This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/xc68dlKAlkPayQbp8XbbIFHKu1k.roa File: xc68dlKAlkPayQbp8XbbIFHKu1k.roa (raw, json) Hash identifier: 8A0JrgoWDsESGwfhL/d+Fl2HNf/7w1RHtoxlj8Fsq18= Subject key identifier: C5:CE:BC:76:52:80:96:43:DA:C9:06:E9:F1:76:DB:20:51:CA:BB:59 Certificate issuer: /CN=c255989d579c4b5eade852f97f62e9bf2cfbde3c Certificate serial: 019B78A353A0C0EF93DC38FA052FFEC466B6 Authority key identifier: C2:55:98:9D:57:9C:4B:5E:AD:E8:52:F9:7F:62:E9:BF:2C:FB:DE:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wlWYnVecS16t6FL5f2Lpvyz73jw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/xc68dlKAlkPayQbp8XbbIFHKu1k.roa Signing time: Thu 01 Jan 2026 08:18:48 +0000 ROA not before: Thu 01 Jan 2026 08:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 188.95.140.0/24 maxlen: 24 188.95.141.0/24 maxlen: 24 188.95.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/wlWYnVecS16t6FL5f2Lpvyz73jw.crl rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/wlWYnVecS16t6FL5f2Lpvyz73jw.mft rsync://rpki.ripe.net/repository/DEFAULT/wlWYnVecS16t6FL5f2Lpvyz73jw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:53:a0:c0:ef:93:dc:38:fa:05:2f:fe:c4:66:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c255989d579c4b5eade852f97f62e9bf2cfbde3c Validity Not Before: Jan 1 08:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5cebc7652809643dac906e9f176db2051cabb59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7e:e4:f9:47:c4:52:a2:79:67:33:2d:46:df: 31:d4:33:b4:82:8f:76:f7:fb:8c:45:36:57:91:bf: 7b:8f:86:74:ce:07:6c:24:94:66:bd:bf:90:52:a1: f9:e9:e9:b9:04:74:8e:bd:ec:03:b7:99:7e:f1:5b: 40:c2:34:d4:60:35:cb:f7:f8:41:f4:bf:fd:17:67: 95:98:b6:1f:db:67:28:d7:ba:71:17:71:d5:fc:5d: eb:3a:0c:06:1d:8f:76:4b:64:16:06:89:12:e7:cc: ea:ab:58:55:20:4d:d5:d1:67:9c:b3:70:34:83:21: ea:33:19:8d:cb:ee:8c:91:97:50:36:d1:df:c6:c0: cc:6e:66:80:e0:71:a3:11:68:41:8b:d8:ff:b8:46: cf:5c:a5:5c:37:1f:59:94:22:da:03:b9:1f:c6:94: df:74:93:70:5e:34:36:a9:5e:20:e6:83:6a:f7:ee: f2:2d:c6:bf:e5:9f:37:98:df:6f:5b:13:6e:e4:04: ec:c5:67:8b:f7:ac:01:82:a0:f2:d2:31:47:0d:e9: 46:b0:d8:78:34:8a:cc:b5:22:6f:ef:66:e9:18:12: 1a:86:5f:f5:88:54:97:f3:1f:78:04:e6:79:a3:6f: ba:3a:84:3c:fd:71:9f:e8:18:6b:8e:f7:82:95:bb: 56:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CE:BC:76:52:80:96:43:DA:C9:06:E9:F1:76:DB:20:51:CA:BB:59 X509v3 Authority Key Identifier: keyid:C2:55:98:9D:57:9C:4B:5E:AD:E8:52:F9:7F:62:E9:BF:2C:FB:DE:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wlWYnVecS16t6FL5f2Lpvyz73jw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/xc68dlKAlkPayQbp8XbbIFHKu1k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/wlWYnVecS16t6FL5f2Lpvyz73jw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.95.140.0-188.95.142.255 Signature Algorithm: sha256WithRSAEncryption 3f:26:64:b3:c5:fc:0b:c8:e8:91:42:6a:08:cf:21:0e:4d:1c: 18:e0:86:5c:08:aa:d8:1e:88:74:60:54:63:a6:0b:c8:d7:5c: 36:3a:a1:9f:27:dd:e5:87:29:a7:11:f4:74:3e:96:af:ca:cd: 1b:e4:eb:26:a6:d3:7b:69:dd:b5:dd:cf:f2:e9:c0:e1:30:55: a8:d1:07:88:43:af:1a:45:7e:42:b5:15:62:cf:68:04:f9:56: 19:e8:45:72:76:dc:83:94:92:09:e2:00:29:0d:cd:19:52:9e: 48:c7:14:3b:46:b8:d9:2f:87:40:14:c1:23:5c:87:bd:4e:02: c9:6b:d7:96:33:6b:b1:3c:29:4a:ec:3e:0e:0c:92:39:a6:0b: c7:06:8d:52:95:2f:33:bc:64:8e:f8:80:fa:60:47:45:8c:99: 2a:ea:e8:00:4b:e6:a3:4d:b5:82:56:a2:15:cf:31:93:2e:53: e4:61:b6:e6:9f:7f:2b:64:9b:6e:a5:a0:de:3b:6e:b6:2e:3a: e1:1a:17:a0:bf:cc:3f:41:01:53:c6:69:c7:fa:3a:46:52:20: 8d:ab:8c:83:7b:44:cf:82:67:b5:95:bf:e6:90:4a:42:4e:a9: 6a:db:de:04:51:a8:b1:8e:bb:0d:19:9f:26:8b:d2:60:b9:58: e3:ae:36:ae -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt4o1OgwO+T3Dj6BS/+xGa2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyNTU5ODlkNTc5YzRiNWVhZGU4NTJmOTdmNjJlOWJmMmNm YmRlM2MwHhcNMjYwMTAxMDgxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNWNlYmM3NjUyODA5NjQzZGFjOTA2ZTlmMTc2ZGIyMDUxY2FiYjU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo37k+UfEUqJ5ZzMtRt8x1DO0go92 9/uMRTZXkb97j4Z0zgdsJJRmvb+QUqH56em5BHSOvewDt5l+8VtAwjTUYDXL9/hB 9L/9F2eVmLYf22co17pxF3HV/F3rOgwGHY92S2QWBokS58zqq1hVIE3V0Wecs3A0 gyHqMxmNy+6MkZdQNtHfxsDMbmaA4HGjEWhBi9j/uEbPXKVcNx9ZlCLaA7kfxpTf dJNwXjQ2qV4g5oNq9+7yLca/5Z83mN9vWxNu5ATsxWeL96wBgqDy0jFHDelGsNh4 NIrMtSJv72bpGBIahl/1iFSX8x94BOZ5o2+6OoQ8/XGf6BhrjveClbtWLQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFMXOvHZSgJZD2skG6fF22yBRyrtZMB8GA1UdIwQY MBaAFMJVmJ1XnEterehS+X9i6b8s+948MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2xXWW5WZWNTMTZ0NkZMNWYyTHB2eXo3M2p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83MjAzOTQtY2Y3MS00MGEzLWE1Mzgt ZWQwMWVkN2MxMjliLzEveGM2OGRsS0Fsa1BheVFicDhYYmJJRkhLdTFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS83MjAzOTQtY2Y3MS00MGEzLWE1MzgtZWQwMWVkN2MxMjli LzEvd2xXWW5WZWNTMTZ0NkZMNWYyTHB2eXo3M2p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAK8X4wD BAC8X44wDQYJKoZIhvcNAQELBQADggEBAD8mZLPF/AvI6JFCagjPIQ5NHBjghlwI qtgeiHRgVGOmC8jXXDY6oZ8n3eWHKacR9HQ+lq/KzRvk6yam03tp3bXdz/LpwOEw VajRB4hDrxpFfkK1FWLPaAT5VhnoRXJ23IOUkgniACkNzRlSnkjHFDtGuNkvh0AU wSNch71OAslr15Yza7E8KUrsPg4MkjmmC8cGjVKVLzO8ZI74gPpgR0WMmSrq6ABL 5qNNtYJWohXPMZMuU+Rhtuaffytkm26loN47brYuOuEaF6C/zD9BAVPGacf6OkZS II2rjIN7RM+CZ7WVv+aQSkJOqWrb3gRRqLGOuw0ZnyaL0mC5WOOuNq4= -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:16 2026 by rpki-client