This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/XuvIYq8HLSlZkXL-VdvjhCtcmkU.roa File: XuvIYq8HLSlZkXL-VdvjhCtcmkU.roa (raw, json) Hash identifier: jr1ROeEtTUtrgfLsp+6muEgknMQtZxXtTSB2SKkiCCU= Subject key identifier: 5E:EB:C8:62:AF:07:2D:29:59:91:72:FE:55:DB:E3:84:2B:5C:9A:45 Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c Certificate serial: 019B78A2B14EFF914E49FD09DB806CDED879 Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/XuvIYq8HLSlZkXL-VdvjhCtcmkU.roa Signing time: Thu 01 Jan 2026 08:18:06 +0000 ROA not before: Thu 01 Jan 2026 08:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13335 IP address blocks: 62.68.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.mft rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 05:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:b1:4e:ff:91:4e:49:fd:09:db:80:6c:de:d8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c Validity Not Before: Jan 1 08:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5eebc862af072d29599172fe55dbe3842b5c9a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ed:ab:5c:41:f1:4f:06:34:1e:4a:95:8f:fd: 98:c1:08:0c:c5:10:ee:ca:26:fd:9c:97:9b:e6:6d: 18:d9:65:ea:d1:ff:59:c7:58:f4:43:92:18:ed:58: 2f:ab:85:2e:40:fb:98:08:75:66:fb:3e:c6:86:14: f3:ed:99:a1:67:53:40:2a:95:08:78:a7:34:77:c8: 7e:26:01:ba:e1:d4:f2:84:7c:31:a7:c5:25:13:b4: 01:9f:15:b0:90:28:38:04:b3:72:09:35:91:45:63: 5c:71:f1:e4:5a:c9:31:1a:10:c6:68:ce:9c:33:1e: 70:37:b9:42:e7:21:88:57:1c:a9:3d:0b:5c:7b:e7: c7:f0:80:5f:78:a4:60:77:f7:37:b6:0d:d1:80:6b: 39:5d:8a:ef:2b:14:c9:31:5d:31:bd:b8:ce:e9:da: b3:ad:2d:5e:d3:fb:f6:33:40:9f:7c:1b:62:ca:a2: 5a:5f:2a:21:07:07:f6:ba:73:df:ac:32:07:f3:eb: 32:be:85:32:1d:dc:fd:5f:7d:a8:fa:e3:a0:3b:40: e5:c0:1d:fe:51:b8:c5:19:b0:9d:2f:06:04:3d:5c: 8b:10:50:b6:d7:a8:0a:56:bc:5c:60:d8:01:30:94: 9c:99:b5:b5:59:55:2f:91:bd:0e:8b:c3:6b:62:70: 20:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EB:C8:62:AF:07:2D:29:59:91:72:FE:55:DB:E3:84:2B:5C:9A:45 X509v3 Authority Key Identifier: keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/XuvIYq8HLSlZkXL-VdvjhCtcmkU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.68.68.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:16:3a:71:55:0c:66:9e:00:fc:5e:58:a6:60:a9:cf:08:76: fd:66:f3:2d:6b:4a:80:70:82:01:8d:c7:17:56:c8:9d:f0:4e: 56:28:6d:6d:ab:52:1c:86:57:e5:9d:62:59:16:bb:9a:bd:4f: e2:bd:49:e8:ad:f5:f5:7a:88:24:8e:4f:4d:ec:8e:ca:e3:9c: 60:80:2c:cc:d9:7a:74:0f:aa:21:07:2f:66:49:37:fd:1c:0b: 0e:77:a3:fe:a4:23:ae:ca:93:75:48:43:88:42:25:84:4b:43: 4c:c0:72:fc:9a:26:11:2f:fd:1e:c5:dd:d0:78:33:af:ae:66: a9:d3:f7:3e:9c:51:a1:29:af:ca:02:23:29:b5:0d:57:8b:fe: bf:ab:06:8f:a7:1e:df:3b:88:3a:ad:1b:af:a8:ff:fe:2c:dd: b4:bc:79:61:91:22:81:2d:e1:a2:25:61:10:43:56:7a:11:86: 89:cd:df:71:ee:f6:2f:96:0d:77:12:91:c0:55:b0:ae:88:9a: 6c:39:6a:ec:99:0f:72:bf:ab:33:bc:ec:b8:56:5c:e3:a1:0f: 26:e3:ce:1a:d5:02:35:30:a4:22:f5:a1:a8:60:aa:1e:11:4f: bd:51:b0:50:46:8d:33:5a:78:0f:a8:53:70:a6:66:23:24:5d: 30:c8:a5:e9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4orFO/5FOSf0J24Bs3th5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZDIxZTgwNGFiNzcxM2FkNzg3N2RkZTYwM2FhNzgyNGIz MTk4M2MwHhcNMjYwMTAxMDgxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWViYzg2MmFmMDcyZDI5NTk5MTcyZmU1NWRiZTM4NDJiNWM5YTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+2rXEHxTwY0HkqVj/2YwQgMxRDu yib9nJeb5m0Y2WXq0f9Zx1j0Q5IY7Vgvq4UuQPuYCHVm+z7GhhTz7ZmhZ1NAKpUI eKc0d8h+JgG64dTyhHwxp8UlE7QBnxWwkCg4BLNyCTWRRWNccfHkWskxGhDGaM6c Mx5wN7lC5yGIVxypPQtce+fH8IBfeKRgd/c3tg3RgGs5XYrvKxTJMV0xvbjO6dqz rS1e0/v2M0CffBtiyqJaXyohBwf2unPfrDIH8+syvoUyHdz9X32o+uOgO0DlwB3+ UbjFGbCdLwYEPVyLEFC216gKVrxcYNgBMJScmbW1WVUvkb0Oi8NrYnAgMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF7ryGKvBy0pWZFy/lXb44QrXJpFMB8GA1UdIwQY MBaAFMLSHoBKt3E614d93mA6p4JLMZg8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYt NTlhZTA5ZWRiZWI5LzEvWHV2SVlxOEhMU2xaa1hMLVZkdmpoQ3RjbWtVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYtNTlhZTA5ZWRiZWI5 LzEvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPkREMA0G CSqGSIb3DQEBCwUAA4IBAQCMFjpxVQxmngD8XlimYKnPCHb9ZvMta0qAcIIBjccX Vsid8E5WKG1tq1IchlflnWJZFruavU/ivUnorfX1eogkjk9N7I7K45xggCzM2Xp0 D6ohBy9mSTf9HAsOd6P+pCOuypN1SEOIQiWES0NMwHL8miYRL/0exd3QeDOvrmap 0/c+nFGhKa/KAiMptQ1Xi/6/qwaPpx7fO4g6rRuvqP/+LN20vHlhkSKBLeGiJWEQ Q1Z6EYaJzd9x7vYvlg13EpHAVbCuiJpsOWrsmQ9yv6szvOy4VlzjoQ8m484a1QI1 MKQi9aGoYKoeEU+9UbBQRo0zWngPqFNwpmYjJF0wyKXp -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:30 2026 by rpki-client