This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/XdCzrXLhnjwJ8yBYNm69QxUeO5A.roa File: XdCzrXLhnjwJ8yBYNm69QxUeO5A.roa (raw, json) Hash identifier: Q7iCQLw3LeLyUg+qshhdU21++GYyz/g1gumZUpCqGtY= Subject key identifier: 5D:D0:B3:AD:72:E1:9E:3C:09:F3:20:58:36:6E:BD:43:15:1E:3B:90 Certificate issuer: /CN=1535d24e17367e405b780f711049e5f78d101f16 Certificate serial: 019B7FF299F0B5F7EA03D72FEFA4078A874A Authority key identifier: 15:35:D2:4E:17:36:7E:40:5B:78:0F:71:10:49:E5:F7:8D:10:1F:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTXSThc2fkBbeA9xEEnl940QHxY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/XdCzrXLhnjwJ8yBYNm69QxUeO5A.roa Signing time: Fri 02 Jan 2026 18:22:44 +0000 ROA not before: Fri 02 Jan 2026 18:22:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62176 IP address blocks: 185.38.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/FTXSThc2fkBbeA9xEEnl940QHxY.crl rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/FTXSThc2fkBbeA9xEEnl940QHxY.mft rsync://rpki.ripe.net/repository/DEFAULT/FTXSThc2fkBbeA9xEEnl940QHxY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:99:f0:b5:f7:ea:03:d7:2f:ef:a4:07:8a:87:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1535d24e17367e405b780f711049e5f78d101f16 Validity Not Before: Jan 2 18:22:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5dd0b3ad72e19e3c09f32058366ebd43151e3b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:da:a4:78:74:85:d5:7d:53:29:27:57:7d:21: 7c:e7:c7:b5:8d:ef:e5:7e:1e:c8:31:0f:ef:f1:44: da:11:f1:b5:2b:13:cc:4a:81:8b:c9:8a:bd:02:18: c3:8b:6e:a9:c1:2d:d5:b2:ee:8b:28:7c:72:2b:89: aa:48:92:49:b5:9f:15:40:7b:80:30:3c:41:8c:ec: c6:b0:a9:69:00:fd:2d:b2:f1:fa:b0:69:0a:0c:81: b8:6e:90:12:7d:00:69:87:10:af:27:f5:87:d3:fd: a7:52:9d:f4:1e:db:88:a2:8f:63:d4:37:05:ca:af: b7:c9:ac:49:3a:5d:71:9d:5d:4b:78:37:fa:7f:27: 31:cf:96:a5:85:98:39:cd:91:4e:98:c5:20:53:a6: 62:10:e6:51:c5:42:51:53:83:d4:8a:13:0c:82:b5: 70:15:49:5d:a2:3e:8a:44:a7:b7:1c:f9:b3:f4:f7: 52:69:3d:6f:71:57:63:0d:7f:1c:be:09:35:b7:49: 4e:b9:53:79:85:71:5c:07:9b:bd:4e:f7:a4:70:5d: 23:ed:f3:4d:ac:ff:f1:2c:f5:e0:d5:e6:0d:f5:b6: 1d:f5:79:4c:53:e7:cb:bf:50:77:9d:af:39:18:c1: 52:a9:7e:bd:9f:f8:11:c9:95:8b:6f:93:7b:4d:cd: d3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D0:B3:AD:72:E1:9E:3C:09:F3:20:58:36:6E:BD:43:15:1E:3B:90 X509v3 Authority Key Identifier: keyid:15:35:D2:4E:17:36:7E:40:5B:78:0F:71:10:49:E5:F7:8D:10:1F:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTXSThc2fkBbeA9xEEnl940QHxY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/XdCzrXLhnjwJ8yBYNm69QxUeO5A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/FTXSThc2fkBbeA9xEEnl940QHxY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.188.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:8d:b0:f4:9f:aa:3f:01:6a:0e:6a:f6:34:02:2a:c1:57:fd: 41:e8:fa:c7:eb:c8:9a:1d:7e:38:0d:a0:60:ac:74:9e:8f:9f: 6c:26:f9:ba:6b:5f:59:79:33:dd:58:c6:4e:f6:82:26:9e:a8: 8e:a9:d4:56:bf:c6:5b:0f:a7:80:24:9e:b4:cc:04:16:e4:a9: db:b7:91:28:a3:39:25:68:26:10:4d:36:b9:37:34:c4:6f:cd: 3d:64:f1:a5:a9:41:4a:71:2a:38:8f:b5:97:f1:d0:e1:e1:08: b5:b8:a7:21:4f:08:c0:d4:15:43:4c:93:3e:32:d0:fc:b5:43: 60:08:c4:53:15:d1:ae:ef:b7:0c:65:1b:d2:3a:65:d6:95:9d: 57:24:e0:a1:71:5f:7a:4a:cb:a8:e0:5c:57:c1:65:26:3c:3b: 08:e1:c2:f8:35:44:d5:4c:0e:85:0f:0e:18:65:a9:e3:8e:6d: c3:a8:2e:2a:86:dd:40:bc:a7:cf:f6:d0:f4:10:a9:78:ab:8f: 9b:aa:2d:ec:70:1c:91:d0:73:6a:e7:14:e2:12:97:b9:5c:3f: d3:a5:7f:94:67:0e:95:6d:8f:92:7e:88:b6:9f:42:d2:89:fd: e5:d9:3e:eb:75:a9:8c:79:84:fb:af:ad:35:21:56:33:a3:ee: 61:5b:a7:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8pnwtffqA9cv76QHiodKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1MzVkMjRlMTczNjdlNDA1Yjc4MGY3MTEwNDllNWY3OGQx MDFmMTYwHhcNMjYwMTAyMTgyMjQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZGQwYjNhZDcyZTE5ZTNjMDlmMzIwNTgzNjZlYmQ0MzE1MWUzYjkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19qkeHSF1X1TKSdXfSF858e1je/l fh7IMQ/v8UTaEfG1KxPMSoGLyYq9AhjDi26pwS3Vsu6LKHxyK4mqSJJJtZ8VQHuA MDxBjOzGsKlpAP0tsvH6sGkKDIG4bpASfQBphxCvJ/WH0/2nUp30HtuIoo9j1DcF yq+3yaxJOl1xnV1LeDf6fycxz5alhZg5zZFOmMUgU6ZiEOZRxUJRU4PUihMMgrVw FUldoj6KRKe3HPmz9PdSaT1vcVdjDX8cvgk1t0lOuVN5hXFcB5u9TvekcF0j7fNN rP/xLPXg1eYN9bYd9XlMU+fLv1B3na85GMFSqX69n/gRyZWLb5N7Tc3T/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF3Qs61y4Z48CfMgWDZuvUMVHjuQMB8GA1UdIwQY MBaAFBU10k4XNn5AW3gPcRBJ5feNEB8WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlRYU1RoYzJma0JiZUE5eEVFbmw5NDBRSHhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82YTg5ZjAtMGIyMi00NTJjLWE2NTkt NDJhN2FmODgyZTA5LzEvWGRDenJYTGhuandKOHlCWU5tNjlReFVlTzVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82YTg5ZjAtMGIyMi00NTJjLWE2NTktNDJhN2FmODgyZTA5 LzEvRlRYU1RoYzJma0JiZUE5eEVFbmw5NDBRSHhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuSa8MA0G CSqGSIb3DQEBCwUAA4IBAQCfjbD0n6o/AWoOavY0AirBV/1B6PrH68iaHX44DaBg rHSej59sJvm6a19ZeTPdWMZO9oImnqiOqdRWv8ZbD6eAJJ60zAQW5Knbt5Eoozkl aCYQTTa5NzTEb809ZPGlqUFKcSo4j7WX8dDh4Qi1uKchTwjA1BVDTJM+MtD8tUNg CMRTFdGu77cMZRvSOmXWlZ1XJOChcV96Ssuo4FxXwWUmPDsI4cL4NUTVTA6FDw4Y Zanjjm3DqC4qht1AvKfP9tD0EKl4q4+bqi3scByR0HNq5xTiEpe5XD/TpX+UZw6V bY+Sfoi2n0LSif3l2T7rdamMeYT7r601IVYzo+5hW6f6 -----END CERTIFICATE-----Generated at Tue Feb 10 01:24:34 2026 by rpki-client