This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xkm4FwnBw93N_t1wfhyAtmQ9fwE.roa File: xkm4FwnBw93N_t1wfhyAtmQ9fwE.roa (raw, json) Hash identifier: leF12NplBHflNwF832yxHJmX1/jrVtvUo+YI+cWK9ww= Subject key identifier: C6:49:B8:17:09:C1:C3:DD:CD:FE:DD:70:7E:1C:80:B6:64:3D:7F:01 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 019C3EFD99341B396D94CD45FB8D274CE275 Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xkm4FwnBw93N_t1wfhyAtmQ9fwE.roa Signing time: Sun 08 Feb 2026 20:42:13 +0000 ROA not before: Sun 08 Feb 2026 20:42:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 45.155.253.0/24 maxlen: 24 45.155.254.0/24 maxlen: 24 45.157.209.0/24 maxlen: 24 176.125.250.0/24 maxlen: 24 176.125.251.0/24 maxlen: 24 185.199.151.0/24 maxlen: 24 185.199.213.0/24 maxlen: 24 185.199.214.0/23 maxlen: 24 185.221.25.0/24 maxlen: 24 185.221.26.0/24 maxlen: 24 185.225.168.0/23 maxlen: 23 185.225.168.0/24 maxlen: 24 185.225.169.0/24 maxlen: 24 185.250.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 09 Feb 2026 21:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:3e:fd:99:34:1b:39:6d:94:cd:45:fb:8d:27:4c:e2:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Feb 8 20:42:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c649b81709c1c3ddcdfedd707e1c80b6643d7f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:76:f5:46:02:c0:26:76:e5:b6:52:a3:8b:db: 75:7e:87:74:a8:de:6f:d4:71:2e:9f:10:48:2d:ca: b2:b6:38:e2:45:cb:b1:b2:33:a0:ac:09:9f:91:cf: 67:f9:c5:25:8e:24:ac:92:09:76:b5:58:5a:61:e9: f0:b7:48:ca:0f:b7:fc:02:60:4c:6e:1b:a5:6c:4e: 4b:17:34:5a:aa:44:58:e6:4c:fb:28:96:1f:e6:50: f6:d7:40:99:e5:f7:6f:22:14:28:fa:d0:24:26:48: 24:df:88:02:2a:4d:fe:be:45:ae:d5:52:a0:9f:fb: 8e:20:40:4a:b1:e2:98:7e:e7:5f:af:95:1d:99:6b: f1:40:61:b2:59:74:59:85:12:d4:4b:77:e2:3c:39: e7:79:f2:82:d1:f6:fa:bf:f6:5a:5d:9d:14:29:d7: 93:02:b6:f2:04:d9:1f:4a:13:d6:ca:60:14:04:6d: 11:70:0f:87:6e:0e:53:d9:5e:77:1a:fb:64:7f:c5: cd:24:ed:f1:db:e5:b7:f2:ec:b0:dc:5a:61:60:cd: 4c:72:de:25:73:3d:5c:24:60:2e:65:c5:f2:09:6d: fc:a3:ac:b1:7a:cc:9a:e3:a7:fa:b9:a9:60:8a:12: 2c:f3:19:7e:79:fe:05:27:67:68:21:7f:f5:26:01: 4b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:49:B8:17:09:C1:C3:DD:CD:FE:DD:70:7E:1C:80:B6:64:3D:7F:01 X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xkm4FwnBw93N_t1wfhyAtmQ9fwE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.253.0-45.155.254.255 45.157.209.0/24 176.125.250.0/23 185.199.151.0/24 185.199.213.0-185.199.215.255 185.221.25.0-185.221.26.255 185.225.168.0/23 185.250.26.0/24 Signature Algorithm: sha256WithRSAEncryption 65:32:22:2a:74:81:de:a8:f2:12:51:63:c7:e2:27:81:f3:1e: a8:5a:d1:4f:62:e8:d9:80:3d:2c:b7:08:b8:24:2d:7f:17:9a: 86:0a:1c:a6:5e:cc:3e:c3:67:56:de:52:22:6e:0f:3e:f0:16: 2b:ac:39:22:01:8e:cb:2e:ac:06:db:ba:5d:b0:ad:20:7c:87: 6e:16:94:33:b3:2e:b1:66:bd:02:6a:41:8c:ac:b4:98:76:40: ef:ee:76:29:e7:46:4e:f7:16:f1:b4:1b:ec:5c:54:7c:e0:37: ad:20:ad:c6:8d:52:b2:fe:f8:31:82:b2:dc:b7:58:b8:9a:1d: ac:e6:2a:98:25:7b:58:50:6d:78:be:3b:59:af:05:7b:49:0e: 24:44:f6:fe:9f:1d:5a:59:b7:79:4d:79:47:74:6e:15:fe:6d: 39:6b:75:46:80:c0:93:d5:e2:c8:b0:df:c9:d2:4e:8d:7f:b9: 84:b9:5c:43:bc:47:a7:a0:4e:c8:1a:26:39:05:e0:24:28:05: 28:e0:fe:b3:82:d1:93:e3:24:77:29:68:6c:ea:61:3d:50:90: b0:13:be:12:23:42:bf:f5:4c:79:25:f3:00:d9:0c:c7:f8:82: 13:ab:d6:e1:14:f2:fc:16:d6:03:71:ea:c6:1c:66:8a:2f:0c: 96:7b:cb:95 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZw+/Zk0GzltlM1F+40nTOJ1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjYwMjA4MjA0MjEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjQ5YjgxNzA5YzFjM2RkY2RmZWRkNzA3ZTFjODBiNjY0M2Q3ZjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnb1RgLAJnbltlKji9t1fod0qN5v 1HEunxBILcqytjjiRcuxsjOgrAmfkc9n+cUljiSskgl2tVhaYenwt0jKD7f8AmBM bhulbE5LFzRaqkRY5kz7KJYf5lD210CZ5fdvIhQo+tAkJkgk34gCKk3+vkWu1VKg n/uOIEBKseKYfudfr5UdmWvxQGGyWXRZhRLUS3fiPDnnefKC0fb6v/ZaXZ0UKdeT ArbyBNkfShPWymAUBG0RcA+Hbg5T2V53Gvtkf8XNJO3x2+W38uyw3FphYM1Mct4l cz1cJGAuZcXyCW38o6yxesya46f6ualgihIs8xl+ef4FJ2doIX/1JgFLzwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMZJuBcJwcPdzf7dcH4cgLZkPX8BMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEveGttNEZ3bkJ3OTNOX3Qxd2ZoeUF0bVE5ZndFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIMAwDBAAtm/0D BAAtm/4DBAAtndEDBAGwffoDBAC5x5cwDAMEALnH1QMEA7nH0DAMAwQAud0ZAwQA ud0aAwQBueGoAwQAufoaMA0GCSqGSIb3DQEBCwUAA4IBAQBlMiIqdIHeqPISUWPH 4ieB8x6oWtFPYujZgD0stwi4JC1/F5qGChymXsw+w2dW3lIibg8+8BYrrDkiAY7L LqwG27pdsK0gfIduFpQzsy6xZr0CakGMrLSYdkDv7nYp50ZO9xbxtBvsXFR84Det IK3GjVKy/vgxgrLct1i4mh2s5iqYJXtYUG14vjtZrwV7SQ4kRPb+nx1aWbd5TXlH dG4V/m05a3VGgMCT1eLIsN/J0k6Nf7mEuVxDvEenoE7IGiY5BeAkKAUo4P6zgtGT 4yR3KWhs6mE9UJCwE74SI0K/9Ux5JfMA2QzH+IITq9bhFPL8FtYDcerGHGaKLwyW e8uV -----END CERTIFICATE-----Generated at Mon Feb 9 07:02:26 2026 by rpki-client