This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/XwZeP_FjPRrGyxH7if_auVWhw38.roa File: XwZeP_FjPRrGyxH7if_auVWhw38.roa (raw, json) Hash identifier: 4bEVXi89j8g7Wnq/i2v5YpIAVxtMtfePuFt8ghONBAw= Subject key identifier: 5F:06:5E:3F:F1:63:3D:1A:C6:CB:11:FB:89:FF:DA:B9:55:A1:C3:7F Certificate issuer: /CN=93b474d05571df3d44f63cca21b40b6e12c392d9 Certificate serial: 019B79EC97981FA77B4E90A90A214F9926E9 Authority key identifier: 93:B4:74:D0:55:71:DF:3D:44:F6:3C:CA:21:B4:0B:6E:12:C3:92:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7R00FVx3z1E9jzKIbQLbhLDktk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/XwZeP_FjPRrGyxH7if_auVWhw38.roa Signing time: Thu 01 Jan 2026 14:18:26 +0000 ROA not before: Thu 01 Jan 2026 14:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20860 IP address blocks: 185.182.228.0/24 maxlen: 24 185.182.229.0/24 maxlen: 24 185.182.230.0/24 maxlen: 24 185.182.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/k7R00FVx3z1E9jzKIbQLbhLDktk.crl rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/k7R00FVx3z1E9jzKIbQLbhLDktk.mft rsync://rpki.ripe.net/repository/DEFAULT/k7R00FVx3z1E9jzKIbQLbhLDktk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:97:98:1f:a7:7b:4e:90:a9:0a:21:4f:99:26:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93b474d05571df3d44f63cca21b40b6e12c392d9 Validity Not Before: Jan 1 14:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f065e3ff1633d1ac6cb11fb89ffdab955a1c37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c2:c9:98:16:19:ee:1a:5b:cf:00:f9:b6:0d: 34:5c:3a:52:dd:b7:20:c0:0a:0a:b1:a8:d3:50:0c: 50:3a:34:d7:61:1c:9b:e1:c1:3e:a4:06:b9:34:33: b5:ba:e9:9d:47:56:4d:df:6d:94:6c:17:23:65:33: 56:07:8a:7b:bf:da:9b:97:f1:7e:20:b8:57:fd:73: db:06:d9:6c:73:f3:af:f8:61:1d:e4:6a:6e:05:66: 0c:1d:f8:27:d5:37:a3:c7:00:a7:f6:4a:f4:c8:5e: db:ee:84:6c:80:04:42:c9:45:26:67:f6:58:c0:de: ed:ed:2f:1f:bd:cb:fc:55:ef:6a:57:80:c7:f7:a5: ad:37:01:8f:66:17:61:c1:6f:4d:48:74:93:4f:3e: 92:1a:2f:4d:a1:36:c4:6f:0b:dc:a7:d7:a4:c3:99: e4:98:19:03:35:f2:7c:be:a5:fe:45:88:7b:be:91: c8:f2:0d:49:26:e6:c9:38:01:42:f7:b7:55:33:7c: 10:7d:fd:a7:f9:3f:6a:50:ca:c4:e5:15:6e:ba:01: 48:b8:51:81:fb:af:05:ff:3d:36:5a:ec:a5:b3:65: 45:ce:b0:b7:df:df:cd:30:a3:2e:76:6a:34:e6:bb: ad:ef:5f:08:b4:cf:91:b2:dd:63:03:88:b8:a3:a2: ff:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:06:5E:3F:F1:63:3D:1A:C6:CB:11:FB:89:FF:DA:B9:55:A1:C3:7F X509v3 Authority Key Identifier: keyid:93:B4:74:D0:55:71:DF:3D:44:F6:3C:CA:21:B4:0B:6E:12:C3:92:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7R00FVx3z1E9jzKIbQLbhLDktk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/XwZeP_FjPRrGyxH7if_auVWhw38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/k7R00FVx3z1E9jzKIbQLbhLDktk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.182.228.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:f2:8f:79:85:dd:bc:d5:59:ba:31:6c:d3:da:ba:c1:23:1f: 8d:a7:8d:11:88:fa:e8:40:59:4a:97:71:23:f8:8b:21:f4:a4: 8a:01:9c:fd:0e:06:60:38:3f:c3:85:55:cc:de:fb:f1:11:05: 6f:0e:ed:fb:ea:50:a4:23:25:61:c2:e5:31:49:11:82:44:b4: 1e:c6:74:6c:8f:e8:50:fe:c8:3d:9f:94:41:70:70:c3:16:c5: 50:11:9f:47:cc:c7:cb:48:90:15:ba:87:b4:86:82:f5:db:a1: 54:03:c3:c3:76:6a:b4:7f:88:ed:0a:fa:c3:b0:a0:b4:47:95: d1:53:2a:4f:99:bb:85:18:a1:5c:20:28:61:38:9a:53:8e:18: af:33:dd:3a:53:53:73:7e:01:97:d1:ff:19:d1:86:96:dc:c1: 16:a7:40:53:5c:69:24:d7:34:7b:78:53:fc:35:75:91:ca:f0: 76:36:35:6d:9d:4a:64:e8:b8:af:b1:e6:a7:cd:5f:c4:77:69: 42:1a:7e:15:26:68:7c:40:0c:60:27:36:34:d1:c1:ce:26:51: 01:ab:98:08:c6:74:16:0a:d1:bb:a3:c7:21:2f:07:a3:12:3f: 3c:fe:27:fe:d2:ab:76:f8:f0:d4:68:ea:9f:68:84:c8:64:7c: a4:d6:ed:bc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57JeYH6d7TpCpCiFPmSbpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzYjQ3NGQwNTU3MWRmM2Q0NGY2M2NjYTIxYjQwYjZlMTJj MzkyZDkwHhcNMjYwMTAxMTQxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjA2NWUzZmYxNjMzZDFhYzZjYjExZmI4OWZmZGFiOTU1YTFjMzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsLJmBYZ7hpbzwD5tg00XDpS3bcg wAoKsajTUAxQOjTXYRyb4cE+pAa5NDO1uumdR1ZN322UbBcjZTNWB4p7v9qbl/F+ ILhX/XPbBtlsc/Ov+GEd5GpuBWYMHfgn1TejxwCn9kr0yF7b7oRsgARCyUUmZ/ZY wN7t7S8fvcv8Ve9qV4DH96WtNwGPZhdhwW9NSHSTTz6SGi9NoTbEbwvcp9ekw5nk mBkDNfJ8vqX+RYh7vpHI8g1JJubJOAFC97dVM3wQff2n+T9qUMrE5RVuugFIuFGB +68F/z02Wuyls2VFzrC339/NMKMudmo05rut718ItM+Rst1jA4i4o6L/YwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF8GXj/xYz0axssR+4n/2rlVocN/MB8GA1UdIwQY MBaAFJO0dNBVcd89RPY8yiG0C24Sw5LZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazdSMDBGVngzejFFOWp6S0liUUxiaExEa3RrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84ZGE2MjQtMzFjNS00NTA5LWJjNWEt MjA0OWY2YWJmZDlkLzEvWHdaZVBfRmpQUnJHeXhIN2lmX2F1VldodzM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC84ZGE2MjQtMzFjNS00NTA5LWJjNWEtMjA0OWY2YWJmZDlk LzEvazdSMDBGVngzejFFOWp6S0liUUxiaExEa3RrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubbkMA0G CSqGSIb3DQEBCwUAA4IBAQAO8o95hd281Vm6MWzT2rrBIx+Np40RiProQFlKl3Ej +Ish9KSKAZz9DgZgOD/DhVXM3vvxEQVvDu376lCkIyVhwuUxSRGCRLQexnRsj+hQ /sg9n5RBcHDDFsVQEZ9HzMfLSJAVuoe0hoL126FUA8PDdmq0f4jtCvrDsKC0R5XR UypPmbuFGKFcIChhOJpTjhivM906U1NzfgGX0f8Z0YaW3MEWp0BTXGkk1zR7eFP8 NXWRyvB2NjVtnUpk6LivseanzV/Ed2lCGn4VJmh8QAxgJzY00cHOJlEBq5gIxnQW CtG7o8chLwejEj88/if+0qt2+PDUaOqfaITIZHyk1u28 -----END CERTIFICATE-----Generated at Mon Jan 19 17:33:00 2026 by rpki-client