This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/8b14a3-190f-41a4-b66c-bdf1ba08d5fe/1/XjSNL--AGv2RohzwC7S-Qp8mmh0.roa File: XjSNL--AGv2RohzwC7S-Qp8mmh0.roa (raw, json) Hash identifier: clDhjF0Ylt17QbqIBE+8qKYkZ8/cSocUrgMK4Nq5Jzk= Subject key identifier: 5E:34:8D:2F:EF:80:1A:FD:91:A2:1C:F0:0B:B4:BE:42:9F:26:9A:1D Certificate issuer: /CN=b65b65d40a58f5e142c00b2cebb814e17a4d1cce Certificate serial: 019BF9F3E662B396F4F35C74A13DEBE03C06 Authority key identifier: B6:5B:65:D4:0A:58:F5:E1:42:C0:0B:2C:EB:B8:14:E1:7A:4D:1C:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tltl1ApY9eFCwAss67gU4XpNHM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/8b14a3-190f-41a4-b66c-bdf1ba08d5fe/1/XjSNL--AGv2RohzwC7S-Qp8mmh0.roa Signing time: Mon 26 Jan 2026 10:57:49 +0000 ROA not before: Mon 26 Jan 2026 10:57:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3209 IP address blocks: 193.188.158.0/24 maxlen: 24 193.188.159.0/24 maxlen: 24 195.182.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/8b14a3-190f-41a4-b66c-bdf1ba08d5fe/1/tltl1ApY9eFCwAss67gU4XpNHM4.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/8b14a3-190f-41a4-b66c-bdf1ba08d5fe/1/tltl1ApY9eFCwAss67gU4XpNHM4.mft rsync://rpki.ripe.net/repository/DEFAULT/tltl1ApY9eFCwAss67gU4XpNHM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:f3:e6:62:b3:96:f4:f3:5c:74:a1:3d:eb:e0:3c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b65b65d40a58f5e142c00b2cebb814e17a4d1cce Validity Not Before: Jan 26 10:57:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e348d2fef801afd91a21cf00bb4be429f269a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e1:db:6b:0e:64:a3:80:98:97:e3:b2:a8:ff: 7b:5c:6b:9f:4b:cb:6e:34:c7:4e:c6:20:1b:77:3f: 37:f4:63:f1:dd:b5:20:54:bb:c0:dd:95:15:c0:5a: d4:c3:1f:56:25:d7:06:e8:5b:ee:43:d4:b0:88:e6: 9a:ec:0d:d9:cf:04:93:19:d1:26:15:b4:d5:79:de: 28:31:d0:3e:36:45:da:22:42:0a:2e:67:ab:15:a5: d9:48:d0:ed:0a:88:15:cd:16:0d:16:cb:00:01:01: 32:04:6f:6d:8b:75:79:61:27:af:31:50:22:82:a0: 2c:dd:2d:19:6f:72:ea:04:8e:ad:7f:4e:87:29:53: 24:4e:8c:37:95:d9:02:04:8f:c0:20:bc:87:9e:34: b0:28:12:f1:65:cb:16:75:df:89:9a:f4:99:5c:35: 15:b7:ab:1f:27:a2:a1:d9:11:4a:75:3d:09:c2:4f: 0d:be:fe:36:b7:44:c9:b8:88:be:dd:39:00:16:e7: b4:58:9f:65:cf:19:6e:d9:51:b9:ce:ed:ef:ef:a4: 34:8e:d1:4f:22:5b:2e:fe:f4:8c:4a:18:c5:79:86: f2:27:42:9e:5c:e6:01:b5:ff:1f:d9:54:20:12:66: 2a:bd:be:dd:70:aa:3a:22:58:a4:34:86:d5:b4:6a: 68:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:34:8D:2F:EF:80:1A:FD:91:A2:1C:F0:0B:B4:BE:42:9F:26:9A:1D X509v3 Authority Key Identifier: keyid:B6:5B:65:D4:0A:58:F5:E1:42:C0:0B:2C:EB:B8:14:E1:7A:4D:1C:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tltl1ApY9eFCwAss67gU4XpNHM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8b14a3-190f-41a4-b66c-bdf1ba08d5fe/1/XjSNL--AGv2RohzwC7S-Qp8mmh0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8b14a3-190f-41a4-b66c-bdf1ba08d5fe/1/tltl1ApY9eFCwAss67gU4XpNHM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.188.158.0/23 195.182.45.0/24 Signature Algorithm: sha256WithRSAEncryption ac:78:3a:78:4d:8b:b9:34:05:87:9d:42:9c:55:db:20:c4:6e: b9:45:d4:f8:ff:bc:dd:84:e6:55:56:80:96:9e:e9:e9:89:fe: 2b:e1:f5:79:42:0a:78:2d:ab:43:07:a3:3a:58:58:5c:26:b9: 19:c8:d2:2f:52:b1:13:f9:78:ec:7a:11:b3:1a:59:2a:d1:5c: 97:d6:50:19:f5:cb:48:f8:35:0c:d0:c2:fc:69:b1:b7:ec:f3: f4:2c:7a:8f:bb:e5:fe:c7:b6:35:67:11:c9:4e:fa:8a:51:0c: e0:a3:37:30:c8:76:28:86:5c:2a:7c:28:da:08:72:83:f2:80: 62:91:46:ce:05:62:26:ff:a9:50:ad:f8:36:2c:4e:a7:c4:cf: ef:50:54:31:26:cf:c2:fa:14:e0:6e:96:b7:e4:6f:00:04:e3: 48:5b:e2:f0:56:bb:31:2b:35:06:67:b9:e5:1d:85:4d:0a:13: 65:42:02:e0:68:48:87:37:64:ea:55:dc:99:e5:f7:54:c1:cc: 58:c5:89:d7:88:1b:ec:67:85:8d:3b:0c:c5:3a:8b:ba:9d:5c: 48:1c:c6:be:75:de:14:f7:f8:73:f3:ba:92:2e:3e:77:13:1b: ab:95:b1:11:18:5c:3a:b6:2c:2d:81:f5:4f:bc:26:31:fe:2b: 6f:33:4f:a1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZv58+Zis5b081x0oT3r4DwGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2NWI2NWQ0MGE1OGY1ZTE0MmMwMGIyY2ViYjgxNGUxN2E0 ZDFjY2UwHhcNMjYwMTI2MTA1NzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTM0OGQyZmVmODAxYWZkOTFhMjFjZjAwYmI0YmU0MjlmMjY5YTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+Hbaw5ko4CYl+OyqP97XGufS8tu NMdOxiAbdz839GPx3bUgVLvA3ZUVwFrUwx9WJdcG6FvuQ9SwiOaa7A3ZzwSTGdEm FbTVed4oMdA+NkXaIkIKLmerFaXZSNDtCogVzRYNFssAAQEyBG9ti3V5YSevMVAi gqAs3S0Zb3LqBI6tf06HKVMkTow3ldkCBI/AILyHnjSwKBLxZcsWdd+JmvSZXDUV t6sfJ6Kh2RFKdT0Jwk8Nvv42t0TJuIi+3TkAFue0WJ9lzxlu2VG5zu3v76Q0jtFP Ilsu/vSMShjFeYbyJ0KeXOYBtf8f2VQgEmYqvb7dcKo6IlikNIbVtGpoTwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFF40jS/vgBr9kaIc8Au0vkKfJpodMB8GA1UdIwQY MBaAFLZbZdQKWPXhQsALLOu4FOF6TRzOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGx0bDFBcFk5ZUZDd0FzczY3Z1U0WHBOSE00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC84YjE0YTMtMTkwZi00MWE0LWI2NmMt YmRmMWJhMDhkNWZlLzEvWGpTTkwtLUFHdjJSb2h6d0M3Uy1RcDhtbWgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC84YjE0YTMtMTkwZi00MWE0LWI2NmMtYmRmMWJhMDhkNWZl LzEvdGx0bDFBcFk5ZUZDd0FzczY3Z1U0WHBOSE00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwbyeAwQA w7YtMA0GCSqGSIb3DQEBCwUAA4IBAQCseDp4TYu5NAWHnUKcVdsgxG65RdT4/7zd hOZVVoCWnunpif4r4fV5Qgp4LatDB6M6WFhcJrkZyNIvUrET+XjsehGzGlkq0VyX 1lAZ9ctI+DUM0ML8abG37PP0LHqPu+X+x7Y1ZxHJTvqKUQzgozcwyHYohlwqfCja CHKD8oBikUbOBWIm/6lQrfg2LE6nxM/vUFQxJs/C+hTgbpa35G8ABONIW+LwVrsx KzUGZ7nlHYVNChNlQgLgaEiHN2TqVdyZ5fdUwcxYxYnXiBvsZ4WNOwzFOou6nVxI HMa+dd4U9/hz87qSLj53ExurlbERGFw6tiwtgfVPvCYx/itvM0+h -----END CERTIFICATE-----Generated at Mon Jan 26 21:32:41 2026 by rpki-client