This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XAeTteIxxKO8wJRj0e--2ltWo_Y.roa File: XAeTteIxxKO8wJRj0e--2ltWo_Y.roa (raw, json) Hash identifier: 66yNLzYHSazDpnkX7EndTtJLdmMPJ19G36c8FPrsdjE= Subject key identifier: 5C:07:93:B5:E2:31:C4:A3:BC:C0:94:63:D1:EF:BE:DA:5B:56:A3:F6 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C1390204FE59EA5408AE02F44871892 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XAeTteIxxKO8wJRj0e--2ltWo_Y.roa Signing time: Fri 02 Jan 2026 00:20:15 +0000 ROA not before: Fri 02 Jan 2026 00:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210814 IP address blocks: 185.222.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:90:20:4f:e5:9e:a5:40:8a:e0:2f:44:87:18:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c0793b5e231c4a3bcc09463d1efbeda5b56a3f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4c:55:06:5a:69:99:b1:ba:2d:7f:a2:ef:5f: 7c:36:ce:12:aa:13:d7:97:d3:c4:59:4f:b7:f4:79: 88:35:1f:78:06:00:7f:51:2d:f1:3d:e4:3f:39:96: fc:5d:ca:69:9a:8f:6f:a2:57:55:2d:93:b9:f3:82: 76:2e:6e:4d:73:65:0a:de:95:31:f0:30:20:b9:37: ab:cd:98:4e:0f:a0:c4:55:57:f4:29:5e:3d:0c:bb: c5:37:aa:c3:4a:ac:89:b9:ea:d6:b0:f1:64:2e:77: 8f:91:f2:ad:23:38:03:ce:59:77:18:9f:d3:55:2a: 54:6a:99:07:2c:9a:fe:dd:da:af:b8:f1:2e:d2:28: db:f9:e5:80:86:5c:4f:61:26:71:76:83:85:37:7b: e6:14:3e:cd:ad:7d:40:73:2a:66:3f:a1:e4:a6:67: 1c:3d:20:8a:3d:6d:a7:7c:27:6e:d9:6a:0c:21:e3: b8:37:43:e0:98:0a:98:5c:c9:77:1d:0e:79:8e:64: c4:fd:d5:57:07:e7:7f:fd:1a:f7:28:36:8d:42:55: 32:43:7b:22:04:fd:68:a8:e2:2e:e6:2f:70:a3:78: 59:2f:b4:a3:fa:7e:a5:bc:77:cf:e1:27:8e:f4:10: f9:01:f9:7f:57:33:ed:07:2b:06:2f:b2:cb:3c:3d: cf:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:07:93:B5:E2:31:C4:A3:BC:C0:94:63:D1:EF:BE:DA:5B:56:A3:F6 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XAeTteIxxKO8wJRj0e--2ltWo_Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.222.28.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:5d:33:46:6e:3c:1a:25:fc:3d:c0:c2:4e:39:e8:15:ca:f2: 13:02:13:c2:c1:1c:76:fb:fa:72:4d:15:f0:eb:dd:04:3a:3f: 6b:20:b8:52:ca:f4:65:68:e0:0f:42:64:e1:56:1e:ec:15:b4: 33:77:96:f5:b6:58:a7:7c:72:88:73:d4:b1:68:3c:4f:52:a8: de:da:e7:24:f0:c6:b4:22:60:e2:b3:cd:09:e0:ac:5e:0e:25: df:be:71:84:a0:03:92:d4:cf:4a:f2:5c:0e:4a:f4:a0:7f:4b: 1c:bd:de:2c:55:c2:c2:4f:07:a2:da:8d:02:fe:43:f4:cb:1f: 96:99:8e:60:db:86:38:4c:46:f6:90:2a:a7:ec:2b:39:00:2c: 56:7b:a6:13:ce:48:44:84:a0:fc:ff:c7:5d:22:a5:41:cd:8b: 96:e4:ef:25:9e:7f:51:97:06:82:8e:3c:16:c3:ea:79:a5:15: b2:50:0e:da:52:a9:88:bb:d6:4e:84:5b:83:4c:bd:91:e9:51: 62:7e:a7:ec:08:77:1e:ed:1f:28:42:03:64:24:fa:2b:22:c3: c6:d1:a3:33:f4:bc:14:fd:46:de:74:22:8d:23:05:66:5e:f5: bf:b2:4e:33:51:c6:84:d5:f9:19:c7:9a:02:e1:87:04:8f:8d: 55:4e:1f:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E5AgT+WepUCK4C9EhxiSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzA3OTNiNWUyMzFjNGEzYmNjMDk0NjNkMWVmYmVkYTViNTZhM2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUxVBlppmbG6LX+i7198Ns4SqhPX l9PEWU+39HmINR94BgB/US3xPeQ/OZb8Xcppmo9voldVLZO584J2Lm5Nc2UK3pUx 8DAguTerzZhOD6DEVVf0KV49DLvFN6rDSqyJuerWsPFkLnePkfKtIzgDzll3GJ/T VSpUapkHLJr+3dqvuPEu0ijb+eWAhlxPYSZxdoOFN3vmFD7NrX1AcypmP6Hkpmcc PSCKPW2nfCdu2WoMIeO4N0PgmAqYXMl3HQ55jmTE/dVXB+d//Rr3KDaNQlUyQ3si BP1oqOIu5i9wo3hZL7Sj+n6lvHfP4SeO9BD5Afl/VzPtBysGL7LLPD3PtwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFwHk7XiMcSjvMCUY9HvvtpbVqP2MB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvWEFlVHRlSXh4S084d0pSajBlLS0ybHRXb19ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud4cMA0G CSqGSIb3DQEBCwUAA4IBAQBMXTNGbjwaJfw9wMJOOegVyvITAhPCwRx2+/pyTRXw 690EOj9rILhSyvRlaOAPQmThVh7sFbQzd5b1tlinfHKIc9SxaDxPUqje2uck8Ma0 ImDis80J4KxeDiXfvnGEoAOS1M9K8lwOSvSgf0scvd4sVcLCTwei2o0C/kP0yx+W mY5g24Y4TEb2kCqn7Cs5ACxWe6YTzkhEhKD8/8ddIqVBzYuW5O8lnn9RlwaCjjwW w+p5pRWyUA7aUqmIu9ZOhFuDTL2R6VFifqfsCHce7R8oQgNkJPorIsPG0aMz9LwU /UbedCKNIwVmXvW/sk4zUcaE1fkZx5oC4YcEj41VTh+L -----END CERTIFICATE-----Generated at Fri Jan 2 23:48:15 2026 by rpki-client