This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/8195b3-c475-4ca4-b42d-6627a4eb5963/1/XhQkb1zdm1y7HlbvFhOvdL8mB-Y.roa File: XhQkb1zdm1y7HlbvFhOvdL8mB-Y.roa (raw, json) Hash identifier: 6Lf0K5Aehp8CxOSNwmP8Hd5JPrDFUIPDjPGfacsaeDc= Subject key identifier: 5E:14:24:6F:5C:DD:9B:5C:BB:1E:56:EF:16:13:AF:74:BF:26:07:E6 Certificate issuer: /CN=525d1c4955b2efbf009e9e41b1e72ea6dff824b3 Certificate serial: 019B7AC83D121CE4960E8B5F87437663FC28 Authority key identifier: 52:5D:1C:49:55:B2:EF:BF:00:9E:9E:41:B1:E7:2E:A6:DF:F8:24:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ul0cSVWy778Anp5Bsecupt_4JLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/8195b3-c475-4ca4-b42d-6627a4eb5963/1/XhQkb1zdm1y7HlbvFhOvdL8mB-Y.roa Signing time: Thu 01 Jan 2026 18:18:21 +0000 ROA not before: Thu 01 Jan 2026 18:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197891 IP address blocks: 2a13:8ac0:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/8195b3-c475-4ca4-b42d-6627a4eb5963/1/Ul0cSVWy778Anp5Bsecupt_4JLM.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/8195b3-c475-4ca4-b42d-6627a4eb5963/1/Ul0cSVWy778Anp5Bsecupt_4JLM.mft rsync://rpki.ripe.net/repository/DEFAULT/Ul0cSVWy778Anp5Bsecupt_4JLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:3d:12:1c:e4:96:0e:8b:5f:87:43:76:63:fc:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=525d1c4955b2efbf009e9e41b1e72ea6dff824b3 Validity Not Before: Jan 1 18:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e14246f5cdd9b5cbb1e56ef1613af74bf2607e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0c:6e:5c:7c:a4:af:33:4f:7d:e2:2c:83:2e: 2b:02:b2:35:b3:12:79:e3:a1:61:d3:e5:22:50:b8: c3:b7:83:f2:c0:79:54:26:c1:98:38:ae:03:ac:2d: 51:ae:65:d0:a9:de:7a:2d:6f:f2:1a:ec:df:01:85: 76:82:36:84:7d:dc:83:d3:69:00:30:75:43:7c:c3: 03:72:27:c9:3a:8e:f6:50:6d:0d:73:01:aa:43:42: 2f:81:0e:ab:7f:01:05:4b:d7:53:4e:41:cb:62:f2: 38:64:ae:f6:9f:db:db:a5:77:15:0f:c2:7d:e2:75: b5:70:6f:cc:d6:f1:a7:7f:cc:18:f0:7b:56:18:07: 4a:0a:40:b2:a9:72:96:f7:a4:2d:b9:bb:45:24:29: f5:17:a6:48:99:26:dd:47:64:a2:54:cf:b2:7f:07: e7:f6:e1:f6:59:f5:e6:7b:c9:33:18:1e:57:3f:fe: 13:74:17:93:8e:5d:57:bf:a5:53:11:be:23:07:67: a5:c4:01:80:f4:7b:08:46:b5:6e:f4:0b:d0:86:db: 5c:f5:57:c1:d4:34:29:4e:a1:32:2b:1e:29:a0:c7: e0:26:61:98:84:63:ef:a9:72:38:ef:01:3a:a3:2c: 25:ca:ba:f7:d2:a2:7f:b8:6a:2d:24:72:a9:98:7d: 96:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:14:24:6F:5C:DD:9B:5C:BB:1E:56:EF:16:13:AF:74:BF:26:07:E6 X509v3 Authority Key Identifier: keyid:52:5D:1C:49:55:B2:EF:BF:00:9E:9E:41:B1:E7:2E:A6:DF:F8:24:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ul0cSVWy778Anp5Bsecupt_4JLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8195b3-c475-4ca4-b42d-6627a4eb5963/1/XhQkb1zdm1y7HlbvFhOvdL8mB-Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8195b3-c475-4ca4-b42d-6627a4eb5963/1/Ul0cSVWy778Anp5Bsecupt_4JLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:8ac0:100::/40 Signature Algorithm: sha256WithRSAEncryption 5a:3c:5f:39:66:d5:df:1e:9b:70:b3:3c:17:87:eb:67:36:a0: cb:da:76:29:be:ee:d4:82:bd:94:dc:6e:4a:be:7a:03:d3:5c: 8b:53:b2:47:0f:6e:b9:f8:46:22:12:d4:39:fc:03:80:ac:fa: a1:67:8b:10:c2:c1:9c:ea:d5:3b:9e:74:68:c3:47:31:ec:81: 27:00:63:73:d1:8f:24:f5:d6:d7:2c:23:4c:c4:d8:08:2c:19: 4d:08:43:b6:30:7a:01:01:2e:0d:2e:d2:81:61:3f:08:0f:fe: 7b:b3:56:ca:3b:74:cf:f5:81:6b:27:26:35:d5:e8:c0:6b:c7: 6a:86:b1:02:bb:b0:1e:73:fc:ab:80:ec:31:34:50:b2:51:00: 67:a2:ba:fb:7f:51:79:e1:7e:13:ef:9c:63:ca:92:48:fd:28: d8:6f:77:88:21:b4:e5:2c:54:96:4c:a5:b9:47:07:88:b0:bd: ea:e5:d8:5c:dd:a8:64:cb:ef:14:52:c8:4a:94:ea:c0:e5:0f: fa:7d:ef:7c:82:5f:4e:7e:92:9f:31:c2:93:7a:91:ee:34:69: 42:14:40:a4:12:77:08:d5:a3:23:aa:d1:f8:45:c7:28:8a:7b: 90:7f:00:55:54:48:e5:96:69:9d:1f:99:96:af:9e:1e:e7:3c: 16:77:e9:29 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt6yD0SHOSWDotfh0N2Y/woMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNWQxYzQ5NTViMmVmYmYwMDllOWU0MWIxZTcyZWE2ZGZm ODI0YjMwHhcNMjYwMTAxMTgxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTE0MjQ2ZjVjZGQ5YjVjYmIxZTU2ZWYxNjEzYWY3NGJmMjYwN2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gxuXHykrzNPfeIsgy4rArI1sxJ5 46Fh0+UiULjDt4PywHlUJsGYOK4DrC1RrmXQqd56LW/yGuzfAYV2gjaEfdyD02kA MHVDfMMDcifJOo72UG0NcwGqQ0IvgQ6rfwEFS9dTTkHLYvI4ZK72n9vbpXcVD8J9 4nW1cG/M1vGnf8wY8HtWGAdKCkCyqXKW96QtubtFJCn1F6ZImSbdR2SiVM+yfwfn 9uH2WfXme8kzGB5XP/4TdBeTjl1Xv6VTEb4jB2elxAGA9HsIRrVu9AvQhttc9VfB 1DQpTqEyKx4poMfgJmGYhGPvqXI47wE6oywlyrr30qJ/uGotJHKpmH2WWwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFF4UJG9c3Ztcux5W7xYTr3S/JgfmMB8GA1UdIwQY MBaAFFJdHElVsu+/AJ6eQbHnLqbf+CSzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWwwY1NWV3k3NzhBbnA1QnNlY3VwdF80SkxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84MTk1YjMtYzQ3NS00Y2E0LWI0MmQt NjYyN2E0ZWI1OTYzLzEvWGhRa2IxemRtMXk3SGxidkZoT3ZkTDhtQi1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi84MTk1YjMtYzQ3NS00Y2E0LWI0MmQtNjYyN2E0ZWI1OTYz LzEvVWwwY1NWV3k3NzhBbnA1QnNlY3VwdF80SkxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhOKwAEw DQYJKoZIhvcNAQELBQADggEBAFo8Xzlm1d8em3CzPBeH62c2oMvadim+7tSCvZTc bkq+egPTXItTskcPbrn4RiIS1Dn8A4Cs+qFnixDCwZzq1TuedGjDRzHsgScAY3PR jyT11tcsI0zE2AgsGU0IQ7YwegEBLg0u0oFhPwgP/nuzVso7dM/1gWsnJjXV6MBr x2qGsQK7sB5z/KuA7DE0ULJRAGeiuvt/UXnhfhPvnGPKkkj9KNhvd4ghtOUsVJZM pblHB4iwverl2FzdqGTL7xRSyEqU6sDlD/p973yCX05+kp8xwpN6ke40aUIUQKQS dwjVoyOq0fhFxyiKe5B/AFVUSOWWaZ0fmZavnh7nPBZ36Sk= -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:06 2026 by rpki-client