This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/252718-8025-43c3-b871-7fd9adf08030/1/XssTGMPxxOCZ2WxNfY8_hLsfUHo.roa File: XssTGMPxxOCZ2WxNfY8_hLsfUHo.roa (raw, json) Hash identifier: bz8eC8kW/3X8iLzaEmg9hdIfrTofSiP4NWhs554tpoA= Subject key identifier: 5E:CB:13:18:C3:F1:C4:E0:99:D9:6C:4D:7D:8F:3F:84:BB:1F:50:7A Certificate issuer: /CN=122a541caf138341bd32798940de206052910341 Certificate serial: 019B7C1272DC4AFFA5CD1375AE1BFCE6D54F Authority key identifier: 12:2A:54:1C:AF:13:83:41:BD:32:79:89:40:DE:20:60:52:91:03:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EipUHK8Tg0G9MnmJQN4gYFKRA0E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/252718-8025-43c3-b871-7fd9adf08030/1/XssTGMPxxOCZ2WxNfY8_hLsfUHo.roa Signing time: Fri 02 Jan 2026 00:19:02 +0000 ROA not before: Fri 02 Jan 2026 00:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48508 IP address blocks: 195.162.22.0/23 maxlen: 23 195.162.22.0/24 maxlen: 24 195.162.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/252718-8025-43c3-b871-7fd9adf08030/1/EipUHK8Tg0G9MnmJQN4gYFKRA0E.crl rsync://rpki.ripe.net/repository/DEFAULT/db/252718-8025-43c3-b871-7fd9adf08030/1/EipUHK8Tg0G9MnmJQN4gYFKRA0E.mft rsync://rpki.ripe.net/repository/DEFAULT/EipUHK8Tg0G9MnmJQN4gYFKRA0E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:72:dc:4a:ff:a5:cd:13:75:ae:1b:fc:e6:d5:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=122a541caf138341bd32798940de206052910341 Validity Not Before: Jan 2 00:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ecb1318c3f1c4e099d96c4d7d8f3f84bb1f507a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3c:c8:ba:b7:d1:f9:43:1a:06:b2:9b:2d:47: 50:d1:d5:3b:7c:93:a0:98:c8:cd:a4:ee:4b:48:d1: 6c:ef:4b:a5:4d:36:e8:d2:a2:05:3a:43:bd:79:f2: 68:32:7e:ac:50:7c:23:bf:73:6c:db:91:05:e7:c1: ee:7b:ba:34:69:ec:68:dd:d6:9d:32:6c:2c:73:b0: 81:41:ab:7a:e4:28:ee:2f:a1:e9:9f:cc:35:1d:2c: fb:d9:7a:b4:70:29:a8:94:7a:05:44:bb:74:aa:f8: 33:cc:11:2e:8e:95:eb:53:2e:d5:f9:16:57:06:93: 36:fd:25:7f:61:13:12:10:bc:f7:12:55:d1:f9:a5: b3:82:46:a4:39:81:6f:e1:c4:f0:48:9a:1d:18:58: e6:c8:70:2e:88:1f:3f:ad:7a:44:42:41:47:e6:d9: 17:f3:10:0d:b0:30:ac:d4:21:70:1e:4b:8e:34:19: 05:78:39:78:6b:18:80:dd:10:ed:91:7d:b7:ac:1c: f9:64:c5:81:93:1e:95:55:f6:aa:6c:15:25:bc:40: 4e:c4:b0:0d:5e:9c:c4:f4:cb:fa:39:c1:d0:c3:29: 8c:10:39:07:53:52:72:82:bd:cd:43:97:8f:9d:81: b9:b1:9b:06:07:a9:73:e7:d5:28:af:12:37:2a:13: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:CB:13:18:C3:F1:C4:E0:99:D9:6C:4D:7D:8F:3F:84:BB:1F:50:7A X509v3 Authority Key Identifier: keyid:12:2A:54:1C:AF:13:83:41:BD:32:79:89:40:DE:20:60:52:91:03:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EipUHK8Tg0G9MnmJQN4gYFKRA0E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/252718-8025-43c3-b871-7fd9adf08030/1/XssTGMPxxOCZ2WxNfY8_hLsfUHo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/252718-8025-43c3-b871-7fd9adf08030/1/EipUHK8Tg0G9MnmJQN4gYFKRA0E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.162.22.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:d2:97:ef:3b:82:93:1e:5f:25:da:46:8a:ef:5a:fe:40:33: 9f:07:f5:10:57:47:8c:96:8d:37:0f:c6:4d:e5:a5:7d:6a:25: 77:53:d4:eb:e6:5f:40:e3:72:dc:ab:32:2c:9c:98:91:13:b7: 08:9b:36:75:95:52:df:c2:98:f9:62:04:d6:fc:bc:fa:20:60: 55:fb:79:7f:56:6f:83:f0:1f:64:44:a9:15:39:e6:29:29:8a: ba:f0:c3:2a:32:43:cd:3e:d5:0b:b9:71:55:54:ca:d9:6b:10: dd:d9:3c:ce:91:da:a2:9c:dd:61:26:e4:5d:d8:83:67:bc:2e: 80:b5:81:7a:07:71:7c:ba:4d:7f:40:ca:70:87:bf:d5:79:12: 5c:78:e5:18:20:f4:16:4a:77:57:e1:3c:c7:fd:2f:de:80:e8: 9e:5b:f5:af:cc:72:37:e1:f0:14:32:66:71:3e:8e:bc:db:61: ed:6e:5b:d3:e8:52:4b:69:80:8f:67:d6:5b:7f:d1:35:84:38: 5e:ef:99:51:79:c1:f6:ee:9e:ce:db:81:5a:4d:a5:fc:f1:68: d1:a8:82:a4:ea:7c:dc:3e:e9:68:48:c9:aa:74:44:da:af:bf: 53:ce:bd:7e:01:c3:5a:4a:c2:3c:b2:42:2c:23:4e:18:7f:9f: 2d:08:ee:ed -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EnLcSv+lzRN1rhv85tVPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyMmE1NDFjYWYxMzgzNDFiZDMyNzk4OTQwZGUyMDYwNTI5 MTAzNDEwHhcNMjYwMTAyMDAxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWNiMTMxOGMzZjFjNGUwOTlkOTZjNGQ3ZDhmM2Y4NGJiMWY1MDdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjzIurfR+UMaBrKbLUdQ0dU7fJOg mMjNpO5LSNFs70ulTTbo0qIFOkO9efJoMn6sUHwjv3Ns25EF58Hue7o0aexo3dad Mmwsc7CBQat65CjuL6Hpn8w1HSz72Xq0cCmolHoFRLt0qvgzzBEujpXrUy7V+RZX BpM2/SV/YRMSELz3ElXR+aWzgkakOYFv4cTwSJodGFjmyHAuiB8/rXpEQkFH5tkX 8xANsDCs1CFwHkuONBkFeDl4axiA3RDtkX23rBz5ZMWBkx6VVfaqbBUlvEBOxLAN XpzE9Mv6OcHQwymMEDkHU1Jygr3NQ5ePnYG5sZsGB6lz59UorxI3KhN0BwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF7LExjD8cTgmdlsTX2PP4S7H1B6MB8GA1UdIwQY MBaAFBIqVByvE4NBvTJ5iUDeIGBSkQNBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWlwVUhLOFRnMEc5TW5tSlFONGdZRktSQTBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8yNTI3MTgtODAyNS00M2MzLWI4NzEt N2ZkOWFkZjA4MDMwLzEvWHNzVEdNUHh4T0NaMld4TmZZOF9oTHNmVUhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8yNTI3MTgtODAyNS00M2MzLWI4NzEtN2ZkOWFkZjA4MDMw LzEvRWlwVUhLOFRnMEc5TW5tSlFONGdZRktSQTBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw6IWMA0G CSqGSIb3DQEBCwUAA4IBAQAe0pfvO4KTHl8l2kaK71r+QDOfB/UQV0eMlo03D8ZN 5aV9aiV3U9Tr5l9A43LcqzIsnJiRE7cImzZ1lVLfwpj5YgTW/Lz6IGBV+3l/Vm+D 8B9kRKkVOeYpKYq68MMqMkPNPtULuXFVVMrZaxDd2TzOkdqinN1hJuRd2INnvC6A tYF6B3F8uk1/QMpwh7/VeRJceOUYIPQWSndX4TzH/S/egOieW/WvzHI34fAUMmZx Po6822HtblvT6FJLaYCPZ9Zbf9E1hDhe75lRecH27p7O24FaTaX88WjRqIKk6nzc PuloSMmqdETar79Tzr1+AcNaSsI8skIsI04Yf58tCO7t -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:17 2026 by rpki-client