This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/XtaithTRmiOvWOEKSiRCjVsSSJk.roa File: XtaithTRmiOvWOEKSiRCjVsSSJk.roa (raw, json) Hash identifier: IQ/PuMeeWoBaHEJ1ygdil0Mb3v2vh5Ek1c14zbUB6a0= Subject key identifier: 5E:D6:A2:B6:14:D1:9A:23:AF:58:E1:0A:4A:24:42:8D:5B:12:48:99 Certificate issuer: /CN=286687fb64a77f0100baf23d4f341ece775950e5 Certificate serial: 019B7A5B29D8A7FA8B1D75C72BF00DF9A722 Authority key identifier: 28:66:87:FB:64:A7:7F:01:00:BA:F2:3D:4F:34:1E:CE:77:59:50:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGaH-2SnfwEAuvI9TzQezndZUOU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/XtaithTRmiOvWOEKSiRCjVsSSJk.roa Signing time: Thu 01 Jan 2026 16:19:13 +0000 ROA not before: Thu 01 Jan 2026 16:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206737 IP address blocks: 185.109.50.0/24 maxlen: 24 185.177.212.0/22 maxlen: 24 2a0a:4680::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/KGaH-2SnfwEAuvI9TzQezndZUOU.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/KGaH-2SnfwEAuvI9TzQezndZUOU.mft rsync://rpki.ripe.net/repository/DEFAULT/KGaH-2SnfwEAuvI9TzQezndZUOU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:29:d8:a7:fa:8b:1d:75:c7:2b:f0:0d:f9:a7:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=286687fb64a77f0100baf23d4f341ece775950e5 Validity Not Before: Jan 1 16:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ed6a2b614d19a23af58e10a4a24428d5b124899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fb:32:be:c3:db:61:bd:7b:9d:c9:f0:d3:92: c6:35:12:bf:26:e6:2a:c6:b1:bd:1e:74:8d:65:93: 0c:20:d7:8a:06:62:09:03:72:cf:c6:4d:1e:09:c4: ea:46:c8:af:fa:9a:83:73:de:6e:f7:b9:e4:55:5f: ed:97:af:87:8b:16:11:84:b4:78:8c:80:25:cd:ae: ed:02:66:1c:20:41:d7:e2:dd:08:87:f4:83:32:09: b9:58:0f:49:c5:b1:d4:34:f3:04:f0:ff:72:10:63: 26:2c:c2:b5:b3:e2:5a:62:89:2a:08:0c:cc:d5:a1: 96:1d:d1:0b:5b:47:b0:5b:50:2a:52:76:57:3b:b8: 64:4f:bf:53:05:79:e9:fa:75:39:4f:f8:c1:46:f1: ab:ed:97:99:79:45:c6:14:43:6c:f2:62:cb:e6:e5: 75:e2:8f:b8:b9:1b:f6:71:2d:d5:36:1f:f4:ab:23: 83:21:5f:2f:58:e1:b3:ce:45:a2:b0:c2:44:99:38: 5f:48:84:14:78:15:10:5d:49:62:f3:24:0b:1c:da: 85:88:af:4f:b2:0b:ec:dc:3b:e9:fd:74:8f:3a:19: 08:81:1c:83:00:0f:e7:5d:a9:de:05:e5:4c:99:e9: 7d:4f:03:b2:5d:9f:1c:cc:e8:9a:b7:16:a9:d4:d8: b3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D6:A2:B6:14:D1:9A:23:AF:58:E1:0A:4A:24:42:8D:5B:12:48:99 X509v3 Authority Key Identifier: keyid:28:66:87:FB:64:A7:7F:01:00:BA:F2:3D:4F:34:1E:CE:77:59:50:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGaH-2SnfwEAuvI9TzQezndZUOU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/XtaithTRmiOvWOEKSiRCjVsSSJk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/KGaH-2SnfwEAuvI9TzQezndZUOU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.109.50.0/24 185.177.212.0/22 IPv6: 2a0a:4680::/29 Signature Algorithm: sha256WithRSAEncryption 56:2d:09:5c:01:02:7d:c0:07:2e:2d:de:f1:17:d4:f2:f8:6b: d1:6d:24:57:c2:19:de:89:89:2a:61:3b:ee:8f:6b:9c:86:17: cb:7d:12:b3:3f:e4:fa:65:de:48:fb:cb:ad:86:ad:0f:68:3e: d2:c8:47:c1:1f:0d:6c:65:2a:ec:5d:51:7e:ff:a2:cb:46:7f: 73:5c:c1:85:14:93:bf:aa:c6:76:22:28:a2:30:8e:e1:94:30: e4:c8:54:ee:64:06:74:ea:e8:03:ba:e5:9d:8d:b9:c6:cc:b1: 7d:01:b5:ac:8d:a2:26:64:0a:07:f8:9e:60:c5:ff:dd:27:b4: 34:9e:55:5d:df:9b:d5:66:8b:10:ca:2e:ed:21:e0:47:31:62: 53:02:9b:01:03:54:a0:da:26:6d:6b:c5:9d:2c:f4:2e:0f:c7: e5:f0:c0:3d:c7:56:30:90:1e:57:84:8c:ea:04:f2:2a:e0:88: 5e:f5:8f:85:dd:97:0e:4f:80:c5:f3:3b:0d:0e:03:9c:7a:06: 76:7a:74:61:ad:b0:93:7a:fb:c4:8d:12:56:5d:46:2e:09:e5: 20:e7:24:f2:24:10:75:bb:66:48:21:66:37:42:c4:65:de:72: 39:81:d5:90:d0:56:68:b3:f4:28:ef:03:ae:f6:12:46:fe:8d: 58:c8:26:03 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt6WynYp/qLHXXHK/AN+aciMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NjY4N2ZiNjRhNzdmMDEwMGJhZjIzZDRmMzQxZWNlNzc1 OTUwZTUwHhcNMjYwMTAxMTYxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWQ2YTJiNjE0ZDE5YTIzYWY1OGUxMGE0YTI0NDI4ZDViMTI0ODk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fsyvsPbYb17ncnw05LGNRK/JuYq xrG9HnSNZZMMINeKBmIJA3LPxk0eCcTqRsiv+pqDc95u97nkVV/tl6+HixYRhLR4 jIAlza7tAmYcIEHX4t0Ih/SDMgm5WA9JxbHUNPME8P9yEGMmLMK1s+JaYokqCAzM 1aGWHdELW0ewW1AqUnZXO7hkT79TBXnp+nU5T/jBRvGr7ZeZeUXGFENs8mLL5uV1 4o+4uRv2cS3VNh/0qyODIV8vWOGzzkWisMJEmThfSIQUeBUQXUli8yQLHNqFiK9P sgvs3Dvp/XSPOhkIgRyDAA/nXaneBeVMmel9TwOyXZ8czOiatxap1NizswIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFF7WorYU0Zojr1jhCkokQo1bEkiZMB8GA1UdIwQY MBaAFChmh/tkp38BALryPU80Hs53WVDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0dhSC0yU25md0VBdXZJOVR6UWV6bmRaVU9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8yMDUyYWQtM2Q0MS00NWRhLTg0NzQt NjMzOWY2YjM2YmNiLzEvWHRhaXRoVFJtaU92V09FS1NpUkNqVnNTU0prLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8yMDUyYWQtM2Q0MS00NWRhLTg0NzQtNjMzOWY2YjM2YmNi LzEvS0dhSC0yU25md0VBdXZJOVR6UWV6bmRaVU9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAuW0yAwQC ubHUMA0EAgACMAcDBQMqCkaAMA0GCSqGSIb3DQEBCwUAA4IBAQBWLQlcAQJ9wAcu Ld7xF9Ty+GvRbSRXwhneiYkqYTvuj2uchhfLfRKzP+T6Zd5I+8uthq0PaD7SyEfB Hw1sZSrsXVF+/6LLRn9zXMGFFJO/qsZ2IiiiMI7hlDDkyFTuZAZ06ugDuuWdjbnG zLF9AbWsjaImZAoH+J5gxf/dJ7Q0nlVd35vVZosQyi7tIeBHMWJTApsBA1Sg2iZt a8WdLPQuD8fl8MA9x1YwkB5XhIzqBPIq4Ihe9Y+F3ZcOT4DF8zsNDgOcegZ2enRh rbCTevvEjRJWXUYuCeUg5yTyJBB1u2ZIIWY3QsRl3nI5gdWQ0FZos/Qo7wOu9hJG /o1YyCYD -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:28 2026 by rpki-client