This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/XZ_pdWGRqhhlMj-zc2J3G0feaPs.roa File: XZ_pdWGRqhhlMj-zc2J3G0feaPs.roa (raw, json) Hash identifier: 4yRNuv1IZ/fNsWUIhuk4rvJep02AUkMta6LPy8d8AZU= Subject key identifier: 5D:9F:E9:75:61:91:AA:18:65:32:3F:B3:73:62:77:1B:47:DE:68:FB Certificate issuer: /CN=f73cdc6751d7c59073e4b706402d3691af09086f Certificate serial: 019B7F8326073E2670FFE43423C5522BE7AB Authority key identifier: F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/XZ_pdWGRqhhlMj-zc2J3G0feaPs.roa Signing time: Fri 02 Jan 2026 16:20:59 +0000 ROA not before: Fri 02 Jan 2026 16:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208599 IP address blocks: 45.82.148.0/22 maxlen: 22 2a0e:6c80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.crl rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.mft rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:26:07:3e:26:70:ff:e4:34:23:c5:52:2b:e7:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f73cdc6751d7c59073e4b706402d3691af09086f Validity Not Before: Jan 2 16:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d9fe9756191aa1865323fb37362771b47de68fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e3:65:6c:f5:9a:ab:b8:e1:7a:fb:79:f9:d3: dd:c9:97:25:88:58:64:1a:a7:bd:50:1f:d0:e8:82: 76:e6:5f:67:92:62:7a:e7:ab:ab:38:d1:fb:92:4e: e3:38:b0:be:73:27:3b:e8:37:e0:0c:86:02:bb:7c: b6:4d:7a:73:8d:bb:2c:de:49:24:99:40:cc:6e:48: 77:e6:04:69:71:f5:aa:e3:a4:a4:ff:45:21:6e:77: 72:67:3b:39:d4:59:99:bc:6f:88:5d:34:52:ef:f4: 46:d3:06:4b:a9:76:fc:3a:ea:7a:ef:b1:9e:9f:8b: a7:5a:4c:67:d9:5b:04:99:4d:9d:a8:6c:b2:cd:49: 18:ee:50:4b:8c:bf:f0:ae:6f:90:f8:93:b9:17:3b: 98:76:fa:96:dd:2e:24:b0:db:bb:35:d9:e0:45:43: 40:64:43:aa:08:5e:61:1d:02:0c:24:b5:9f:bf:41: 21:5a:7b:09:75:e8:f3:2a:a9:f4:3d:29:2e:d0:73: 07:5b:3c:03:f4:08:74:ac:b5:59:54:44:fd:45:4f: 1f:c2:c1:f3:b7:f3:0a:b3:ed:4c:94:f1:03:e4:9f: b5:86:82:f8:f5:d0:4b:73:a9:4b:02:c1:d9:aa:00: 70:c8:6f:ad:d0:c9:61:68:6d:a0:f8:37:10:29:84: a6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:9F:E9:75:61:91:AA:18:65:32:3F:B3:73:62:77:1B:47:DE:68:FB X509v3 Authority Key Identifier: keyid:F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/XZ_pdWGRqhhlMj-zc2J3G0feaPs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.82.148.0/22 IPv6: 2a0e:6c80::/29 Signature Algorithm: sha256WithRSAEncryption 84:7d:e6:45:0a:ad:18:be:86:02:e7:98:8e:0a:91:60:d5:41: 58:38:8c:67:c5:b8:25:40:bc:8a:8b:66:80:0e:66:35:16:ee: 9b:7a:6a:86:27:8b:fd:d3:1d:4d:22:d6:b5:8d:ac:ea:b9:d3: a9:19:cf:b8:e4:ff:ab:f6:56:a5:43:23:13:c6:6a:e4:c9:93: 30:42:0b:be:d0:04:f2:fa:0b:69:ae:f2:ec:d4:3b:b7:8e:f5: fd:27:ba:89:ef:56:44:e1:b6:20:47:fb:75:5a:a2:c4:ab:ca: e3:f6:03:39:bc:7b:85:13:00:53:2b:d0:c6:80:7a:41:cb:e6: ac:0a:cd:91:35:b0:67:9f:9f:c7:c9:fe:9c:5f:4b:bb:f7:70: d1:28:40:53:a6:1b:c1:11:dd:4e:44:72:79:5f:ae:f1:ed:0a: 49:cd:4a:d2:e6:1b:42:e6:34:57:73:36:f2:9f:1d:dc:92:7c: a1:ed:1d:02:e3:dc:cb:b8:57:fe:3c:9e:ae:74:ae:a7:e2:e1: 50:d5:36:a1:27:21:10:98:e8:a3:ee:f9:ae:db:38:95:19:96: d6:b3:91:5c:93:4c:ca:94:c2:7c:fe:59:bf:6b:64:44:d3:01: ba:16:b1:7b:c7:72:9e:c1:3c:5a:55:6d:87:20:0f:22:12:ba: 05:00:bf:f2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/gyYHPiZw/+Q0I8VSK+erMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3M2NkYzY3NTFkN2M1OTA3M2U0YjcwNjQwMmQzNjkxYWYw OTA4NmYwHhcNMjYwMTAyMTYyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDlmZTk3NTYxOTFhYTE4NjUzMjNmYjM3MzYyNzcxYjQ3ZGU2OGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruNlbPWaq7jhevt5+dPdyZcliFhk Gqe9UB/Q6IJ25l9nkmJ656urONH7kk7jOLC+cyc76DfgDIYCu3y2TXpzjbss3kkk mUDMbkh35gRpcfWq46Sk/0UhbndyZzs51FmZvG+IXTRS7/RG0wZLqXb8Oup677Ge n4unWkxn2VsEmU2dqGyyzUkY7lBLjL/wrm+Q+JO5FzuYdvqW3S4ksNu7NdngRUNA ZEOqCF5hHQIMJLWfv0EhWnsJdejzKqn0PSku0HMHWzwD9Ah0rLVZVET9RU8fwsHz t/MKs+1MlPED5J+1hoL49dBLc6lLAsHZqgBwyG+t0MlhaG2g+DcQKYSmHwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFF2f6XVhkaoYZTI/s3NidxtH3mj7MB8GA1UdIwQY MBaAFPc83GdR18WQc+S3BkAtNpGvCQhvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXp6Y1oxSFh4WkJ6NUxjR1FDMDJrYThKQ0c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS84NTUwMDItZDgyMy00MWZlLThmOWEt NzE4ZmQxOTVjNWViLzEvWFpfcGRXR1JxaGhsTWotemMySjNHMGZlYVBzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS84NTUwMDItZDgyMy00MWZlLThmOWEtNzE4ZmQxOTVjNWVi LzEvOXp6Y1oxSFh4WkJ6NUxjR1FDMDJrYThKQ0c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVKUMA0E AgACMAcDBQMqDmyAMA0GCSqGSIb3DQEBCwUAA4IBAQCEfeZFCq0YvoYC55iOCpFg 1UFYOIxnxbglQLyKi2aADmY1Fu6bemqGJ4v90x1NIta1jazqudOpGc+45P+r9lal QyMTxmrkyZMwQgu+0ATy+gtprvLs1Du3jvX9J7qJ71ZE4bYgR/t1WqLEq8rj9gM5 vHuFEwBTK9DGgHpBy+asCs2RNbBnn5/Hyf6cX0u793DRKEBTphvBEd1ORHJ5X67x 7QpJzUrS5htC5jRXczbynx3cknyh7R0C49zLuFf+PJ6udK6n4uFQ1TahJyEQmOij 7vmu2ziVGZbWs5Fck0zKlMJ8/lm/a2RE0wG6FrF7x3KewTxaVW2HIA8iEroFAL/y -----END CERTIFICATE-----Generated at Tue Feb 10 02:32:01 2026 by rpki-client