This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/xc_O8fJNKB9MZ99docy925NUS6M.roa File: xc_O8fJNKB9MZ99docy925NUS6M.roa (raw, json) Hash identifier: YAI+l3E+qbq82kgBXviylGXScO5+u/jTMIel+5Z3CL0= Subject key identifier: C5:CF:CE:F1:F2:4D:28:1F:4C:67:DF:5D:A1:CC:BD:DB:93:54:4B:A3 Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Certificate serial: 019B7CED9C2A9D21464A05026DC06EE691E8 Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/xc_O8fJNKB9MZ99docy925NUS6M.roa Signing time: Fri 02 Jan 2026 04:18:25 +0000 ROA not before: Fri 02 Jan 2026 04:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202369 IP address blocks: 147.234.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.mft rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:9c:2a:9d:21:46:4a:05:02:6d:c0:6e:e6:91:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Validity Not Before: Jan 2 04:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5cfcef1f24d281f4c67df5da1ccbddb93544ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:51:e7:34:ed:07:b7:ee:98:3f:2c:58:f4: c7:10:03:c0:e4:cb:2d:b6:53:f1:a6:9d:55:4d:a5: b2:86:7f:50:40:e9:32:a9:86:5d:73:45:15:bb:2e: 08:ed:a8:c8:7e:f9:00:58:0b:db:3a:a1:35:e8:51: 8b:5b:04:29:5c:85:5c:69:66:b8:c7:dd:dd:54:08: 5d:b6:11:99:e0:cf:05:85:3b:5a:c9:a6:fc:ed:88: e0:2d:11:db:36:87:34:0d:05:fb:e0:11:ff:c2:a1: f6:e9:6f:09:a6:ba:48:4a:6d:a7:3a:71:a8:d4:13: 17:17:80:e5:41:8f:77:92:df:7e:da:22:97:85:9d: a9:92:e0:06:45:96:ae:33:f7:ca:68:58:e4:d4:58: fd:e2:26:f4:61:26:ef:89:ba:ad:8b:35:16:1f:28: 99:96:c9:10:6a:3e:29:0a:13:c5:ef:89:c8:a8:57: 99:fb:e1:7c:3e:13:74:e4:3b:e2:95:c1:44:81:b2: 9b:ea:31:69:97:78:e6:fa:d3:7c:87:09:2a:f8:54: a3:f9:a5:9a:dd:1e:ce:13:f4:61:74:4a:90:fd:2f: 72:cf:39:9c:3a:5a:74:82:58:29:c7:63:92:41:00: 1f:a5:e3:1b:69:0f:c9:1f:30:43:5a:12:33:b6:44: 1e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CF:CE:F1:F2:4D:28:1F:4C:67:DF:5D:A1:CC:BD:DB:93:54:4B:A3 X509v3 Authority Key Identifier: keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/xc_O8fJNKB9MZ99docy925NUS6M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.234.33.0/24 Signature Algorithm: sha256WithRSAEncryption 69:c2:28:22:7c:b3:9e:bb:41:8e:e0:36:f2:9f:ad:88:3b:0d: 8e:d4:44:c1:9a:96:31:1b:52:b3:4e:90:5c:02:23:14:a4:15: 2d:88:57:3f:d3:f3:d3:91:8a:89:e5:23:79:c2:08:3f:4a:d7: 8b:d3:02:88:84:35:dd:20:7b:35:dd:93:f9:70:e4:7d:19:1f: 9d:a2:6f:55:6a:a2:eb:7c:43:27:b3:cc:a8:3b:fe:f8:40:44: da:b5:a2:6e:97:8f:1c:7a:fe:b2:36:02:53:99:0b:c5:56:1a: 43:7c:80:05:a9:a8:d3:f8:60:e7:85:cd:5f:19:a5:f5:1b:32: bd:cc:87:0a:5c:af:e1:1c:67:2f:93:89:40:da:6d:45:2a:44: 4b:2c:91:60:23:d1:3a:be:05:10:97:61:4a:8b:fa:82:ea:a2: 9b:39:55:29:71:9e:c3:a3:de:40:03:6e:83:63:7e:f6:14:ef: 9f:8c:ad:e5:a2:b7:44:2d:4b:9d:f3:cb:3a:f5:eb:49:17:5f: d8:0c:a0:d0:b7:90:58:fc:5d:f7:87:82:7b:6d:88:50:c6:f8: 50:ea:a5:06:68:0d:d8:c1:ef:31:dd:d4:7b:98:c8:40:25:7b: 51:5d:eb:14:3c:5f:6a:89:c2:f9:3f:e0:9f:5a:94:1c:1d:b1: be:bb:f5:76 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87ZwqnSFGSgUCbcBu5pHoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi NDUwZTYwHhcNMjYwMTAyMDQxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNWNmY2VmMWYyNGQyODFmNGM2N2RmNWRhMWNjYmRkYjkzNTQ0YmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuulR5zTtB7fumD8sWPTHEAPA5Mst tlPxpp1VTaWyhn9QQOkyqYZdc0UVuy4I7ajIfvkAWAvbOqE16FGLWwQpXIVcaWa4 x93dVAhdthGZ4M8FhTtayab87YjgLRHbNoc0DQX74BH/wqH26W8JprpISm2nOnGo 1BMXF4DlQY93kt9+2iKXhZ2pkuAGRZauM/fKaFjk1Fj94ib0YSbvibqtizUWHyiZ lskQaj4pChPF74nIqFeZ++F8PhN05DvilcFEgbKb6jFpl3jm+tN8hwkq+FSj+aWa 3R7OE/RhdEqQ/S9yzzmcOlp0glgpx2OSQQAfpeMbaQ/JHzBDWhIztkQefQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMXPzvHyTSgfTGffXaHMvduTVEujMB8GA1UdIwQY MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt NDQzMzIyOWE4NDczLzEveGNfTzhmSk5LQjlNWjk5ZG9jeTkyNU5VUzZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+ohMA0G CSqGSIb3DQEBCwUAA4IBAQBpwigifLOeu0GO4Dbyn62IOw2O1ETBmpYxG1KzTpBc AiMUpBUtiFc/0/PTkYqJ5SN5wgg/SteL0wKIhDXdIHs13ZP5cOR9GR+dom9VaqLr fEMns8yoO/74QETataJul48cev6yNgJTmQvFVhpDfIAFqajT+GDnhc1fGaX1GzK9 zIcKXK/hHGcvk4lA2m1FKkRLLJFgI9E6vgUQl2FKi/qC6qKbOVUpcZ7Do95AA26D Y372FO+fjK3lordELUud88s69etJF1/YDKDQt5BY/F33h4J7bYhQxvhQ6qUGaA3Y we8x3dR7mMhAJXtRXesUPF9qicL5P+CfWpQcHbG+u/V2 -----END CERTIFICATE-----Generated at Mon Jan 26 23:44:13 2026 by rpki-client