This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/X45FUcZNo-YtDvtPWevU4wJ2FEY.roa File: X45FUcZNo-YtDvtPWevU4wJ2FEY.roa (raw, json) Hash identifier: rSd13zzClfxZXjpfUKzjtwc06S4fldzcQ0W8TuRXJxI= Subject key identifier: 5F:8E:45:51:C6:4D:A3:E6:2D:0E:FB:4F:59:EB:D4:E3:02:76:14:46 Certificate issuer: /CN=0d0874b333e35df14fd970e189581da093bc8093 Certificate serial: 019B79ED1ED50DBCC62486008020660D4103 Authority key identifier: 0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/X45FUcZNo-YtDvtPWevU4wJ2FEY.roa Signing time: Thu 01 Jan 2026 14:19:01 +0000 ROA not before: Thu 01 Jan 2026 14:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199496 IP address blocks: 95.129.248.0/21 maxlen: 32 185.13.76.0/22 maxlen: 32 185.65.156.0/22 maxlen: 32 185.165.252.0/22 maxlen: 32 185.165.254.0/24 maxlen: 24 185.165.255.0/24 maxlen: 24 185.235.220.0/22 maxlen: 32 185.249.76.0/22 maxlen: 32 2a00:83e0::/32 maxlen: 64 2a02:f4c0::/29 maxlen: 64 2a09:d00::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:1e:d5:0d:bc:c6:24:86:00:80:20:66:0d:41:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d0874b333e35df14fd970e189581da093bc8093 Validity Not Before: Jan 1 14:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f8e4551c64da3e62d0efb4f59ebd4e302761446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:09:45:22:da:db:73:3c:20:ab:0a:d2:11:be: c4:cf:e5:e2:9d:6c:8c:8e:df:9f:54:32:a1:10:55: 57:dc:a4:62:04:5b:bf:83:e1:ab:c3:05:70:60:c0: 20:b0:e1:14:c3:bb:a8:63:db:f2:b1:4f:b7:1b:3a: 59:14:d5:3d:49:72:08:ac:24:95:8e:0d:ef:7c:5f: 08:d1:32:51:fa:e2:27:a3:1c:6f:67:a0:c0:93:02: eb:40:0d:7f:a6:9d:46:c1:85:e6:cd:79:ee:ae:6e: b0:de:da:fe:7a:b0:43:f8:95:2f:46:ca:6f:73:c7: 23:0a:11:16:b0:9e:e9:0d:8d:a9:d2:20:11:5f:bd: d2:fd:d9:81:68:e6:b2:6e:a5:3a:e9:bb:db:d5:ae: 8f:22:a1:f2:9b:d2:39:af:0d:9b:89:76:5e:e9:34: e2:8a:d4:8d:8a:1b:4c:7a:3a:d8:6f:e8:de:d8:3b: be:64:91:d5:04:ed:ae:97:a4:63:a6:d1:7c:b1:c0: ca:9c:0c:f3:75:45:57:7c:7d:e4:8f:96:66:a0:21: a5:d7:99:97:1b:34:ab:6e:b8:35:ff:c5:f4:71:92: 63:44:69:38:8e:78:b7:7e:96:f8:9a:9e:e2:b3:dc: bd:ce:53:0e:8f:54:43:42:cf:e1:fc:41:62:d0:83: 18:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8E:45:51:C6:4D:A3:E6:2D:0E:FB:4F:59:EB:D4:E3:02:76:14:46 X509v3 Authority Key Identifier: keyid:0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/X45FUcZNo-YtDvtPWevU4wJ2FEY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.129.248.0/21 185.13.76.0/22 185.65.156.0/22 185.165.252.0/22 185.235.220.0/22 185.249.76.0/22 IPv6: 2a00:83e0::/32 2a02:f4c0::/29 2a09:d00::/29 Signature Algorithm: sha256WithRSAEncryption 48:86:15:94:0d:f7:9c:51:af:fb:82:0d:f6:0f:07:de:e3:9c: fd:10:4b:04:b9:90:ad:e7:4b:f1:21:81:41:d7:4f:a9:79:9c: da:2e:dd:0b:66:5d:79:67:55:57:dc:ca:08:8f:35:c7:31:b3: ad:3a:47:97:3a:2e:df:c8:6e:b4:7a:2f:2b:14:80:20:95:f3: 25:7d:e8:3e:23:73:b9:18:c7:1e:0e:8c:a8:a8:d5:1c:b0:15: bb:0b:89:2b:2b:0e:24:64:dc:5b:ec:2d:30:40:fc:89:e4:3d: aa:1f:45:ed:b1:0b:34:b2:0c:25:d6:ed:c1:e6:44:09:aa:1c: 9a:fe:bd:d5:7c:74:b9:60:41:7f:db:87:55:cc:2b:19:1f:e2: 7a:f3:42:94:39:e4:cc:42:bf:55:2c:3b:cf:1c:e0:d1:ec:86: d9:82:a2:8b:0d:32:b1:f3:04:aa:45:0a:28:97:87:8f:c7:29: 0e:68:a4:4f:bb:56:3a:a3:d6:64:c8:82:09:3b:13:91:83:dc: e8:4d:f9:9a:45:b6:ae:b7:59:e8:e6:81:f0:1e:2b:f5:75:71: 00:44:df:f2:53:4d:d7:84:81:94:7b:86:46:76:a8:ca:1c:cb: 4f:d6:10:83:fd:c7:db:18:b0:63:4f:c5:e5:ec:d3:17:66:26: 94:c1:fb:a9 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgISAZt57R7VDbzGJIYAgCBmDUEDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMDg3NGIzMzNlMzVkZjE0ZmQ5NzBlMTg5NTgxZGEwOTNi YzgwOTMwHhcNMjYwMTAxMTQxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjhlNDU1MWM2NGRhM2U2MmQwZWZiNGY1OWViZDRlMzAyNzYxNDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwglFItrbczwgqwrSEb7Ez+XinWyM jt+fVDKhEFVX3KRiBFu/g+GrwwVwYMAgsOEUw7uoY9vysU+3GzpZFNU9SXIIrCSV jg3vfF8I0TJR+uInoxxvZ6DAkwLrQA1/pp1GwYXmzXnurm6w3tr+erBD+JUvRspv c8cjChEWsJ7pDY2p0iARX73S/dmBaOaybqU66bvb1a6PIqHym9I5rw2biXZe6TTi itSNihtMejrYb+je2Du+ZJHVBO2ul6RjptF8scDKnAzzdUVXfH3kj5ZmoCGl15mX GzSrbrg1/8X0cZJjRGk4jni3fpb4mp7is9y9zlMOj1RDQs/h/EFi0IMYLQIDAQAB o4ICRDCCAkAwHQYDVR0OBBYEFF+ORVHGTaPmLQ77T1nr1OMCdhRGMB8GA1UdIwQY MBaAFA0IdLMz413xT9lw4YlYHaCTvICTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFFoMHN6UGpYZkZQMlhEaGlWZ2RvSk84Z0pNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9iMDM5YmMtMjEzYi00NTdjLTk2YWUt MzE4MWRiOTExYTEzLzEvWDQ1RlVjWk5vLVl0RHZ0UFdldlU0d0oyRkVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9iMDM5YmMtMjEzYi00NTdjLTk2YWUtMzE4MWRiOTExYTEz LzEvRFFoMHN6UGpYZkZQMlhEaGlWZ2RvSk84Z0pNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTAqBAIAATAkAwQDX4H4AwQC uQ1MAwQCuUGcAwQCuaX8AwQCuevcAwQCuflMMBsEAgACMBUDBQAqAIPgAwUDKgL0 wAMFAyoJDQAwDQYJKoZIhvcNAQELBQADggEBAEiGFZQN95xRr/uCDfYPB97jnP0Q SwS5kK3nS/EhgUHXT6l5nNou3QtmXXlnVVfcygiPNccxs606R5c6Lt/IbrR6LysU gCCV8yV96D4jc7kYxx4OjKio1RywFbsLiSsrDiRk3FvsLTBA/InkPaofRe2xCzSy DCXW7cHmRAmqHJr+vdV8dLlgQX/bh1XMKxkf4nrzQpQ55MxCv1UsO88c4NHshtmC oosNMrHzBKpFCiiXh4/HKQ5opE+7Vjqj1mTIggk7E5GD3OhN+ZpFtq63WejmgfAe K/V1cQBE3/JTTdeEgZR7hkZ2qMocy0/WEIP9x9sYsGNPxeXs0xdmJpTB+6k= -----END CERTIFICATE-----Generated at Tue Feb 10 02:47:28 2026 by rpki-client