This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/x5xm4vdFbBHznlJcV5ZiHWVVd_M.roa File: x5xm4vdFbBHznlJcV5ZiHWVVd_M.roa (raw, json) Hash identifier: SnPKDlLfVQyV1q/jxDCUh9flkRaLQ6KKhfXTPJRDfDg= Subject key identifier: C7:9C:66:E2:F7:45:6C:11:F3:9E:52:5C:57:96:62:1D:65:55:77:F3 Certificate issuer: /CN=b9145315b44cb65d2a791a0ae5823664d0c4445e Certificate serial: 019B7E378CC7340A4DE559BE77D3593A6CE9 Authority key identifier: B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/x5xm4vdFbBHznlJcV5ZiHWVVd_M.roa Signing time: Fri 02 Jan 2026 10:18:48 +0000 ROA not before: Fri 02 Jan 2026 10:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61160 IP address blocks: 193.43.102.0/23 maxlen: 23 2a04:640::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:8c:c7:34:0a:4d:e5:59:be:77:d3:59:3a:6c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9145315b44cb65d2a791a0ae5823664d0c4445e Validity Not Before: Jan 2 10:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c79c66e2f7456c11f39e525c5796621d655577f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6c:5b:16:ef:83:f7:28:98:95:68:da:03:a1: 4c:d2:b8:8d:99:3f:02:5c:0c:13:7c:69:16:34:b4: de:6b:95:b4:ff:06:4d:30:ff:56:a3:2f:8d:a0:dc: b0:86:1e:ec:a6:e7:e6:b1:a1:6f:11:84:a9:4b:d4: a5:aa:57:d9:04:be:2d:15:00:de:a9:1f:e3:9f:16: de:ea:1b:4b:53:c6:61:c1:f3:50:0e:bf:87:bc:f6: 9a:36:c8:69:30:11:e3:8c:6c:91:86:4b:47:d3:70: 58:84:48:73:4b:fc:0e:84:bb:d7:c8:f0:c3:46:5d: be:5c:76:b6:88:2e:45:a2:8d:f9:57:3a:e1:7b:e2: ac:e2:6d:43:b3:73:4a:cf:61:77:5b:21:39:03:67: 4e:f1:ed:c9:8a:33:2b:f5:39:d2:c9:c7:78:92:9d: 6c:73:f9:c5:0d:5a:d9:96:18:7e:eb:57:fc:48:35: 6f:f8:81:93:fe:bc:e4:e5:ac:e3:80:9b:98:81:7b: 10:21:99:d4:83:1f:af:63:15:db:7e:4d:99:68:4c: 95:09:22:0f:c0:be:56:9b:ad:c9:74:9c:c2:20:8a: 26:40:c8:b6:d7:15:9f:48:79:9c:19:dc:0d:43:b7: 8f:a9:01:d5:3d:19:8e:0d:8a:2b:e5:fb:2d:1a:02: ae:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9C:66:E2:F7:45:6C:11:F3:9E:52:5C:57:96:62:1D:65:55:77:F3 X509v3 Authority Key Identifier: keyid:B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/x5xm4vdFbBHznlJcV5ZiHWVVd_M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.43.102.0/23 IPv6: 2a04:640::/29 Signature Algorithm: sha256WithRSAEncryption 36:94:75:4b:df:e6:e9:0f:98:8f:fa:63:a5:7b:9a:d3:bc:24: 10:c4:61:1d:6f:5e:25:6e:9d:b8:bb:3e:94:50:9d:ed:3f:9b: d3:9e:45:da:12:3a:b3:2d:30:45:c6:65:7d:10:1c:83:4f:8b: d0:87:d0:79:65:97:2d:f5:54:5d:2d:46:17:77:e5:98:f2:da: 3d:76:8a:a9:f0:3d:00:d7:9f:c5:4e:1c:a5:b3:53:ed:3c:ed: 13:83:eb:e8:13:5d:36:7b:21:78:c6:22:c8:cc:3f:d0:fe:5e: 74:5b:c0:5a:36:ae:22:4c:2c:95:c8:86:a6:43:8a:81:05:d2: 56:cd:89:63:de:09:df:e2:25:9d:4b:4f:12:72:cc:b3:62:97: 54:f6:15:46:5b:ff:a7:c7:33:57:95:7b:da:a7:68:45:78:5f: ed:65:3a:aa:33:45:ab:cc:be:7a:10:c4:c8:49:54:50:59:4b: 7b:76:81:7e:05:44:13:9e:60:a1:51:52:28:fe:75:f2:6d:a3: 4f:7d:91:56:15:4e:24:50:25:c2:cd:d1:aa:cd:b2:5f:41:95: 16:8b:72:84:b5:58:45:d3:89:cf:bb:fa:65:3e:fc:3e:e5:8b: b9:e1:b1:b8:a5:b2:b1:ca:07:9b:e9:10:6d:41:89:28:b4:fe: 8f:84:9e:9b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+N4zHNApN5Vm+d9NZOmzpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5MTQ1MzE1YjQ0Y2I2NWQyYTc5MWEwYWU1ODIzNjY0ZDBj NDQ0NWUwHhcNMjYwMTAyMTAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzljNjZlMmY3NDU2YzExZjM5ZTUyNWM1Nzk2NjIxZDY1NTU3N2YzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4mxbFu+D9yiYlWjaA6FM0riNmT8C XAwTfGkWNLTea5W0/wZNMP9Woy+NoNywhh7spufmsaFvEYSpS9SlqlfZBL4tFQDe qR/jnxbe6htLU8ZhwfNQDr+HvPaaNshpMBHjjGyRhktH03BYhEhzS/wOhLvXyPDD Rl2+XHa2iC5Foo35Vzrhe+Ks4m1Ds3NKz2F3WyE5A2dO8e3JijMr9TnSycd4kp1s c/nFDVrZlhh+61f8SDVv+IGT/rzk5azjgJuYgXsQIZnUgx+vYxXbfk2ZaEyVCSIP wL5Wm63JdJzCIIomQMi21xWfSHmcGdwNQ7ePqQHVPRmODYor5fstGgKu8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMecZuL3RWwR855SXFeWYh1lVXfzMB8GA1UdIwQY MBaAFLkUUxW0TLZdKnkaCuWCNmTQxEReMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVJSVEZiUk10bDBxZVJvSzVZSTJaTkRFUkY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS80Zjg4N2UtM2Y2Yy00OGEzLWJiMDMt ZGZiOTQ2ZDE3ZDBjLzEveDV4bTR2ZEZiQkh6bmxKY1Y1WmlIV1ZWZF9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS80Zjg4N2UtM2Y2Yy00OGEzLWJiMDMtZGZiOTQ2ZDE3ZDBj LzEvdVJSVEZiUk10bDBxZVJvSzVZSTJaTkRFUkY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwStmMA0E AgACMAcDBQMqBAZAMA0GCSqGSIb3DQEBCwUAA4IBAQA2lHVL3+bpD5iP+mOle5rT vCQQxGEdb14lbp24uz6UUJ3tP5vTnkXaEjqzLTBFxmV9EByDT4vQh9B5ZZct9VRd LUYXd+WY8to9doqp8D0A15/FThyls1PtPO0Tg+voE102eyF4xiLIzD/Q/l50W8Ba Nq4iTCyVyIamQ4qBBdJWzYlj3gnf4iWdS08ScsyzYpdU9hVGW/+nxzNXlXvap2hF eF/tZTqqM0WrzL56EMTISVRQWUt7doF+BUQTnmChUVIo/nXybaNPfZFWFU4kUCXC zdGqzbJfQZUWi3KEtVhF04nPu/plPvw+5Yu54bG4pbKxygeb6RBtQYkotP6PhJ6b -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:09 2026 by rpki-client