This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/xwhue_TN7n4kY_DklaO9chrfZ6U.roa File: xwhue_TN7n4kY_DklaO9chrfZ6U.roa (raw, json) Hash identifier: tLx491YNuJLEVmsUb0prbwPGwP/xjTFCwH/JtUI48qY= Subject key identifier: C7:08:6E:7B:F4:CD:EE:7E:24:63:F0:E4:95:A3:BD:72:1A:DF:67:A5 Certificate issuer: /CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5 Certificate serial: 019AA2F4FAFB891C5A8DAAD33D3EC162E182 Authority key identifier: 74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/xwhue_TN7n4kY_DklaO9chrfZ6U.roa Signing time: Thu 20 Nov 2025 20:29:15 +0000 ROA not before: Thu 20 Nov 2025 20:29:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 33651 IP address blocks: 9.142.32.0/19 maxlen: 19 9.142.48.0/20 maxlen: 20 9.142.96.0/19 maxlen: 19 9.142.192.0/19 maxlen: 19 138.226.48.0/21 maxlen: 21 138.226.64.0/20 maxlen: 20 138.226.112.0/21 maxlen: 21 138.226.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.crl rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.mft rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a2:f4:fa:fb:89:1c:5a:8d:aa:d3:3d:3e:c1:62:e1:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5 Validity Not Before: Nov 20 20:29:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c7086e7bf4cdee7e2463f0e495a3bd721adf67a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:45:d3:89:e4:88:62:d5:14:01:44:f2:a4:19: 9b:ce:09:b5:2d:02:99:46:48:11:9b:b5:16:88:84: d2:e7:9b:87:4c:af:b8:17:23:40:b1:d0:72:bb:1b: b3:12:aa:db:d7:e0:a9:83:1d:01:7b:02:7a:b5:2e: 59:e4:fd:8d:4c:67:a4:c0:24:2e:2e:d6:f3:d9:9b: e1:78:76:da:50:8e:b7:5b:55:1b:54:10:e7:6d:16: ef:f5:5a:16:25:5b:99:f6:67:43:53:49:d4:87:9f: 44:a4:86:5b:10:13:e8:bd:34:cf:81:8e:1d:d9:61: fe:4c:17:35:8d:c4:9c:54:65:7c:67:1f:86:77:2f: 78:9f:a5:85:1e:7f:db:eb:40:7d:f9:16:16:8a:c8: 67:4f:e1:e4:fe:8b:ba:7d:90:76:39:91:04:b3:cc: 63:88:56:d5:48:1d:8d:a8:16:f8:42:c0:f5:15:13: 6d:ee:a2:dd:02:58:41:08:80:3b:db:16:68:1f:5e: ae:ce:4a:b2:d4:f0:67:13:58:a2:6c:e6:cd:27:8d: 90:26:cf:59:a9:97:30:14:49:2a:97:60:54:f3:53: 3b:a1:55:71:2c:38:c0:2b:ae:e5:7f:e7:27:d5:09: 73:13:4a:71:77:cb:95:7e:66:b9:9f:67:76:f2:3d: 25:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:08:6E:7B:F4:CD:EE:7E:24:63:F0:E4:95:A3:BD:72:1A:DF:67:A5 X509v3 Authority Key Identifier: keyid:74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/xwhue_TN7n4kY_DklaO9chrfZ6U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 9.142.32.0/19 9.142.96.0/19 9.142.192.0/19 138.226.48.0/21 138.226.64.0/20 138.226.112.0/21 138.226.192.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:65:5e:6a:7e:13:af:2b:07:67:19:86:f3:48:b9:37:33:57: 29:e4:a8:71:46:0f:d7:7a:1b:11:52:30:18:e3:af:18:44:17: 7a:50:40:ff:26:17:1b:4c:03:2f:a5:1f:63:cd:a2:39:32:27: 75:b0:f8:e1:ea:81:03:27:06:ba:d3:f5:fb:04:58:63:20:31: 81:c7:8c:49:95:e7:72:8e:b8:26:89:de:6f:c2:33:f2:45:57: 6e:0b:cc:d3:2c:c1:5c:d6:4c:ee:cc:95:6c:35:c9:4c:49:9f: 83:08:d4:5f:15:53:54:94:3e:55:0e:57:d6:56:3e:65:07:95: 9f:69:80:1e:25:be:50:60:5c:b4:87:04:cd:9c:47:84:81:35: 51:86:ad:45:82:8c:03:66:4b:b7:22:f2:53:fa:fb:74:d6:78: 3c:9d:de:1a:30:88:45:4a:0d:9c:2c:66:1e:d6:81:4d:21:9e: 57:3b:df:11:6e:7d:cd:19:6b:e2:98:55:07:9e:8c:6a:61:45: cf:0c:de:8d:49:92:11:a6:f4:b7:76:b9:db:9d:87:28:00:a0: bf:b8:7c:2c:23:4f:d9:9f:0e:d9:09:d6:b9:cb:e2:3c:15:02: dd:6c:b9:7a:92:2b:66:43:32:ee:52:f9:3a:cf:5a:12:62:b9: d0:cf:58:89 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZqi9Pr7iRxajarTPT7BYuGCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0M2U0NDdlZGI4YTVlMGUxYjFkN2Y1Y2RjMjg3YzM2NGE1 ZmIwYjUwHhcNMjUxMTIwMjAyOTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzA4NmU3YmY0Y2RlZTdlMjQ2M2YwZTQ5NWEzYmQ3MjFhZGY2N2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkXTieSIYtUUAUTypBmbzgm1LQKZ RkgRm7UWiITS55uHTK+4FyNAsdByuxuzEqrb1+Cpgx0BewJ6tS5Z5P2NTGekwCQu Ltbz2ZvheHbaUI63W1UbVBDnbRbv9VoWJVuZ9mdDU0nUh59EpIZbEBPovTTPgY4d 2WH+TBc1jcScVGV8Zx+Gdy94n6WFHn/b60B9+RYWishnT+Hk/ou6fZB2OZEEs8xj iFbVSB2NqBb4QsD1FRNt7qLdAlhBCIA72xZoH16uzkqy1PBnE1iibObNJ42QJs9Z qZcwFEkql2BU81M7oVVxLDjAK67lf+cn1QlzE0pxd8uVfma5n2d28j0lkQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFMcIbnv0ze5+JGPw5JWjvXIa32elMB8GA1UdIwQY MBaAFHQ+RH7bil4OGx1/XNwofDZKX7C1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEQ1RWZ0dUtYZzRiSFg5YzNDaDhOa3Bmc0xVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9hMWFlNzAtNzk5Ni00Njg3LWEwZDct NWUwZjRhYjgwOWJiLzEveHdodWVfVE43bjRrWV9Ea2xhTzljaHJmWjZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9hMWFlNzAtNzk5Ni00Njg3LWEwZDctNWUwZjRhYjgwOWJi LzEvZEQ1RWZ0dUtYZzRiSFg5YzNDaDhOa3Bmc0xVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQFCY4gAwQF CY5gAwQFCY7AAwQDiuIwAwQEiuJAAwQDiuJwAwQDiuLAMA0GCSqGSIb3DQEBCwUA A4IBAQBsZV5qfhOvKwdnGYbzSLk3M1cp5KhxRg/XehsRUjAY468YRBd6UED/Jhcb TAMvpR9jzaI5Mid1sPjh6oEDJwa60/X7BFhjIDGBx4xJledyjrgmid5vwjPyRVdu C8zTLMFc1kzuzJVsNclMSZ+DCNRfFVNUlD5VDlfWVj5lB5WfaYAeJb5QYFy0hwTN nEeEgTVRhq1FgowDZku3IvJT+vt01ng8nd4aMIhFSg2cLGYe1oFNIZ5XO98Rbn3N GWvimFUHnoxqYUXPDN6NSZIRpvS3drnbnYcoAKC/uHwsI0/Znw7ZCda5y+I8FQLd bLl6kitmQzLuUvk6z1oSYrnQz1iJ -----END CERTIFICATE-----Generated at Sat Dec 6 10:04:25 2025 by rpki-client