This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/XzHwdc8CnV6b37aUuwbB9K5aCVg.roa File: XzHwdc8CnV6b37aUuwbB9K5aCVg.roa (raw, json) Hash identifier: Ajp8GTPxK9A3C7R9uHBAngG8he1JSPPWTWmru9BuMHw= Subject key identifier: 5F:31:F0:75:CF:02:9D:5E:9B:DF:B6:94:BB:06:C1:F4:AE:5A:09:58 Certificate issuer: /CN=e06536d2b17c45c175739f3313119be219d331ac Certificate serial: 019B79ECD01D70FC627807109661E90E06E8 Authority key identifier: E0:65:36:D2:B1:7C:45:C1:75:73:9F:33:13:11:9B:E2:19:D3:31:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4GU20rF8RcF1c58zExGb4hnTMaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/XzHwdc8CnV6b37aUuwbB9K5aCVg.roa Signing time: Thu 01 Jan 2026 14:18:41 +0000 ROA not before: Thu 01 Jan 2026 14:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15576 IP address blocks: 185.254.76.0/22 maxlen: 22 188.92.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/4GU20rF8RcF1c58zExGb4hnTMaw.crl rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/4GU20rF8RcF1c58zExGb4hnTMaw.mft rsync://rpki.ripe.net/repository/DEFAULT/4GU20rF8RcF1c58zExGb4hnTMaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:d0:1d:70:fc:62:78:07:10:96:61:e9:0e:06:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e06536d2b17c45c175739f3313119be219d331ac Validity Not Before: Jan 1 14:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f31f075cf029d5e9bdfb694bb06c1f4ae5a0958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:26:be:56:d8:84:a7:f4:4a:59:7e:42:7a:0f: 10:98:50:8d:35:e0:8f:62:55:8c:d3:b5:57:b6:f8: 3a:f7:c0:83:a4:64:73:65:b7:49:72:44:93:bd:84: 9e:f2:59:39:43:91:f1:48:bb:ee:38:6a:ef:03:2c: 2c:b6:d7:33:9a:c2:28:18:09:f1:5a:10:21:cb:0e: 83:57:cc:76:01:89:9a:5a:7a:aa:7c:fc:59:d3:b8: 0e:5b:85:7b:d0:df:b0:57:3e:d8:fd:c0:9d:8b:aa: 61:c9:ed:62:28:00:da:99:f1:ed:1b:a5:b2:99:e0: 1e:cf:74:25:dc:26:77:7c:2b:3d:b2:c9:db:c3:5c: f9:74:e3:09:e0:28:da:ac:ba:bb:85:ed:73:9e:c5: 4b:4c:1e:d2:24:cd:74:36:bb:d8:79:1a:9d:2f:1f: f0:6a:62:f7:c5:9d:f7:ae:8b:1e:ea:dd:80:8d:e2: fb:33:d7:e2:98:33:24:25:19:db:22:03:46:bb:a4: 5a:8a:c1:24:4b:35:c5:06:07:f1:cd:2b:ec:77:a7: 4d:40:c1:cc:42:29:de:d3:73:b4:30:09:a6:27:6e: 28:f4:bf:92:19:34:18:35:fe:ac:bb:ca:a3:4b:5a: 96:5c:19:8b:02:e2:49:e3:32:2a:b6:df:42:51:87: 4b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:31:F0:75:CF:02:9D:5E:9B:DF:B6:94:BB:06:C1:F4:AE:5A:09:58 X509v3 Authority Key Identifier: keyid:E0:65:36:D2:B1:7C:45:C1:75:73:9F:33:13:11:9B:E2:19:D3:31:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4GU20rF8RcF1c58zExGb4hnTMaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/XzHwdc8CnV6b37aUuwbB9K5aCVg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/4GU20rF8RcF1c58zExGb4hnTMaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.254.76.0/22 188.92.224.0/21 Signature Algorithm: sha256WithRSAEncryption 70:61:37:9d:c3:db:70:60:58:14:44:3a:49:4b:ac:92:a4:77: e5:96:b9:ea:d9:a1:33:98:64:0e:16:31:0c:14:00:51:28:42: 49:bd:d6:61:57:18:28:17:ce:0b:09:a3:2b:24:ed:f2:e8:55: 66:1b:a2:b1:d7:89:98:22:ef:f4:cb:68:51:5f:6b:c7:8f:70: 36:c0:74:06:c1:9b:c1:26:0b:45:52:2f:17:59:22:3a:b0:04: bd:51:0f:7b:31:64:21:51:6a:9e:98:aa:f8:15:30:c1:e1:c9: 90:8d:f8:a2:79:f3:a3:7c:60:c6:48:cd:7e:9a:53:a5:ca:07: 38:9b:07:fa:e5:6f:20:6f:08:42:ba:4b:07:7b:c1:e8:c0:7e: 40:03:47:ca:f7:75:a2:cd:4c:60:21:d9:13:e2:d6:fb:a5:f9: c6:9f:ce:ae:68:76:17:d9:18:db:bd:13:7c:ab:99:b1:a3:dd: f1:2e:2c:27:aa:3a:4e:d4:95:b0:58:48:a1:6b:7c:fc:dc:f7: 3c:7f:af:e8:6f:75:aa:4d:6f:7f:65:75:d5:40:20:4b:77:ed: 4d:de:d8:03:e6:eb:b8:ea:bd:ef:92:91:24:ea:80:81:43:9e: 1f:82:06:0f:b9:a9:01:c9:f4:7a:15:22:ea:02:45:38:e9:21: 29:de:7a:5e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57NAdcPxieAcQlmHpDgboMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNjUzNmQyYjE3YzQ1YzE3NTczOWYzMzEzMTE5YmUyMTlk MzMxYWMwHhcNMjYwMTAxMTQxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjMxZjA3NWNmMDI5ZDVlOWJkZmI2OTRiYjA2YzFmNGFlNWEwOTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ya+VtiEp/RKWX5Ceg8QmFCNNeCP YlWM07VXtvg698CDpGRzZbdJckSTvYSe8lk5Q5HxSLvuOGrvAywsttczmsIoGAnx WhAhyw6DV8x2AYmaWnqqfPxZ07gOW4V70N+wVz7Y/cCdi6phye1iKADamfHtG6Wy meAez3Ql3CZ3fCs9ssnbw1z5dOMJ4CjarLq7he1znsVLTB7SJM10NrvYeRqdLx/w amL3xZ33rose6t2AjeL7M9fimDMkJRnbIgNGu6RaisEkSzXFBgfxzSvsd6dNQMHM Qine03O0MAmmJ24o9L+SGTQYNf6su8qjS1qWXBmLAuJJ4zIqtt9CUYdLPwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFF8x8HXPAp1em9+2lLsGwfSuWglYMB8GA1UdIwQY MBaAFOBlNtKxfEXBdXOfMxMRm+IZ0zGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEdVMjByRjhSY0YxYzU4ekV4R2I0aG5UTWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82ZTQzYjktYzZhNy00ZDUxLTgwNjEt MDZjOGJiMzc0YTU4LzEvWHpId2RjOENuVjZiMzdhVXV3YkI5SzVhQ1ZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy82ZTQzYjktYzZhNy00ZDUxLTgwNjEtMDZjOGJiMzc0YTU4 LzEvNEdVMjByRjhSY0YxYzU4ekV4R2I0aG5UTWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuf5MAwQD vFzgMA0GCSqGSIb3DQEBCwUAA4IBAQBwYTedw9twYFgURDpJS6ySpHfllrnq2aEz mGQOFjEMFABRKEJJvdZhVxgoF84LCaMrJO3y6FVmG6Kx14mYIu/0y2hRX2vHj3A2 wHQGwZvBJgtFUi8XWSI6sAS9UQ97MWQhUWqemKr4FTDB4cmQjfiiefOjfGDGSM1+ mlOlygc4mwf65W8gbwhCuksHe8HowH5AA0fK93WizUxgIdkT4tb7pfnGn86uaHYX 2RjbvRN8q5mxo93xLiwnqjpO1JWwWEiha3z83Pc8f6/ob3WqTW9/ZXXVQCBLd+1N 3tgD5uu46r3vkpEk6oCBQ54fggYPuakByfR6FSLqAkU46SEp3npe -----END CERTIFICATE-----Generated at Mon Jan 26 19:20:02 2026 by rpki-client