:f9:36:00:e1:26:06: 2e:cb:bf:d0:0e:c0:f8:da:f6:93:a6:b5:e4:a0:c6: cc:d0:96:9d:9e:91:bf:30:ac:8c:dc:7a:d0:8b:ef: 12:ff:2c:41:74:dd:39:02:b4:ce:64:46:d4:c2:79: 22:94:a2:84:8f:0c:7d:5e:36:b0:8a:3f:41:e1:5a: d8:a7:2a:33:85:af:6b:d3:2b:7c:56:6b:8c:5a:db: 25:a3:7f:e4:6a:54:61:5d:92:79:a9:3b:ad:30:fe: 8d:8b:72:54:9b:c0:48:e1:02:94:8b:18:c0:d4:14: 44:84:e9:0a:f2:23:96:f9:a3:69:5a:36:db:79:d0: 1e:3b:88:ea:eb:e3:f6:75:5d:ad:73:a5:f5:aa:a2: a4:50:a4:d1:bc:01:40:fd:b7:b8:47:b5:b4:ca:ae: 43:2c:6f:25:f9:92:22:bc:c3:82:66:e4:7c:31:55: ed:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C8:83:03:BB:AE:44:27:16:CC:19:D0:8C:C5:35:71:45:DC:A0:B7 X509v3 Authority Key Identifier: keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/xMiDA7uuRCcWzBnQjMU1cUXcoLc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.97.8.0/21 IPv6: 2001:67c:1138::/48 Signature Algorithm: sha256WithRSAEncryption 56:5f:4f:95:f6:e6:51:f5:d2:6e:2e:14:89:38:8f:2c:a6:53: 6d:26:9d:e7:df:a7:62:7e:5e:b1:f0:cd:46:30:a6:52:3e:c1: ea:38:18:80:76:b6:88:26:de:7d:eb:46:30:d5:12:18:d1:db: 95:db:7e:6c:6c:6e:c4:3d:ad:2a:51:91:f3:de:ea:ad:39:57: 7a:53:c6:05:ac:cf:41:20:0c:58:ac:ee:aa:df:e7:69:de:2e: 81:30:95:38:66:37:e6:92:90:b0:fb:40:78:9b:f3:3d:bb:13: 80:52:6e:f6:20:b7:78:e9:11:17:74:2f:70:82:fe:b8:40:3e: 22:f6:63:a8:8f:71:d1:b3:9a:5f:ec:0d:07:93:7f:5c:9b:95: a3:9b:cc:55:ea:75:6d:3a:53:9c:54:e7:f8:21:39:0d:75:d7: 96:e7:1c:74:ff:e5:9c:0d:9c:61:2a:30:f2:4c:e0:2e:fd:0e: 62:a3:5c:a4:7d:41:ca:d7:9a:36:6d:3f:e4:13:98:b0:3c:84: 9d:6d:21:39:00:73:b6:04:05:57:7a:a5:a6:73:5f:7e:a7:4e: 60:b8:89:79:91:cd:26:5c:23:7c:52:d8:dd:17:ae:35:41:e4: 26:f0:16:14:ff:0b:97:9d:24:4c:6f:d9:85:e2:06:ad:87:d3: 06:ca:14:5d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87TEW7LealELErypszqxBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YmYxYzVhMjFjMzgyNWI4Yjg2NTE2YTFhNTk3MTIxYjU0 YjNjYzMwHhcNMjYwMTAyMDQxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGM4ODMwM2JiYWU0NDI3MTZjYzE5ZDA4Y2M1MzU3MTQ1ZGNhMGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMupv4oayBD9LzTbavp2D8XWsKNx D/hQd3mm5JzZDtCtHhf3wWxd+4cx2S4SuPwVlO7O/EQUL7vvsRIFpTgZ5iztEGyw XIOMRFcX6ENnuEORd6T5NgDhJgYuy7/QDsD42vaTprXkoMbM0JadnpG/MKyM3HrQ i+8S/yxBdN05ArTOZEbUwnkilKKEjwx9Xjawij9B4VrYpyozha9r0yt8VmuMWtsl o3/kalRhXZJ5qTutMP6Ni3JUm8BI4QKUixjA1BREhOkK8iOW+aNpWjbbedAeO4jq 6+P2dV2tc6X1qqKkUKTRvAFA/be4R7W0yq5DLG8l+ZIivMOCZuR8MVXtjwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMTIgwO7rkQnFswZ0IzFNXFF3KC3MB8GA1UdIwQY MBaAFGi/HFohw4Jbi4ZRahpZcSG1SzzDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2Et NTVlYjViYjk5ZTQ1LzEveE1pREE3dXVSQ2NXekJuUWpNVTFjVVhjb0xjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2EtNTVlYjViYjk5ZTQ1 LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDsGEIMA8E AgACMAkDBwAgAQZ8ETgwDQYJKoZIhvcNAQELBQADggEBAFZfT5X25lH10m4uFIk4 jyymU20mneffp2J+XrHwzUYwplI+weo4GIB2togm3n3rRjDVEhjR25XbfmxsbsQ9 rSpRkfPe6q05V3pTxgWsz0EgDFis7qrf52neLoEwlThmN+aSkLD7QHib8z27E4BS bvYgt3jpERd0L3CC/rhAPiL2Y6iPcdGzml/sDQeTf1yblaObzFXqdW06U5xU5/gh OQ1115bnHHT/5ZwNnGEqMPJM4C79DmKjXKR9QcrXmjZtP+QTmLA8hJ1tITkAc7YE BVd6paZzX36nTmC4iXmRzSZcI3xS2N0XrjVB5CbwFhT/C5edJExv2YXiBq2H0wbK FF0= -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:05 2026 by rpki-client