This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/xR1N0ZgWC0FpSzcR0b92EyDnzn8.roa File: xR1N0ZgWC0FpSzcR0b92EyDnzn8.roa (raw, json) Hash identifier: n60D3DCSEgW83lG68CLjX8PIMIKZneTo8DEAS93I3sE= Subject key identifier: C5:1D:4D:D1:98:16:0B:41:69:4B:37:11:D1:BF:76:13:20:E7:CE:7F Certificate issuer: /CN=55c9b2025e0e695808f6b61ee276aed4fb5680cd Certificate serial: 019A82F09B0ABC3F43681BF9486307F47CCF Authority key identifier: 55:C9:B2:02:5E:0E:69:58:08:F6:B6:1E:E2:76:AE:D4:FB:56:80:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/xR1N0ZgWC0FpSzcR0b92EyDnzn8.roa Signing time: Fri 14 Nov 2025 15:16:37 +0000 ROA not before: Fri 14 Nov 2025 15:16:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 216096 IP address blocks: 168.222.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.crl rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.mft rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 20:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:82:f0:9b:0a:bc:3f:43:68:1b:f9:48:63:07:f4:7c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55c9b2025e0e695808f6b61ee276aed4fb5680cd Validity Not Before: Nov 14 15:16:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c51d4dd198160b41694b3711d1bf761320e7ce7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3f:80:24:94:01:55:ba:9f:c6:a8:06:8b:08: d7:fc:0e:0a:86:42:44:89:78:26:5a:96:f8:cd:4c: 8f:68:63:ae:25:77:25:a3:74:14:87:aa:a6:22:37: ae:1c:a0:a7:83:df:da:36:b6:eb:0e:70:f8:01:13: ac:67:01:3a:a6:ae:7b:5f:d9:a8:62:4e:fa:23:79: 7e:96:33:81:10:3d:9b:9b:06:33:b7:58:08:64:2d: 59:52:cf:b4:71:e7:c8:85:02:c4:ea:80:d6:a2:fd: 2f:0e:f4:89:85:75:9d:b4:aa:a5:d6:8b:a2:77:30: dc:1c:26:9d:75:cb:61:99:ee:c8:a3:bb:d5:57:4e: 88:cb:e3:c4:3c:b1:67:d2:8b:cc:d6:7b:59:ec:5f: d4:40:40:55:22:30:a6:43:3f:b5:54:0d:5c:bd:d1: 15:98:b0:c6:77:16:aa:a4:fe:d5:fb:7b:00:8e:bb: 96:4d:1c:85:47:e4:6b:52:3d:9e:2b:86:4b:8e:49: a5:8f:74:81:8d:e8:4a:59:d8:65:24:54:01:5b:70: bd:dd:d6:7a:a9:0c:d9:73:08:93:67:75:35:2b:88: 98:a3:18:98:3c:c8:ba:6b:fc:55:31:d2:93:f4:bc: 54:f0:81:1c:ef:fc:9a:84:9e:76:02:4c:56:8c:43: 1a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:1D:4D:D1:98:16:0B:41:69:4B:37:11:D1:BF:76:13:20:E7:CE:7F X509v3 Authority Key Identifier: keyid:55:C9:B2:02:5E:0E:69:58:08:F6:B6:1E:E2:76:AE:D4:FB:56:80:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/xR1N0ZgWC0FpSzcR0b92EyDnzn8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.222.182.0/24 Signature Algorithm: sha256WithRSAEncryption bf:0d:43:02:83:e9:55:8d:2c:84:79:25:93:96:ac:1e:d7:38: e1:fb:df:1c:64:a4:d0:3b:15:04:b7:05:a8:60:83:eb:9a:ab: 9b:4e:86:8f:c5:aa:76:6d:54:c0:93:3d:8a:fa:e0:87:ba:3a: 29:37:34:8b:29:65:07:82:0a:d7:8b:5d:88:7c:7d:d2:01:8d: 08:74:5f:a7:90:b3:8e:06:8b:66:eb:15:7e:d6:f9:d7:d3:6a: 10:30:6b:44:9f:c8:6a:21:23:28:62:30:a4:5d:c2:f1:b1:06: a2:ba:2c:08:4b:5a:28:41:b2:84:69:eb:71:67:f3:5b:29:b3: fc:63:b8:d3:7b:b6:33:c6:94:4e:d9:70:03:28:63:60:34:68: 2e:bf:e8:be:ec:d8:92:90:df:a1:b7:ca:f2:09:c8:71:7d:f5: 71:c8:14:33:f9:43:9e:22:f9:0a:3f:d9:cb:b1:b8:17:d1:ba: 16:29:52:c5:56:68:64:bc:1d:83:d9:04:e1:48:6d:ab:32:61: b3:eb:66:23:b1:89:02:32:aa:1f:b7:32:26:04:7b:97:96:07: 0b:a1:7f:a1:94:5f:cd:02:98:65:5f:bd:80:97:d0:fb:2e:42: 5e:3f:03:20:05:cc:ce:68:50:81:96:dd:7b:11:e4:10:80:96: 72:4d:d7:b7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZqC8JsKvD9DaBv5SGMH9HzPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1YzliMjAyNWUwZTY5NTgwOGY2YjYxZWUyNzZhZWQ0ZmI1 NjgwY2QwHhcNMjUxMTE0MTUxNjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTFkNGRkMTk4MTYwYjQxNjk0YjM3MTFkMWJmNzYxMzIwZTdjZTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmD+AJJQBVbqfxqgGiwjX/A4KhkJE iXgmWpb4zUyPaGOuJXclo3QUh6qmIjeuHKCng9/aNrbrDnD4AROsZwE6pq57X9mo Yk76I3l+ljOBED2bmwYzt1gIZC1ZUs+0cefIhQLE6oDWov0vDvSJhXWdtKql1oui dzDcHCaddcthme7Io7vVV06Iy+PEPLFn0ovM1ntZ7F/UQEBVIjCmQz+1VA1cvdEV mLDGdxaqpP7V+3sAjruWTRyFR+RrUj2eK4ZLjkmlj3SBjehKWdhlJFQBW3C93dZ6 qQzZcwiTZ3U1K4iYoxiYPMi6a/xVMdKT9LxU8IEc7/yahJ52AkxWjEMaoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMUdTdGYFgtBaUs3EdG/dhMg585/MB8GA1UdIwQY MBaAFFXJsgJeDmlYCPa2HuJ2rtT7VoDNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmNteUFsNE9hVmdJOXJZZTRuYXUxUHRXZ00wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82MzY2YjQtZGQ2Zi00MDQwLTg4OTUt NzFiZTBkNTE5MTlkLzEveFIxTjBaZ1dDMEZwU3pjUjBiOTJFeURuem44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82MzY2YjQtZGQ2Zi00MDQwLTg4OTUtNzFiZTBkNTE5MTlk LzEvVmNteUFsNE9hVmdJOXJZZTRuYXUxUHRXZ00wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqN62MA0G CSqGSIb3DQEBCwUAA4IBAQC/DUMCg+lVjSyEeSWTlqwe1zjh+98cZKTQOxUEtwWo YIPrmqubToaPxap2bVTAkz2K+uCHujopNzSLKWUHggrXi12IfH3SAY0IdF+nkLOO Botm6xV+1vnX02oQMGtEn8hqISMoYjCkXcLxsQaiuiwIS1ooQbKEaetxZ/NbKbP8 Y7jTe7YzxpRO2XADKGNgNGguv+i+7NiSkN+ht8ryCchxffVxyBQz+UOeIvkKP9nL sbgX0boWKVLFVmhkvB2D2QThSG2rMmGz62YjsYkCMqoftzImBHuXlgcLoX+hlF/N AphlX72Al9D7LkJePwMgBczOaFCBlt17EeQQgJZyTde3 -----END CERTIFICATE-----Generated at Fri Nov 28 06:10:52 2025 by rpki-client