This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/XDU9UWSQ0e6UimvguU5iuXs0EOA.roa File: XDU9UWSQ0e6UimvguU5iuXs0EOA.roa (raw, json) Hash identifier: SCFRxNca9zUGzw86U8+KWNOZievAR3LE2W5GLXuSUcY= Subject key identifier: 5C:35:3D:51:64:90:D1:EE:94:8A:6B:E0:B9:4E:62:B9:7B:34:10:E0 Certificate issuer: /CN=1c7ad7754795ddd605f28838bb7cc359df7a266a Certificate serial: 019C096A5906534CA4A3CF9E9B6F0092396C Authority key identifier: 1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/XDU9UWSQ0e6UimvguU5iuXs0EOA.roa Signing time: Thu 29 Jan 2026 11:01:30 +0000 ROA not before: Thu 29 Jan 2026 11:01:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29802 IP address blocks: 194.59.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.mft rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 11:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:09:6a:59:06:53:4c:a4:a3:cf:9e:9b:6f:00:92:39:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7ad7754795ddd605f28838bb7cc359df7a266a Validity Not Before: Jan 29 11:01:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c353d516490d1ee948a6be0b94e62b97b3410e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5b:45:ee:a0:49:b8:41:f0:2e:ea:5b:1b:5f: a7:76:ba:fe:ea:e4:05:2b:fc:fa:78:11:b8:c4:b9: ff:9e:01:bc:64:83:e5:56:80:b0:4c:52:d3:3d:52: 35:ec:cd:68:c8:2d:35:08:bb:5f:48:5a:d6:6d:b9: 8c:4a:63:65:95:b9:b0:95:26:98:ff:d3:bf:4e:ec: 87:40:da:03:78:c2:24:50:c8:73:2e:a1:fb:92:a3: 6b:9e:44:ea:46:4e:83:ce:fb:b6:ee:b5:3d:28:28: ac:ef:7d:9c:f1:b7:b3:84:dc:9f:fb:5c:b1:49:2d: 80:da:c7:fb:cf:af:66:b6:cc:8b:b1:c9:f3:01:64: 4d:8f:97:ea:7b:2f:2b:5d:57:82:a0:5b:df:e2:7d: e9:7d:e1:13:d3:36:58:b3:3c:7d:31:bd:8e:53:29: 7d:e6:15:46:93:20:57:e0:7d:3d:c1:8e:60:f4:6c: 6f:4c:9c:b3:a5:31:af:2a:bf:be:4c:a4:d6:e0:a9: ec:ab:a3:13:3d:d8:07:54:31:5d:d4:6d:68:9a:bf: 33:b7:ce:9f:fa:ea:e9:9e:18:b4:4c:11:d7:e3:44: 39:11:01:45:ce:56:8d:ea:1c:09:fe:35:82:54:1b: ef:6e:fc:61:84:bc:08:34:b6:61:f1:06:4d:cf:fd: 45:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:35:3D:51:64:90:D1:EE:94:8A:6B:E0:B9:4E:62:B9:7B:34:10:E0 X509v3 Authority Key Identifier: keyid:1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/XDU9UWSQ0e6UimvguU5iuXs0EOA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.59.8.0/24 Signature Algorithm: sha256WithRSAEncryption 39:a7:a0:cb:e5:ef:0c:3b:8b:cf:74:a2:d9:8c:6e:bd:a5:13: 58:95:e4:fc:0a:18:96:a7:0a:b6:54:60:eb:93:fa:d6:30:35: 2e:28:e7:b1:1a:d4:7c:32:1d:ee:20:95:b5:2c:dc:9c:9a:5e: fb:9f:08:29:74:5d:1c:04:00:d2:7f:38:2a:67:bc:8e:56:bd: b6:c5:4b:43:fd:81:15:c1:07:dd:bb:21:fa:95:e0:3b:97:56: 63:7f:45:04:cf:1d:90:ef:f7:56:c9:bf:87:5f:d5:3e:9f:35: ea:88:07:20:53:ad:13:b8:93:ca:75:77:c3:b7:3a:39:5b:68: 61:f4:87:dd:97:ea:a4:a7:55:03:01:0d:bc:4c:c0:b3:39:9a: e8:73:6e:0f:a7:f4:52:55:5f:a6:ac:2a:e3:2b:58:83:0c:32: 07:f1:08:dc:a1:4d:ea:7a:02:33:3c:27:ae:19:c1:18:48:93: 9f:18:a5:10:a7:18:44:8e:04:d0:4c:48:00:ee:55:17:0b:96: 38:65:b8:50:23:63:09:7a:33:d3:c5:d4:f7:3a:b8:c3:86:cf: 03:67:dd:d1:4d:75:9b:fe:2f:d1:ed:04:36:81:c5:69:f3:75: 86:ff:8d:9b:53:21:2b:7c:57:5d:e3:1d:13:5c:f8:c5:17:bc: 16:f4:63:f7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZwJalkGU0yko8+em28AkjlsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2FkNzc1NDc5NWRkZDYwNWYyODgzOGJiN2NjMzU5ZGY3 YTI2NmEwHhcNMjYwMTI5MTEwMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzM1M2Q1MTY0OTBkMWVlOTQ4YTZiZTBiOTRlNjJiOTdiMzQxMGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1tF7qBJuEHwLupbG1+ndrr+6uQF K/z6eBG4xLn/ngG8ZIPlVoCwTFLTPVI17M1oyC01CLtfSFrWbbmMSmNllbmwlSaY /9O/TuyHQNoDeMIkUMhzLqH7kqNrnkTqRk6Dzvu27rU9KCis732c8bezhNyf+1yx SS2A2sf7z69mtsyLscnzAWRNj5fqey8rXVeCoFvf4n3pfeET0zZYszx9Mb2OUyl9 5hVGkyBX4H09wY5g9GxvTJyzpTGvKr++TKTW4Knsq6MTPdgHVDFd1G1omr8zt86f +urpnhi0TBHX40Q5EQFFzlaN6hwJ/jWCVBvvbvxhhLwINLZh8QZNz/1FOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFw1PVFkkNHulIpr4LlOYrl7NBDgMB8GA1UdIwQY MBaAFBx613VHld3WBfKIOLt8w1nfeiZqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEhyWGRVZVYzZFlGOG9nNHUzekRXZDk2Sm1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9jNWE5ZTMtNjcyMi00YjZhLWJlNTgt YWRhNWMyMGUzZjdiLzEvWERVOVVXU1EwZTZVaW12Z3VVNWl1WHMwRU9BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9jNWE5ZTMtNjcyMi00YjZhLWJlNTgtYWRhNWMyMGUzZjdi LzEvSEhyWGRVZVYzZFlGOG9nNHUzekRXZDk2Sm1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjsIMA0G CSqGSIb3DQEBCwUAA4IBAQA5p6DL5e8MO4vPdKLZjG69pRNYleT8ChiWpwq2VGDr k/rWMDUuKOexGtR8Mh3uIJW1LNycml77nwgpdF0cBADSfzgqZ7yOVr22xUtD/YEV wQfduyH6leA7l1Zjf0UEzx2Q7/dWyb+HX9U+nzXqiAcgU60TuJPKdXfDtzo5W2hh 9Ifdl+qkp1UDAQ28TMCzOZroc24Pp/RSVV+mrCrjK1iDDDIH8QjcoU3qegIzPCeu GcEYSJOfGKUQpxhEjgTQTEgA7lUXC5Y4ZbhQI2MJejPTxdT3OrjDhs8DZ93RTXWb /i/R7QQ2gcVp83WG/42bUyErfFdd4x0TXPjFF7wW9GP3 -----END CERTIFICATE-----Generated at Thu Jan 29 17:47:38 2026 by rpki-client