This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/bc66d7-57ab-475d-96ba-89b6c32315c2/1/xQbVNLrkghSR1KoodNn_gRkFImc.roa File: xQbVNLrkghSR1KoodNn_gRkFImc.roa (raw, json) Hash identifier: pt58nZViNxpnnxA6XeQ7GFV7JLxJTNDbZQ9f75iTc5I= Subject key identifier: C5:06:D5:34:BA:E4:82:14:91:D4:AA:28:74:D9:FF:81:19:05:22:67 Certificate issuer: /CN=7f6bd1a6b04625c571d830f878b1c0238247408c Certificate serial: 019B7DC94F56D359FC637395F6B0D33963FF Authority key identifier: 7F:6B:D1:A6:B0:46:25:C5:71:D8:30:F8:78:B1:C0:23:82:47:40:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f2vRprBGJcVx2DD4eLHAI4JHQIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/bc66d7-57ab-475d-96ba-89b6c32315c2/1/xQbVNLrkghSR1KoodNn_gRkFImc.roa Signing time: Fri 02 Jan 2026 08:18:23 +0000 ROA not before: Fri 02 Jan 2026 08:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 4766 IP address blocks: 192.100.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/bc66d7-57ab-475d-96ba-89b6c32315c2/1/f2vRprBGJcVx2DD4eLHAI4JHQIw.crl rsync://rpki.ripe.net/repository/DEFAULT/48/bc66d7-57ab-475d-96ba-89b6c32315c2/1/f2vRprBGJcVx2DD4eLHAI4JHQIw.mft rsync://rpki.ripe.net/repository/DEFAULT/f2vRprBGJcVx2DD4eLHAI4JHQIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:4f:56:d3:59:fc:63:73:95:f6:b0:d3:39:63:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f6bd1a6b04625c571d830f878b1c0238247408c Validity Not Before: Jan 2 08:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c506d534bae4821491d4aa2874d9ff8119052267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a9:33:c9:ae:be:ed:93:26:d1:61:5d:84:4b: bb:7d:cd:de:f8:c6:18:e7:bc:1d:98:46:21:b9:2f: b3:0d:a2:ca:68:67:98:fe:a7:d3:7f:bd:39:79:16: 23:20:a4:22:6e:08:b2:05:4a:9b:42:4b:cb:7a:91: 1d:9e:5e:b1:67:16:b4:e0:c0:93:c8:9f:8c:52:14: 32:fb:c5:7d:ab:c5:19:1d:1a:d3:3e:8c:04:88:09: 41:cc:bf:82:d3:99:1b:7b:5a:a1:b5:70:7b:fb:38: a8:08:63:38:55:c8:67:ad:79:83:70:9c:a9:fa:6a: 03:ae:58:e9:70:2e:61:6c:79:9d:2c:41:49:c3:20: 7a:ab:ad:83:52:e5:f9:da:db:a1:05:56:17:fe:33: 8f:95:67:2d:d3:ef:00:18:89:4d:d5:3d:2d:9f:6b: a3:8e:b5:05:0b:9e:31:b3:18:ce:1b:6d:be:a1:eb: 76:bb:b3:18:19:e1:72:dd:1c:07:04:ab:d0:53:3a: dd:17:4f:6f:07:13:b7:ff:e8:02:4b:c5:5e:be:95: 88:57:cf:ff:63:74:79:df:69:10:34:33:64:ea:e1: 02:ec:3e:40:35:65:94:4e:5a:ff:67:ef:ae:4f:a7: af:a0:8a:dd:7f:fb:bf:d8:62:30:8c:76:96:0c:4d: 51:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:06:D5:34:BA:E4:82:14:91:D4:AA:28:74:D9:FF:81:19:05:22:67 X509v3 Authority Key Identifier: keyid:7F:6B:D1:A6:B0:46:25:C5:71:D8:30:F8:78:B1:C0:23:82:47:40:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2vRprBGJcVx2DD4eLHAI4JHQIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/bc66d7-57ab-475d-96ba-89b6c32315c2/1/xQbVNLrkghSR1KoodNn_gRkFImc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/bc66d7-57ab-475d-96ba-89b6c32315c2/1/f2vRprBGJcVx2DD4eLHAI4JHQIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.100.68.0/24 Signature Algorithm: sha256WithRSAEncryption 85:c0:00:90:df:a5:74:42:a3:34:71:63:b8:36:23:4d:1d:d6: 63:c9:a8:94:19:9b:cf:2d:9e:b8:c3:7d:17:bc:b7:b0:d9:f7: f5:79:f7:8f:9d:45:7c:3d:b9:f5:81:9d:85:9e:2e:28:eb:eb: 27:be:1e:24:85:f4:65:8f:fa:cb:66:62:7a:ad:c8:e4:cd:28: 6f:61:31:f7:85:43:05:cc:b5:2b:bc:32:f2:9e:07:bd:05:b5: d7:41:18:7b:d7:ce:49:85:ce:43:f1:d3:7b:0b:59:67:13:76: 7d:75:8c:1d:9d:ec:c5:62:49:ac:fe:f7:d4:0a:0c:3a:4b:48: 1a:c5:49:e7:22:89:1b:13:91:e1:6c:0a:5d:78:2a:a9:68:a8: 8f:53:aa:73:74:c4:ef:ce:56:60:bb:0d:52:23:e2:d4:8b:21: f0:4f:35:78:cd:9c:ff:0a:c1:f5:61:6f:86:be:76:51:7d:1f: eb:83:bc:97:db:c2:69:d4:a8:89:0d:3c:6c:99:95:66:76:60: 2a:50:f4:18:f8:14:96:e0:0b:60:e9:60:be:1f:07:f3:33:67: 82:64:95:c8:b6:69:de:5d:82:48:27:f5:7e:6b:3f:e6:00:af: 2c:53:8c:d4:6e:b2:8e:ea:38:18:0d:62:5a:3e:d0:dd:33:53: 68:89:63:e8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yU9W01n8Y3OV9rDTOWP/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmNmJkMWE2YjA0NjI1YzU3MWQ4MzBmODc4YjFjMDIzODI0 NzQwOGMwHhcNMjYwMTAyMDgxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTA2ZDUzNGJhZTQ4MjE0OTFkNGFhMjg3NGQ5ZmY4MTE5MDUyMjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwakzya6+7ZMm0WFdhEu7fc3e+MYY 57wdmEYhuS+zDaLKaGeY/qfTf705eRYjIKQibgiyBUqbQkvLepEdnl6xZxa04MCT yJ+MUhQy+8V9q8UZHRrTPowEiAlBzL+C05kbe1qhtXB7+zioCGM4VchnrXmDcJyp +moDrljpcC5hbHmdLEFJwyB6q62DUuX52tuhBVYX/jOPlWct0+8AGIlN1T0tn2uj jrUFC54xsxjOG22+oet2u7MYGeFy3RwHBKvQUzrdF09vBxO3/+gCS8VevpWIV8// Y3R532kQNDNk6uEC7D5ANWWUTlr/Z++uT6evoIrdf/u/2GIwjHaWDE1RuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMUG1TS65IIUkdSqKHTZ/4EZBSJnMB8GA1UdIwQY MBaAFH9r0aawRiXFcdgw+HixwCOCR0CMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZjJ2UnByQkdKY1Z4MkRENGVMSEFJNEpIUUl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9iYzY2ZDctNTdhYi00NzVkLTk2YmEt ODliNmMzMjMxNWMyLzEveFFiVk5McmtnaFNSMUtvb2RObl9nUmtGSW1jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9iYzY2ZDctNTdhYi00NzVkLTk2YmEtODliNmMzMjMxNWMy LzEvZjJ2UnByQkdKY1Z4MkRENGVMSEFJNEpIUUl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwGREMA0G CSqGSIb3DQEBCwUAA4IBAQCFwACQ36V0QqM0cWO4NiNNHdZjyaiUGZvPLZ64w30X vLew2ff1efePnUV8Pbn1gZ2Fni4o6+snvh4khfRlj/rLZmJ6rcjkzShvYTH3hUMF zLUrvDLynge9BbXXQRh7185Jhc5D8dN7C1lnE3Z9dYwdnezFYkms/vfUCgw6S0ga xUnnIokbE5HhbApdeCqpaKiPU6pzdMTvzlZguw1SI+LUiyHwTzV4zZz/CsH1YW+G vnZRfR/rg7yX28Jp1KiJDTxsmZVmdmAqUPQY+BSW4Atg6WC+HwfzM2eCZJXItmne XYJIJ/V+az/mAK8sU4zUbrKO6jgYDWJaPtDdM1NoiWPo -----END CERTIFICATE-----Generated at Mon Jan 19 11:25:48 2026 by rpki-client