This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/xBMgUB3OiRn5NfPpJr2oznHaboc.roa File: xBMgUB3OiRn5NfPpJr2oznHaboc.roa (raw, json) Hash identifier: Ge6/j/nZc+qoP4ABRM1EYKbSsOCo7dSlgAk6T5wqxkE= Subject key identifier: C4:13:20:50:1D:CE:89:19:F9:35:F3:E9:26:BD:A8:CE:71:DA:6E:87 Certificate issuer: /CN=5b998e184d4fc4affa20509099d919a31a07947b Certificate serial: 019B7F832AD188B6CAEB16BE1C420F196037 Authority key identifier: 5B:99:8E:18:4D:4F:C4:AF:FA:20:50:90:99:D9:19:A3:1A:07:94:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/xBMgUB3OiRn5NfPpJr2oznHaboc.roa Signing time: Fri 02 Jan 2026 16:21:01 +0000 ROA not before: Fri 02 Jan 2026 16:21:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29449 IP address blocks: 46.37.224.0/19 maxlen: 19 82.143.0.0/18 maxlen: 18 2001:15a8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/W5mOGE1PxK_6IFCQmdkZoxoHlHs.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/W5mOGE1PxK_6IFCQmdkZoxoHlHs.mft rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:2a:d1:88:b6:ca:eb:16:be:1c:42:0f:19:60:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5b998e184d4fc4affa20509099d919a31a07947b Validity Not Before: Jan 2 16:21:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c41320501dce8919f935f3e926bda8ce71da6e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:c8:11:66:55:69:6b:33:b7:96:66:30:0f:5b: 85:c6:d3:11:e4:3b:9f:5d:bc:2f:2d:8f:30:09:86: 29:e9:90:b5:69:86:03:5e:53:d7:7b:9d:50:ba:91: 70:a5:d7:98:fa:cd:84:b5:5f:38:60:e1:2b:62:9f: 12:c5:bf:d2:1a:d2:c5:c5:d7:b8:1f:ca:7b:91:c3: fd:1e:dd:07:e7:ba:e4:25:23:1c:9c:95:02:93:c9: 38:ed:62:72:dd:9a:64:d6:cd:86:19:a8:70:4a:d3: 75:b2:51:4f:2f:b3:3f:63:e3:1b:3b:04:da:30:fb: de:16:fe:c5:c9:4b:e8:64:5d:10:d7:c8:de:d2:69: 8b:46:84:bd:3e:91:c5:0d:d9:2e:32:c0:24:f0:c5: fb:14:59:65:b3:aa:5d:71:1a:c9:da:5c:af:a5:f8: ed:ae:b6:c9:02:b8:e1:b0:d5:43:4b:d7:0c:95:4b: f5:62:9b:e3:27:95:a0:f0:ab:84:26:93:55:0a:ce: f6:41:fb:ac:40:fe:34:36:d0:eb:a4:dc:b3:f0:60: ca:05:69:ae:64:a2:68:3d:17:4d:74:f8:6c:2c:5b: da:8c:bf:5d:f5:8b:b3:6c:29:94:72:22:de:8d:ff: e4:39:9c:b6:17:33:44:44:46:b6:de:14:f6:5b:31: ab:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:13:20:50:1D:CE:89:19:F9:35:F3:E9:26:BD:A8:CE:71:DA:6E:87 X509v3 Authority Key Identifier: keyid:5B:99:8E:18:4D:4F:C4:AF:FA:20:50:90:99:D9:19:A3:1A:07:94:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/xBMgUB3OiRn5NfPpJr2oznHaboc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/W5mOGE1PxK_6IFCQmdkZoxoHlHs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.37.224.0/19 82.143.0.0/18 IPv6: 2001:15a8::/32 Signature Algorithm: sha256WithRSAEncryption 4f:63:9e:52:4c:80:21:37:48:4c:d3:23:92:31:2e:3b:18:be: a8:90:d2:7a:63:30:f7:6a:1f:bd:57:be:75:28:fd:54:55:ff: c1:73:1c:94:b7:4e:06:29:b7:4a:ba:44:23:6d:93:16:e9:9f: a9:c4:af:54:50:74:3b:bc:45:4d:81:17:81:82:5a:b9:01:94: ba:49:a2:80:33:1a:f4:ee:da:88:58:35:3e:4c:d3:a5:4b:f2: 28:9f:1f:3c:45:c1:5d:50:db:3c:80:87:cb:2e:5a:5f:5a:74: 13:44:37:e5:9a:0f:85:df:58:61:14:62:55:ce:50:31:8b:6f: 6c:72:8c:46:95:4e:cf:35:8c:0a:a8:16:75:e6:db:98:c2:d4: fb:7b:8b:e3:61:e0:84:4c:98:e7:f1:ae:06:71:f9:b1:67:75: 0c:67:fa:eb:db:aa:83:8f:31:1d:ac:0f:5b:a6:d1:18:9a:bf: 70:d7:4d:a2:a2:82:00:b3:42:59:ed:ce:b0:dc:07:d9:34:45: 6a:75:3b:fa:fe:d5:c4:03:47:84:87:d2:a8:77:22:a5:4b:2b: 76:ec:dc:6b:8b:d3:47:6b:59:9a:77:d4:e1:b9:33:ba:bd:71: 27:a9:2a:8c:4b:0d:31:c3:cd:d0:34:ba:09:d0:37:a9:53:b8: 1e:f5:63:7c -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt/gyrRiLbK6xa+HEIPGWA3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViOTk4ZTE4NGQ0ZmM0YWZmYTIwNTA5MDk5ZDkxOWEzMWEw Nzk0N2IwHhcNMjYwMTAyMTYyMTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDEzMjA1MDFkY2U4OTE5ZjkzNWYzZTkyNmJkYThjZTcxZGE2ZTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMgRZlVpazO3lmYwD1uFxtMR5Duf XbwvLY8wCYYp6ZC1aYYDXlPXe51QupFwpdeY+s2EtV84YOErYp8Sxb/SGtLFxde4 H8p7kcP9Ht0H57rkJSMcnJUCk8k47WJy3Zpk1s2GGahwStN1slFPL7M/Y+MbOwTa MPveFv7FyUvoZF0Q18je0mmLRoS9PpHFDdkuMsAk8MX7FFlls6pdcRrJ2lyvpfjt rrbJArjhsNVDS9cMlUv1YpvjJ5Wg8KuEJpNVCs72QfusQP40NtDrpNyz8GDKBWmu ZKJoPRdNdPhsLFvajL9d9YuzbCmUciLejf/kOZy2FzNEREa23hT2WzGr3wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFMQTIFAdzokZ+TXz6Sa9qM5x2m6HMB8GA1UdIwQY MBaAFFuZjhhNT8Sv+iBQkJnZGaMaB5R7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVzVtT0dFMVB4S182SUZDUW1ka1pveG9IbEhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi80NTE1NTAtMmJiMi00OTM3LTlmNTIt MmZmOGU5ZDIzZjk3LzEveEJNZ1VCM09pUm41TmZQcEpyMm96bkhhYm9jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi80NTE1NTAtMmJiMi00OTM3LTlmNTItMmZmOGU5ZDIzZjk3 LzEvVzVtT0dFMVB4S182SUZDUW1ka1pveG9IbEhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQFLiXgAwQG Uo8AMA0EAgACMAcDBQAgARWoMA0GCSqGSIb3DQEBCwUAA4IBAQBPY55STIAhN0hM 0yOSMS47GL6okNJ6YzD3ah+9V751KP1UVf/BcxyUt04GKbdKukQjbZMW6Z+pxK9U UHQ7vEVNgReBglq5AZS6SaKAMxr07tqIWDU+TNOlS/Ionx88RcFdUNs8gIfLLlpf WnQTRDflmg+F31hhFGJVzlAxi29scoxGlU7PNYwKqBZ15tuYwtT7e4vjYeCETJjn 8a4GcfmxZ3UMZ/rr26qDjzEdrA9bptEYmr9w102iooIAs0JZ7c6w3AfZNEVqdTv6 /tXEA0eEh9KodyKlSyt27Nxri9NHa1mad9ThuTO6vXEnqSqMSw0xw83QNLoJ0Dep U7ge9WN8 -----END CERTIFICATE-----Generated at Mon Feb 9 18:22:36 2026 by rpki-client