This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/XdUMhvG9oQPrrKzfUCLk3WwhmTk.roa File: XdUMhvG9oQPrrKzfUCLk3WwhmTk.roa (raw, json) Hash identifier: Fdb4wKKqvaQQ76cnrCYhan8GU6QyggYtFJ+x0hn2N1g= Subject key identifier: 5D:D5:0C:86:F1:BD:A1:03:EB:AC:AC:DF:50:22:E4:DD:6C:21:99:39 Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019B7F15C86EA7A534AB91E278961C08894C Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/XdUMhvG9oQPrrKzfUCLk3WwhmTk.roa Signing time: Fri 02 Jan 2026 14:21:32 +0000 ROA not before: Fri 02 Jan 2026 14:21:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211415 IP address blocks: 178.255.221.0/24 maxlen: 24 185.232.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c8:6e:a7:a5:34:ab:91:e2:78:96:1c:08:89:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Jan 2 14:21:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5dd50c86f1bda103ebacacdf5022e4dd6c219939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a3:94:5a:a9:ce:f9:d8:e9:14:96:19:42:34: 04:fe:ff:2d:70:6f:14:03:8e:4b:d8:35:87:05:8e: 9d:2f:6d:24:83:a6:e6:f4:7c:d5:85:8d:90:14:e4: e0:9d:a4:d2:da:1f:8f:26:01:2e:88:41:92:3e:1f: b2:08:e4:a6:6e:72:92:da:ae:58:3f:66:bd:cd:eb: 93:03:4f:b4:d1:d7:17:21:e5:cd:58:ae:94:8c:f3: fa:6d:59:1a:ea:68:98:d9:66:32:6e:5c:35:59:c7: 1e:46:15:a2:8e:d1:23:a2:9b:35:98:88:25:c5:a0: a0:8b:05:31:eb:58:b9:2c:51:7b:11:62:cc:28:1e: 7e:ae:b1:64:65:61:76:f6:22:37:18:87:d2:57:e4: 92:65:c0:57:af:44:f9:45:fc:99:c9:7a:83:e4:1a: 4a:58:36:de:e6:a3:cd:75:09:3d:92:0f:78:1d:cc: 25:70:1a:df:b6:f4:14:ca:b7:99:c5:30:6e:36:0c: b8:e7:1d:8a:f0:6f:e1:88:58:44:30:ef:dc:90:23: ae:6e:33:0c:af:06:9c:fe:58:cb:ca:06:99:82:03: ed:ee:c9:28:59:21:a4:ad:c0:29:ea:a7:09:eb:44: 4c:b2:16:96:ef:b6:a1:14:38:33:eb:d0:d3:bb:e2: 18:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D5:0C:86:F1:BD:A1:03:EB:AC:AC:DF:50:22:E4:DD:6C:21:99:39 X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/XdUMhvG9oQPrrKzfUCLk3WwhmTk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.255.221.0/24 185.232.167.0/24 Signature Algorithm: sha256WithRSAEncryption 50:3f:09:d7:28:68:26:ef:fa:91:55:d2:57:77:25:64:73:6e: 31:de:8e:47:31:fa:83:bb:ca:c5:48:e2:e5:d0:d8:49:de:97: df:08:39:c6:48:2e:1d:35:0f:30:48:bc:88:ba:84:57:c9:96: 37:b3:e0:4c:89:49:94:07:86:91:b2:ff:46:a1:68:af:72:77: e7:90:cd:36:e0:18:46:7d:5b:85:17:ba:2b:60:2e:f1:3b:23: 1c:5c:11:dc:fe:bc:0a:46:75:9b:11:aa:b8:12:f1:66:5a:ae: c9:d1:be:45:83:5c:c2:90:6e:3e:7b:de:f5:c4:e4:0e:33:dd: dd:51:ed:9e:f0:3b:f4:82:22:fa:6c:e6:cc:e0:71:02:d1:5f: 7e:d7:3e:e8:37:31:58:02:37:d0:de:9b:b0:12:bd:0d:9b:bd: ff:ae:6b:57:97:3f:d0:45:3d:5a:e2:ed:28:30:35:8b:9d:24: c5:8a:b1:1a:f0:91:40:47:6b:73:df:33:9d:57:76:5c:bb:19: 26:4b:67:bc:4d:ca:2f:19:bd:16:0b:9b:c9:89:1f:25:64:a2: 12:18:7a:54:8a:74:ea:16:d0:2c:5f:e1:1c:59:4e:71:fb:9e: d0:d0:19:02:a3:95:84:9d:e8:77:79:eb:9a:cf:dc:f2:58:02: 1f:9d:f2:fe -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/Fchup6U0q5HieJYcCIlMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjYwMTAyMTQyMTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZGQ1MGM4NmYxYmRhMTAzZWJhY2FjZGY1MDIyZTRkZDZjMjE5OTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApaOUWqnO+djpFJYZQjQE/v8tcG8U A45L2DWHBY6dL20kg6bm9HzVhY2QFOTgnaTS2h+PJgEuiEGSPh+yCOSmbnKS2q5Y P2a9zeuTA0+00dcXIeXNWK6UjPP6bVka6miY2WYyblw1WcceRhWijtEjops1mIgl xaCgiwUx61i5LFF7EWLMKB5+rrFkZWF29iI3GIfSV+SSZcBXr0T5RfyZyXqD5BpK WDbe5qPNdQk9kg94HcwlcBrftvQUyreZxTBuNgy45x2K8G/hiFhEMO/ckCOubjMM rwac/ljLygaZggPt7skoWSGkrcAp6qcJ60RMshaW77ahFDgz69DTu+IYqwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFF3VDIbxvaED66ys31Ai5N1sIZk5MB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvWGRVTWh2RzlvUVByckt6ZlVDTGszV3dobVRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsv/dAwQA ueinMA0GCSqGSIb3DQEBCwUAA4IBAQBQPwnXKGgm7/qRVdJXdyVkc24x3o5HMfqD u8rFSOLl0NhJ3pffCDnGSC4dNQ8wSLyIuoRXyZY3s+BMiUmUB4aRsv9GoWivcnfn kM024BhGfVuFF7orYC7xOyMcXBHc/rwKRnWbEaq4EvFmWq7J0b5Fg1zCkG4+e971 xOQOM93dUe2e8Dv0giL6bObM4HEC0V9+1z7oNzFYAjfQ3puwEr0Nm73/rmtXlz/Q RT1a4u0oMDWLnSTFirEa8JFAR2tz3zOdV3ZcuxkmS2e8TcovGb0WC5vJiR8lZKIS GHpUinTqFtAsX+EcWU5x+57Q0BkCo5WEneh3eeuaz9zyWAIfnfL+ -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:55 2026 by rpki-client