This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/xTW_lD5hyFR2vQYBVeIQ8tHTVWU.roa File: xTW_lD5hyFR2vQYBVeIQ8tHTVWU.roa (raw, json) Hash identifier: +MCBleBXBQDx6fs7+ejDOMAZrsryKfTQT1EHgUrcOhQ= Subject key identifier: C5:35:BF:94:3E:61:C8:54:76:BD:06:01:55:E2:10:F2:D1:D3:55:65 Certificate issuer: /CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980 Certificate serial: 019B797EC5A302479B4F28CFCCC25EF842E0 Authority key identifier: 63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/xTW_lD5hyFR2vQYBVeIQ8tHTVWU.roa Signing time: Thu 01 Jan 2026 12:18:29 +0000 ROA not before: Thu 01 Jan 2026 12:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20860 IP address blocks: 185.201.60.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:c5:a3:02:47:9b:4f:28:cf:cc:c2:5e:f8:42:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980 Validity Not Before: Jan 1 12:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c535bf943e61c85476bd060155e210f2d1d35565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:49:1d:4f:0b:18:b2:0b:d9:17:37:c5:eb:47: f3:f0:62:c0:6c:1d:55:85:ba:4a:8f:54:e9:2e:af: cb:2b:44:75:b2:15:b6:4e:e3:49:28:70:17:4a:69: 40:d9:06:bf:7e:6b:64:29:63:a8:9c:f7:1f:bf:1d: 2c:a8:7e:df:e1:ab:51:e6:67:b6:91:64:0b:6b:b5: a2:da:36:ce:44:0a:eb:98:d1:b6:48:a8:97:c8:96: 93:14:47:99:8d:4d:5c:a2:51:47:04:d1:65:68:a0: 7f:80:96:87:78:c9:b7:9b:18:70:14:cb:3d:a1:cb: b5:0d:36:db:73:ad:0e:57:45:fd:32:5c:c4:cd:04: fe:08:76:5d:7a:00:8a:1f:ab:91:c7:11:0a:6d:24: 06:f1:06:69:f9:fd:95:4b:dc:b5:bb:42:a4:4a:10: 9d:5a:81:04:1e:ae:04:e5:13:39:4e:63:75:54:68: 10:09:e0:71:c0:0b:00:37:9d:68:5f:6f:8c:5d:92: b0:0a:5e:39:10:f1:33:e3:35:0e:2c:65:d1:7b:1a: 8d:29:52:1f:4f:5c:17:7a:ee:10:41:1d:03:66:4d: b2:33:2f:9d:6e:bf:a5:f1:8c:8c:1f:f3:b4:fb:6c: 61:90:a5:18:4f:ca:0e:0b:f0:25:22:ec:9c:6e:ac: 53:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:35:BF:94:3E:61:C8:54:76:BD:06:01:55:E2:10:F2:D1:D3:55:65 X509v3 Authority Key Identifier: keyid:63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/xTW_lD5hyFR2vQYBVeIQ8tHTVWU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.201.60.0/22 Signature Algorithm: sha256WithRSAEncryption a9:5b:9d:14:56:eb:fa:8c:1b:86:48:01:23:ba:2a:d1:1f:57: 47:13:7b:6b:0f:68:72:02:c7:af:91:5e:c5:05:05:5b:d9:33: 24:03:58:ca:0e:f8:06:21:73:d8:26:78:1c:d0:d8:00:a4:84: b7:39:08:a3:4a:22:73:55:c6:47:98:4d:4c:a9:bc:2b:39:6a: 59:ae:2f:a9:c7:08:a2:77:1c:0b:8b:82:ac:80:a8:8c:ed:4b: 43:1b:b7:8f:d0:7c:38:69:23:67:5f:aa:a6:08:df:38:e4:b7: a6:ff:87:4b:66:d5:c3:77:8d:0e:3d:20:a2:1d:e7:14:bb:be: 97:d5:44:a1:c6:ef:68:16:30:9b:c3:fb:6c:25:8f:2c:e4:ff: b7:40:d9:4d:58:18:01:fe:59:3d:13:44:20:ae:9b:56:37:9f: 91:64:33:69:a0:84:30:38:ad:06:46:78:48:a4:44:04:f9:2d: de:8e:cf:36:a1:f7:95:59:1e:0a:1c:02:8c:fd:3e:ab:22:18: 81:ef:0b:d3:2b:f2:4f:ce:a4:67:58:db:af:24:ba:ef:b9:79: 15:6a:b8:cd:4c:3d:5c:e6:54:5a:92:f2:bc:3b:77:e0:d7:c4: 6d:13:ab:e7:2c:3f:f2:26:bf:32:e3:07:ea:61:41:69:34:7a: 87:5a:93:94 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fsWjAkebTyjPzMJe+ELgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzYzM0NDU1YzBkNGU0ZmMzYmEyZjFjNDZmMDhiNDc1Yzhm NmQ5ODAwHhcNMjYwMTAxMTIxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTM1YmY5NDNlNjFjODU0NzZiZDA2MDE1NWUyMTBmMmQxZDM1NTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UkdTwsYsgvZFzfF60fz8GLAbB1V hbpKj1TpLq/LK0R1shW2TuNJKHAXSmlA2Qa/fmtkKWOonPcfvx0sqH7f4atR5me2 kWQLa7Wi2jbORArrmNG2SKiXyJaTFEeZjU1colFHBNFlaKB/gJaHeMm3mxhwFMs9 ocu1DTbbc60OV0X9MlzEzQT+CHZdegCKH6uRxxEKbSQG8QZp+f2VS9y1u0KkShCd WoEEHq4E5RM5TmN1VGgQCeBxwAsAN51oX2+MXZKwCl45EPEz4zUOLGXRexqNKVIf T1wXeu4QQR0DZk2yMy+dbr+l8YyMH/O0+2xhkKUYT8oOC/AlIuycbqxT2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMU1v5Q+YchUdr0GAVXiEPLR01VlMB8GA1UdIwQY MBaAFGPDRFXA1OT8O6LxxG8ItHXI9tmAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWThORVZjRFU1UHc3b3ZIRWJ3aTBkY2oyMllBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8zNTY1NmEtMDY2ZS00OWRmLWI3MDkt N2JmY2Q3ZTk0YjllLzEveFRXX2xENWh5RlIydlFZQlZlSVE4dEhUVldVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8zNTY1NmEtMDY2ZS00OWRmLWI3MDktN2JmY2Q3ZTk0Yjll LzEvWThORVZjRFU1UHc3b3ZIRWJ3aTBkY2oyMllBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuck8MA0G CSqGSIb3DQEBCwUAA4IBAQCpW50UVuv6jBuGSAEjuirRH1dHE3trD2hyAsevkV7F BQVb2TMkA1jKDvgGIXPYJngc0NgApIS3OQijSiJzVcZHmE1MqbwrOWpZri+pxwii dxwLi4KsgKiM7UtDG7eP0Hw4aSNnX6qmCN845Lem/4dLZtXDd40OPSCiHecUu76X 1UShxu9oFjCbw/tsJY8s5P+3QNlNWBgB/lk9E0QgrptWN5+RZDNpoIQwOK0GRnhI pEQE+S3ejs82ofeVWR4KHAKM/T6rIhiB7wvTK/JPzqRnWNuvJLrvuXkVarjNTD1c 5lRakvK8O3fg18RtE6vnLD/yJr8y4wfqYUFpNHqHWpOU -----END CERTIFICATE-----Generated at Mon Jan 19 17:31:40 2026 by rpki-client