This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/xsJo78LDkaISlChjyH-2Lz_93IE.roa File: xsJo78LDkaISlChjyH-2Lz_93IE.roa (raw, json) Hash identifier: tgsGAsA9YCYcT/WEizNrURkq8kTG96nlX8C9C14wWrM= Subject key identifier: C6:C2:68:EF:C2:C3:91:A2:12:94:28:63:C8:7F:B6:2F:3F:FD:DC:81 Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad Certificate serial: 019B79ED41B5225052B65895651DCA6DE49B Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/xsJo78LDkaISlChjyH-2Lz_93IE.roa Signing time: Thu 01 Jan 2026 14:19:10 +0000 ROA not before: Thu 01 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211439 IP address blocks: 45.86.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.mft rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:41:b5:22:50:52:b6:58:95:65:1d:ca:6d:e4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad Validity Not Before: Jan 1 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c6c268efc2c391a212942863c87fb62f3ffddc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:0f:78:b5:01:61:c3:16:4a:34:bc:93:59:53: fb:49:c3:50:03:fb:bb:5b:48:dd:24:7b:01:3a:b5: 45:a1:47:81:23:3b:5e:b7:4c:38:ad:a9:67:7e:d9: 53:08:f9:1d:f6:59:de:11:82:c5:59:b3:f0:b7:51: 77:95:99:2b:f7:6b:f0:28:e7:a5:64:6a:0a:fe:26: 48:6f:19:03:4a:88:64:b2:ef:9b:ac:bd:0c:c9:10: 91:95:21:5f:67:78:29:d6:c4:5b:8e:fb:63:ae:8c: 1a:cf:7f:dc:cd:af:e0:46:7d:61:be:86:7a:ef:f6: 27:e4:81:b5:d6:35:6c:20:56:54:6f:04:35:0f:68: 34:4d:fb:7b:5f:a6:eb:85:ae:0d:ba:3f:6f:7d:1f: e3:61:cf:3c:15:76:37:eb:3f:41:60:86:39:65:85: 0b:e5:14:35:a9:61:cb:68:3b:f7:ad:8e:24:a7:62: e7:7c:59:01:7d:ce:55:c5:e3:db:fb:7f:06:fd:e6: af:df:2f:ee:f5:42:ca:02:d6:63:7e:71:4e:5e:5a: ec:a5:5e:10:6b:d5:bd:7a:09:d9:e8:75:22:67:ed: e4:f0:31:a3:e2:7a:ca:16:c3:34:af:c8:31:39:aa: 2c:b9:3e:a0:6b:47:b3:73:a1:f6:01:22:4a:f7:07: 9a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C2:68:EF:C2:C3:91:A2:12:94:28:63:C8:7F:B6:2F:3F:FD:DC:81 X509v3 Authority Key Identifier: keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/xsJo78LDkaISlChjyH-2Lz_93IE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.86.52.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:0c:d7:1e:ad:77:7f:ac:28:98:94:6d:15:c8:a4:ad:91:16: 7a:4a:a7:ff:ed:e8:88:2f:ab:a7:e7:08:c0:0c:2f:e2:f3:67: 70:cc:11:2a:a9:66:eb:04:10:51:f3:d0:d3:93:ac:66:e4:c0: 2e:13:30:8a:86:3a:0f:ac:a5:68:ae:ec:eb:55:03:b6:e1:b1: fe:a6:33:74:21:3b:4e:09:a0:38:fa:b6:90:f3:a5:a8:78:a4: 93:61:fb:41:a4:ed:e9:90:78:f1:45:42:0b:35:10:56:4c:6b: 6d:b5:08:9d:59:1d:24:f6:4a:b0:0a:c4:6e:3a:cf:dd:98:03: 22:d4:fe:b4:44:b6:7e:70:62:33:30:c6:d2:90:a8:39:d0:6c: 2b:b6:f5:6d:c6:73:34:d1:9d:85:50:d6:c9:cd:b4:b7:87:7d: 9f:7e:aa:ab:12:3f:b2:7f:b9:6e:58:8f:f2:3d:57:f4:b7:dd: 00:75:31:15:d9:55:b7:ba:53:87:53:f4:d5:14:80:b2:2b:05: 3a:68:45:71:7b:60:a0:1e:20:a4:bc:e4:4e:e2:35:6e:90:5c: fe:d6:be:32:cd:61:e3:8b:86:e8:36:37:c8:fd:60:3b:86:1b: f8:36:b3:63:40:bf:60:17:cd:30:0a:88:42:aa:e4:8d:03:1a: 7f:c3:a0:17 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57UG1IlBStliVZR3KbeSbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmNDRkYmFjYTU2ZGFjMzE5NDAxZjY4YTUwZDkxN2Y1NDI0 NjExYWQwHhcNMjYwMTAxMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNmMyNjhlZmMyYzM5MWEyMTI5NDI4NjNjODdmYjYyZjNmZmRkYzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Q94tQFhwxZKNLyTWVP7ScNQA/u7 W0jdJHsBOrVFoUeBIztet0w4ralnftlTCPkd9lneEYLFWbPwt1F3lZkr92vwKOel ZGoK/iZIbxkDSohksu+brL0MyRCRlSFfZ3gp1sRbjvtjrowaz3/cza/gRn1hvoZ6 7/Yn5IG11jVsIFZUbwQ1D2g0Tft7X6brha4Nuj9vfR/jYc88FXY36z9BYIY5ZYUL 5RQ1qWHLaDv3rY4kp2LnfFkBfc5VxePb+38G/eav3y/u9ULKAtZjfnFOXlrspV4Q a9W9egnZ6HUiZ+3k8DGj4nrKFsM0r8gxOaosuT6ga0ezc6H2ASJK9weabQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMbCaO/Cw5GiEpQoY8h/ti8//dyBMB8GA1UdIwQY MBaAFP9E26ylbawxlAH2ilDZF/VCRhGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzBUYnJLVnRyREdVQWZhS1VOa1g5VUpHRWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi81M2E5NDctZmQwMy00MDE0LTk4Mjct YzVkODk1MDgxOGVjLzEveHNKbzc4TERrYUlTbENoanlILTJMel85M0lFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi81M2E5NDctZmQwMy00MDE0LTk4MjctYzVkODk1MDgxOGVj LzEvXzBUYnJLVnRyREdVQWZhS1VOa1g5VUpHRWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVY0MA0G CSqGSIb3DQEBCwUAA4IBAQAvDNcerXd/rCiYlG0VyKStkRZ6Sqf/7eiIL6un5wjA DC/i82dwzBEqqWbrBBBR89DTk6xm5MAuEzCKhjoPrKVoruzrVQO24bH+pjN0ITtO CaA4+raQ86WoeKSTYftBpO3pkHjxRUILNRBWTGtttQidWR0k9kqwCsRuOs/dmAMi 1P60RLZ+cGIzMMbSkKg50GwrtvVtxnM00Z2FUNbJzbS3h32ffqqrEj+yf7luWI/y PVf0t90AdTEV2VW3ulOHU/TVFICyKwU6aEVxe2CgHiCkvORO4jVukFz+1r4yzWHj i4boNjfI/WA7hhv4NrNjQL9gF80wCohCquSNAxp/w6AX -----END CERTIFICATE-----Generated at Mon Jan 19 17:10:27 2026 by rpki-client