This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/xYBM-hY_brlJg65f-G8CvN-m7yE.roa File: xYBM-hY_brlJg65f-G8CvN-m7yE.roa (raw, json) Hash identifier: zEmAKnE9dRo89iUmw+snI86RIgHtrd0cYS5/27hlva4= Subject key identifier: C5:80:4C:FA:16:3F:6E:B9:49:83:AE:5F:F8:6F:02:BC:DF:A6:EF:21 Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc Certificate serial: 019B77C7719B82A2ED70E52A53553E6A60FC Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/xYBM-hY_brlJg65f-G8CvN-m7yE.roa Signing time: Thu 01 Jan 2026 04:18:37 +0000 ROA not before: Thu 01 Jan 2026 04:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9304 IP address blocks: 213.110.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.mft rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 01:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:71:9b:82:a2:ed:70:e5:2a:53:55:3e:6a:60:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc Validity Not Before: Jan 1 04:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5804cfa163f6eb94983ae5ff86f02bcdfa6ef21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0b:e8:10:c4:84:44:8f:f9:4a:93:d5:cd:31: 2f:00:0f:01:95:52:9c:4a:57:60:c9:3a:37:9d:70: 05:8a:29:19:2f:bb:7b:3d:96:f1:11:47:c4:28:92: f4:81:74:67:2e:0f:66:17:36:b9:ae:ee:60:a5:48: 4d:38:29:2e:a6:3b:d3:63:2d:b6:51:b6:3c:bf:4e: 48:3e:63:c7:5a:7b:6a:60:86:67:d2:ca:da:31:ad: d2:5f:6c:5e:ce:5d:85:57:4f:85:e8:32:1e:ed:da: fe:69:50:63:5b:ef:d0:f5:54:37:ca:b3:e4:0d:23: 8c:45:2f:47:9d:a1:47:1d:e1:0a:d5:a1:88:dc:db: da:9e:28:d0:1a:4d:d1:e1:74:76:92:74:c6:72:95: 81:ce:20:e7:70:07:c4:2e:c0:37:76:92:8f:37:45: 94:e6:09:8d:31:49:04:c4:57:0b:c0:35:2c:ae:e1: 60:11:98:7e:04:01:29:6a:28:3c:11:b0:b3:71:3e: 02:b7:1e:70:44:67:8b:e1:27:5d:25:db:7d:b8:59: 39:8b:ce:bf:01:17:8e:d7:71:81:a3:54:3a:78:97: fe:fd:3e:df:1a:a8:e6:b7:15:d5:28:43:61:9b:e7: 86:f3:2d:02:2b:5c:05:96:15:45:c0:14:49:b4:05: 91:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:80:4C:FA:16:3F:6E:B9:49:83:AE:5F:F8:6F:02:BC:DF:A6:EF:21 X509v3 Authority Key Identifier: keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/xYBM-hY_brlJg65f-G8CvN-m7yE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.110.68.0/22 Signature Algorithm: sha256WithRSAEncryption 96:54:7f:37:48:bb:7e:eb:a5:74:6b:ac:69:ad:b4:7c:40:5a: 0d:6d:29:e7:4a:59:07:39:24:14:60:cc:12:e9:3f:e2:89:43: d1:0b:bc:ae:8a:a6:d4:d7:32:66:30:2c:58:0e:ef:dc:bc:28: 21:a1:cc:de:90:7a:20:97:92:30:50:80:40:2c:64:4c:f5:7d: 26:a0:27:b9:92:cf:1a:b0:31:bb:94:05:fd:cd:47:80:18:b5: e3:2e:ed:d6:6e:55:43:5a:ad:21:dc:76:fd:af:3f:dd:8a:ba: 26:0b:c8:f8:ac:bd:30:41:9b:46:5e:20:82:a3:84:80:85:48: d6:e5:cc:a0:25:da:7f:69:ff:17:1b:57:d0:fa:e1:72:a7:f1: 39:32:83:e2:96:46:8c:8f:d5:77:95:be:9b:32:a8:99:31:89: 56:36:58:7f:a4:1d:e9:f0:2c:ae:c4:2b:d9:91:99:fd:ef:ea: b8:e2:6b:b1:c0:ff:a8:a5:47:42:3c:bb:a8:09:28:ac:e4:94: 84:d6:bb:ae:1c:3f:e6:87:d6:24:9d:5e:1b:08:da:1f:bc:48: 10:2e:91:bc:0d:36:d8:cf:db:77:89:1b:d9:a5:f0:19:cd:0b: cd:65:38:8c:23:57:b7:a9:20:30:12:b0:5c:72:57:aa:ad:4c: 3b:fe:a9:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x3GbgqLtcOUqU1U+amD8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YWRkOWI2NzFmN2EzNmViMjM2N2UzNGZlZTRiY2IxM2I4 ZjY2Y2MwHhcNMjYwMTAxMDQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTgwNGNmYTE2M2Y2ZWI5NDk4M2FlNWZmODZmMDJiY2RmYTZlZjIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6AvoEMSERI/5SpPVzTEvAA8BlVKc SldgyTo3nXAFiikZL7t7PZbxEUfEKJL0gXRnLg9mFza5ru5gpUhNOCkupjvTYy22 UbY8v05IPmPHWntqYIZn0sraMa3SX2xezl2FV0+F6DIe7dr+aVBjW+/Q9VQ3yrPk DSOMRS9HnaFHHeEK1aGI3NvanijQGk3R4XR2knTGcpWBziDncAfELsA3dpKPN0WU 5gmNMUkExFcLwDUsruFgEZh+BAEpaig8EbCzcT4Ctx5wRGeL4SddJdt9uFk5i86/ AReO13GBo1Q6eJf+/T7fGqjmtxXVKENhm+eG8y0CK1wFlhVFwBRJtAWRaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMWATPoWP265SYOuX/hvArzfpu8hMB8GA1UdIwQY MBaAFIit2bZx96NusjZ+NP7kvLE7j2bMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUszWnRuSDNvMjZ5Tm40MF91UzhzVHVQWnN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zZWQwMGEtMTVlZS00NjY0LWE3ZjEt YTFiOTZiOWI3MGY4LzEveFlCTS1oWV9icmxKZzY1Zi1HOEN2Ti1tN3lFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8zZWQwMGEtMTVlZS00NjY0LWE3ZjEtYTFiOTZiOWI3MGY4 LzEvaUszWnRuSDNvMjZ5Tm40MF91UzhzVHVQWnN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1W5EMA0G CSqGSIb3DQEBCwUAA4IBAQCWVH83SLt+66V0a6xprbR8QFoNbSnnSlkHOSQUYMwS 6T/iiUPRC7yuiqbU1zJmMCxYDu/cvCghoczekHogl5IwUIBALGRM9X0moCe5ks8a sDG7lAX9zUeAGLXjLu3WblVDWq0h3Hb9rz/diromC8j4rL0wQZtGXiCCo4SAhUjW 5cygJdp/af8XG1fQ+uFyp/E5MoPilkaMj9V3lb6bMqiZMYlWNlh/pB3p8CyuxCvZ kZn97+q44muxwP+opUdCPLuoCSis5JSE1ruuHD/mh9YknV4bCNofvEgQLpG8DTbY z9t3iRvZpfAZzQvNZTiMI1e3qSAwErBccleqrUw7/qkf -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:40 2026 by rpki-client