This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/xUXT0-vW_Dj00odbgeqel7FL6zQ.roa File: xUXT0-vW_Dj00odbgeqel7FL6zQ.roa (raw, json) Hash identifier: FfT1QP922EJ3fLG64AQol2ksXpgcMzdXxvb9aBfpqLs= Subject key identifier: C5:45:D3:D3:EB:D6:FC:38:F4:D2:87:5B:81:EA:9E:97:B1:4B:EB:34 Certificate issuer: /CN=a811a2c9fc8de9679bb158581b10ceaee91ff791 Certificate serial: 019B7C1282EE114B1AC5006FD14BE8231227 Authority key identifier: A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/xUXT0-vW_Dj00odbgeqel7FL6zQ.roa Signing time: Fri 02 Jan 2026 00:19:06 +0000 ROA not before: Fri 02 Jan 2026 00:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34393 IP address blocks: 91.192.56.0/22 maxlen: 22 95.215.20.0/22 maxlen: 22 95.215.24.0/21 maxlen: 21 195.177.64.0/22 maxlen: 22 195.177.84.0/22 maxlen: 22 2001:67c:2f64::/48 maxlen: 48 2a0e:c980::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.mft rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:82:ee:11:4b:1a:c5:00:6f:d1:4b:e8:23:12:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a811a2c9fc8de9679bb158581b10ceaee91ff791 Validity Not Before: Jan 2 00:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c545d3d3ebd6fc38f4d2875b81ea9e97b14beb34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d3:c0:ac:ac:2b:47:8c:98:c0:3a:4f:2a:c6: 26:97:d4:36:3f:2e:95:2b:94:33:20:d4:f2:d9:23: 5f:f9:f9:24:40:f0:6f:6e:b3:50:fb:78:13:e3:49: 9e:c8:2e:0d:92:b6:89:b9:7a:6a:3e:72:5a:ca:00: 16:c0:42:7a:02:84:5c:ab:bf:08:07:5b:31:bd:17: 95:de:bb:3f:7a:30:0f:66:40:28:bb:16:19:a7:b2: 14:96:ae:51:53:74:41:f6:ad:91:80:dc:20:7a:f8: d6:8f:c5:8d:83:10:e6:68:ed:45:99:83:48:57:f2: 31:bb:f0:b7:ab:61:fa:e5:00:70:db:fe:25:fe:4e: a7:e4:9e:32:33:2b:86:e9:f7:46:de:b9:40:4f:87: 91:46:fa:ee:cd:bc:ac:09:3a:31:38:8a:2c:03:cf: 00:6b:e3:59:0d:b8:85:a3:87:1d:24:ea:4f:e8:01: 55:02:5b:fd:e7:50:f8:3c:01:2f:08:ee:8d:a0:8f: ae:e5:43:a0:6f:08:0a:21:37:99:65:d0:0c:ab:98: 48:a0:68:ee:81:6d:96:c2:a6:9d:66:70:ab:b2:1c: 57:6c:df:72:03:84:11:39:d9:12:87:57:21:47:82: 5c:72:42:90:09:73:b4:1a:18:c2:c0:ed:c2:55:9a: de:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:45:D3:D3:EB:D6:FC:38:F4:D2:87:5B:81:EA:9E:97:B1:4B:EB:34 X509v3 Authority Key Identifier: keyid:A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/xUXT0-vW_Dj00odbgeqel7FL6zQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.192.56.0/22 95.215.20.0-95.215.31.255 195.177.64.0/22 195.177.84.0/22 IPv6: 2001:67c:2f64::/48 2a0e:c980::/29 Signature Algorithm: sha256WithRSAEncryption 24:eb:a6:2c:f4:28:b8:ce:b1:d1:42:54:14:8d:d4:cf:3e:e5: 59:ad:b1:5a:66:ba:ac:45:77:10:ad:8a:17:fe:4f:ae:32:c5: 9a:f1:35:c6:6a:b1:61:8a:66:76:fe:c5:e0:d9:63:e5:5a:12: e2:e3:83:a0:7f:0f:d6:0a:9f:5a:91:e1:8e:a5:cf:db:28:8e: ef:fe:af:bf:87:5e:64:25:78:02:eb:51:a2:7d:ff:ce:fe:fb: a7:29:4f:1e:bd:f8:a5:f2:22:f1:a1:95:e0:26:75:20:86:20: 7f:e5:a0:24:2a:88:b5:98:ac:0c:43:5f:46:97:03:f4:22:f8: e2:51:1a:13:d3:04:df:24:16:ab:2f:77:d9:fc:d6:d0:3e:ce: de:64:25:5a:48:74:bf:ab:8d:64:bb:27:b0:05:36:ef:37:a9: 41:75:c6:2a:0e:14:f6:13:36:20:87:27:32:f0:c5:5c:c2:32: 3d:14:1e:1d:b4:db:be:17:4f:ea:f4:cc:9a:aa:21:de:f3:ab: 14:00:1d:63:03:b8:0e:53:70:cb:92:a5:8f:5d:96:47:0a:60: 5e:b5:ee:69:f0:74:5c:42:fe:f6:0c:0d:3b:7a:5a:49:6c:09: 0d:75:36:e7:71:1d:1c:b9:a1:56:5c:5a:ce:0a:4b:4c:6c:63: 5f:ae:38:b9 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt8EoLuEUsaxQBv0UvoIxInMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MTFhMmM5ZmM4ZGU5Njc5YmIxNTg1ODFiMTBjZWFlZTkx ZmY3OTEwHhcNMjYwMTAyMDAxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTQ1ZDNkM2ViZDZmYzM4ZjRkMjg3NWI4MWVhOWU5N2IxNGJlYjM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndPArKwrR4yYwDpPKsYml9Q2Py6V K5QzINTy2SNf+fkkQPBvbrNQ+3gT40meyC4NkraJuXpqPnJaygAWwEJ6AoRcq78I B1sxvReV3rs/ejAPZkAouxYZp7IUlq5RU3RB9q2RgNwgevjWj8WNgxDmaO1FmYNI V/Ixu/C3q2H65QBw2/4l/k6n5J4yMyuG6fdG3rlAT4eRRvruzbysCToxOIosA88A a+NZDbiFo4cdJOpP6AFVAlv951D4PAEvCO6NoI+u5UOgbwgKITeZZdAMq5hIoGju gW2WwqadZnCrshxXbN9yA4QROdkSh1chR4JcckKQCXO0GhjCwO3CVZreeQIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFMVF09Pr1vw49NKHW4HqnpexS+s0MB8GA1UdIwQY MBaAFKgRosn8jelnm7FYWBsQzq7pH/eRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUJHaXlmeU42V2Vic1ZoWUd4RE9ydWtmOTVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS8xZGVjYjMtMTU5My00NWRiLWFmNTYt MGNjNGMwMDAwODU4LzEveFVYVDAtdldfRGowMG9kYmdlcWVsN0ZMNnpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS8xZGVjYjMtMTU5My00NWRiLWFmNTYtMGNjNGMwMDAwODU4 LzEvcUJHaXlmeU42V2Vic1ZoWUd4RE9ydWtmOTVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAmBAIAATAgAwQCW8A4MAwD BAJf1xQDBAVf1wADBALDsUADBALDsVQwFgQCAAIwEAMHACABBnwvZAMFAyoOyYAw DQYJKoZIhvcNAQELBQADggEBACTrpiz0KLjOsdFCVBSN1M8+5VmtsVpmuqxFdxCt ihf+T64yxZrxNcZqsWGKZnb+xeDZY+VaEuLjg6B/D9YKn1qR4Y6lz9soju/+r7+H XmQleALrUaJ9/87++6cpTx69+KXyIvGhleAmdSCGIH/loCQqiLWYrAxDX0aXA/Qi +OJRGhPTBN8kFqsvd9n81tA+zt5kJVpIdL+rjWS7J7AFNu83qUF1xioOFPYTNiCH JzLwxVzCMj0UHh20274XT+r0zJqqId7zqxQAHWMDuA5TcMuSpY9dlkcKYF617mnw dFxC/vYMDTt6WklsCQ11NudxHRy5oVZcWs4KS0xsY1+uOLk= -----END CERTIFICATE-----Generated at Tue Feb 10 07:12:47 2026 by rpki-client