This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/XQZYtmJX7BpNzPu03srU_4VYUsc.roa File: XQZYtmJX7BpNzPu03srU_4VYUsc.roa (raw, json) Hash identifier: Bjg0iayeOq8sVWJ1lC2MT+jpchRq5ORWkMqvwpb8VDY= Subject key identifier: 5D:06:58:B6:62:57:EC:1A:4D:CC:FB:B4:DE:CA:D4:FF:85:58:52:C7 Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018 Certificate serial: 019B7F856C6553163B0BF84F43D03C77B374 Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/XQZYtmJX7BpNzPu03srU_4VYUsc.roa Signing time: Fri 02 Jan 2026 16:23:28 +0000 ROA not before: Fri 02 Jan 2026 16:23:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 195.160.162.0/24 maxlen: 32 195.160.163.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 01:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:6c:65:53:16:3b:0b:f8:4f:43:d0:3c:77:b3:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca334850daf371220520199229ebde90ef28b018 Validity Not Before: Jan 2 16:23:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d0658b66257ec1a4dccfbb4decad4ff855852c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f5:53:65:a0:5b:f2:e7:55:b8:86:74:be:f6: 6d:9e:a9:50:1b:30:8b:ab:92:0f:c6:11:18:40:95: 0d:8c:15:ee:14:87:30:43:50:d0:52:6c:21:6d:41: 67:41:9c:62:d9:8e:0b:28:0f:99:a7:5d:69:1d:24: 1b:03:9c:47:c2:81:af:f8:62:64:78:ad:bc:4f:20: 77:e6:9d:ff:ac:39:41:70:c3:be:02:09:90:05:03: bd:a3:a7:46:36:55:3c:5c:f9:e4:a8:f0:36:9f:43: 10:4c:aa:92:67:af:cd:8b:c4:fd:0d:17:06:42:59: 96:cf:0b:d7:e5:17:6f:ce:90:21:49:2b:3f:4b:ea: 04:e1:7c:90:9b:6e:72:12:39:bf:11:07:31:a8:a6: 00:05:e1:9b:7b:81:a0:a2:34:e5:e7:7b:9f:09:ae: f0:bb:dc:10:b0:95:4b:80:8b:85:ff:c5:12:67:96: 81:aa:28:13:77:43:cf:29:67:4a:33:fb:a6:6a:a8: 1d:e4:d8:2b:14:90:80:ec:8c:90:a2:d1:b1:c8:dd: 00:b8:eb:b6:86:b7:31:bf:25:9c:32:a1:7a:99:04: ab:97:6c:10:56:8b:ec:1c:8a:2b:df:18:34:23:72: 7a:fd:a1:fb:47:c2:9d:f0:be:3c:3f:07:32:3d:9b: 64:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:06:58:B6:62:57:EC:1A:4D:CC:FB:B4:DE:CA:D4:FF:85:58:52:C7 X509v3 Authority Key Identifier: keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/XQZYtmJX7BpNzPu03srU_4VYUsc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.160.162.0/23 Signature Algorithm: sha256WithRSAEncryption 60:ae:ff:92:39:8a:17:2f:d6:68:89:9c:a0:70:e1:13:e8:d5: 9c:b5:78:bf:8d:59:4a:cb:8a:4c:c6:b2:e0:77:1b:3b:86:cf: a0:55:7b:47:24:5c:c9:9d:f7:61:63:e7:b0:76:29:74:c5:c0: d8:a5:80:3b:25:10:2f:ac:09:77:26:e2:78:96:b8:c4:a4:c7: d6:76:40:9b:52:77:ff:62:7d:90:5a:64:26:5e:93:35:d6:38: 6f:57:b8:28:15:75:04:62:5f:e0:72:54:e7:64:39:f8:71:a8: 8e:45:ed:ec:ca:ea:23:be:79:ec:b5:85:85:96:27:fb:70:db: 54:05:e7:4d:f5:9c:d7:c2:f4:ec:3b:ac:45:44:c4:ce:63:dd: 85:47:26:52:31:e6:4c:88:a8:a7:5e:f4:2a:6c:fe:10:2b:45: 68:b2:30:7d:50:3a:26:cc:ce:1a:33:c9:28:00:a2:80:ee:21: 8a:d3:3b:2a:d4:83:75:c4:3b:5a:5f:81:86:bb:10:5e:70:52: e0:d3:38:1d:67:3e:f6:47:76:03:1c:e4:eb:45:c6:83:d8:f9: c0:f0:9f:99:50:ce:43:2c:de:52:85:70:32:51:32:58:42:1f: ad:09:f5:dd:16:b0:d4:0c:76:f5:35:e9:99:32:6e:04:37:ec: b4:3c:14:32 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hWxlUxY7C/hPQ9A8d7N0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMzM0ODUwZGFmMzcxMjIwNTIwMTk5MjI5ZWJkZTkwZWYy OGIwMTgwHhcNMjYwMTAyMTYyMzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDA2NThiNjYyNTdlYzFhNGRjY2ZiYjRkZWNhZDRmZjg1NTg1MmM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPVTZaBb8udVuIZ0vvZtnqlQGzCL q5IPxhEYQJUNjBXuFIcwQ1DQUmwhbUFnQZxi2Y4LKA+Zp11pHSQbA5xHwoGv+GJk eK28TyB35p3/rDlBcMO+AgmQBQO9o6dGNlU8XPnkqPA2n0MQTKqSZ6/Ni8T9DRcG QlmWzwvX5RdvzpAhSSs/S+oE4XyQm25yEjm/EQcxqKYABeGbe4GgojTl53ufCa7w u9wQsJVLgIuF/8USZ5aBqigTd0PPKWdKM/umaqgd5NgrFJCA7IyQotGxyN0AuOu2 hrcxvyWcMqF6mQSrl2wQVovsHIor3xg0I3J6/aH7R8Kd8L48PwcyPZtkfQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF0GWLZiV+waTcz7tN7K1P+FWFLHMB8GA1UdIwQY MBaAFMozSFDa83EiBSAZkinr3pDvKLAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9lZTVlNDctNGUyOS00NjAzLWI5NjIt MGUwMDQ2YzhhODdiLzEvWFFaWXRtSlg3QnBOelB1MDNzclVfNFZZVXNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9lZTVlNDctNGUyOS00NjAzLWI5NjItMGUwMDQ2YzhhODdi LzEveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw6CiMA0G CSqGSIb3DQEBCwUAA4IBAQBgrv+SOYoXL9ZoiZygcOET6NWctXi/jVlKy4pMxrLg dxs7hs+gVXtHJFzJnfdhY+ewdil0xcDYpYA7JRAvrAl3JuJ4lrjEpMfWdkCbUnf/ Yn2QWmQmXpM11jhvV7goFXUEYl/gclTnZDn4caiORe3syuojvnnstYWFlif7cNtU BedN9ZzXwvTsO6xFRMTOY92FRyZSMeZMiKinXvQqbP4QK0VosjB9UDomzM4aM8ko AKKA7iGK0zsq1IN1xDtaX4GGuxBecFLg0zgdZz72R3YDHOTrRcaD2PnA8J+ZUM5D LN5ShXAyUTJYQh+tCfXdFrDUDHb1NemZMm4EN+y0PBQy -----END CERTIFICATE-----Generated at Sun Jan 18 10:02:54 2026 by rpki-client