This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/XZGlyG2IPt3742FE82Tkz8mGyq4.roa File: XZGlyG2IPt3742FE82Tkz8mGyq4.roa (raw, json) Hash identifier: v8XatKoIXBXuIzaIEHcax1FamZrLl2OwB/RHFgt/lSU= Subject key identifier: 5D:91:A5:C8:6D:88:3E:DD:FB:E3:61:44:F3:64:E4:CF:C9:86:CA:AE Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec Certificate serial: 019B7A5AB261856345ACE709AB396D898EDB Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/XZGlyG2IPt3742FE82Tkz8mGyq4.roa Signing time: Thu 01 Jan 2026 16:18:42 +0000 ROA not before: Thu 01 Jan 2026 16:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58087 IP address blocks: 37.114.37.0/24 maxlen: 24 37.114.46.0/24 maxlen: 24 37.114.50.0/24 maxlen: 24 37.114.63.0/24 maxlen: 24 176.100.36.0/24 maxlen: 24 176.100.37.0/24 maxlen: 24 176.100.39.0/24 maxlen: 24 185.14.92.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.mft rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 19:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:b2:61:85:63:45:ac:e7:09:ab:39:6d:89:8e:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec Validity Not Before: Jan 1 16:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d91a5c86d883eddfbe36144f364e4cfc986caae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f9:fd:6f:fe:57:86:0a:94:c1:7e:57:56:90: 0a:be:98:1b:bc:15:2c:e2:81:89:ef:5d:be:fd:94: 69:48:c2:43:ec:49:b2:54:da:b0:35:12:49:fa:34: fd:62:12:25:7c:01:d9:c9:cd:0e:cc:d9:c1:35:7b: 00:fe:9e:7c:93:b4:c4:07:3d:06:04:ca:b1:94:31: b2:94:dc:fc:54:64:c0:9b:ca:e7:ce:d4:c6:4d:2a: 39:ba:a5:99:80:c7:bb:c1:ee:7d:1f:71:07:b4:bb: 87:1c:28:40:90:89:ed:62:a3:05:8f:b3:be:66:06: fd:96:d7:ab:a9:6a:3e:86:30:9f:91:70:17:f9:97: f8:fd:76:b8:0d:b6:6a:29:9a:88:e0:f4:5e:41:6a: 67:00:b9:b8:5a:63:9f:99:e3:ca:8e:3f:c3:58:3c: 61:47:0b:51:98:f2:48:77:f3:52:ab:fe:50:25:37: b9:7f:95:9f:9e:ce:aa:f5:85:c5:2e:cf:c7:2b:26: 3c:a2:e6:5f:a0:26:a2:56:1a:5b:33:f3:98:62:e9: fd:dd:dd:f7:e1:2c:93:b9:0f:70:47:7e:bc:b8:5b: 39:c0:3c:2f:8d:ed:26:28:f1:98:ff:e9:07:f9:4b: 4b:5d:e8:13:ab:5f:e1:73:e2:25:e7:59:54:7b:5f: 68:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:91:A5:C8:6D:88:3E:DD:FB:E3:61:44:F3:64:E4:CF:C9:86:CA:AE X509v3 Authority Key Identifier: keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/XZGlyG2IPt3742FE82Tkz8mGyq4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.114.37.0/24 37.114.46.0/24 37.114.50.0/24 37.114.63.0/24 176.100.36.0/23 176.100.39.0/24 185.14.92.0/24 Signature Algorithm: sha256WithRSAEncryption 71:de:27:33:07:2f:cc:34:21:31:bc:83:c3:c0:84:e2:25:78: c5:b8:9d:59:2a:d0:53:5a:97:d9:29:5f:b4:52:b3:7a:ce:f3: 80:64:e2:78:c1:72:03:03:b0:1e:1f:29:c3:b0:fd:1d:dd:45: a9:56:fc:b7:9a:39:3e:3b:43:bb:a2:8f:10:cd:98:c2:5e:60: 6a:6e:eb:6c:e6:89:ed:db:1e:65:cb:3a:11:f7:7a:b0:d2:ca: b2:b6:3c:82:7a:d3:d2:3f:c9:99:bd:7e:51:12:0e:43:24:b7: 06:84:2f:fe:75:76:47:66:37:f9:57:a2:81:34:a5:50:75:e7: 93:10:1b:84:51:6d:fd:ba:3b:00:6b:04:d8:53:48:8d:24:a8: 32:43:b8:64:02:26:f4:92:bc:df:05:44:81:0b:fc:dc:42:61: 7d:73:34:f2:21:24:bd:3f:92:89:f7:1a:5a:f4:6b:56:9a:3d: d2:dd:5a:c5:46:bd:75:60:8d:9b:87:e0:cd:b7:a8:d2:10:b7: bb:91:cd:77:cb:52:3a:a4:90:26:84:98:5c:3e:06:a4:36:18: 21:62:03:b5:07:d5:a7:68:1f:ad:71:cb:00:9f:97:f0:60:0a: 54:3d:12:d3:c8:cc:3e:0c:34:c1:21:92:2e:8d:61:cf:09:81: 4e:d7:57:ef -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt6WrJhhWNFrOcJqzltiY7bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NjU5M2I3NDdlNzZhNTY0OTI1MTFiYjM2MTJlNGQ1ZTRj YmU3ZWMwHhcNMjYwMTAxMTYxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDkxYTVjODZkODgzZWRkZmJlMzYxNDRmMzY0ZTRjZmM5ODZjYWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6vn9b/5XhgqUwX5XVpAKvpgbvBUs 4oGJ712+/ZRpSMJD7EmyVNqwNRJJ+jT9YhIlfAHZyc0OzNnBNXsA/p58k7TEBz0G BMqxlDGylNz8VGTAm8rnztTGTSo5uqWZgMe7we59H3EHtLuHHChAkIntYqMFj7O+ Zgb9lterqWo+hjCfkXAX+Zf4/Xa4DbZqKZqI4PReQWpnALm4WmOfmePKjj/DWDxh RwtRmPJId/NSq/5QJTe5f5Wfns6q9YXFLs/HKyY8ouZfoCaiVhpbM/OYYun93d33 4SyTuQ9wR368uFs5wDwvje0mKPGY/+kH+UtLXegTq1/hc+Il51lUe19o/wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFF2RpchtiD7d++NhRPNk5M/JhsquMB8GA1UdIwQY MBaAFCllk7dH52pWSSURuzYS5NXky+fsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1dXVHQwZm5hbFpKSlJHN05oTGsxZVRMNS13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9jNThiZGMtMTRlNy00OTljLTlkOWMt MWI3Y2JiMDhkNzNmLzEvWFpHbHlHMklQdDM3NDJGRTgyVGt6OG1HeXE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9jNThiZGMtMTRlNy00OTljLTlkOWMtMWI3Y2JiMDhkNzNm LzEvS1dXVHQwZm5hbFpKSlJHN05oTGsxZVRMNS13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAJXIlAwQA JXIuAwQAJXIyAwQAJXI/AwQBsGQkAwQAsGQnAwQAuQ5cMA0GCSqGSIb3DQEBCwUA A4IBAQBx3iczBy/MNCExvIPDwITiJXjFuJ1ZKtBTWpfZKV+0UrN6zvOAZOJ4wXID A7AeHynDsP0d3UWpVvy3mjk+O0O7oo8QzZjCXmBqbuts5ont2x5lyzoR93qw0sqy tjyCetPSP8mZvX5REg5DJLcGhC/+dXZHZjf5V6KBNKVQdeeTEBuEUW39ujsAawTY U0iNJKgyQ7hkAib0krzfBUSBC/zcQmF9czTyISS9P5KJ9xpa9GtWmj3S3VrFRr11 YI2bh+DNt6jSELe7kc13y1I6pJAmhJhcPgakNhghYgO1B9WnaB+tccsAn5fwYApU PRLTyMw+DDTBIZIujWHPCYFO11fv -----END CERTIFICATE-----Generated at Wed Jan 21 06:06:36 2026 by rpki-client