This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/REX0hu_C2MCFA8A9sNibvfYrMsQ.roa File: REX0hu_C2MCFA8A9sNibvfYrMsQ.roa (raw, json) Hash identifier: gw7ymm92afywzQaqVosCHJIBxHzAVNds/TfPB78701A= Subject key identifier: 44:45:F4:86:EF:C2:D8:C0:85:03:C0:3D:B0:D8:9B:BD:F6:2B:32:C4 Certificate issuer: /CN=a811a2c9fc8de9679bb158581b10ceaee91ff791 Certificate serial: 019B7C12825EAD075E3AC33FB83AC0A322C5 Authority key identifier: A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/REX0hu_C2MCFA8A9sNibvfYrMsQ.roa Signing time: Fri 02 Jan 2026 00:19:06 +0000 ROA not before: Fri 02 Jan 2026 00:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31242 IP address blocks: 91.192.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.mft rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 09:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:82:5e:ad:07:5e:3a:c3:3f:b8:3a:c0:a3:22:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a811a2c9fc8de9679bb158581b10ceaee91ff791 Validity Not Before: Jan 2 00:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4445f486efc2d8c08503c03db0d89bbdf62b32c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:f5:a6:b2:85:f7:ad:d9:0a:01:9e:5c:98: 67:49:13:10:ad:ac:67:2b:4b:c1:0f:d6:54:22:73: 8f:05:15:9a:de:13:57:97:01:6a:19:da:4d:dc:70: e0:e0:05:55:66:0d:83:86:54:79:99:d5:85:5d:e8: da:c7:99:08:29:22:07:f8:06:68:27:9c:01:13:5c: 12:71:7d:86:0d:1a:a5:d6:25:0d:79:70:a4:77:47: 25:fd:81:9f:f7:9d:30:ca:51:87:1b:09:f5:80:a1: 17:06:45:c0:2b:40:44:ef:92:ad:b4:ba:f1:18:74: b9:bb:89:ce:28:43:0c:52:94:5e:1f:32:40:c2:1a: 28:22:fe:8c:ff:1f:21:dc:7a:b0:53:81:cf:97:77: 51:c0:03:55:14:8c:bd:a0:4a:f4:53:14:bc:35:6f: d2:00:c6:af:d3:3b:10:07:1d:ca:86:b6:d3:10:4c: 0b:81:1c:75:8b:49:b2:dd:dd:4a:df:75:3f:6f:cd: 85:50:c5:7d:f6:ab:65:47:f6:76:64:8c:27:33:eb: 38:1a:3d:b9:4e:2f:c5:86:11:59:ec:0e:6e:59:51: 88:91:39:67:ec:bf:69:50:7f:9d:3c:62:46:cd:71: ba:85:5e:29:d6:4d:67:7d:a2:4c:f9:c5:fe:bc:eb: 78:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:45:F4:86:EF:C2:D8:C0:85:03:C0:3D:B0:D8:9B:BD:F6:2B:32:C4 X509v3 Authority Key Identifier: keyid:A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/REX0hu_C2MCFA8A9sNibvfYrMsQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.192.56.0/22 Signature Algorithm: sha256WithRSAEncryption 09:65:96:e7:a7:de:4e:5e:19:84:a3:6b:ef:5b:fc:79:9c:92: a1:5b:ae:8a:84:79:2a:dd:ce:37:a4:aa:79:5a:75:0f:b7:8a: 2b:38:58:0c:8f:8c:13:c0:33:c2:c0:9e:12:57:11:37:60:2b: 23:7d:21:70:88:05:ac:de:5f:4e:f7:3b:2f:22:cf:df:3f:90: 00:5f:76:8c:da:22:39:4a:a5:7f:04:23:94:06:9a:3c:33:f3: 2a:1c:5b:7a:b0:60:7b:c3:38:ce:7b:10:0c:45:8d:19:05:69: 3b:99:a0:1c:4b:07:cc:66:7a:c7:13:47:1b:c1:ec:6b:2d:21: 59:43:d6:d4:fd:cc:8e:a2:b7:2c:8f:52:5a:81:81:cf:f1:db: 42:28:98:ed:3f:0c:09:b1:88:d9:c0:5d:45:27:89:46:18:30: 10:da:33:9f:0c:96:b6:f9:38:d4:b8:2c:7d:17:aa:c8:79:8a: ff:7a:55:e2:20:e0:a1:90:b6:c0:08:86:01:70:2b:c6:27:32: a4:82:ae:5c:0b:1b:73:64:93:b7:86:22:f8:84:49:3c:5c:15: 6b:94:91:c1:fd:2a:78:b5:ed:cf:77:14:dd:5f:b1:ab:ff:d3: 38:aa:55:ba:6a:14:f0:60:b1:35:8e:57:54:c3:18:b3:56:a0: ee:b3:4b:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EoJerQdeOsM/uDrAoyLFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MTFhMmM5ZmM4ZGU5Njc5YmIxNTg1ODFiMTBjZWFlZTkx ZmY3OTEwHhcNMjYwMTAyMDAxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDQ1ZjQ4NmVmYzJkOGMwODUwM2MwM2RiMGQ4OWJiZGY2MmIzMmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHb1prKF963ZCgGeXJhnSRMQraxn K0vBD9ZUInOPBRWa3hNXlwFqGdpN3HDg4AVVZg2DhlR5mdWFXejax5kIKSIH+AZo J5wBE1wScX2GDRql1iUNeXCkd0cl/YGf950wylGHGwn1gKEXBkXAK0BE75KttLrx GHS5u4nOKEMMUpReHzJAwhooIv6M/x8h3HqwU4HPl3dRwANVFIy9oEr0UxS8NW/S AMav0zsQBx3KhrbTEEwLgRx1i0my3d1K33U/b82FUMV99qtlR/Z2ZIwnM+s4Gj25 Ti/FhhFZ7A5uWVGIkTln7L9pUH+dPGJGzXG6hV4p1k1nfaJM+cX+vOt4hQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFERF9IbvwtjAhQPAPbDYm732KzLEMB8GA1UdIwQY MBaAFKgRosn8jelnm7FYWBsQzq7pH/eRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUJHaXlmeU42V2Vic1ZoWUd4RE9ydWtmOTVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS8xZGVjYjMtMTU5My00NWRiLWFmNTYt MGNjNGMwMDAwODU4LzEvUkVYMGh1X0MyTUNGQThBOXNOaWJ2ZllyTXNRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS8xZGVjYjMtMTU5My00NWRiLWFmNTYtMGNjNGMwMDAwODU4 LzEvcUJHaXlmeU42V2Vic1ZoWUd4RE9ydWtmOTVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW8A4MA0G CSqGSIb3DQEBCwUAA4IBAQAJZZbnp95OXhmEo2vvW/x5nJKhW66KhHkq3c43pKp5 WnUPt4orOFgMj4wTwDPCwJ4SVxE3YCsjfSFwiAWs3l9O9zsvIs/fP5AAX3aM2iI5 SqV/BCOUBpo8M/MqHFt6sGB7wzjOexAMRY0ZBWk7maAcSwfMZnrHE0cbwexrLSFZ Q9bU/cyOorcsj1JagYHP8dtCKJjtPwwJsYjZwF1FJ4lGGDAQ2jOfDJa2+TjUuCx9 F6rIeYr/elXiIOChkLbACIYBcCvGJzKkgq5cCxtzZJO3hiL4hEk8XBVrlJHB/Sp4 te3PdxTdX7Gr/9M4qlW6ahTwYLE1jldUwxizVqDus0tD -----END CERTIFICATE-----Generated at Tue Feb 10 17:07:04 2026 by rpki-client