This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/dxo24NAWy8p1m5MAZSvGymiEUY4.roa File: dxo24NAWy8p1m5MAZSvGymiEUY4.roa (raw, json) Hash identifier: 7VqVZBdxevM4HgdNCCGnVCUjB06a91AHxuxhr9+MQqM= Subject key identifier: 77:1A:36:E0:D0:16:CB:CA:75:9B:93:00:65:2B:C6:CA:68:84:51:8E Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Certificate serial: 019B7D5D1C7B1F6055CF5FFD9B8CDAC7DF12 Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/dxo24NAWy8p1m5MAZSvGymiEUY4.roa Signing time: Fri 02 Jan 2026 06:20:12 +0000 ROA not before: Fri 02 Jan 2026 06:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 53363 IP address blocks: 194.4.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.mft rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:1c:7b:1f:60:55:cf:5f:fd:9b:8c:da:c7:df:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Validity Not Before: Jan 2 06:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=771a36e0d016cbca759b9300652bc6ca6884518e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3a:22:fb:ac:8c:66:df:0a:4f:04:99:85:d2: 29:45:27:69:5a:b5:96:0b:d3:34:ae:ac:6b:00:e9: 40:ea:10:b6:64:79:f9:5b:f8:0b:b1:bc:4a:b0:c1: d5:13:ec:7b:38:9e:35:8a:d5:60:88:5c:33:eb:bd: 61:a3:3c:7c:72:6f:12:44:42:dd:7b:e7:71:23:b0: ff:e7:8a:f4:fc:ad:ba:91:49:9a:88:91:2a:b3:57: 86:02:b4:b6:db:14:76:b8:d7:c3:8a:c5:f6:c2:6f: e2:b9:1b:33:cd:4e:a7:7e:6c:77:fa:0f:ec:2e:d4: 1f:ff:8e:c2:30:7f:2b:96:47:c5:16:36:e8:11:f2: 11:8b:c3:52:ca:6d:54:4e:0c:76:44:ac:ee:12:1a: 05:b6:6c:77:c6:d3:9a:8b:92:0d:61:47:e2:48:bb: b3:ad:68:b1:18:2f:a1:c9:20:4a:7c:1c:5a:7e:5f: 3a:48:86:84:c1:75:96:0b:87:3b:b8:c1:8e:3f:cc: c9:d7:3e:c5:a7:8a:da:cb:64:3d:0a:3c:75:09:9f: 70:10:bc:e2:42:71:75:a5:b4:f1:c7:ef:02:94:ea: cb:2b:13:71:e3:94:b8:ae:a4:f7:5e:66:80:13:01: 19:68:0c:bc:01:48:0c:04:93:31:47:46:54:47:de: 7d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1A:36:E0:D0:16:CB:CA:75:9B:93:00:65:2B:C6:CA:68:84:51:8E X509v3 Authority Key Identifier: keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/dxo24NAWy8p1m5MAZSvGymiEUY4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.4.50.0/24 Signature Algorithm: sha256WithRSAEncryption 02:e8:a3:55:ec:af:f8:39:08:07:87:8c:a6:ca:c0:c7:ac:91: 57:d0:dc:79:ba:6f:c2:fc:4b:50:95:43:39:57:8f:9c:33:51: fb:aa:53:ad:a9:03:48:7a:67:f7:41:23:cc:1b:6d:fe:23:59: 2f:66:d0:61:fd:91:7b:44:4c:07:8e:ab:8d:f9:cd:1b:25:7a: c6:61:b1:bf:59:87:0f:d8:0e:fb:80:f2:68:28:40:a4:92:b6: 86:fd:38:9b:22:17:fe:69:dd:19:65:4a:70:23:84:90:e2:be: e7:a1:a8:41:69:da:1b:bb:0b:00:41:8e:8f:b9:15:49:a6:8f: 0a:47:66:b2:aa:4b:5e:a7:03:3b:0b:c6:fc:bc:b0:e0:c9:d7: 7d:2a:7d:52:0c:6a:46:da:45:3c:9d:d2:de:5c:65:82:78:ee: 19:9a:52:97:31:ff:0d:95:c6:47:a0:26:85:09:15:99:73:ef: 9f:fb:9f:20:66:21:f4:00:32:8c:52:76:6c:51:e1:58:34:85: 60:a3:97:68:ae:4f:65:f7:45:c0:1d:4b:85:cc:b4:40:b6:0d: b4:04:16:ed:82:f8:9a:b0:9c:27:66:15:4e:e6:fd:4c:47:59: 06:8a:a1:ce:29:7f:33:51:32:fa:88:53:ba:92:b1:f4:51:a5: d0:51:40:71 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XRx7H2BVz1/9m4zax98SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm MWM3ZTgwHhcNMjYwMTAyMDYyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzFhMzZlMGQwMTZjYmNhNzU5YjkzMDA2NTJiYzZjYTY4ODQ1MThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zoi+6yMZt8KTwSZhdIpRSdpWrWW C9M0rqxrAOlA6hC2ZHn5W/gLsbxKsMHVE+x7OJ41itVgiFwz671hozx8cm8SRELd e+dxI7D/54r0/K26kUmaiJEqs1eGArS22xR2uNfDisX2wm/iuRszzU6nfmx3+g/s LtQf/47CMH8rlkfFFjboEfIRi8NSym1UTgx2RKzuEhoFtmx3xtOai5INYUfiSLuz rWixGC+hySBKfBxafl86SIaEwXWWC4c7uMGOP8zJ1z7Fp4ray2Q9Cjx1CZ9wELzi QnF1pbTxx+8ClOrLKxNx45S4rqT3XmaAEwEZaAy8AUgMBJMxR0ZUR959WQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHcaNuDQFsvKdZuTAGUrxspohFGOMB8GA1UdIwQY MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt ZWU3NDY1NzU0ZmY2LzEvZHhvMjROQVd5OHAxbTVNQVpTdkd5bWlFVVk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2 LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgQyMA0G CSqGSIb3DQEBCwUAA4IBAQAC6KNV7K/4OQgHh4ymysDHrJFX0Nx5um/C/EtQlUM5 V4+cM1H7qlOtqQNIemf3QSPMG23+I1kvZtBh/ZF7REwHjquN+c0bJXrGYbG/WYcP 2A77gPJoKECkkraG/TibIhf+ad0ZZUpwI4SQ4r7noahBadobuwsAQY6PuRVJpo8K R2ayqktepwM7C8b8vLDgydd9Kn1SDGpG2kU8ndLeXGWCeO4ZmlKXMf8NlcZHoCaF CRWZc++f+58gZiH0ADKMUnZsUeFYNIVgo5dork9l90XAHUuFzLRAtg20BBbtgvia sJwnZhVO5v1MR1kGiqHOKX8zUTL6iFO6krH0UaXQUUBx -----END CERTIFICATE-----Generated at Wed Jan 21 12:44:28 2026 by rpki-client