This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/Xn8q_66t7wzhb4v1l5kcWKBFQNs.roa File: Xn8q_66t7wzhb4v1l5kcWKBFQNs.roa (raw, json) Hash identifier: 6vO+ulMoF82yem5grlAhBfA3FaHkdUHzR33O3qHwMWk= Subject key identifier: 5E:7F:2A:FF:AE:AD:EF:0C:E1:6F:8B:F5:97:99:1C:58:A0:45:40:DB Certificate issuer: /CN=53b8b4cea94c867d34c2bff9ace7640bff51d06b Certificate serial: 019B7C11BDE4FF64846F0DAD270DA3371158 Authority key identifier: 53:B8:B4:CE:A9:4C:86:7D:34:C2:BF:F9:AC:E7:64:0B:FF:51:D0:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7i0zqlMhn00wr_5rOdkC_9R0Gs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/Xn8q_66t7wzhb4v1l5kcWKBFQNs.roa Signing time: Fri 02 Jan 2026 00:18:16 +0000 ROA not before: Fri 02 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57584 IP address blocks: 91.233.68.0/24 maxlen: 24 195.254.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/U7i0zqlMhn00wr_5rOdkC_9R0Gs.crl rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/U7i0zqlMhn00wr_5rOdkC_9R0Gs.mft rsync://rpki.ripe.net/repository/DEFAULT/U7i0zqlMhn00wr_5rOdkC_9R0Gs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:bd:e4:ff:64:84:6f:0d:ad:27:0d:a3:37:11:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53b8b4cea94c867d34c2bff9ace7640bff51d06b Validity Not Before: Jan 2 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e7f2affaeadef0ce16f8bf597991c58a04540db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bf:a1:74:d3:ea:cb:de:08:9f:2f:ab:3f:67: f7:2a:63:9a:9b:db:18:8c:a0:be:83:21:1e:6c:2e: d9:e2:b4:e6:06:9b:98:de:19:13:3c:20:cf:61:cc: b9:bc:b6:be:4a:1d:6e:f6:ba:0f:2c:2a:7f:99:64: ba:61:d1:ff:b1:4e:06:46:90:e2:88:60:b7:a7:8d: 4a:13:44:34:c4:a7:b6:8a:b1:0b:0c:95:11:64:7a: c6:c8:cb:cd:b9:0e:c4:99:db:0d:25:e9:a8:d8:a4: 9c:e5:77:ef:a1:93:60:25:18:15:98:6a:55:50:68: 10:9a:66:5e:bc:8a:4b:bc:32:d0:60:8a:a0:80:13: 9e:26:6d:4e:71:71:52:ff:97:ef:34:57:cf:1c:f7: 01:b0:94:a4:e1:f7:73:13:88:ff:c3:93:fe:68:dc: 98:af:35:5f:81:7d:f3:4e:86:42:39:76:e1:4c:f1: 4d:08:37:e9:8a:43:cd:ea:fb:b5:8c:bb:bf:31:30: a3:90:8d:ad:a0:3d:4a:d9:01:0d:6d:06:32:0a:1a: 71:ea:62:87:83:10:42:46:6d:6a:ef:b7:63:59:3d: 69:70:4e:dc:82:a3:23:1b:ff:3c:f0:8a:da:a4:97: 81:dc:db:d6:3a:06:4f:d9:90:56:79:24:75:eb:c2: 8b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:7F:2A:FF:AE:AD:EF:0C:E1:6F:8B:F5:97:99:1C:58:A0:45:40:DB X509v3 Authority Key Identifier: keyid:53:B8:B4:CE:A9:4C:86:7D:34:C2:BF:F9:AC:E7:64:0B:FF:51:D0:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7i0zqlMhn00wr_5rOdkC_9R0Gs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/Xn8q_66t7wzhb4v1l5kcWKBFQNs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/U7i0zqlMhn00wr_5rOdkC_9R0Gs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.233.68.0/24 195.254.130.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:40:54:5e:18:80:00:a3:44:0d:63:42:a0:5e:6f:a8:47:31: 43:de:e5:f6:ab:09:5c:50:5b:8b:6b:94:1c:ef:37:79:2f:86: ca:31:57:76:b7:d8:0d:b1:73:3e:a2:d8:48:35:b2:81:70:f0: 88:98:15:84:c9:0a:40:9b:25:ab:72:1f:0a:5f:2d:aa:77:f5: 8d:90:07:46:ce:44:38:47:a3:26:47:4d:cf:74:ec:ec:a0:58: c2:54:5a:3c:4d:14:bd:90:40:5d:83:e3:b4:2a:89:e5:e8:87: 3c:c4:8d:25:7b:0d:e7:94:50:7f:f0:bc:7a:7d:50:fd:ce:b4: de:24:05:f4:d0:9a:8f:2a:a5:66:f7:c8:3a:e5:fe:86:19:49: d9:3f:17:5a:62:22:c2:5d:d2:27:f7:72:d6:91:02:3c:75:69: b2:d4:a5:fc:0c:2a:83:cc:4b:0d:df:ad:c3:cf:57:98:0d:14: bf:ae:3a:05:e5:f0:0d:f6:d9:73:82:8d:e8:51:c1:97:80:8c: 5a:fc:a7:24:a3:86:8f:16:21:2f:e3:69:7e:61:81:c3:16:e2: 0c:98:68:09:f5:6d:97:65:48:83:62:17:0d:28:2f:6f:92:47: dc:4f:55:12:59:a7:ef:3f:a3:cd:e4:59:3f:a5:e5:ba:18:e4: fb:cc:c2:8f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8Eb3k/2SEbw2tJw2jNxFYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYjhiNGNlYTk0Yzg2N2QzNGMyYmZmOWFjZTc2NDBiZmY1 MWQwNmIwHhcNMjYwMTAyMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTdmMmFmZmFlYWRlZjBjZTE2ZjhiZjU5Nzk5MWM1OGEwNDU0MGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvL+hdNPqy94Iny+rP2f3KmOam9sY jKC+gyEebC7Z4rTmBpuY3hkTPCDPYcy5vLa+Sh1u9roPLCp/mWS6YdH/sU4GRpDi iGC3p41KE0Q0xKe2irELDJURZHrGyMvNuQ7EmdsNJemo2KSc5XfvoZNgJRgVmGpV UGgQmmZevIpLvDLQYIqggBOeJm1OcXFS/5fvNFfPHPcBsJSk4fdzE4j/w5P+aNyY rzVfgX3zToZCOXbhTPFNCDfpikPN6vu1jLu/MTCjkI2toD1K2QENbQYyChpx6mKH gxBCRm1q77djWT1pcE7cgqMjG/888IrapJeB3NvWOgZP2ZBWeSR168KLgQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFF5/Kv+ure8M4W+L9ZeZHFigRUDbMB8GA1UdIwQY MBaAFFO4tM6pTIZ9NMK/+aznZAv/UdBrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTdpMHpxbE1objAwd3JfNXJPZGtDXzlSMEdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9kZjk0ZmYtZGU5Yy00OGE4LTk3NmQt OTY1ZjE3NjM3ODJjLzEvWG44cV82NnQ3d3poYjR2MWw1a2NXS0JGUU5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi9kZjk0ZmYtZGU5Yy00OGE4LTk3NmQtOTY1ZjE3NjM3ODJj LzEvVTdpMHpxbE1objAwd3JfNXJPZGtDXzlSMEdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+lEAwQB w/6CMA0GCSqGSIb3DQEBCwUAA4IBAQBcQFReGIAAo0QNY0KgXm+oRzFD3uX2qwlc UFuLa5Qc7zd5L4bKMVd2t9gNsXM+othINbKBcPCImBWEyQpAmyWrch8KXy2qd/WN kAdGzkQ4R6MmR03PdOzsoFjCVFo8TRS9kEBdg+O0Konl6Ic8xI0lew3nlFB/8Lx6 fVD9zrTeJAX00JqPKqVm98g65f6GGUnZPxdaYiLCXdIn93LWkQI8dWmy1KX8DCqD zEsN363Dz1eYDRS/rjoF5fAN9tlzgo3oUcGXgIxa/Kcko4aPFiEv42l+YYHDFuIM mGgJ9W2XZUiDYhcNKC9vkkfcT1USWafvP6PN5Fk/peW6GOT7zMKP -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:06 2026 by rpki-client