This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/PXFNsoTvcWLxutWM2U5o07bf39c.roa File: PXFNsoTvcWLxutWM2U5o07bf39c.roa (raw, json) Hash identifier: cG54vwBTWhTGlpn6HVoksrAbeIW3ITTreN2nYOiUpbE= Subject key identifier: 3D:71:4D:B2:84:EF:71:62:F1:BA:D5:8C:D9:4E:68:D3:B6:DF:DF:D7 Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2 Certificate serial: 019B7F139C4D9AFF896583D721F760062C96 Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/PXFNsoTvcWLxutWM2U5o07bf39c.roa Signing time: Fri 02 Jan 2026 14:19:10 +0000 ROA not before: Fri 02 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 46562 IP address blocks: 176.113.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.mft rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 14:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:9c:4d:9a:ff:89:65:83:d7:21:f7:60:06:2c:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2 Validity Not Before: Jan 2 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d714db284ef7162f1bad58cd94e68d3b6dfdfd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9a:e5:8f:26:60:fa:c1:be:4f:1d:36:4e:2f: f8:71:de:7b:2b:d4:bc:d4:ae:c5:0b:c7:c9:0b:32: ba:e1:19:1d:ff:5a:1e:e9:5e:3a:99:72:84:96:6e: 5e:53:99:f0:e5:65:09:7e:e8:d1:71:bc:d0:20:43: cd:c6:92:ea:f0:c6:83:1c:f9:62:01:65:b3:38:d4: e7:e0:05:ba:ca:89:81:75:06:26:f6:08:c2:cf:16: 9a:e3:59:64:85:9d:b9:cc:ab:5f:b2:a1:b8:2f:7e: 14:e5:4d:c6:58:ff:18:c3:d6:9d:64:14:ec:26:78: 29:e7:3d:13:14:5e:aa:ce:fe:9c:00:7a:18:b8:8a: 22:0a:41:4a:c6:7c:0d:3b:83:e4:6e:9a:75:ab:92: 1c:03:46:9e:f4:80:49:07:ac:11:0c:c6:1b:5a:9f: fc:24:48:75:c5:e0:46:0e:9d:c5:ed:fb:a0:db:0a: 39:75:ca:73:e6:34:9c:41:0a:61:62:26:25:f4:8f: 2c:fe:35:80:55:60:ae:e2:bb:53:02:e4:68:30:03: d5:d2:41:56:55:c2:72:3c:1b:97:e5:c8:59:88:ae: 15:ea:e6:56:e6:63:60:72:71:8e:ff:0c:34:09:22: 53:e2:34:09:82:b6:5a:33:a9:2b:74:ef:5b:57:60: 8a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:71:4D:B2:84:EF:71:62:F1:BA:D5:8C:D9:4E:68:D3:B6:DF:DF:D7 X509v3 Authority Key Identifier: keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/PXFNsoTvcWLxutWM2U5o07bf39c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.113.98.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:09:08:6f:e4:d5:33:7c:4d:40:71:e5:7b:83:7c:be:26:d2: 37:67:74:ce:1a:40:de:fb:99:d4:2b:89:f9:87:42:ec:33:e5: 87:75:1f:62:cc:9c:5b:e8:13:71:a2:70:64:eb:b8:af:ea:a6: 8b:f6:80:a9:9e:d2:fc:07:55:cb:a3:05:50:be:91:0c:6d:0b: 63:57:6c:43:88:ec:ca:a0:31:42:e8:30:cb:6e:ab:d0:16:f5: c3:42:f9:99:0d:36:ff:e0:f4:8c:ce:4e:38:15:5e:3a:20:b3: dd:bc:7c:22:37:7f:a8:dd:ea:2a:29:24:2f:47:da:58:cd:89: f6:d9:56:5e:42:c1:38:94:33:ea:35:27:35:05:29:2f:2c:41: 4c:2b:6c:67:d1:3b:93:fa:49:00:ae:12:3a:69:4d:19:a7:89: 6a:7f:eb:4b:b2:0e:70:c2:d8:79:dc:df:03:ac:c1:fa:a8:cc: 2e:70:93:1e:6e:64:c4:7e:d2:e3:0b:b1:97:81:1b:2c:eb:c2: fd:f1:6f:a1:0d:22:88:8a:f1:55:13:fc:4e:09:29:83:79:44: e6:9b:52:21:be:69:c7:a9:a0:37:64:a8:3b:e8:a9:14:fd:5c: 07:2c:65:48:2f:7f:51:f8:c5:44:23:52:d2:ff:de:18:18:c4: 14:69:a7:56 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E5xNmv+JZYPXIfdgBiyWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZjJjMmU3YmMxZGE1NGQ5MTljYTViNTk0MWQzNzg4OTJi MmNjYjIwHhcNMjYwMTAyMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDcxNGRiMjg0ZWY3MTYyZjFiYWQ1OGNkOTRlNjhkM2I2ZGZkZmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsprljyZg+sG+Tx02Ti/4cd57K9S8 1K7FC8fJCzK64Rkd/1oe6V46mXKElm5eU5nw5WUJfujRcbzQIEPNxpLq8MaDHPli AWWzONTn4AW6yomBdQYm9gjCzxaa41lkhZ25zKtfsqG4L34U5U3GWP8Yw9adZBTs Jngp5z0TFF6qzv6cAHoYuIoiCkFKxnwNO4Pkbpp1q5IcA0ae9IBJB6wRDMYbWp/8 JEh1xeBGDp3F7fug2wo5dcpz5jScQQphYiYl9I8s/jWAVWCu4rtTAuRoMAPV0kFW VcJyPBuX5chZiK4V6uZW5mNgcnGO/ww0CSJT4jQJgrZaM6krdO9bV2CKmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD1xTbKE73Fi8brVjNlOaNO239/XMB8GA1UdIwQY MBaAFCLywue8HaVNkZyltZQdN4iSssyyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXZMQzU3d2RwVTJSbktXMWxCMDNpSkt5ekxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi82MDI1MzAtNmQyMi00NmYxLThlMDUt MDJkZWY2ZTg0YzkxLzEvUFhGTnNvVHZjV0x4dXRXTTJVNW8wN2JmMzljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi82MDI1MzAtNmQyMi00NmYxLThlMDUtMDJkZWY2ZTg0Yzkx LzEvSXZMQzU3d2RwVTJSbktXMWxCMDNpSkt5ekxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHFiMA0G CSqGSIb3DQEBCwUAA4IBAQAtCQhv5NUzfE1AceV7g3y+JtI3Z3TOGkDe+5nUK4n5 h0LsM+WHdR9izJxb6BNxonBk67iv6qaL9oCpntL8B1XLowVQvpEMbQtjV2xDiOzK oDFC6DDLbqvQFvXDQvmZDTb/4PSMzk44FV46ILPdvHwiN3+o3eoqKSQvR9pYzYn2 2VZeQsE4lDPqNSc1BSkvLEFMK2xn0TuT+kkArhI6aU0Zp4lqf+tLsg5wwth53N8D rMH6qMwucJMebmTEftLjC7GXgRss68L98W+hDSKIivFVE/xOCSmDeUTmm1IhvmnH qaA3ZKg76KkU/VwHLGVIL39R+MVEI1LS/94YGMQUaadW -----END CERTIFICATE-----Generated at Thu Jan 22 19:42:20 2026 by rpki-client