This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/xZrWPBW5BgagoG32ZyaRPBaTphw.roa File: xZrWPBW5BgagoG32ZyaRPBaTphw.roa (raw, json) Hash identifier: onQW5dWz2jt0k79UU0nLBPXrjY42Umj7KP17o4I6s9E= Subject key identifier: C5:9A:D6:3C:15:B9:06:06:A0:A0:6D:F6:67:26:91:3C:16:93:A6:1C Certificate issuer: /CN=0d4ee193b301665b56f6780f225fd44d144093af Certificate serial: 019B7F82EDB842FC2F1450A6BB2C521B4123 Authority key identifier: 0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/xZrWPBW5BgagoG32ZyaRPBaTphw.roa Signing time: Fri 02 Jan 2026 16:20:45 +0000 ROA not before: Fri 02 Jan 2026 16:20:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199155 IP address blocks: 193.236.16.0/20 maxlen: 20 2001:697::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/DU7hk7MBZltW9ngPIl_UTRRAk68.crl rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/DU7hk7MBZltW9ngPIl_UTRRAk68.mft rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:ed:b8:42:fc:2f:14:50:a6:bb:2c:52:1b:41:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d4ee193b301665b56f6780f225fd44d144093af Validity Not Before: Jan 2 16:20:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c59ad63c15b90606a0a06df66726913c1693a61c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e0:17:19:94:4f:d8:34:bc:b9:35:62:da:28: f7:16:41:e5:5f:98:b3:c0:62:6f:02:6c:3d:0e:ff: 02:0b:cd:d6:6f:ab:d7:e0:a9:46:d6:58:f1:a2:d3: c7:17:05:b4:9f:07:34:e8:8f:40:93:0b:22:b0:e4: 80:80:eb:23:94:59:1e:76:66:5d:2d:92:00:e6:ae: c6:8c:bf:c9:4d:16:3d:9a:60:36:78:d1:0e:d2:a6: 21:6c:59:7e:96:68:8a:17:51:e2:a6:f3:09:32:a7: f6:02:66:49:8f:78:7f:95:24:4c:11:63:04:bf:73: 06:fb:5f:09:b8:8e:7d:83:fd:01:f1:cd:c4:9b:9d: c2:56:94:56:6b:9c:52:e5:fb:df:90:5e:79:d5:38: c3:1a:3d:ab:07:c4:5c:cd:15:d3:a9:d3:ba:eb:b2: a8:94:37:26:8e:f6:e1:fd:42:dc:eb:42:39:c1:3c: ee:65:67:31:1d:21:c7:04:d0:5d:70:21:00:57:b1: f4:36:a6:b2:00:25:aa:32:eb:11:f1:cf:3b:81:33: 3e:2f:f5:51:c2:74:a7:d9:2d:1a:28:aa:3a:08:da: 74:7f:06:65:5a:d6:c9:e2:21:a7:aa:81:b7:24:18: 48:6d:ff:c8:cb:aa:33:ff:71:a1:ce:1a:54:65:2e: bc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9A:D6:3C:15:B9:06:06:A0:A0:6D:F6:67:26:91:3C:16:93:A6:1C X509v3 Authority Key Identifier: keyid:0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/xZrWPBW5BgagoG32ZyaRPBaTphw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/DU7hk7MBZltW9ngPIl_UTRRAk68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.236.16.0/20 IPv6: 2001:697::/32 Signature Algorithm: sha256WithRSAEncryption 4c:67:29:4a:5c:3d:8d:8e:2d:a7:61:07:ba:40:46:a9:e3:e1: e4:66:92:4d:97:a5:a1:e5:e1:db:c8:6d:7b:32:77:62:bd:a0: ad:22:f0:91:e3:3c:53:d8:d9:0e:4f:66:5a:d7:fa:2d:ac:ff: f0:18:b9:cb:e4:36:12:9c:88:c1:c3:19:59:d1:94:24:71:cf: 03:20:a9:d6:0c:a8:17:eb:b0:08:1d:4b:53:2f:d5:8a:9f:a8: df:64:a9:5d:82:ae:db:76:e1:9b:9f:eb:f2:ee:83:80:7a:21: 60:fd:82:80:a1:7d:8f:14:d6:49:3c:7e:51:c9:c2:2a:f4:b2: a6:38:61:b2:42:8d:b0:b7:e2:f8:3f:49:c8:98:43:51:11:6f: c5:d2:de:bb:31:66:5f:5b:7a:dc:6f:1d:e5:a7:36:62:c8:1f: db:8c:b0:76:93:87:66:a6:06:24:49:2d:1e:fa:7b:9f:7f:32: 3d:5b:d9:28:f8:a6:3b:48:eb:21:e8:40:33:0a:51:89:26:8b: 6a:99:fc:43:e6:17:ce:91:3b:23:5b:49:32:7e:c0:41:a9:f5: cd:77:ee:a2:19:6a:52:50:37:22:17:1d:a6:d7:33:e6:74:22: 41:da:e0:3b:6f:42:2e:81:f1:9d:35:68:0e:71:29:32:07:03: 72:ce:6d:43 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/gu24QvwvFFCmuyxSG0EjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkNGVlMTkzYjMwMTY2NWI1NmY2NzgwZjIyNWZkNDRkMTQ0 MDkzYWYwHhcNMjYwMTAyMTYyMDQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTlhZDYzYzE1YjkwNjA2YTBhMDZkZjY2NzI2OTEzYzE2OTNhNjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAneAXGZRP2DS8uTVi2ij3FkHlX5iz wGJvAmw9Dv8CC83Wb6vX4KlG1ljxotPHFwW0nwc06I9AkwsisOSAgOsjlFkedmZd LZIA5q7GjL/JTRY9mmA2eNEO0qYhbFl+lmiKF1HipvMJMqf2AmZJj3h/lSRMEWME v3MG+18JuI59g/0B8c3Em53CVpRWa5xS5fvfkF551TjDGj2rB8RczRXTqdO667Ko lDcmjvbh/ULc60I5wTzuZWcxHSHHBNBdcCEAV7H0NqayACWqMusR8c87gTM+L/VR wnSn2S0aKKo6CNp0fwZlWtbJ4iGnqoG3JBhIbf/Iy6oz/3GhzhpUZS68mQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMWa1jwVuQYGoKBt9mcmkTwWk6YcMB8GA1UdIwQY MBaAFA1O4ZOzAWZbVvZ4DyJf1E0UQJOvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFU3aGs3TUJabHRXOW5nUElsX1VUUlJBazY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8wOTcxMTEtMzA5OC00Y2Y3LWFjMGYt OWY3ZTBmODYyZjFlLzEveFpyV1BCVzVCZ2Fnb0czMlp5YVJQQmFUcGh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8wOTcxMTEtMzA5OC00Y2Y3LWFjMGYtOWY3ZTBmODYyZjFl LzEvRFU3aGs3TUJabHRXOW5nUElsX1VUUlJBazY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEwewQMA0E AgACMAcDBQAgAQaXMA0GCSqGSIb3DQEBCwUAA4IBAQBMZylKXD2Nji2nYQe6QEap 4+HkZpJNl6Wh5eHbyG17MndivaCtIvCR4zxT2NkOT2Za1/otrP/wGLnL5DYSnIjB wxlZ0ZQkcc8DIKnWDKgX67AIHUtTL9WKn6jfZKldgq7bduGbn+vy7oOAeiFg/YKA oX2PFNZJPH5RycIq9LKmOGGyQo2wt+L4P0nImENREW/F0t67MWZfW3rcbx3lpzZi yB/bjLB2k4dmpgYkSS0e+nuffzI9W9ko+KY7SOsh6EAzClGJJotqmfxD5hfOkTsj W0kyfsBBqfXNd+6iGWpSUDciFx2m1zPmdCJB2uA7b0IugfGdNWgOcSkyBwNyzm1D -----END CERTIFICATE-----Generated at Tue Jan 27 01:52:28 2026 by rpki-client