This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/XcKWp63HLciO6YZiQmDpSNxq86I.roa File: XcKWp63HLciO6YZiQmDpSNxq86I.roa (raw, json) Hash identifier: 1J0lb3wrWWB7DNsguT9k3isxf2N9SBYqUekas2eI0T0= Subject key identifier: 5D:C2:96:A7:AD:C7:2D:C8:8E:E9:86:62:42:60:E9:48:DC:6A:F3:A2 Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Certificate serial: 019B7B3606967B6677EDDB12054DA254CC5A Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/XcKWp63HLciO6YZiQmDpSNxq86I.roa Signing time: Thu 01 Jan 2026 20:18:16 +0000 ROA not before: Thu 01 Jan 2026 20:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136050 IP address blocks: 45.135.236.0/24 maxlen: 24 103.146.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:06:96:7b:66:77:ed:db:12:05:4d:a2:54:cc:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Validity Not Before: Jan 1 20:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5dc296a7adc72dc88ee986624260e948dc6af3a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:02:c0:09:b2:1b:68:51:f9:a4:d6:d0:c6:ac: 46:7c:f6:2c:f3:b6:02:6a:f9:dd:68:7a:4e:eb:97: ad:56:9a:34:e1:e1:40:fc:1f:18:fb:df:d6:01:65: 3d:e2:87:58:3e:e8:8e:24:fd:24:fa:b8:65:44:75: 52:0f:5e:de:19:15:76:06:ef:85:40:8d:03:6f:d6: 3d:c0:26:7d:8a:6d:17:52:35:a1:75:36:d0:ac:b0: 59:c0:4a:6b:63:b9:03:8e:98:6f:10:c7:69:ee:40: 23:03:70:05:21:59:a9:a4:9b:a5:99:42:96:08:11: 58:a2:c0:d5:65:42:a4:8d:30:bf:52:36:85:60:03: e3:e7:fc:75:6d:99:cd:d6:28:04:c7:05:21:a4:7a: ba:d8:0f:af:f6:c6:62:6f:da:2b:31:77:55:37:ea: 19:9b:05:33:0a:28:f1:54:08:f2:2f:c3:9b:92:f7: c1:32:e3:dc:d9:da:6d:79:e3:e5:38:5a:6e:ef:5f: 2a:12:0b:14:17:49:5e:3c:be:47:dc:46:07:30:6d: 2d:c6:2f:33:14:2c:62:58:92:3e:98:55:3a:33:ef: 7b:d8:4d:e9:4a:f3:56:48:34:3b:c1:97:f3:aa:2a: 5c:cb:59:a6:80:b8:7b:68:cf:0a:7c:26:8e:ef:a8: ab:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C2:96:A7:AD:C7:2D:C8:8E:E9:86:62:42:60:E9:48:DC:6A:F3:A2 X509v3 Authority Key Identifier: keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/XcKWp63HLciO6YZiQmDpSNxq86I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.135.236.0/24 103.146.100.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:ec:19:d3:5b:b5:e5:5b:7a:26:c3:c7:af:27:f3:15:43:d3: 30:65:16:1a:d5:88:25:88:55:ba:c0:3a:48:b9:0a:c7:b1:a4: 11:2c:e2:56:24:c2:2b:50:d3:fb:d3:6a:4f:40:80:97:48:d1: 79:e9:2c:9f:71:75:93:ed:4f:94:73:c3:c2:3f:e9:a9:96:bb: e3:65:f6:22:8f:21:b8:6d:68:26:d4:95:a0:f0:9e:13:47:57: 8b:18:ef:ae:f8:ff:fd:42:48:d8:46:fc:57:53:e5:7f:d0:38: 15:6e:fe:55:93:34:55:cc:46:77:9d:2c:3c:4f:9f:a3:e0:cb: 69:71:2e:25:d7:2f:4f:cf:15:fa:36:c9:1f:c8:4e:4d:86:52: f8:d5:4a:9b:62:f5:e6:df:4a:c6:50:1e:9e:11:23:19:4d:90: 1a:40:14:32:e8:5e:35:09:3f:23:66:be:26:bf:12:a9:49:2f: f9:3c:79:13:77:97:a7:6b:00:38:a6:34:1c:75:7b:f8:cb:a9: 7e:19:1a:f5:6e:e6:4c:93:96:8c:95:23:a9:c5:a7:68:0e:a4: 59:16:d6:c0:7d:eb:27:95:1c:b3:b5:43:5b:a0:7a:37:39:30: 5b:97:66:2d:aa:14:25:06:9b:0e:9a:5d:9f:7f:69:80:e7:08: bf:5c:a1:5f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NgaWe2Z37dsSBU2iVMxaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2 YzhkY2MwHhcNMjYwMTAxMjAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZGMyOTZhN2FkYzcyZGM4OGVlOTg2NjI0MjYwZTk0OGRjNmFmM2EyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQLACbIbaFH5pNbQxqxGfPYs87YC avndaHpO65etVpo04eFA/B8Y+9/WAWU94odYPuiOJP0k+rhlRHVSD17eGRV2Bu+F QI0Db9Y9wCZ9im0XUjWhdTbQrLBZwEprY7kDjphvEMdp7kAjA3AFIVmppJulmUKW CBFYosDVZUKkjTC/UjaFYAPj5/x1bZnN1igExwUhpHq62A+v9sZib9orMXdVN+oZ mwUzCijxVAjyL8ObkvfBMuPc2dpteePlOFpu718qEgsUF0lePL5H3EYHMG0txi8z FCxiWJI+mFU6M+972E3pSvNWSDQ7wZfzqipcy1mmgLh7aM8KfCaO76irXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFF3Clqetxy3IjumGYkJg6UjcavOiMB8GA1UdIwQY MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt OTE4YWM2NDYyNjc5LzEvWGNLV3A2M0hMY2lPNllaaVFtRHBTTnhxODZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5 LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYfsAwQA Z5JkMA0GCSqGSIb3DQEBCwUAA4IBAQBL7BnTW7XlW3omw8evJ/MVQ9MwZRYa1Ygl iFW6wDpIuQrHsaQRLOJWJMIrUNP702pPQICXSNF56SyfcXWT7U+Uc8PCP+mplrvj ZfYijyG4bWgm1JWg8J4TR1eLGO+u+P/9QkjYRvxXU+V/0DgVbv5VkzRVzEZ3nSw8 T5+j4MtpcS4l1y9PzxX6NskfyE5NhlL41UqbYvXm30rGUB6eESMZTZAaQBQy6F41 CT8jZr4mvxKpSS/5PHkTd5enawA4pjQcdXv4y6l+GRr1buZMk5aMlSOpxadoDqRZ FtbAfesnlRyztUNboHo3OTBbl2YtqhQlBpsOml2ff2mA5wi/XKFf -----END CERTIFICATE-----Generated at Wed Jan 21 09:24:14 2026 by rpki-client