This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xREJbZysiuR_7AfAbkb-_mvdCJU.roa File: xREJbZysiuR_7AfAbkb-_mvdCJU.roa (raw, json) Hash identifier: ge+uzdtNTlkRHujnITIjJNysWOPLtwdYoaqf4cikYBQ= Subject key identifier: C5:11:09:6D:9C:AC:8A:E4:7F:EC:07:C0:6E:46:FE:FE:6B:DD:08:95 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B7F84E76163DB0A4392F2C84ADF6DD4BF Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xREJbZysiuR_7AfAbkb-_mvdCJU.roa Signing time: Fri 02 Jan 2026 16:22:54 +0000 ROA not before: Fri 02 Jan 2026 16:22:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137409 IP address blocks: 83.137.155.0/24 maxlen: 24 88.209.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 06:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:e7:61:63:db:0a:43:92:f2:c8:4a:df:6d:d4:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Jan 2 16:22:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c511096d9cac8ae47fec07c06e46fefe6bdd0895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fa:ed:03:a5:7e:57:2a:f7:9f:30:c3:cc:53: 42:b5:7b:6e:54:8e:d5:40:c2:6c:3f:7a:c5:06:1a: 6c:19:24:a7:12:ff:b7:9e:f4:65:ab:dc:11:4b:92: fb:43:18:44:89:cd:36:60:32:88:9d:1b:48:ad:d2: 70:9c:6d:f7:f3:d3:60:94:df:40:5d:61:0a:37:d7: cd:8c:90:1a:35:12:c6:5e:63:49:1c:8e:dd:f3:c1: c5:69:13:eb:72:e1:bf:f7:3d:2c:f1:c5:9e:8c:9b: 94:0d:26:fb:c8:22:d8:f4:e5:77:e9:04:23:f3:f1: bb:54:c9:f1:21:c5:b6:2a:a6:0e:bb:cc:08:ac:a1: 46:e8:c4:8b:5f:43:52:d7:ec:32:86:75:c4:62:a9: 90:1b:f9:cc:53:76:eb:28:d0:af:62:b8:21:44:a9: 03:05:b8:47:86:f7:c4:ae:49:cb:6d:e7:d1:9d:b2: 29:91:d2:f0:88:6f:6b:da:1e:d2:79:61:46:b4:69: 1e:13:e9:06:28:5d:6d:68:45:64:4c:21:63:b3:c4: a7:62:88:cf:55:a1:b1:69:72:45:a4:33:ad:d2:8a: e2:a2:ce:c5:4e:dd:99:bb:32:46:db:18:72:5b:65: ed:1d:43:3f:7a:fe:14:7f:8f:dc:04:af:f5:70:8d: 67:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:11:09:6D:9C:AC:8A:E4:7F:EC:07:C0:6E:46:FE:FE:6B:DD:08:95 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xREJbZysiuR_7AfAbkb-_mvdCJU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.137.155.0/24 88.209.202.0/24 Signature Algorithm: sha256WithRSAEncryption 10:45:a8:8e:e7:71:b5:b2:2f:35:2c:89:52:70:ec:51:6e:16: ec:71:a9:4b:cf:50:8f:2d:79:2f:0d:f8:a1:c5:11:5c:05:e9: 3a:f0:d9:9c:80:84:86:ff:ca:67:40:ff:0c:1e:6e:b3:bb:df: 64:1c:a0:7f:b8:08:39:5a:77:b4:1f:7b:18:7f:8e:5f:74:d4: 77:b4:d7:f6:5e:81:9b:fa:84:24:a0:d5:0a:27:14:b0:63:16: c1:33:f7:31:e6:51:e8:5e:1a:07:9f:38:88:ad:46:f0:87:56: 8e:48:1e:4c:61:5e:71:bf:3e:36:b0:41:76:d8:a0:cd:78:48: 4c:7c:85:55:fb:7e:5a:0d:0f:8b:ca:2c:b6:55:05:6f:48:67: 76:4d:85:9f:57:c8:98:55:24:23:eb:d2:ed:35:68:8e:f0:b2: 68:d7:68:32:5d:d0:7f:85:26:2d:08:14:7e:b1:e7:bf:cc:6d: 62:9a:3d:d3:6b:d6:4c:08:d5:18:c4:d1:1f:9b:7c:91:e3:66: 3a:d8:c7:21:48:f5:0b:2c:a3:99:90:b2:cc:f7:2c:73:15:93: 1b:cc:96:7a:a8:72:34:7b:c9:30:21:c3:c5:ff:5a:a0:57:39: 45:2c:a9:92:8b:b8:01:97:fb:dc:66:2e:b1:68:b7:89:71:d0: 61:1a:80:cb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hOdhY9sKQ5LyyErfbdS/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjYwMTAyMTYyMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTExMDk2ZDljYWM4YWU0N2ZlYzA3YzA2ZTQ2ZmVmZTZiZGQwODk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvrtA6V+Vyr3nzDDzFNCtXtuVI7V QMJsP3rFBhpsGSSnEv+3nvRlq9wRS5L7QxhEic02YDKInRtIrdJwnG3389NglN9A XWEKN9fNjJAaNRLGXmNJHI7d88HFaRPrcuG/9z0s8cWejJuUDSb7yCLY9OV36QQj 8/G7VMnxIcW2KqYOu8wIrKFG6MSLX0NS1+wyhnXEYqmQG/nMU3brKNCvYrghRKkD BbhHhvfErknLbefRnbIpkdLwiG9r2h7SeWFGtGkeE+kGKF1taEVkTCFjs8SnYojP VaGxaXJFpDOt0orios7FTt2ZuzJG2xhyW2XtHUM/ev4Uf4/cBK/1cI1niQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMURCW2crIrkf+wHwG5G/v5r3QiVMB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEveFJFSmJaeXNpdVJfN0FmQWJrYi1fbXZkQ0pVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAU4mbAwQA WNHKMA0GCSqGSIb3DQEBCwUAA4IBAQAQRaiO53G1si81LIlScOxRbhbscalLz1CP LXkvDfihxRFcBek68NmcgISG/8pnQP8MHm6zu99kHKB/uAg5Wne0H3sYf45fdNR3 tNf2XoGb+oQkoNUKJxSwYxbBM/cx5lHoXhoHnziIrUbwh1aOSB5MYV5xvz42sEF2 2KDNeEhMfIVV+35aDQ+Lyiy2VQVvSGd2TYWfV8iYVSQj69LtNWiO8LJo12gyXdB/ hSYtCBR+see/zG1imj3Ta9ZMCNUYxNEfm3yR42Y62MchSPULLKOZkLLM9yxzFZMb zJZ6qHI0e8kwIcPF/1qgVzlFLKmSi7gBl/vcZi6xaLeJcdBhGoDL -----END CERTIFICATE-----Generated at Mon Jan 19 16:54:23 2026 by rpki-client