This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/X3SG_E7dKLkySN2NXBNircknUi0.roa File: X3SG_E7dKLkySN2NXBNircknUi0.roa (raw, json) Hash identifier: H3iDQ4ve/GqzLagGcVLrgcEFBGMPC2p/bJLU2T5Fnqk= Subject key identifier: 5F:74:86:FC:4E:DD:28:B9:32:48:DD:8D:5C:13:62:AD:C9:27:52:2D Certificate issuer: /CN=b7a86cc334c6e0eab83f252bd83eee956925ca40 Certificate serial: 019B7910807BC4EEAB429D1D648CE9F090A2 Authority key identifier: B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/X3SG_E7dKLkySN2NXBNircknUi0.roa Signing time: Thu 01 Jan 2026 10:18:03 +0000 ROA not before: Thu 01 Jan 2026 10:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200962 IP address blocks: 185.90.72.0/22 maxlen: 22 185.90.72.0/24 maxlen: 24 185.90.73.0/24 maxlen: 24 185.90.74.0/24 maxlen: 24 185.90.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:80:7b:c4:ee:ab:42:9d:1d:64:8c:e9:f0:90:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7a86cc334c6e0eab83f252bd83eee956925ca40 Validity Not Before: Jan 1 10:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f7486fc4edd28b93248dd8d5c1362adc927522d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:67:ac:33:bd:32:e0:6b:92:f6:8b:e8:fb: 41:c9:c6:ca:14:1e:2f:c5:4c:4c:8c:5d:b7:fc:e1: f0:63:d7:be:37:d4:be:e5:53:7a:12:df:8b:28:ed: 22:b8:6b:c2:8e:b1:09:6f:63:4b:3e:1f:8d:5b:ab: 8e:8c:c6:90:08:dc:41:2a:a1:f0:b7:09:a5:96:dd: 06:9b:a6:3d:83:df:d9:bb:2a:27:a0:d3:32:cb:de: 41:85:59:38:cd:39:00:b5:6b:bc:9d:3f:52:bb:32: 9f:6d:c6:1d:21:96:21:12:a8:85:66:08:19:b2:92: 12:d8:a8:77:11:17:ab:9f:9c:72:d1:46:d6:d6:54: 43:cf:f5:86:a7:5d:94:c7:38:10:13:a8:d0:aa:d0: 5b:2d:be:b7:a0:04:1d:62:0c:26:2b:1b:d6:2b:0d: d7:27:17:1a:cb:07:b9:8f:ed:25:37:bd:a9:49:5a: 77:f2:75:17:26:c9:0d:96:88:6d:24:d6:15:fa:c1: 74:ad:ee:89:57:c6:c9:0c:3d:50:cc:f6:73:ac:c9: 9c:f9:14:42:48:51:b2:15:6d:97:03:b3:e3:3c:f1: 3f:bc:9e:01:81:7c:e7:0d:0f:e2:7e:1a:b1:a8:4f: fc:4b:95:b2:f4:36:0a:1d:74:5d:fa:fb:00:3e:14: a8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:74:86:FC:4E:DD:28:B9:32:48:DD:8D:5C:13:62:AD:C9:27:52:2D X509v3 Authority Key Identifier: keyid:B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/X3SG_E7dKLkySN2NXBNircknUi0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.90.72.0/22 Signature Algorithm: sha256WithRSAEncryption 95:46:ff:43:54:a6:e6:ab:26:1a:e0:87:30:7b:34:83:be:d2: bd:69:60:29:00:a7:b1:ee:3c:6b:23:3f:4b:ec:4a:c7:0a:c4: 37:c2:8f:03:7c:7b:af:14:61:45:ef:5f:24:6e:c0:f0:c1:ad: bc:20:36:87:f5:4d:e3:06:2e:dd:66:e5:1c:59:0f:c6:7b:3e: 4c:25:9a:21:14:76:b8:cc:26:0b:84:c3:5c:aa:4b:55:eb:18: 5c:7e:85:47:58:14:7b:89:2a:18:e9:02:e6:c1:f1:36:c0:15: 76:53:fb:27:e7:e2:9b:82:f7:cf:f5:1d:db:6d:22:2f:9e:2d: b7:69:c8:91:57:c6:b8:f2:0a:2a:0e:90:bb:60:28:52:36:85: 7b:3f:a1:06:74:1f:ce:98:9b:ec:0c:67:c1:e0:52:e3:9c:23: 10:fe:a7:c4:03:a1:6c:d7:24:3d:9a:d0:9d:7a:7f:14:de:72: f3:17:96:46:29:f4:ce:92:f6:13:4b:62:4a:85:7f:2f:87:14: 88:23:e5:a5:70:33:b8:0e:29:a3:46:28:ca:d3:d5:79:da:8b: 1b:de:de:c1:ab:bd:02:9f:fb:30:4d:98:db:c5:91:8d:7f:04: d3:1c:6d:7d:e2:39:75:8b:04:ba:ef:5c:5a:1e:45:26:fc:2d: d6:2a:6d:e8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EIB7xO6rQp0dZIzp8JCiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3YTg2Y2MzMzRjNmUwZWFiODNmMjUyYmQ4M2VlZTk1Njky NWNhNDAwHhcNMjYwMTAxMTAxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Zjc0ODZmYzRlZGQyOGI5MzI0OGRkOGQ1YzEzNjJhZGM5Mjc1MjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvFnrDO9MuBrkvaL6PtBycbKFB4v xUxMjF23/OHwY9e+N9S+5VN6Et+LKO0iuGvCjrEJb2NLPh+NW6uOjMaQCNxBKqHw twmllt0Gm6Y9g9/ZuyonoNMyy95BhVk4zTkAtWu8nT9SuzKfbcYdIZYhEqiFZggZ spIS2Kh3ERern5xy0UbW1lRDz/WGp12UxzgQE6jQqtBbLb63oAQdYgwmKxvWKw3X Jxcaywe5j+0lN72pSVp38nUXJskNlohtJNYV+sF0re6JV8bJDD1QzPZzrMmc+RRC SFGyFW2XA7PjPPE/vJ4BgXznDQ/ifhqxqE/8S5Wy9DYKHXRd+vsAPhSoMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF90hvxO3Si5MkjdjVwTYq3JJ1ItMB8GA1UdIwQY MBaAFLeobMM0xuDquD8lK9g+7pVpJcpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDZoc3d6VEc0T3E0UHlVcjJEN3VsV2tseWtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC81MDM2YmUtMTM4Yi00NDJlLTk2M2Yt NTdjZDcyOTU3Yjg5LzEvWDNTR19FN2RLTGt5U04yTlhCTmlyY2tuVWkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC81MDM2YmUtMTM4Yi00NDJlLTk2M2YtNTdjZDcyOTU3Yjg5 LzEvdDZoc3d6VEc0T3E0UHlVcjJEN3VsV2tseWtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVpIMA0G CSqGSIb3DQEBCwUAA4IBAQCVRv9DVKbmqyYa4IcwezSDvtK9aWApAKex7jxrIz9L 7ErHCsQ3wo8DfHuvFGFF718kbsDwwa28IDaH9U3jBi7dZuUcWQ/Gez5MJZohFHa4 zCYLhMNcqktV6xhcfoVHWBR7iSoY6QLmwfE2wBV2U/sn5+KbgvfP9R3bbSIvni23 aciRV8a48goqDpC7YChSNoV7P6EGdB/OmJvsDGfB4FLjnCMQ/qfEA6Fs1yQ9mtCd en8U3nLzF5ZGKfTOkvYTS2JKhX8vhxSII+WlcDO4DimjRijK09V52osb3t7Bq70C n/swTZjbxZGNfwTTHG194jl1iwS671xaHkUm/C3WKm3o -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:48 2026 by rpki-client