This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/XT9M4nz7U78zyaKpNd8OOHO8Qog.roa File: XT9M4nz7U78zyaKpNd8OOHO8Qog.roa (raw, json) Hash identifier: SiIj+CtkRszsmzTVR/Ptsuqx6GVfhtUG2CmisEl+iio= Subject key identifier: 5D:3F:4C:E2:7C:FB:53:BF:33:C9:A2:A9:35:DF:0E:38:73:BC:42:88 Certificate issuer: /CN=10953e607670ff738eee6a6b577d8c8b2804e1e1 Certificate serial: 019B783524A5B92C351D375B518EDE03F53F Authority key identifier: 10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/XT9M4nz7U78zyaKpNd8OOHO8Qog.roa Signing time: Thu 01 Jan 2026 06:18:27 +0000 ROA not before: Thu 01 Jan 2026 06:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 176.124.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.mft rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:24:a5:b9:2c:35:1d:37:5b:51:8e:de:03:f5:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10953e607670ff738eee6a6b577d8c8b2804e1e1 Validity Not Before: Jan 1 06:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d3f4ce27cfb53bf33c9a2a935df0e3873bc4288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0d:d7:40:7b:7b:7e:bc:f4:8d:59:6c:e3:9b: 3a:3f:92:1b:2d:a2:70:52:19:b7:02:06:e9:d8:ef: b9:65:91:16:ef:f5:02:a4:e7:7b:76:fb:6d:ae:9b: 94:31:2f:33:16:f0:57:7a:5e:66:4e:3a:5e:97:a3: ea:53:da:cf:db:48:e3:a5:bd:fe:08:f3:0d:92:d0: c8:60:c0:0d:da:41:3c:aa:87:2a:88:69:ef:2b:1d: f5:63:45:7a:e8:14:92:e3:53:12:80:f4:c0:e8:ba: 50:4a:92:a9:db:95:4a:cf:b0:f7:51:aa:58:49:97: cb:5c:a0:85:22:44:53:78:74:8c:af:3c:25:1c:1e: d5:56:a6:5f:fd:bf:cb:df:ae:69:04:d0:1e:8a:7e: a5:b3:46:91:75:fb:5f:79:81:18:3d:8d:46:f2:05: 6a:da:51:a3:dc:22:8f:9b:03:89:7a:06:4f:90:54: dd:24:8d:36:10:ba:35:75:4d:38:4a:a4:89:84:6d: 56:2e:91:d0:71:97:aa:71:5f:8f:22:44:b1:11:91: 72:57:67:0e:de:57:11:35:8d:71:a4:66:3a:ee:f0: 71:79:cd:b2:58:2c:3c:54:0e:32:f8:c6:58:15:c2: e9:9d:4b:3c:5e:33:8d:9e:ff:d8:16:ef:36:74:e9: 16:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3F:4C:E2:7C:FB:53:BF:33:C9:A2:A9:35:DF:0E:38:73:BC:42:88 X509v3 Authority Key Identifier: keyid:10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/XT9M4nz7U78zyaKpNd8OOHO8Qog.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.124.224.0/24 Signature Algorithm: sha256WithRSAEncryption 30:e8:91:6c:59:0c:96:23:3e:b7:d5:f6:46:5a:a2:c7:b0:ee: 4f:be:cd:5d:e5:d2:26:96:a6:c6:8f:f8:5b:82:f3:ba:27:28: 85:6a:e8:43:80:2a:3f:5c:fa:f8:f3:35:e7:03:0d:30:13:fd: c0:8d:59:be:a2:5e:82:30:05:01:7d:10:f1:9e:23:1b:98:94: 04:19:ab:73:44:84:52:a6:1f:7f:cc:72:87:6a:e9:1f:06:41: 1b:ea:76:4c:13:6e:08:7a:1c:7c:6a:e6:91:76:ae:4f:c2:46: 48:7d:ca:12:19:b4:d7:fe:2e:7b:85:56:97:1e:b1:c9:79:12: c7:3a:d5:98:19:89:87:91:28:8c:a8:60:4f:ec:34:ba:bd:6b: da:80:ac:b7:57:48:c2:c8:a3:d4:f8:5c:ad:d1:b2:50:3b:e2: 60:f6:b8:47:c3:f8:77:06:e1:16:c7:02:d0:88:27:05:71:06: 0b:5f:d5:77:ba:ed:80:9c:5b:c1:4d:7d:92:9e:1d:ea:ae:4e: e7:aa:06:85:7f:b7:15:b8:78:4f:22:73:10:c1:56:a2:89:a8: 4b:93:7a:86:8a:ee:68:ca:cc:cb:c6:0f:69:3e:ce:f2:a9:1c: a0:01:1f:eb:15:9a:18:ce:29:26:af:88:05:d6:bd:a5:ab:32: 98:d2:1d:8e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NSSluSw1HTdbUY7eA/U/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwOTUzZTYwNzY3MGZmNzM4ZWVlNmE2YjU3N2Q4YzhiMjgw NGUxZTEwHhcNMjYwMTAxMDYxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDNmNGNlMjdjZmI1M2JmMzNjOWEyYTkzNWRmMGUzODczYmM0Mjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQ3XQHt7frz0jVls45s6P5IbLaJw Uhm3Agbp2O+5ZZEW7/UCpOd7dvttrpuUMS8zFvBXel5mTjpel6PqU9rP20jjpb3+ CPMNktDIYMAN2kE8qocqiGnvKx31Y0V66BSS41MSgPTA6LpQSpKp25VKz7D3UapY SZfLXKCFIkRTeHSMrzwlHB7VVqZf/b/L365pBNAein6ls0aRdftfeYEYPY1G8gVq 2lGj3CKPmwOJegZPkFTdJI02ELo1dU04SqSJhG1WLpHQcZeqcV+PIkSxEZFyV2cO 3lcRNY1xpGY67vBxec2yWCw8VA4y+MZYFcLpnUs8XjONnv/YFu82dOkWrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF0/TOJ8+1O/M8miqTXfDjhzvEKIMB8GA1UdIwQY MBaAFBCVPmB2cP9zju5qa1d9jIsoBOHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUpVLVlIWndfM09PN21wclYzMk1peWdFNGVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9hOTkzNTUtMmQwMS00ZGE1LThlNzMt MWJjNTUyYzAwZGQ3LzEvWFQ5TTRuejdVNzh6eWFLcE5kOE9PSE84UW9nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9hOTkzNTUtMmQwMS00ZGE1LThlNzMtMWJjNTUyYzAwZGQ3 LzEvRUpVLVlIWndfM09PN21wclYzMk1peWdFNGVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHzgMA0G CSqGSIb3DQEBCwUAA4IBAQAw6JFsWQyWIz631fZGWqLHsO5Pvs1d5dImlqbGj/hb gvO6JyiFauhDgCo/XPr48zXnAw0wE/3AjVm+ol6CMAUBfRDxniMbmJQEGatzRIRS ph9/zHKHaukfBkEb6nZME24Iehx8auaRdq5PwkZIfcoSGbTX/i57hVaXHrHJeRLH OtWYGYmHkSiMqGBP7DS6vWvagKy3V0jCyKPU+Fyt0bJQO+Jg9rhHw/h3BuEWxwLQ iCcFcQYLX9V3uu2AnFvBTX2Snh3qrk7nqgaFf7cVuHhPInMQwVaiiahLk3qGiu5o yszLxg9pPs7yqRygAR/rFZoYzikmr4gF1r2lqzKY0h2O -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:36 2026 by rpki-client