This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/XBrLReEzEqMzGUZiDSeRx6bYtGg.roa File: XBrLReEzEqMzGUZiDSeRx6bYtGg.roa (raw, json) Hash identifier: vE60YXFGde/EJL9O0G57BRCSbqaHREoAbYhQg4DwsS0= Subject key identifier: 5C:1A:CB:45:E1:33:12:A3:33:19:46:62:0D:27:91:C7:A6:D8:B4:68 Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0 Certificate serial: 019B7758E35627322779F25583D16265FFBE Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/XBrLReEzEqMzGUZiDSeRx6bYtGg.roa Signing time: Thu 01 Jan 2026 02:17:52 +0000 ROA not before: Thu 01 Jan 2026 02:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202409 IP address blocks: 185.1.155.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.mft rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:e3:56:27:32:27:79:f2:55:83:d1:62:65:ff:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0 Validity Not Before: Jan 1 02:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c1acb45e13312a3331946620d2791c7a6d8b468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7e:a7:b1:5b:d6:bb:b5:53:c4:de:75:04:77: b0:78:67:c6:83:58:5f:24:d8:fe:9d:a7:a2:31:85: af:a1:61:82:bb:ec:53:44:53:ba:19:f4:f2:cf:e7: 6b:87:c2:ce:8e:45:78:40:44:72:40:c3:72:c6:9e: 94:bd:35:7b:bd:16:2e:cc:a7:ac:bf:3e:97:d0:0c: 29:cd:48:b8:d5:0f:ab:13:34:2d:95:f7:8f:48:d0: 4a:54:5c:49:cc:6f:ff:6d:61:0a:c0:7b:b1:a8:b3: 8c:31:99:63:b8:75:69:b3:8c:4e:3a:ed:c7:99:75: 83:7e:1c:13:94:c6:2a:d9:0c:53:a1:e8:d9:34:32: 1e:ce:87:95:1e:13:95:6f:92:3e:b4:9e:5a:79:6f: f7:d0:00:1e:c0:2f:07:88:f8:3e:75:15:a2:00:d2: 85:47:50:3c:89:1e:1f:95:c6:67:04:a4:4e:11:5d: 56:6a:38:41:d3:b1:69:ce:4e:4c:42:64:51:6d:80: 3d:91:10:94:9f:a2:85:73:9d:aa:e3:36:83:68:16: 2a:bd:9f:24:99:ee:a8:64:59:bd:7c:ed:57:01:5e: 08:b9:16:9d:01:fc:ba:f0:1a:2f:37:d6:06:cf:d1: 1f:87:11:fc:a6:10:6c:4e:cc:72:3f:92:0d:13:1d: e1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:1A:CB:45:E1:33:12:A3:33:19:46:62:0D:27:91:C7:A6:D8:B4:68 X509v3 Authority Key Identifier: keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/XBrLReEzEqMzGUZiDSeRx6bYtGg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.155.0/24 Signature Algorithm: sha256WithRSAEncryption 58:26:38:7f:e1:96:70:f5:73:df:f8:f1:6d:4d:be:54:48:21: 1a:28:ce:65:ca:a2:90:d0:bc:b1:95:ac:97:57:23:00:a3:65: e9:8e:b4:72:36:e1:b8:49:54:2c:a7:20:c2:33:e8:42:2d:3d: b7:34:22:e7:5d:f1:53:d8:56:7e:ee:ce:21:4c:3c:92:b9:96: 48:f0:bf:d7:dc:6c:f6:ad:2b:2d:4b:94:5d:13:1d:63:08:97: f8:5d:e4:47:3d:27:5c:ef:7e:9a:df:ad:1e:59:98:2f:c8:3d: 25:08:6d:1a:28:15:40:e3:86:e1:41:30:78:d9:5a:d2:68:88: cd:13:32:7c:c5:9a:51:22:ed:35:cb:93:6c:7e:56:97:c6:cd: b7:d6:c8:00:c9:28:19:87:8a:54:97:ba:11:52:88:59:d7:56: aa:b4:5f:12:7d:e0:08:4d:13:5f:0e:3b:0e:7c:56:ce:4c:d4: 0c:95:bb:c5:7e:85:b2:b6:de:2e:09:0d:f3:b2:6b:bb:4a:e6: b9:7c:45:17:63:6b:35:5f:da:7a:9a:01:21:80:23:c7:c1:e7: 02:3b:6c:96:1e:d6:c2:4a:9c:18:67:c9:26:6d:b6:45:a8:32: b2:cf:b2:b2:4c:43:2b:d2:17:26:82:be:40:33:d6:6f:5f:01: f8:92:18:e5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WONWJzInefJVg9FiZf++MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk NWFlZjAwHhcNMjYwMTAxMDIxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzFhY2I0NWUxMzMxMmEzMzMxOTQ2NjIwZDI3OTFjN2E2ZDhiNDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzH6nsVvWu7VTxN51BHeweGfGg1hf JNj+naeiMYWvoWGCu+xTRFO6GfTyz+drh8LOjkV4QERyQMNyxp6UvTV7vRYuzKes vz6X0AwpzUi41Q+rEzQtlfePSNBKVFxJzG//bWEKwHuxqLOMMZljuHVps4xOOu3H mXWDfhwTlMYq2QxToejZNDIezoeVHhOVb5I+tJ5aeW/30AAewC8HiPg+dRWiANKF R1A8iR4flcZnBKROEV1WajhB07Fpzk5MQmRRbYA9kRCUn6KFc52q4zaDaBYqvZ8k me6oZFm9fO1XAV4IuRadAfy68BovN9YGz9EfhxH8phBsTsxyP5INEx3h9wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFway0XhMxKjMxlGYg0nkcem2LRoMB8GA1UdIwQY MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt Y2MxYzliNWY2NjQwLzEvWEJyTFJlRXpFcU16R1VaaURTZVJ4NmJZdEdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQGbMA0G CSqGSIb3DQEBCwUAA4IBAQBYJjh/4ZZw9XPf+PFtTb5USCEaKM5lyqKQ0LyxlayX VyMAo2XpjrRyNuG4SVQspyDCM+hCLT23NCLnXfFT2FZ+7s4hTDySuZZI8L/X3Gz2 rSstS5RdEx1jCJf4XeRHPSdc736a360eWZgvyD0lCG0aKBVA44bhQTB42VrSaIjN EzJ8xZpRIu01y5NsflaXxs231sgAySgZh4pUl7oRUohZ11aqtF8SfeAITRNfDjsO fFbOTNQMlbvFfoWytt4uCQ3zsmu7Sua5fEUXY2s1X9p6mgEhgCPHwecCO2yWHtbC SpwYZ8kmbbZFqDKyz7KyTEMr0hcmgr5AM9ZvXwH4khjl -----END CERTIFICATE-----Generated at Mon Jan 26 12:32:28 2026 by rpki-client