This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/xN-iH4H9eMR0rlQa8wdhMf2l7I4.roa File: xN-iH4H9eMR0rlQa8wdhMf2l7I4.roa (raw, json) Hash identifier: 1fRI0jfHRH/HGV3lsPgwdyCxPSzmPkzersGfoqaooYU= Subject key identifier: C4:DF:A2:1F:81:FD:78:C4:74:AE:54:1A:F3:07:61:31:FD:A5:EC:8E Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Certificate serial: 019B78343CEBEEF81EA3C453A5F34402177A Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/xN-iH4H9eMR0rlQa8wdhMf2l7I4.roa Signing time: Thu 01 Jan 2026 06:17:28 +0000 ROA not before: Thu 01 Jan 2026 06:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1647 IP address blocks: 188.172.229.0/24 maxlen: 24 2a00:11c0:3a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:3c:eb:ee:f8:1e:a3:c4:53:a5:f3:44:02:17:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Validity Not Before: Jan 1 06:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4dfa21f81fd78c474ae541af3076131fda5ec8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:69:8c:ce:d4:32:93:c2:61:02:5f:81:4b:80: ae:1c:5c:f0:8b:94:7b:78:0e:2d:22:07:5b:4c:9f: 59:41:16:f7:06:79:c0:18:18:d3:48:54:ae:0b:1d: a0:40:59:4a:fe:a9:6d:50:97:13:10:f0:88:20:cb: 09:2f:e2:1c:ac:53:72:78:6f:37:f6:f7:e2:8f:15: 32:39:63:2f:d7:6e:3a:e7:ab:a9:95:1f:e5:39:54: 04:ed:d6:bb:e8:d1:49:bb:12:a2:d4:37:cd:a6:f1: 5f:bf:3a:13:ce:90:fe:c2:5f:c2:56:50:ed:71:03: ad:91:1b:f5:95:43:1e:f3:14:aa:cc:65:1a:a4:65: 59:ae:72:4a:ff:58:18:3b:d3:2b:40:cc:eb:7b:c1: 9f:b1:bd:66:38:69:82:b5:15:16:80:14:42:4a:c3: 9d:ad:f7:f2:02:d0:d7:ea:2e:d3:c3:a2:69:bd:37: c1:0e:0b:76:28:fb:a6:2f:78:05:b8:97:32:af:ed: 3d:48:2a:6f:2a:a6:41:49:31:e4:5e:cd:c4:e2:65: 0c:1d:44:dc:07:6d:98:ff:b7:82:20:91:b2:e7:fb: 93:da:c9:48:f0:3e:48:dd:69:6f:33:aa:d2:ec:ec: 45:d9:f2:2a:bf:1b:2f:b8:6a:cd:98:03:09:b0:c8: 0b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DF:A2:1F:81:FD:78:C4:74:AE:54:1A:F3:07:61:31:FD:A5:EC:8E X509v3 Authority Key Identifier: keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/xN-iH4H9eMR0rlQa8wdhMf2l7I4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.172.229.0/24 IPv6: 2a00:11c0:3a::/48 Signature Algorithm: sha256WithRSAEncryption 01:ef:f6:05:e1:43:90:de:73:bd:89:31:7f:82:2f:55:c2:25: d4:84:17:95:01:4c:b7:6d:e9:1e:88:f6:31:a1:91:37:69:d0: 0d:f1:70:d8:47:e3:3b:c0:22:30:29:8c:b4:44:28:28:15:47: 08:2b:5b:14:c7:28:f2:f6:54:ec:7c:89:fb:e6:11:30:b3:91: e0:c0:60:2c:fa:e8:81:a5:af:14:e8:30:c9:16:34:e0:b3:e3: 56:3d:18:f1:1a:d2:e1:1a:63:42:e4:f9:9f:91:fa:99:97:83: 59:03:de:1b:dc:6b:52:e1:44:a0:6d:50:d1:65:1a:0d:6c:e2: b3:f4:a6:1f:18:d4:5d:78:39:4c:82:06:45:37:e2:ab:25:6e: ee:52:13:21:43:86:8e:48:da:17:d0:84:26:92:13:a2:5f:55: ec:f6:d7:37:bb:a9:9c:a2:11:0f:4e:17:43:7c:69:64:3d:ed: 2e:d6:4b:a7:a5:59:bd:7e:22:a2:29:78:ac:71:69:cb:3f:e4: c9:ca:c7:95:83:0f:1f:fa:83:72:dd:e9:48:05:67:1c:39:11: c5:08:38:21:7b:1a:0a:2a:c7:b9:9f:41:ef:7a:89:d3:c1:1a: d1:47:3e:e4:71:1c:9e:88:1e:50:01:7b:5e:9f:9d:fa:a9:b6: 9b:47:77:60 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4NDzr7vgeo8RTpfNEAhd6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3 YTE1MjgwHhcNMjYwMTAxMDYxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGRmYTIxZjgxZmQ3OGM0NzRhZTU0MWFmMzA3NjEzMWZkYTVlYzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1WmMztQyk8JhAl+BS4CuHFzwi5R7 eA4tIgdbTJ9ZQRb3BnnAGBjTSFSuCx2gQFlK/qltUJcTEPCIIMsJL+IcrFNyeG83 9vfijxUyOWMv124656uplR/lOVQE7da76NFJuxKi1DfNpvFfvzoTzpD+wl/CVlDt cQOtkRv1lUMe8xSqzGUapGVZrnJK/1gYO9MrQMzre8Gfsb1mOGmCtRUWgBRCSsOd rffyAtDX6i7Tw6JpvTfBDgt2KPumL3gFuJcyr+09SCpvKqZBSTHkXs3E4mUMHUTc B22Y/7eCIJGy5/uT2slI8D5I3WlvM6rS7OxF2fIqvxsvuGrNmAMJsMgLUQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMTfoh+B/XjEdK5UGvMHYTH9peyOMB8GA1UdIwQY MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt NzQxMzk1OTEzMTJlLzEveE4taUg0SDllTVIwcmxRYTh3ZGhNZjJsN0k0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAvKzlMA8E AgACMAkDBwAqABHAADowDQYJKoZIhvcNAQELBQADggEBAAHv9gXhQ5Dec72JMX+C L1XCJdSEF5UBTLdt6R6I9jGhkTdp0A3xcNhH4zvAIjApjLREKCgVRwgrWxTHKPL2 VOx8ifvmETCzkeDAYCz66IGlrxToMMkWNOCz41Y9GPEa0uEaY0Lk+Z+R+pmXg1kD 3hvca1LhRKBtUNFlGg1s4rP0ph8Y1F14OUyCBkU34qslbu5SEyFDho5I2hfQhCaS E6JfVez21ze7qZyiEQ9OF0N8aWQ97S7WS6elWb1+IqIpeKxxacs/5MnKx5WDDx/6 g3Ld6UgFZxw5EcUIOCF7Ggoqx7mfQe96idPBGtFHPuRxHJ6IHlABe16fnfqptptH d2A= -----END CERTIFICATE-----Generated at Mon Jan 26 11:06:15 2026 by rpki-client