This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/e70c83-46fd-40b4-83c9-70c228ee9c95/1/XQ2UOuVw2T7OAFZpmHMv3GBseYc.roa File: XQ2UOuVw2T7OAFZpmHMv3GBseYc.roa (raw, json) Hash identifier: st9txTOnhmX0OyjM9OI6jhYL6GVTc4OxpwXxUcHPUeA= Subject key identifier: 5D:0D:94:3A:E5:70:D9:3E:CE:00:56:69:98:73:2F:DC:60:6C:79:87 Certificate issuer: /CN=337e636ba60c714ffe8754ab9d04c6d1eedb9b89 Certificate serial: 019B77594AB0240445B8AF83884F6BF03A4A Authority key identifier: 33:7E:63:6B:A6:0C:71:4F:FE:87:54:AB:9D:04:C6:D1:EE:DB:9B:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M35ja6YMcU_-h1SrnQTG0e7bm4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/e70c83-46fd-40b4-83c9-70c228ee9c95/1/XQ2UOuVw2T7OAFZpmHMv3GBseYc.roa Signing time: Thu 01 Jan 2026 02:18:19 +0000 ROA not before: Thu 01 Jan 2026 02:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 62.182.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/e70c83-46fd-40b4-83c9-70c228ee9c95/1/M35ja6YMcU_-h1SrnQTG0e7bm4k.crl rsync://rpki.ripe.net/repository/DEFAULT/85/e70c83-46fd-40b4-83c9-70c228ee9c95/1/M35ja6YMcU_-h1SrnQTG0e7bm4k.mft rsync://rpki.ripe.net/repository/DEFAULT/M35ja6YMcU_-h1SrnQTG0e7bm4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:4a:b0:24:04:45:b8:af:83:88:4f:6b:f0:3a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=337e636ba60c714ffe8754ab9d04c6d1eedb9b89 Validity Not Before: Jan 1 02:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d0d943ae570d93ece00566998732fdc606c7987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:64:af:ce:44:e6:88:15:cc:52:6a:64:7f:eb: cf:33:0d:22:cf:a3:4b:bd:3f:1c:62:0e:f1:0e:d0: d3:05:75:79:0c:44:db:0b:17:53:3f:b3:4d:be:f4: 0d:88:92:ae:1f:a2:4d:4c:12:ff:68:dd:ef:e7:64: fd:af:3b:2f:37:3f:21:86:7b:25:97:df:4d:bf:19: 17:7c:04:65:b3:5e:8f:4a:80:85:54:20:9b:9c:af: dc:b0:43:24:3a:93:d0:98:52:1f:db:52:0b:86:16: a6:c0:8f:5a:b0:f5:03:cf:6a:2f:1c:1c:c2:79:31: 0a:98:e1:c2:66:9c:5c:e1:a1:6e:29:84:7d:14:06: 6d:b0:0c:75:83:d1:12:39:ef:1c:aa:0c:78:e7:ff: 01:9f:35:3a:97:4a:dd:d0:d7:08:94:32:6b:77:2a: 3e:65:bd:70:e9:20:82:57:74:a5:32:3b:a0:b2:b2: 34:86:e6:ea:44:42:ce:2b:be:ad:62:5d:64:14:44: 6e:17:74:bc:10:36:13:9a:ea:95:40:41:9a:67:ff: 1a:9f:f8:ee:9c:5f:f3:34:74:6e:b9:7b:46:47:8b: 41:90:0a:7d:f6:52:c6:5a:d5:4e:5e:24:7f:b6:e0: cd:a2:cd:cb:c7:d3:3e:36:27:dc:c1:40:79:ca:8b: aa:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0D:94:3A:E5:70:D9:3E:CE:00:56:69:98:73:2F:DC:60:6C:79:87 X509v3 Authority Key Identifier: keyid:33:7E:63:6B:A6:0C:71:4F:FE:87:54:AB:9D:04:C6:D1:EE:DB:9B:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M35ja6YMcU_-h1SrnQTG0e7bm4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e70c83-46fd-40b4-83c9-70c228ee9c95/1/XQ2UOuVw2T7OAFZpmHMv3GBseYc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e70c83-46fd-40b4-83c9-70c228ee9c95/1/M35ja6YMcU_-h1SrnQTG0e7bm4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.182.189.0/24 Signature Algorithm: sha256WithRSAEncryption 85:33:0d:36:19:14:a2:2b:3b:0f:74:31:a0:69:30:36:db:3c: cf:e4:b0:06:dc:d1:8b:17:2b:43:6b:5c:9c:3f:3e:53:46:b9: 85:ee:60:08:27:83:9c:92:ef:85:a4:9c:8b:e8:d5:53:e9:d1: 70:38:99:78:b0:49:4e:b3:91:84:dc:04:8e:50:86:d6:3a:28: 29:b5:5a:0a:7b:e4:83:79:96:fc:8b:d2:9d:f0:6c:cd:a7:08: e6:9e:74:88:a9:3a:55:99:b6:a7:a3:fe:3d:ac:11:a6:69:71: 10:0c:a6:ad:79:f6:d7:80:db:cf:99:8b:3a:c4:3c:08:a8:6e: 0d:78:d3:88:96:48:29:71:e8:8a:89:5e:87:a2:ed:04:8e:31: 2b:43:88:fb:aa:83:90:c8:68:bc:f8:b8:35:67:e4:3e:0c:d5: 43:e3:5e:a0:f9:6d:47:53:45:c0:b8:6c:7f:fb:b2:8c:d9:35: 94:10:4f:25:56:0a:db:bb:2a:46:14:2e:67:cb:e6:9a:4b:fc: 1d:3d:6a:de:14:08:c5:2a:88:38:27:eb:e6:85:ce:0e:5d:f6: 21:79:b6:32:ae:b2:63:49:a4:6d:8a:6e:f0:13:a6:56:74:38: 3d:41:97:5c:4c:02:21:af:22:48:42:7f:4f:0c:51:c6:59:bf: 90:03:5b:a4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WUqwJARFuK+DiE9r8DpKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzN2U2MzZiYTYwYzcxNGZmZTg3NTRhYjlkMDRjNmQxZWVk YjliODkwHhcNMjYwMTAxMDIxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDBkOTQzYWU1NzBkOTNlY2UwMDU2Njk5ODczMmZkYzYwNmM3OTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2SvzkTmiBXMUmpkf+vPMw0iz6NL vT8cYg7xDtDTBXV5DETbCxdTP7NNvvQNiJKuH6JNTBL/aN3v52T9rzsvNz8hhnsl l99NvxkXfARls16PSoCFVCCbnK/csEMkOpPQmFIf21ILhhamwI9asPUDz2ovHBzC eTEKmOHCZpxc4aFuKYR9FAZtsAx1g9ESOe8cqgx45/8BnzU6l0rd0NcIlDJrdyo+ Zb1w6SCCV3SlMjugsrI0hubqRELOK76tYl1kFERuF3S8EDYTmuqVQEGaZ/8an/ju nF/zNHRuuXtGR4tBkAp99lLGWtVOXiR/tuDNos3Lx9M+NifcwUB5youq0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF0NlDrlcNk+zgBWaZhzL9xgbHmHMB8GA1UdIwQY MBaAFDN+Y2umDHFP/odUq50ExtHu25uJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTM1amE2WU1jVV8taDFTcm5RVEcwZTdibTRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9lNzBjODMtNDZmZC00MGI0LTgzYzkt NzBjMjI4ZWU5Yzk1LzEvWFEyVU91VncyVDdPQUZacG1ITXYzR0JzZVljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS9lNzBjODMtNDZmZC00MGI0LTgzYzktNzBjMjI4ZWU5Yzk1 LzEvTTM1amE2WU1jVV8taDFTcm5RVEcwZTdibTRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPra9MA0G CSqGSIb3DQEBCwUAA4IBAQCFMw02GRSiKzsPdDGgaTA22zzP5LAG3NGLFytDa1yc Pz5TRrmF7mAIJ4Ocku+FpJyL6NVT6dFwOJl4sElOs5GE3ASOUIbWOigptVoKe+SD eZb8i9Kd8GzNpwjmnnSIqTpVmbano/49rBGmaXEQDKatefbXgNvPmYs6xDwIqG4N eNOIlkgpceiKiV6Hou0EjjErQ4j7qoOQyGi8+Lg1Z+Q+DNVD416g+W1HU0XAuGx/ +7KM2TWUEE8lVgrbuypGFC5ny+aaS/wdPWreFAjFKog4J+vmhc4OXfYhebYyrrJj SaRtim7wE6ZWdDg9QZdcTAIhryJIQn9PDFHGWb+QA1uk -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:17 2026 by rpki-client